Back

Restart

Privacy Tenets

Next

Next

Balancing act: corporate profits with the right to privacy

In the age of digital transformation, understanding and implementing privacy law tenets is crucial. They ensure the ethical collection, use, and protection of personal data. A tenet is a principle, belief, or doctrine generally held to be true and held in common by members of an organization, movement, or profession.

Introduction

Encryption and Data Formatting

Scope

Ethical Handling of PII

Limitation

Custody

Retention

Notification

Accuracy

Participation

Dissemination

IDS/IPS

Privacy Tenets

This work is licensed with a Creative Commons Attribution 4.0 International LicenseEndFragment

Click the button to continue.

Opt Out

Data subjects should always have the choice to opt in or opt out of data collection processes. This can include a formal agreement or just statements on websites, forms or applications.

Opt In

SUBMIT

Employer Data: 555-999-1212

The bank cannot contact the loan applicant’s employer without written authorization

Authorization

Subject should be afforded the right to limit the use of their personal information. Personal data should only be used for its stated purpose. 

<< click  to continue

Data should be collected for a specific and legal/ethical purpose. This scope must be communicated to the data subject.

Oh no, this isn’t right. What should I do?

When collecting subject data an organization must verify and update data accuracy. Subjects should be able to view and correct any personal data inaccuracies.

Expiration Date *

Subject have the right to know how long their personal data will be kept and used. They can be assured the data will ONLY be keep as long as needed.

Payment

CVV/CVN *

1234 1234 1234 1234

Click on the checkmark to NOT save.

Pay by Card

MM / YY

✓

Card Number * (Credit or Debit)

CVC

Save Card

Custody

Organizations that collect PPI are required to protect the data in their custody.

ACME, Inc.

RR Corporation

XYZ Corp

Organization cannot disseminate collected PPI without the data subject’s authorization.

1. Know what information the app will be able to access (read the app’s privacy policy). 2. Pay close attention to the permissions the app requests.

When an organization collects PII, the subject must be informed about data collection and its purpose before use. When you download apps, they will ask for permission to access personal information. This information may be needed to make the app work, but are they sharing it with other companies?

Email

Name

Mobile

Social Security

Phone & fax

Website

Ethical Handling of PII

Account  Number

Address

Vehicle or License

Personal Identifiable Information (PII) holds immense value. Ethical handling respects the individual, maintains trust, and ensures the security of data.

Geographic information

Birthdate

Full face Photos

Medical & Health plan Information

Biometric Identifiers