Back
Restart
Privacy Tenets
Next
Next
Balancing act: corporate profits with the right to privacy
In the age of digital transformation, understanding and implementing privacy law tenets is crucial. They ensure the ethical collection, use, and protection of personal data. A tenet is a principle, belief, or doctrine generally held to be true and held in common by members of an organization, movement, or profession.
Introduction
Encryption and Data Formatting
Scope
Ethical Handling of PII
Limitation
Custody
Retention
Notification
Accuracy
Participation
Dissemination
IDS/IPS
Privacy Tenets
This work is licensed with a
Creative Commons Attribution 4.0 International LicenseEndFragment
Click the button to continue.
Opt Out
Data subjects should always have the choice to opt in or opt out of data collection processes. This can include a formal agreement or just statements on websites, forms or applications.
Opt In
SUBMIT
Employer Data:
555-999-1212
The bank cannot contact the loan applicant’s employer without written authorization
Authorization
Subject should be afforded the right to limit the use of their personal information. Personal data should only be used for its stated purpose.
<< click to continue
Data should be collected for a specific and legal/ethical purpose. This scope must be communicated to the data subject.
Oh no, this isn’t right. What should I do?
When collecting subject data an organization must verify and update data accuracy. Subjects should be able to view and correct any personal data inaccuracies.
Expiration Date *
Subject have the right to know how long their personal data will be kept and used. They can be assured the data will ONLY be keep as long as needed.
Payment
CVV/CVN *
1234 1234 1234 1234
Click on the checkmark to NOT save.
Pay by Card
MM / YY
✓
Card Number * (Credit or Debit)
CVC
Save Card
Custody
Organizations that collect PPI are required to protect the data in their custody.
ACME, Inc.
RR Corporation
XYZ Corp
Organization cannot disseminate collected PPI without the data subject’s authorization.
1. Know what information the app will be able to access (read the app’s privacy policy).
2. Pay close attention to the permissions the app requests.
When an organization collects PII, the subject must be informed about data collection and its purpose before use. When you download apps, they will ask for permission to access personal information. This information may be needed to make the app work, but are they sharing it with other companies?
Email
Name
Mobile
Social
Security
Phone
& fax
Website
Ethical Handling of PII
Account
Number
Address
Vehicle or
License
Personal Identifiable Information (PII) holds immense value. Ethical handling respects the individual, maintains trust, and ensures the security of data.
Geographic
information
Birthdate
Full face
Photos
Medical &
Health plan
Information
Biometric
Identifiers