The Information Accountability Foundation has released a legitimate interest assessment process designed to demonstrate accountability and support organizations’ application of the EU General Data Protection Regulation. The framework, codeveloped with TrustArc, includes regulatory analysis and considerations for business processes necessary to demonstrate responsibility when using data. “Every corporate privacy team is in an all hands-on deck rush to build the compliance programs necessary for GDPR,” the IAF blog post states. “A big piece of that will be mechanisms to justify the use of data that pertains to people. Being able to demonstrate that legitimate interests will be used responsibly is not just a necessary tactical move to assure compliance, it is a strategic move necessary to assure companies will have the ability to use observational data to build benefits for people.”
If you want to comment on this post, you need to login.