Salinger Privacy published a guide to ensure a successful privacy impact assessment. The tips include doing more than a legal compliance check, review the entire “ecosystem” of the technology the PIA is being conducted for, testing for “necessity, legitimacy and proportionality,” considering customer expectations, and using multiple privacy risk mitigation “levers.”
Full Story
shareShare This
Related Stories
Evaluating the use of AI in privacy program operations
The privacy implications and questions surrounding artificial intelligence dominate discussions among many privacy professionals. How do we untrain an AI model previously trained on personal information in response to a data subject request? How do we explain how a particular AI model processes pers...
Australia attorney-general discloses Privacy Act reform details
Australia Attorney-General Mark Dreyfus revealed inclusions and exclusions concerning provisions of the pending Privacy Act reform, The Sydney Morning Herald reports. Australia's government received 116 recommendations for the reform, including 106 that will either be included in the pending legisla...
Badge systems the latest employee monitoring trend
The Wall Street Journal reports on the use of building-entry badge systems as the latest employee monitoring tool. Amazon, Google, Meta and other multinationals have begun increasing their reviews of employee swipe-ins for attendance tracking. Fisher Phillips Partner Kathleen McLeod Caminiti said em...
Hong Kong's PCPD issues data security guidance
Hong Kong's Office of the Privacy Commissioner for Personal Data published data security recommendations following a string of hacks and subsequent personal data leaks. The PCPD reminded organizations to "regularly conduct data security risk assessments, and put in place adequate and effective secur...
New privacy requirements under Quebec's Law 25 now in force
Major provisions of Quebec's Law 25 entered into force 22 Sept. The legislation contained within the omnibus Bill 64 passed in 2021 aims to improve personal data protection standards and modernize the Private Sector Act. Law 25 empowers Quebec's data protection authority, the Commission d'accès à l'...
Comments
If you want to comment on this post, you need to login.