6.1 Privacy Notice and Policies Flashcards
What Data is Collected?
and what is not collected.
What is observed, inferred and delcared directly from users as well as collected by 3rd parties
How Collected Data is Used?
General description of data usage, including how data may be used by all groups across the org, as well as any 3rd-party usage of the data
How Collected Data is Shared?
How data is shared both outside organisation but also to which teams across the organisation.
Include any law enforcement or regulatory requirements here as well.
User Control over Collected Data
Describe how users can control collection and use (including sharing) of their data.
May not be possible to discontinue normal transmission of data logs to web servers during a website visit, give some control over how data is used.
Controlling Marketing Contact
Users should be able to control how and when an organisation contacts them .
Use of Tracking Mechanisms
Cookies
Flash Cookies (LSOs - Locally Stored Objects)
HTML 5 Storage
Fingerprinting or other means to track users
Describe all tracking mechanisms an organisation uses as well as some ability to limit their use.
Gaining Access to Data
Explain how users can access the data an organisation holds on them.
Resolving Privacy Issues
Describe how users can resolve privacy issues they have with an organisation.
Date of Privacy Notice
Prominently display the date as part of the privacy notice.
Changes to Privacy Notice
Make users aware of how often a privacy notice may be changed and how they will be informed of changes.