Fundamentals I Flashcards
OECD Fair Information Practice Principles - What are the 8 FIPS?
CUPIDASO
Collection Limitation, Use Limitation, Purpose Specification, Individual Participation, Data Quality, Accountability, Security Safeguards, Openness
What are the primary purposes of the APEC Privacy Framework?
APEC member economies realize the enormous potential of electronic commerce to expand business opportunities, reduce costs, increase efficiency, improve the quality of life, and facilitate the greater participation of small business in global commerce. A framework to enable regional data transfers will benefit consumers, businesses, and governments.
APEC Privacy Framework has 9 FIPs (including OECD 8 FIPs). What are these? Which is the principle not found in the OECD Guidelines?
PANICC USA
Preventing harm
Access and correction
Notice
Integrity of personal information
Collection limitation
Choice
Uses of personal information
Security safeguards
Accountability
The principle not found is preventing harm.
Which countries are deemed adequate? Provide examples of those adequate and not adequate.
Adequate:
Andorra
Argentina
Canada (commercial organisations)
Faeroe Islands
Guernsey
Isle of Man
Israel
Japan
Jersey
Korea (New)
New Zealand
Switzerland
Uruguay
UK (from 28 June 2021)
US* - Air Passenger Name Records. Note: US Privacy Shield invalidated on 16 July 2020 by the Court of Justice of the European Union, but Air Passenger Name Records remain.
Not Adequate: Australia, Mexico, Taiwan
What are the GDPR principles? Under the GDPR, how to transfer from EU countries to non EU countries?
APSIDAL - Accuracy, Purpose Limitation, Storage Limitation, Integrity and Confidentiality, Data Minimisation, Accountability, Lawfulness + Fairness + Transparency
Adequacy, Standard Contractual Clauses, Binding Corporate Rules.
Supplementary Measures such as Transfer Impact Assessment.