Module #1: Introduction to Privacy

Question 1

What are the 4 classes of Privacy?

Answer 1

1) Information Privacy
2) Communications Privacy
3) Bodily Privacy
4) Territorial Privacy

Question 2

What is covered by information Privacy

Answer 2

Establishes the rules that govern the collection and handling of personal information.

Question 3

What is covered by Communications Privacy

Answer 3

Establishes protections of the means of correspondence such as:

• Postal Mail
• Telephone conversations
• Emails

Question 4

What are examples of personal info?

Answer 4

• Financial and Medical
• Government records
• Internet activity

Question 5

What are examples of communications privacy?

Answer 5

• Postal Mail
• Telephone conversations
• Emails

Question 6

What is covered by Bodily Privacy?

Answer 6

Establishes protections of a person’s physical being and any invasion thereof:

• genetic and drug testing
• body cavity searches
• birth control, abortions, and adoption

Question 7

What are examples of bodily privacy?

Answer 7

• genetic and drug testing
• body cavity searches
• birth control, abortions, and adoption

Question 8

What is covered by Territorial Privacy?

Answer 8

Establishes placing limits on the ability to intrude into another individual’s environment, including:

• Home
• Workspace
• Public Space

Question 9

What are the 4 principles of Fair Information Practices?

Answer 9

• Rights of individuals
• Controls on the information
• Information lifecycle
• Management

Question 10

Fair Information Practices:

What is covered by the Rights of Individuals principle?

Answer 10

• Notice
• Choice and Consent
• data subject access

Question 11

Fair Information Practices:

What is covered by Controls on the information principle?

Answer 11

• Information security
• integrity
• quality

Question 12

Fair Information Practices lifecycle:

What is covered by the Information lifecycle principle?

Answer 12

collection, use and retention, disclosure, and destruction

Question 13

Fair Information Practices lifecycle:

What is covered by Management principle?

Answer 13

Management and administration;
monitoring and enforcement;
demonstrating compliance

Question 14

What is data protection?

Answer 14

the ways in which privacy is

protected through laws, rules and regulations.

Question 15

What is Fair Information Practices?

Answer 15

They are guidelines for

handling, storing and managing personal information properly.

Question 16

Data controller

Answer 16

An organization or individual with the authority to decide how and why
information about data subjects is to be processed

Question 17

Data subject

Answer 17

An individual about whom information is being processed. Example: Consumer,
employee, patient

Question 18

Data processor

Answer 18

An organization or individual, often a third-party outsourcing service that
processes data on behalf of the data controller

Question 19

Data protection authority

Answer 19

Enforces privacy or data protection laws and regulations. U.S. has no national data protection authority per se, but

several groups oversee privacy matters
(FTC, state attorneys general, federal financial regulators)

Question 20

Is privacy in the Constitution?

Answer 20

Zero. You can infer that the founding fathers did think about this. When you look at
the amendments.

Third Amendment: I can’t come in and quarter soldiers in your home.

Fourth Amendment: Right to protection against undue seizure.

Fifth Amendment: Can’t
incriminate myself.

Thirteenth Amendment: Due process.

Question 21

1970s in privacy?

Answer 21

privacy concerns about the collection of personal information began

The Privacy Act of 1974

Question 22

What happened in 1973?

Answer 22

Fair information practices (FIPs) were developed in 1973 and provided guidelines for handling, storing and managing data with privacy, security and fairness that are still in use today.

Question 23

What happened in 1974?

Answer 23

The Privacy Act of 1974 mandates how information will be adequately processed and safeguarded

Question 24

What decade?

direct marketing and telemarketing tactics

Answer 24

1980s in privacy?

Question 25

OECD Guidelines?

Answer 25

the Organisation for Economic Co-operation and Development issued Guidelines Governing the Protection of Privacy and Transborder Flows of Personal Data (OECD Guidelines) that

aimed to facilitate data flows and protect personal data in a global economy.

Question 26

first data protection instrument for several Council of Europe member states.

Answer 26

Council of Europe Convention, known as Convention 108?

Question 27

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Answer 27

1990s in privacy

Question 28

identity theft and privacy programs

Answer 28

2000s in privacy

Question 29

The Fair Credit Reporting Act

Answer 29

1970s

privacy concerns about the collection of personal information began

Question 30

Fair information practices (FIPs)

Answer 30

1970s

privacy concerns about the collection of personal information began

Question 31

The Cable Communications Policy Act

Answer 31

1980s

direct marketing and telemarketing tactics

Question 32

The Electronic Communications Privacy Act

Answer 32

1980s

direct marketing and telemarketing tactics

Question 33

The Video Privacy Protection Act

Answer 33

1980s

direct marketing and telemarketing tactics

Question 34

Americans with Disabilities Act

Answer 34

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 35

The Telephone Consumer Protection Act

Answer 35

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 36

The Communications Assistance to Law Enforcement Act

Answer 36

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 37

The Telemarketing Sales Rules

Answer 37

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 38

The Telecommunications Act

Answer 38

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 39

The Health Insurance Portability and Accountability Act (or HIPPA)

Answer 39

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 40

The Children’s Online Privacy Protection Act

Answer 40

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 41

Gramm-Leach-Bliley Act

Answer 41

1990s

privacy enforcement cases related to unfair and deceptive practices in healthcare, education, and finance

Question 42

No Child left behind Act

Answer 42

2000s

identity theft and privacy programs

Question 43

USA PATRIOT Act

Answer 43

2000s

identity theft and privacy programs

Question 44

Controlling the Assault of Non-Solicited Pornography and Marketing Act

Answer 44

2000s

identity theft and privacy programs

Question 45

Asia Pacific Economic Cooperation, which agreed to a Privacy Framework

Answer 45

2000s

identity theft and privacy programs

Question 46

Genetic Information Nondiscrimination Act

Answer 46

2000s

identity theft and privacy programs

Question 47

Madrid Resolution which outlines International Standards on the Protection of Personal data and Privacy

Answer 47

2000s

identity theft and privacy programs

Question 48

Healthcare Information Technology for Economic and Clinical Health Act

Answer 48

2000s

identity theft and privacy programs

Question 49

2010s in privacy?

Answer 49

Privacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services.

Question 50

The White House report, “Consumer Data Privacy in a Networked World: A Framework for Protecting Privacy and Promoting Innovation in the Global Digital Economy”

Answer 50

2010s

Privacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services

Question 51

The FTC report principles, “Protecting Consumer Privacy in an Era of Rapid Change: Recommendations for Businesses and Policymakers”

Answer 51

2010s

Privacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services

Question 52

The Cybersecurity Information Sharing Act

Answer 52

2010s

Privacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services

Question 53

General Data Protection Regulation—more commonly referred to as
the GDPR—became law.

Answer 53

2010s

Privacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services

Question 54

Personal Info

Answer 54

Info that makes it possible to identify an individual

Question 55

Nonpersonal Info

Answer 55

anonymizing personal info by removing identifying elements renders it nonpersonal

Question 56

sensitive personal info

Answer 56

a subset of personal info; usually requires additional safeguarding of its collection, use, and disclosure

Question 57

pseudonymized info

Answer 57

a unique code or pseudonym is used as a temporary solution to protecting info. it is reversible.

Question 58

public records

Answer 58

• real estate records
• birth and death records
• licensing records
• statistical data

Question 59

publicly available info

Answer 59

• telephone books
• public media
• newspapers
• search engine results

Question 60

nonpublic info

Answer 60

• medical records
• financial info
• customer databases
• adoption recordsPrivacy laws have evolved along with the evolution of social media, cloud computing, online ads and location-based services

Question 61

which authorities oversee privacy-related issues in the US

Answer 61

• state attorney generals
• federal financial regulators
• FTC (federal trade commission)

Question 62

Which types of personal info may qualify as sensitive personal info?

Answer 62

• Medical history
• drivers license #
• social security #
• bank account #