privacy past and future
play

Privacy Past and Future ISSA Lansing, MI May 19, 2016 Keith A. - PowerPoint PPT Presentation

Mar 01, 2023 •127 likes •499 views

Privacy Past and Future ISSA Lansing, MI May 19, 2016 Keith A. Cheresko Principal, Privacy Associates International LLC Purpose What is Privacy? American Privacy Past - How we got to here Some International Privacy OECD, EU

  1. Privacy Past and Future ISSA – Lansing, MI May 19, 2016 Keith A. Cheresko Principal, Privacy Associates International LLC

  2. Purpose • What is Privacy? • American Privacy Past - How we got to here • Some International Privacy – OECD, EU 2

  3. What is Privacy? • Different meanings to different people • Large element cultural • Hundreds of definitions, but most involve the ability of a person to control information about himself, or access to himself 3

  4. Where Did Privacy Come From? Privacy concerns have existed for long time 4

  5. The Epic of Gilgamesh 5

  6. Adam & Eve 6

  7. Code of Hammurabi 7

  8. Justices of the Peace Act, England 1361 8

  9. American Privacy Has its roots in dazzling new technology 9

  10. 10

  11. American Right to Privacy The Warren & Brandeis Article: The Right to Privacy • (1890) - One of the most famous and influential law journal article in US legal history - Source of the idea that a right to privacy exists in American law Written as reaction to the “yellow press” • - Gossip and hearsay articles - Publicized private facts - Threatening new technology “instantaneous photography” exacerbated problem 11

  12. “The right to be left alone” 12

  13. American Invasion of Privacy • The article eventually led to the recognition in American law of the concept of Invasion of Privacy • Invasion of Privacy is a name given to a collection of actions for which people can bring lawsuits: – Intrusion upon seclusion – Public disclosure of private facts – False light – Appropriation of name or likeness 13

  14. I remember something about the Gilgamesh from 8 th grade World I History class, but what does all this have to do with me? 14

  15. Information Privacy • A category of privacy rights • Importance has been magnified by the Information Technology revolution and economic globalization • Relates to the interest a person has in controlling his or her personal information • Relevant to all organizations that handle personal information • Applicable rules differ, but some basic concepts are the same 15

  16. US Approach to Information Privacy 16

  17. US Statutory Approach to Privacy • US now a hodge-podge of hundreds of federal and state privacy laws that deal with privacy in different contexts • Each statue is aimed at different problem and has different definitions of what constitutes personal information • Incomprehensible system for those outside the US (and many of us inside the US) 17

  18. Examples of Federal Laws Cable Communications Policy Act • CAN-SPAM Act • Children’s Online Privacy Protection Act • Computer Matching and Privacy Protection Act • Consumer Credit Reporting Reform Act • Driver’s Privacy Protection Act • Electronic Communications Privacy Act (ECPA) • Electronic Funds Transfer Act • Electronic Signatures in Global and National Commerce Act • Employee Polygraph Protection Act • Fair and Accurate Credit Transaction Act (FACTA) • Fair Credit Reporting Act (FCRA) • Family Educational Rights and Privacy Act • Financial Services Modernization Act (aka Gramm-Leach-Bliley) • Foreign Intelligence Surveillance Act • Freedom of Information Act • Health Insurance Portability and Accountability Act (HIPAA) • Identity Theft and Assumption Deterrence Act • Privacy Act of 1974 • Privacy Protection Act of 1980 • Right to Financial Privacy Act • Telecommunications Act • Telemarketing and Consumer Fraud Act • Video Privacy Protection Act • Video Voyeurism Prevention Act • 18

  19. Selected Areas of State Legislation • Identity theft protection • Security breach notification • Social security number protection • Marketing • Spyware and adware • Radio frequency identification devices • Insurance • Vehicle data event recorders • Background checks 19

  20. International Privacy 20

  21. Organisation for Economic Co-operation and Development (OECD) • An influential international economic organization of 34 countries founded in 1961 to stimulate economic progress and world trade • In 1977 developed privacy guidelines that have become the touchstone of modern privacy law in the international context • Not laws, but have become the fundamental basis of information privacy laws 21

  22. The Eight OECD Guidelines 1. Collection Limitation Principle: “There should be limits to the collection of personal data and any such data should be collected by lawful and fair means and, where appropriate, with the knowledge and consent of the data subject.” 2. Data Quality Principle: “Personal data should be relevant to the purposes for which they are to be used, and, to the extent necessary for those purposes, should be accurate, complete and kept up-to-date.” 22

  23. OECD Guidelines 3 . Purpose Specification Principle: “The purposes for which personal data are collected should be specified not later than at the time of data collection and the subsequent use limited to the fulfilment of those purposes or such others as are not incompatible with those purposes and as are specified on each occasion of change of purpose.” 23

  24. OECD Guidelines 4. Use Limitation Principle “ Personal data should not be disclosed, made available or otherwise used for purposes other than those specified in accordance with Paragraph 9 except: a) with the consent of the data subject; or b) by the authority of law. “ 5. Security Safeguards Principle: “Personal data should be protected by reasonable security safeguards against such risks as loss or unauthorised access, destruction, use, modification or disclosure of data.” 24

  25. OECD Guidelines 6. Openness Principle: “There should be a general policy of openness about developments, practices and policies with respect to personal data. Means should be readily available of establishing the existence and nature of personal data, and the main purposes of their use, as well as the identity and usual residence of the data controller.” 25

  26. OECD Guidelines 7.Individual Participation Principle: “An individual should have the right: a) to obtain from a data controller, or otherwise, confirmation of whether or not the data controller has data relating to him; b) to have communicated to him, data relating to him within a reasonable time; at a charge, if any, that is not excessive; in a reasonable manner; and in a form that is readily intelligible to him; c) to be given reasons if a request made under subparagraphs(a) and (b) is denied, and to be able to challenge such denial; and d) to challenge data relating to him and, if the challenge is successful to have the data erased, rectified, completed or amended.” 26

  27. OECD Guidelines 8. Accountibility Principle: “A data controller should be accountable for complying with measures which give effect to the principles stated above.” … Guidelines supplemented in 1980 with Statement on International Data Flows 27

  28. European Union Approach to Information Privacy 28

  29. European Cultural Attitude Toward Personal Information Differs From US • Personal information collection is viewed as something to be avoided unless absolutely necessary • Thus, European countries regulate the collection and transmission of personal information, as opposed to US regulation of misuse of personal information • Human rights issue in Europe as opposed to annoyance/identity theft issue • WWII experience 29

  30. EU Approach to Information Privacy Most Influential Globally • Embodied in the 1995 Directive on Data Protection • Data Protection Directive sets minimum standards for privacy laws in all 27 EU member states • Also followed in non-EU European countries: Iceland, Liechtenstein, Norway and Switzerland • Transitioning to new a new General Data Protection Regulation the “GDPR” 30

  31. EU Approach • Forms the general model for many laws outside of Europe, eg: Argentina, Australia (for consumer info), Canada, Peru, Israel, New Zealand, Russia • Establishes a bureaucracy in each country to administer that country’s version of the law • Must register the maintenance of databases with the bureaucracy and ask permission/notify them of certain actions 31

  32. EU Approach • “Personal data” broadly defined: includes any information relating to an identified or identifiable natural person • “Sensitive Personal Data” enjoys stricter protections • Cannot “process” personal data without a legal basis • “Process” includes: collect, record, organize, store, use, alter, etc. 32

  33. Legal Bases for Domestic “Processing” of Personal Information Under EU Directive • Unambiguous consent • Necessary for performance of contract to which data subject is party • Necessary for compliance with legal obligation to which controller is subject • Necessary to protect vital interests of data subject • Necessary for performance of tasks carried in public interest or exercise of official authority • Necessary for purposes of the legitimate interests pursued by controller or by the third party/ies to whom data are disclosed, except where such interests are overridden by the interest for fundamental rights and freedoms on the data subject that require protection 33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

VA Psychology Leadership Conference y gy p PAST PRESENT & FUTURE FOR VHA: PAST, PRESENT

VA Psychology Leadership Conference y gy p PAST PRESENT & FUTURE FOR VHA: PAST, PRESENT

VA Psychology Leadership Conference y gy p PAST PRESENT & FUTURE FOR VHA: PAST, PRESENT & FUTURE FOR VHA: THE REALIGNMENT IN CENTRAL OFFICE May 18, 2011 y , George W. Arana, MD Acting Assistant Deputy Under Secretary for Health g p

510 views • 32 slides
Who Controls the Past Controls the Future Who Controls the Present Controls the Past Nothing

Who Controls the Past Controls the Future Who Controls the Present Controls the Past Nothing

Who Controls the Past Controls the Future Who Controls the Present Controls the Past Nothing gives rest but the sincere search for truth. -Pascal Greetz from Room 101 Kenneth Geers 1984 # Nineteen Eighty-Four (Orwell) # Govt IW vs own

1.03k views • 77 slides
CUPA - RIO GRANDE CHAPTER ACA (PAST, PRESENT AND FUTURE) Agenda 1. ACA Foundations 2. Past -

CUPA - RIO GRANDE CHAPTER ACA (PAST, PRESENT AND FUTURE) Agenda 1. ACA Foundations 2. Past -

CUPA - RIO GRANDE CHAPTER ACA (PAST, PRESENT AND FUTURE) Agenda 1. ACA Foundations 2. Past - The Early Days 3. Present - Current State 4. Future Whats Next 5. Solutions ACA Compliance Tools 6. Question and Answer Jeff Taylor

373 views • 19 slides
The Past, Present and Future of Irish Agriculture Brendan Kearney The Past, Present and Future of

The Past, Present and Future of Irish Agriculture Brendan Kearney The Past, Present and Future of

The Past, Present and Future of Irish Agriculture Brendan Kearney The Past, Present and Future of Irish Agriculture Changing role in the economy Main policy developments and output/ income trends Changing structure and performance

852 views • 17 slides
20 Years of PaX PaX Team SSTIC 2012.06.06 20 Years of PaX About Past Present Future About

20 Years of PaX PaX Team SSTIC 2012.06.06 20 Years of PaX About Past Present Future About

About Past Present Future 20 Years of PaX PaX Team SSTIC 2012.06.06 20 Years of PaX About Past Present Future About Introduction Design Concepts Past Userland Present Kernel Self-Protection Toolchain Support Future Userland

803 views • 40 slides
Past and Future Trends in Architecture and Hardware David

Past and Future Trends in Architecture and Hardware David

Past and Future Trends in Architecture and Hardware David Pa5erson pattrsn@eecs.berkeley.edu SOSP History Day October 3, 2015 1 Outline Part I - Past Part II Future

792 views • 63 slides
THE DEATH OF THE TEXTBOOK AS WE KNOW IT. The past, the future, and my transition to the future.

THE DEATH OF THE TEXTBOOK AS WE KNOW IT. The past, the future, and my transition to the future.

THE DEATH OF THE TEXTBOOK AS WE KNOW IT. The past, the future, and my transition to the future. Dr. Peter Tsigaris, Professor and Chair Department of Economics School of Business and Economics Thompson Rivers University British Columbia,

723 views • 31 slides
Yhc: Past, Present, Future Neil Mitchell The Past Started by Tom, fork of nhc He

Yhc: Past, Present, Future Neil Mitchell The Past Started by Tom, fork of nhc He

Yhc: Past, Present, Future Neil Mitchell The Past Started by Tom, fork of nhc He didnt tell anyone! Some students found out Me, Andrew, Mike, Bob Started helping seemed fun Never an official York project The

266 views • 5 slides
Connected and Autonomous Vehicles June 25, 2020 Future of Privacy Forum Our Mission Bridging the

Connected and Autonomous Vehicles June 25, 2020 Future of Privacy Forum Our Mission Bridging the

Digital Data Flows Masterclass # 7 : Connected and Autonomous Vehicles June 25, 2020 Future of Privacy Forum Our Mission Bridging the policymaker-industry-academic gap in privacy policy Developing privacy protections, ethical norms, &

1.07k views • 106 slides
AIDS Law - Past and Future Testimony before the Presidential Advisory Council on HIV/AIDS: AIDS

AIDS Law - Past and Future Testimony before the Presidential Advisory Council on HIV/AIDS: AIDS

AIDS Law - Past and Future - Page 1 of 12 AIDS Law - Past and Future Testimony before the Presidential Advisory Council on HIV/AIDS: AIDS Law - Past and Future 21 June 2005 Revised - 22 June 2005 Edward P. Richards Director, Program in Law,

431 views • 12 slides
Hurley Group Past, Present and Future Dr Arvind Madan CEO The Past - Hurley Clinic in 2007

Hurley Group Past, Present and Future Dr Arvind Madan CEO The Past - Hurley Clinic in 2007

Hurley Group Past, Present and Future Dr Arvind Madan CEO The Past - Hurley Clinic in 2007 Helping 1050 QOF 1 Practice single Points handers Substance 6 Partners PCG Misuse Education 2 salaried Homeless Programme An NHS GP

325 views • 16 slides
Directors Notes: Past, Present, and Future Booster Meeting: 4/5/18 Past: State

Directors Notes: Past, Present, and Future Booster Meeting: 4/5/18 Past: State

Directors Notes: Past, Present, and Future Booster Meeting: 4/5/18 Past: State Basketball: Pep Band --job well done Band Info meeting March 1, thank you! Jazz: Spring Swing and Norfolk trip: 3/24 & 3/27 Wind Symphony

50 views • 4 slides
Resolving DNS on FreeBSD Past, present, future Erwin Lansing, DK Hostmaster A/S Past

Resolving DNS on FreeBSD Past, present, future Erwin Lansing, DK Hostmaster A/S Past

Resolving DNS on FreeBSD Past, present, future Erwin Lansing, DK Hostmaster A/S Past History named at least since FreeBSD 2.0 with NAMED 4.9.3-beta libc res_* at least since 4.3BSD Complete BIND in base nslookup,

210 views • 10 slides
Future of Philanthropy: Trends to Watch Those who only look to the past or present are

Future of Philanthropy: Trends to Watch Those who only look to the past or present are

Future of Philanthropy: Trends to Watch Those who only look to the past or present are certain to miss the future. -John F. Kennedy Huge Leaps in Health Civil Society Freedoms Challenged Growth of Impact Investing Equity as a Superior

424 views • 16 slides
a review of the evidence Maarten Goos The past, present and future The past (1820-1980):

a review of the evidence Maarten Goos The past, present and future The past (1820-1980):

How the world of work is changing: a review of the evidence Maarten Goos The past, present and future The past (1820-1980): Industrial Revolution results in skill-upgrading and decreasing inequality . The present (after 1980):Computer

337 views • 18 slides
Building a Privacy Management Program February 26, 2013 Office of the Information and Privacy

Building a Privacy Management Program February 26, 2013 Office of the Information and Privacy

Building a Privacy Management Program February 26, 2013 Office of the Information and Privacy Commissioner of Alberta Session Overview Reasons for having a PMP Strategies to deal with current and future privacy challenges at your

469 views • 33 slides
Christopher N. Ruszkowski Christopher N. Ruszkowski 1 Secretary of Education Secretary of

Christopher N. Ruszkowski Christopher N. Ruszkowski 1 Secretary of Education Secretary of

Christopher N. Ruszkowski Christopher N. Ruszkowski 1 Secretary of Education Secretary of Education Identifying & Implementing High Quality Instructional Materials Anthony Burns, Deb Marquez SCRL Kickoff Summit August 30, 2018

888 views • 50 slides
Rock Island Storage Building Board of Commissioners June 26, 2017 T ODAY Current Project

Rock Island Storage Building Board of Commissioners June 26, 2017 T ODAY Current Project

Rock Island Storage Building Board of Commissioners June 26, 2017 T ODAY Current Project Status Board Action Requested This Afternoon Approval to Advertise for Bids to construct a new 20,000 square foot storage building 2 P ROBLEM D

106 views • 10 slides
Your Action Plan 7 Steps for your business recovery! Business owners profitable?

Your Action Plan 7 Steps for your business recovery! Business owners profitable?

Your Action Plan 7 Steps for your business recovery! Business owners profitable? Essential? Non-essential? Hard work; longer hours? Different services? Different products? Different customers? Updated HR

364 views • 20 slides
.,/ i)? .,/ :;LFA 1 !r.jippiug Fm11.<;,.,.,-, f,.,. '"'' , . ..`, Frank Peretore,

.,/ i)? .,/ :;LFA 1 !r.jippiug Fm11.<;,.,.,-, f,.,. '"'' , . ..`, Frank Peretore,

J I I - ! r ./ .- 78 ,- I .,/ i)? .,/ :;LFA 1 !r.jippiug Fm11.<;,.,.,-, f,.,. '"'' , . ..`, Frank Peretore, Esq. Peretore & Peretore, PC, 191 Woodport Road, Sparta, NJ 07871 and 110 Park Street, Staten Island,

455 views • 14 slides
Cuyahoga County Public Defender Budget Presentation County Council October 24, 2017

Cuyahoga County Public Defender Budget Presentation County Council October 24, 2017

Cuyahoga County Public Defender Budget Presentation County Council October 24, 2017 Substantially equivalent resources? Staffing Levels STAFFING PROSECUTOR PUBLIC DEFENDER Felony Attorney 83 29 (5 of which are assigned to a

642 views • 11 slides
These notes correspond to the accompanying presentation given to the Beautiful Buffalo River

These notes correspond to the accompanying presentation given to the Beautiful Buffalo River

These notes correspond to the accompanying presentation given to the Beautiful Buffalo River Action Committee on December 5 th , 2017, at the headquarters of the Arkansas Department of Environmental Quality. Matt McNair, Environmental Review

146 views • 3 slides
MIDTOWN SOUTH OFFICE MARKET REPORT Q2-2017 Since the end of the fjnancial crisis, Midtown South

MIDTOWN SOUTH OFFICE MARKET REPORT Q2-2017 Since the end of the fjnancial crisis, Midtown South

MIDTOWN SOUTH OFFICE MARKET REPORT Q2-2017 Since the end of the fjnancial crisis, Midtown South has been one of the fastest growing sub-markets in Manhatuan due to the large infmux of Technology, Advertjsing, Media, and Informatjon (TAMI)

226 views • 4 slides
reedom of ducation Index 2016 www.oidel.org ith the collaboration of Novae Terrae Why we did

reedom of ducation Index 2016 www.oidel.org ith the collaboration of Novae Terrae Why we did

reedom of ducation Index 2016 www.oidel.org ith the collaboration of Novae Terrae Why we did the Freedom of Education Index? What is a citizen holder of when we talk about Freedom of Education according to the International Human Rights

613 views • 22 slides

More recommend