That privacy policy sitting proudly on your organization’s Web site will collect digital dust if it isn’t policed, says Ontario’s privacy commissioner

Privacy policies need more than words: Cavoukian

Corporate privacy policies are more than words on paper or a Web site, says Ontario’s privacy commissioner – they have to be actively worked on, supported and communicated.

“Privacy policies alone, without a proper strategy for implementation and ongoing compliance procedures, will not protect an organization from privacy risks,” Ann Cavoukian said Wednesday as she released a how-to privacy guide for the private sector and governments.

“The seven recommendations presented in this paper will provide organizations with concrete guidance on how to effectively execute an appropriate privacy policy, and have it reflected in actual practice,” she said in a statement.

The 17-page document builds on Cavoukian’s internationally respected Privacy by Design framework.

The importance of following up on privacy policies was highlighted in July when Elections Ontario publicly confessed that two temporary staff had lost track of two data sticks with the unencrypted personal information on as many as 2.4 million voters.

The department had policies to protect the data, but they weren’t followed.

The seven steps are

–After conducting a privacy impact assessment, implement a policy that reflects your organization’s privacy needs and risks;

–Link each requirement to a concrete actionable item;

–Show how each practice will be implemented;

–Create privacy education and awareness training;

–Designate a central person to answer questions;

–Verify policies and procedures are being followed;

–Have a policy ready in case there’s a privacy breach.

Related Download
Cisco Secure Mobility Knowledge Hub Sponsor: Cisco
Cisco Secure Mobility Knowledge Hub
This Knowledge Hub provides an end-to-end look at what it takes to discover, plan, and implement a successful Secure Mobility strategy.
Learn More
Share on LinkedIn Share with Google+ Comment on this article
More Articles