Tag Archives for " privacy by design "

EDPS launches ‘Privacy by Design’ contest for health apps

The European Data Protection Supervisor (EDPS) has announced the launch of a contest to design mobile health (m-health) applications implementing “privacy by design and by default” principles.

The aim is to create best practices that may constitute a reference for privacy-friendly development of mobile apps and give users more control over their personal information. Participants are challenged to develop a useful and user-friendly m-health application at the forefront of the implementation of the data protection by design and by default principle, as required under the GDPR. The deadline for submissions is the end of June.

Source: EDPS launches ‘Privacy by Design’ contest for m-health apps – Telecompaper

What privacy pros can learn from the Facebook-Cambridge Analytica revelations

Data lifecycle practices have appeared as standard issues on third-party risk-management checklists for years, particularly in regard to privacy and data monetization.

Privacy pros have been asking good questions, and drafting provisions to cover data collection minimization, use limitations, and secure deletion, but have we thoroughly thought through the potential for third party exploitation of the data, and are we doing enough to monitor and enforce these commitments after the contracts are signed?

Source: What privacy pros can learn from the Facebook-Cambridge Analytica revelations

Data protection impact assessments and data protection by default and by design

In 2016, the Westin Research Center published a series of articles identifying our analysis of the top 10 operational impacts of the European Union’s General Data Protection Regulation. Now, with the May 25, 2018, GDPR implementation deadline looming, the IAPP is releasing a companion series discussing the common practical organizational responses that our members report they are undertaking in anticipation of GDPR implementation.

This fourth installment in the 10-part series addresses privacy risk analysis, including, importantly, formalized risk management processes such as data protection impact assessments (known as DPIAs), as well as the newly legislated principles of data protection by default and by design.

Source: Top 10 Operational Responses to the GDPR – Part 4: Data protection impact assessments and data protection by default and by design

Legislating privacy by design in Canada

The Standing Committee on Access to Information, Privacy and Ethics is ready to table its report following its months€™ long review of Canada’€™s Personal Information Protection and Electronic Documents Act. The Committee adopted its report , entitled “€œTowards Privacy by Design: A Review of Personal Information Protection and Electronic Documents Act (PIPEDA)”€ Feb. 13 and ordered that the Chair of the Committee table the report to the House of Commons.

Source: Legislating privacy by design in Canada

Software development with Data Protection by Design and by Default

The Norwegian Data Protection Authority has developed these guidelines to help organisations understand and comply with the requirement of data protection by design and by default in article 25 of the General Data Protection Regulation.

Source: Software development with Data Protection by Design and by Default | Datatilsynet

Implementing privacy and security by design through serious games

Playing games can teach staff how to handle sensitive data and show citizens the security and privacy concerns that come along with it. Game Jam – Unveil the privacy threat, an innovative workshop of the Alexander von Humboldt Institute for Internet and Society, will be developing new methods on 7 and 8 October 2017 that follows up on the idea, that these present problems can only be solved through creativity and an interdisciplinary approach. During the workshop, game designers, visual artists, storytellers and privacy and security experts will be coming together to develop serious game methods to reveal urgent anonymity and privacy issues for citizens and companies.

Source: Game Jam: Implementing privacy and security by design through serious games | Alexander von Humboldt Institut für Internet und Gesellschaft

>