Information Technology Reference
In-Depth Information
Appendix J:
priacy Management
program outline
The content of this appendix is an outline for a privacy management program.
Privacy is one of the IA core principles as well as a concern in legislation and civil
liberties. Creating a privacy management program using the outline herein will
assist in isolating those privacy issues that may present risk to the organization as
well as how to address those risks.
Privacy Management Program for
CompanyName
DD Month CCYY
1 introduction
A key phrase in privacy is protected information (PI); one example of PI is per-
sonally identifiable information (PII). Compliance requirements provide input
to determine what protected information is, and circumstances determine when
information becomes protected. The privacy issue with regard to personal privacy,
protection from identity theft, protection of health details and financial details,
and resulting legislation and regulation forces organizational executives to deal
with privacy as part of their due diligence and fiduciary responsibility to stake-
holders. In recognition of organizational responsibilities with regard to privacy, the
privacy management program (PMP) is a supplement to the security management
525
Search WWH ::




Custom Search