Visitors Edition
Already a member? Sign In.

Need help? Our Trial Membership program will get you help on any IT project you're working on. You'll get access to our research, tools, advice and project help.

Start Trial Membership Learn More

Membership Help?

Want to learn more about our membership options, pricing, or to get a product demo? Get in touch with one of our reps using an option below.

I Want Help with a Membership Live Chat

Develop a Data Privacy Compliance Strategy

With stewardship over personal information comes great responsibility.

More Details
  • Print
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn
Develop-a-strategy-for-pci-dss-compliance---sb
Download the Storyboard Overview

Your Challenge

  • Technology has revolutionized the way governments, schools, hospitals, banks, merchants, and other service providers interact with their clients.
  • However, the same technology that enables client services also puts client information in the hands of the enterprise, bringing with it legal and ethical obligations which vary by nation, state, and industry.
  • This solution set will help IT leadership respond to expectations from the business to develop a privacy strategy by defining IT’s privacy compliance responsibilities.

Our Advice

Critical Insight
  • The current regulatory environment in the US demonstrates growing intolerance for privacy violators; consequently, privacy is a growing concern for IT leaders.
  • Enterprises with a strategy for privacy compliance are far more successful at maintaining the privacy of individuals than those without one, and 80% of IT leaders surveyed either have a privacy strategy or are in the process of developing one.
  • IT organizations in the US are catching up to Europe and Canada with respect to managing privacy risks, but still lag in disclosure when it comes to sharing personal data.
  • Evolving technologies such as cloud computing and social media are creating even more privacy pressure that needs to be investigated and either accepted, mitigated, or rejected.
Impact and Result
  • Understand the basic principles of privacy in order to make informed decisions and develop a dialogue with external stakeholders.
  • Analyze the enterprise’s unique exposure to privacy to better comprehend what your strategy must entail.
  • Develop a POV on emerging technology issues to better align your privacy strategy with today’s technology.
  • Assess the existing process and develop a privacy compliance strategy using Info-Tech’s tools and templates.

Get to Action

  1. Develop a data privacy compliance strategy.

    Align IT with ethical and legal privacy requirements.

  2. Understand how cloud computing, social media, and mobile devices affect the privacy compliance strategy.

    Communicate a POV on new technology to stakeholders.

  3. Assess current privacy compliance gaps.

    Fill compliance gaps in the organization’s privacy strategy.

  4. Develop a privacy policy.

    Demonstrate organizational commitment to privacy.

  5. Communicate your policy to Website visitors.

    Comply with privacy legislation.

  6. Develop a Social Media policy.

    Manage privacy risks associated with social media.

  7. Work privacy requirements into vendor contracts.

    Hold vendors accountable for maintaining privacy.

  8. Check off privacy requirements for all projects.

    Incorporate privacy principles into all IT projects.

Related Solution Sets

Mitigate Internal Risks & Achieve Compliance with Internal Controls

Keep employees in line without wasting company time.

Develop a Strategy for PCI DSS Compliance

You can save a lot of money by selecting the right path for PCI DSS compliance.

Tags

compliance, privacy, HIPAA, legislation, law, privacy tool, FERPA, PIPEDA, PCI DSS, HIPAA security rules, HIPAA compliance, privacy policy, privacy legislation, data privacy, Privacy Act, privacy law, Safe harbor, legislative compliance, Massachusetts Privacy Law

Related Content


Get the Complete Storyboard

See how all the steps you need to take come together, with tools and advice to help with each task on your list.

BONUS Get access to up to 5 additional free downloads

Download Now
With stewardship over personal information comes great responsibility.

Companies Who Helped

  • Region of Waterloo
  • Maine Coast Memorial Hospital
  • 4 other organizations contributed information to assist with the development of this solution set. Due to the sensitivity of the information, all contributors requested confidentiality.

Solution Road Map

Other Solution Sets in Legislation, Regulation & Compliance

  1. Create a Formal Risk Management Strategy
    Strategize with the business in mind, but be prepared to act alone.
  2. Mitigate Internal Risks & Achieve Compliance with Internal Controls
    Keep employees in line without wasting company time.
  3. Develop a Data Privacy Compliance Strategy
    With stewardship over personal information comes great responsibility.
  4. Develop an Information Governance Strategy
    Effectively manage business information for regulatory and legal obligations.
  5. Develop a Strategy for PCI DSS Compliance
    You can save a lot of money by selecting the right path for PCI DSS compliance.
  6. Ensure HIPAA Compliance
    No longer a paper tiger; HIPAA's new teeth require enterprises to be on their toes.
  7. Vendor Landscape Plus: eGRC Software
    Make audits your friend with Governance, Risk Management and Compliance (GRC) software.
  8. Survive an IT Audit
    Make the audit as painless as possible.
View the full Solution Road Map