This module is part of the Advanced Certificate in Data Protection Principles programme.
This module provides participants with an understanding of data protection principles and frameworks based on common de facto and international standards:
- The ISO / IEC 29100: 2011 Information technology: covers a policy framework, privacy architecture, a privacy capability assessment model as well as a Code of Practice for protection of personally identifiable information (PII) in public clouds acting as PII. Several supporting privacy standards have since been introduced that are extensions to information security.
- The Nymity Privacy Management Accountability Framework™ (“Framework”): a comprehensive listing of over 130 privacy management activities from Nymity. The privacy management activities are structured in 13 privacy management categories, and are jurisdiction and industry neutral.
- The Madrid Resolution: adopted in 2009 by the International Conference of Data Protection and Privacy Commissioner, it included a joint proposal to bring together multiple approaches to the protection of personal privacy, integrating legislation from all five continents.
- Other frameworks: APEC Privacy Framework and Cross Border Privacy Rules