Term 1 of 292
Main benefits of DLM and ILM are what?
highlight potential costs of not having one... fines, rep damage, loss of earnings.
Legal and privacy officers, senior leadership; CIO, CSO, PM, Information Systems Owner
(ISO), Information Security Officer (ISO), Others considered users and managers
1. What worked.
2. What partially worked.
3. What didn't work.
4. What was good/bad.
5. Whas was unforseen.
6. Were the team prepped well.
7. timelines realistic.
8. costs realistic.
9. staffing levels ok?
10. Team of correct composition?
11. Any improvements?
Increased control over data, regulatory compliance (thereby minimizing business risk) and
reduced costs (by eliminating redundancies in data storage
Definition 2 of 292
11. Enforcement.
What are the PMM maturity levels?
Metrcs shoudl be (5 -MMCIA):
These measurements typically map to best practices
The 11-element DLM model:
,Definition 3 of 292
7. Ensure escalation takes place for risk and compliane issues.
What are the steps of the Audit Life Cycle?
.
...
2 purposes of a PIA
Term 4 of 292
Good metrics should not do what?
The use of the info
Insiders and third parties
Procurement
Overburden the reader
Definition 5 of 292
2. Minimalism
Metrcs shoudl be (5 -MMCIA):
Framework benefits
Privacy Program Framework
The 11-element DLM model:
,Definition 6 of 292
purpose specification - notice.
.
GOAL
Executive leadership support for your governance model will have a direct impact on the
level of success when implementing your privacy strategies. What are the important steps
to integrate into any model?
...
Term 7 of 292
In a 2011 survey of 400 IT executives, one-fifth indicated these events had made business
continuity planning a much higher priority in recent years?
Natural disasters, security and terrorist threats
Harm prevention and/or minimization
Rationalization
Define reporting procedures
Term 8 of 292
Size is an example of what type of metric
Inverse
Linear
Optimized
Direct
, Term 9 of 292
Separation of legal, compliance, internal audit and security functions: collaboration is more
challenging, but what?
Governance model it follows
it assets
started in 1970s...
- apec privacy framework: enables regional data transfers
- guidance from local dpas: inc. ico and cnil in uk and fr respectively.
- canadian personal information and electronic documents act pipeda and australian
information privacy principles aipp: well developed national laws.
- org for economic cooperation and development oecd privacy guidelines: most widely
accepted with 108, basis for the directive (europe).
- privacy by design pbd: privacy protections at every stage of development.
- us gov white house privacy framework:
- us gov ftc.
functional independence is assured
Term 10 of 292
Individual executives who lead and "own" the responsibility of the relevant activities are called
what?
Customers
Escalation
Stakeholders
Volunteer
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller stuuviaa. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $12.99. You're not tied to anything after your purchase.