Which of the following elements MUST a compliant EU-US Safe Harbor Privacy Policy contain?
A.
An explanation of how long the data subject’s collected information will be retained for and how
it will be eventually disposed.
B.
An explanation of who can be contacted at the organization collecting the information if
corrections are required by the data subject.
C.
An explanation of the regulatory frameworks and compliance standards the information collecting
organization adheres to.
D.
An explanation of all the technologies employed by the collecting organization in gathering
information on the data subject.
1.Notice – Individuals must be informed that their data is being collected and about how it will be used.They must provide information about how individuals can contact the organization with any inquiries or complaints.
2.Choice – Individuals must have the option to opt out of the collection and forward transfer of the data to third parties.
3.Onward Transfer – Transfers of data to third parties may only occur to other organizations that follow adequate data protection principles.
4.Security – Reasonable efforts must be made to prevent loss of collected information.
5.Data Integrity – Data must be relevant and reliable for the purpose it was collected.
6.Access – Individuals must be able to access information held about them, and correct or delete it, if it is inaccurate.
7.Enforcement – There must be effective means of enforcing these rules.
1
0