Determann's field guide to data privacy law : international corporate compliance / Lothar Determann.
2017
K3264.C65 D48 2017 (Map It)
On loan from Cellar, due 16. May 2025
Formats
| Format | |
|---|---|
| BibTeX | |
| MARCXML | |
| TextMARC | |
| MARC | |
| DublinCore | |
| EndNote | |
| NLM | |
| RefWorks | |
| RIS |
Items
Details
Author
Title
Determann's field guide to data privacy law : international corporate compliance / Lothar Determann.
Uniform Title
Determann's field guide to international data privacy law compliance
Published
Cheltenham, UK : Edward Elgar Publishing, [2017]
Call Number
K3264.C65 D48 2017
Edition
Third edition.
ISBN
9781786438683 (cased)
1786438682
9781786438706 (paperback)
1786438704
9781786438690 (ebook)
1786438682
9781786438706 (paperback)
1786438704
9781786438690 (ebook)
Description
xxvi, 200 pages ; 23 cm.
System Control No.
(OCoLC)1011550846
Summary
"This third revised edition includes significant changes to data privacy law since 2015 such as the challenges companies face as they move data to cloud solutions. With data privacy law enforcement at an all time high, readers will benefit from this introduction to key data privacy concepts and the...guidance on starting, maintaining and auditing compliance programs. Step-by-step direction on drafting privacy documentation is provided, with 'how-to' suggestions for tackling other tasks and projects. Finally, the book offers an A-Z list of hot topics, organized by commonly used words and terms."-- Back cover.
Bibliography, etc. Note
Includes bibliographical references (pages 192-193) and index.
Series
Record Appears in
Portion of Title
Field guide to international data privacy law compliance
Table of Contents
About this third edition, contributors and the author
ix
Introduction
xi
Key terms
xiii
Key concepts
xv
field: data protection, privacy and security
xv
territory: Europe, U.S. and ROW
xvii
species: personal data, PII and sensitive data
xx
Activities encountered: transfers and other forms of processing
xxiii
observed: data controllers, processors
xxiv
game wardens: data protection authorities, officers
xxv
Field Guide
1.
Starting a compliance program
1
Taking charge
1
Working with internal stakeholders and outside advisors
3
Appointing a privacy officer
4
Preparing a task list
11
Executing tasks
27
2.
International data transfers -- selecting compliance mechanisms
28
Three hurdles
30
Options to clear hurdle 3 -- prohibition of international transfers
35
Compliance mechanisms compared
39
Implementation
51
Data transfers from other jurisdictions
56
3.
Drafting documentation
59
Why are you creating the document?
59
Who is your audience?
62
Categories and examples of documentation
64
Notices
68
Consent
78
How to obtain valid consent
80
Opt-in, out and in between
82
Above and beyond opt-in consent
86
Other considerations for consent drafting
88
Agreements
90
Protocols
96
Questionnaires and data submission forms
97
Documenting decisions and compliance efforts
98
Government notifications, approvals
99
4.
Maintaining and auditing compliance programs
102
5.
Data privacy A to Z
106
Advertising
107
Brexit, GDPR, ePrivacy and Privacy Shield
109
Cloud computing
111
Data retention and residency requirements
124
Employee data and monitoring
128
Financial information
139
Government investigations, information requests
140
Health information
143
Internet of Everything, big data and data brokers
145
Jurisdiction
148
K -- Contracts
151
Location data
152
Minors
153
Notification of data security breaches
154
Ownership
158
Privacy by design
159
Questionnaires
160
Rights, remedies, enforcement
161
Social media
166
Tracking
168
Unsolicited communications (spam email, cold calls, etc.)
173
Vendor management
178
Wiretapping
180
X-ray, genes, fingerprints, faces -- biometric data
181
Y -- Why protect data privacy?
183
ZIP codes, IP addresses and other numbers
186
Checklist: Data privacy and security compliance program
188
Resources
192
Abbreviations
194
Index
197