Database privacy and Legal Issues :: essays research papers

Database privateness and legal issuesData hiding law regulates data make outment, and info systems manage data. Therefore, data loneliness assurance essential consider system assurance. An IT discussion section should streamline its functions with the industry standards and privacy regulations in order to avoid whatsoever disruption. In order to achieve those objectives, the IT department should assess the risks, design a strategic plan to achieve privacy compliance, implement required policies and procedures, and proctor and audit the procedures to ensure privacy compliance. Gavison, in his article " silence and the Limits of the natural law", describes privacy in terms of controlling access to our physical person, and to our information. In one phrase, it is the "protection from being brought to the attention of others" struck us as particularly relevant to the census problem (1995). In his article "creating the Privacy Compliant Organization", Parke r mentions that there are other forms of privacy to consider, includes privacy of persons, privacy of personal behavior, privacy of personal communications, privacy of personal information, and privacy of territory (2001).Risk AssessmentAn IT department should identify and document the information systems that are subject to privacy requirements includes computer files, databases, archives, microfilm, personal records and copies wherever located. Moreover, it should action a risk assessment and gap analysis of controls and procedures that are in place. The gap analysis allow for reveal the deficiencies between the current attitude and the legislative requirements and regulations under which the organization must operate. Additionally, the risk assessment must be applied to the likely risks that an organization may experience from a breach in privacy which include injury to the corporate reputation, damage to business credibility, financial loss, negative publicity, and fines and criminal records for employees. The result of this phase will be the basis for developing a strategic personal information privacy plan (Parker, 2001).Design a Strategic Plan conception a privacy plan involves planning, and implementing a set of direction, methodology, and tools to address military issue of issues in order to achieve privacy compliant, which includes     Establishing the required infrastructure, including the required positions and appointing advert privacy personnel.      Establish the methodologies, which include team members, deliverables, activities, critical path, resources, skills, timelines and approaches to addressing the privacy gaps       come before the privacy policies, standards, guidelines and procedures required to meet compliance requirements.     Identify the changes required in the systems, procedures, forms, etc.      Formulate the changes requir ed to address the gaps, and     Train the individuals to ensure that they fully understand the requirements of the legislation and the organizations objectives and deliverables to be created (Parker, 2001).