International Security, Trust and Privacy Alliance Releases Study Identifying Global Requirements for Operational Privacy

The International Security, Trust and Privacy Alliance (ISTPA), a global alliance of technology providers, research institutions and companies, today announced that it has released a study useful to privacy practitioners responsible for developing operational requirements for implementing privacy in their business processes and IT systems. The study, called ISTPA Analysis of Privacy Principles: Making Privacy Operational, will also help IT professionals understand the central operational privacy components in major privacy laws and regulations.

The study assesses 12 international data protection laws and directives, such as the European Union Directive 95/46/EC, the U.S. Privacy Act, and the California "Security Breach Law," SB-1386. The study provides a structured comparison of common components and offers valuable insights to those responsible for implementing privacy management systems and privacy compliance. The study will be used by ISTPA to revise and update its Privacy Framework, originally published in 2002.

"Privacy is of strategic importance to our customers worldwide," said Adriaan Veldhuisen, Product Manager at Teradata, a Division of NCR, one of the founders of ISTPA. "We have stated that, when properly implemented, 'Privacy is Good for Business.' The ISTPA Analysis, as well as the subsequent revision of the ISTPA Framework, provides the operational structure to support Data Warehouse customers to implement solutions with privacy in mind. There is a growing need amongst Teradata customers to address 'Operational Pro-activity in Privacy Compliance Auditing.' The ISTPA Analysis provides an historical perspective of Privacy legislation, supports the urgent call for action, and demonstrates the global nature of privacy. The ISTPA Analysis also prepares a shift from a framework that is passive in nature to an operational process, armed with best practices."

John Sabo, Director, Global Government Relations for CA, Inc. and ISTPA President, noted the value of the Analysis for understanding privacy compliance management issues. "As business and government organizations take steps to address enterprise IT management, and extend their management capabilities to include compliance responsibilities, the ISTPA Analysis of Privacy Principles will be very useful, especially for those who need to bridge the policy world with more structured system and application architectures and specifications."

The Analysis was created to validate the comprehensiveness of the ISTPA Privacy Framework, which is an open, policy-configurable model of integrated, functional privacy services. In addition, the study will be useful to:

--  Privacy officers and those who create privacy policies and controls
    across organizations subject to cross-jurisdictional rules: the Analysis
    synthesizes an influential set of global privacy laws and their key
    requirements into a simplified composite view.
--  Legislators and government officials: the Analysis provides a
    methodology for understanding how new or revised privacy legislation and
    rules will impact the business and IT operations across corporations and
    government agencies.
    

A full copy of the study can be found at: www.istpa.org

About ISTPA

ISTPA was founded in 1999 as an alliance of companies, institutions and technology providers working together to clarify and resolve existing and evolving issues related to security, trust, and privacy. Current ISTPA working groups are working to enhance the ISTPA Privacy Framework and build a tool set methodology. For more information, please visit http://www.istpa.org .

Copyright © 2007 ISTPA. All Rights Reserved. All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies.

Add to Digg Bookmark with del.icio.us Add to Newsvine

Press Contacts Michele Drgon ISTPA Phone: (772) 463-8243 Email Contact