The General Data Protection Regulation (GDPR) has been the buzz word that is causing media hype and organisations across the globe. You can find myths and misconceptions around GDPR more than you can find factual information. This blog post will address some of the key myths that we have found.
The Office of the Privacy Commissioner recently implemented an incentive called the “Privacy Trust Mark”, which is an accreditation given to organisations/agencies who demonstrate excellent privacy standards for a specific product, service or process. The OPC is assessing the applications based on the 7 principles of ‘Privacy by Design’ that were created by Dr Ann Cavoukian (Information & Privacy Commissioner, Ontario, Canada). This is a brief run through in case you believe your organisation is up for the challenge.
Almost everyone has been on the receiving end of a request to provide photo identification (most commonly a drivers’ licence or a passport) when applying for a bank account, or purchasing a new mobile phone, or some similar account-based transaction. The person making the request typically either writes down the details of the document or photocopies it. But there is one piece of information that should not be captured unless there is a legitimate reason to – the unique identifier.