You are in: ECommerce-Guide > News > Trends

ECommerce-Guide Essentials eBiz FAQ Everything you need to know to start your own successful e-business. Selling on eBay How to make money in the online marketplace. PayPal Payments and More What's new in secure payments for your online store. Shopping Cart Software Solutions to close, process and track your online sales. Related Articles •Consumers Don't Trust Web Sites •Consumers to E-Tailers: Don't Kiss and Tell •E-Tailers Unconcerned by Fraud

Information Privacy: The Other Side Of The E-commerce Coin
By Mark Merkow, CCP, CISSP
September 24, 1999

Over the course of a number of articles on security here at EC Outlook, you learned about the importance of developing - and enforcing - information security policies to protect data while it''s in transit. You also learned about the consequences of inappropriate information handling policies while data is stored within your computing resources.

As an e-business owner or manager who''s charged with collecting private information through the daily course of operations, it''s your moral duty - and increasingly, your legal responsibility - to respect your customer''s privacy.

The following checklist from Beth Givens, director of the Privacy Rights Clearinghouse, will help you to develop internal policies for responsible information handling practices throughout your company. Here you''ll find case studies, examples, and questions to contemplate as you''re developing your own security policies and practices.

The Privacy Rights Clearinghouse (PRC) was established in 1992 with the goal of helping people learn how to effectively protect personal privacy, especially in today''s ultra-wired world. The PRC is a consumer information and advocacy program, and it provides a wealth of information on multiple informational privacy issues and lots of tips on safeguarding personal privacy. PRC is grant-funded and is affiliated with the San Diego-based non-profit Utility Consumers'' Action Network.

Responsible Information Handling
This checklist provides an overview of key points to consider when preparing information-handling policies and conducting privacy audits within your organization. The checklist can be used by private, public and not-for-profit organizations alike.

Not all points will be relevant to your organization. And some situations may require you to take more stringent steps than those listed here, for example, if you deal with the confidentiality requirements of medical records.

The checklist is divided into two sections:

• Section I lists the major issues to consider when drafting privacy principles to safeguard the personal information of your clients, users, members, etc.
• Section II includes considerations for the development of intra-organizational privacy policies concerning employee records, electronic monitoring, and electronic mail.
  Go to page: 1  2  3  4  5  6  7  Next  

  Tools:

  Add ecommerce-guide.com to your favorites Add ecommerce-guide.com to your browser search box IE 7 | Firefox 2.0 | Firefox 1.5.x Receive news via our XML/RSS feed