|
Standard
ISO/IEC 15944-17
First edition
Information technology — Business
2024-04
operational view —
Part 17:
Fundamental principles and rules
governing Privacy-by-Design
(PbD) requirements in an EDI and
collaboration space context
Technologies de l'information — Vue opérationnelle d'affaires —
Partie 17: Règles et principes fondamentaux régissant les
exigences de protection de la vie privée par conception (PbD)
dans un contexte d'EDI et d'espace de collaboration
Reference number
ISO/IEC 15944-17:2024(en) © ISO/IEC 2024
---------------------- Page: 1 ----------------------
ISO/IEC 15944-17:2024(en)
COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2024
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: [email protected]
Website: www.iso.org
Published in Switzerland
© ISO/IEC 2024 – All rights reserved
ii
---------------------- Page: 2 ----------------------
ISO/IEC 15944-17:2024(en)
Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 2
4 Abbreviated terms .18
5 Fundamental privacy protection principles . 19
5.1 Overview .19
5.2 Primary sources of privacy protection principles . 20
5.3 Exceptions to the application of the privacy protection principles . 20
5.4 Key eleven (11) privacy protection principles . 20
5.5 Link to “consumer protection” and “individual accessibility” requirements .21
5.6 Requirements for tagging (or labelling) sets of personal information (SPIs) in support
of privacy protection requirements (PPR) . 22
5.7 Requirements for making all personal information (PI) available to the buyer where
the buyer is an individual . 22
6 Fundamental principles and rules governing Privacy by Design (PbD) requirements .22
6.1 Overview . 22
6.2 Fundamental principles of Privacy by Design . 23
6.2.1 Privacy by Design Principle 1: Proactive not reactive; preventative not remedial . 23
6.2.2
...