Privacy in Practice: Establish and Operationalize a Holistic Data Privacy Program
暫譯: 實踐中的隱私:建立與運營全面的數據隱私計劃
Tang, Alan
- 出版商: CRC
- 出版日期: 2023-03-01
- 售價: $4,520
- 貴賓價: 9.5 折 $4,294
- 語言: 英文
- 頁數: 447
- 裝訂: Hardcover - also called cloth, retail trade, or trade
- ISBN: 1032125462
- ISBN-13: 9781032125466
海外代購書籍(需單獨結帳)
商品描述
Privacy is not just the right to be left alone, but also the right to autonomy, control, and access to your personal data. The employment of new technologies over the last three decades drives personal data to play an increasingly important role in our economies, societies, and everyday lives. Personal information has become an increasingly valuable commodity in the digital age.
At the same time, the abundance and persistence of personal data have elevated the risks to individuals' privacy. In the age of Big Data, the Internet of Things, Biometrics, and Artificial Intelligence, it is becoming increasingly difficult for individuals to fully comprehend, let alone control, how and for what purposes organizations collect, use, and disclose their personal information. Consumers are growing increasingly concerned about their privacy, making the need for strong privacy champions ever more acute.
With a veritable explosion of data breaches highlighted almost daily across the globe, and the introduction of heavy-handed privacy laws and regulatory frameworks, privacy has taken center stage for businesses. Businesses today are faced with increasing demands for privacy protections, ever-more complex regulations, and ongoing cybersecurity challenges that place heavy demands on scarce resources. Senior management and executives now acknowledge privacy as some of the biggest risks to the business.
Privacy, traditionally, has existed in a separate realm, resulting in an unintentional and problematic barrier drawn between the privacy team and the rest of the organization. With many regulatory frameworks to consider, building an all-encompassing data privacy program becomes increasingly challenging. Effective privacy protection is essential to maintaining consumer trust and enabling a robust and innovative digital economy in which individuals feel they may participate with confidence.
This book aims at helping organizations in establishing a unified, integrated, enterprise-wide privacy program. This book is aiming to help privacy leaders and professionals to bridge the privacy program and business strategies, transform legal terms and dead text to live and easy-to-understand essential requirements which organizations can easily implement, identify and prioritize privacy program gap initiatives and promote awareness and embed privacy into the everyday work of the agency and its staff.
商品描述(中文翻譯)
隱私不僅是被獨處的權利,更是自主權、控制權和訪問個人數據的權利。在過去三十年中,新技術的應用使得個人數據在我們的經濟、社會和日常生活中扮演著越來越重要的角色。個人信息在數位時代已成為一種越來越有價值的商品。
同時,個人數據的豐富性和持久性也提高了對個人隱私的風險。在大數據、物聯網、生物識別技術和人工智慧的時代,個人越來越難以完全理解,更不用說控制組織如何以及出於什麼目的收集、使用和披露他們的個人信息。消費者對隱私的擔憂日益增加,使得對強有力的隱私倡導者的需求變得更加迫切。
隨著全球幾乎每天都在突顯的數據洩露事件的爆炸性增長,以及嚴厲的隱私法律和監管框架的引入,隱私已成為企業的核心議題。當今企業面臨著對隱私保護日益增長的需求、越來越複雜的法規以及持續的網絡安全挑戰,這些都對稀缺資源提出了沉重的要求。高層管理人員和高管們現在承認,隱私是企業面臨的最大風險之一。
傳統上,隱私存在於一個獨立的領域,這導致隱私團隊與組織其他部分之間形成了無意識且有問題的障礙。考慮到許多監管框架,建立一個全面的數據隱私計劃變得越來越具挑戰性。有效的隱私保護對於維持消費者信任和促進一個強大且創新的數位經濟至關重要,讓個人能夠自信地參與其中。
本書旨在幫助組織建立一個統一、整合的企業級隱私計劃。本書旨在幫助隱私領導者和專業人士將隱私計劃與商業策略相結合,將法律術語和死板的文本轉化為生動且易於理解的基本要求,這些要求組織可以輕鬆實施,識別和優先考慮隱私計劃的差距倡議,並提高意識,將隱私融入機構及其員工的日常工作中。
作者簡介
Mr. Alan Tang has extensive experience devoted to privacy and security practices. Dr. Tang specializes in establishing and operationalizing risk-based and actionable privacy frameworks and programs in alignment with global privacy laws, regulations, and standards such as GDPR, CCPA/CPRA, PIPEDA, PIPL, LGPD, GAPP, ISO 27701, and NIST PF, etc. He believes in simplifying, automating, and scaling privacy controls to enable business growth.
Dr. Tang has firsthand experience in implementing an enterprise-wide, unified privacy framework and program for a Fortune 50 international company. The privacy framework has been implemented in 50+ countries through three phases. He has a strong history of working with business leaders in a wide range of privacy-related domains such as privacy strategy and roadmap, PIA and DPIA, privacy policies and procedures, privacy-by-design in SDLC, data subject rights assurance, data retention, data disclosure and sharing, data cross-border transfer, data security protection, privacy awareness training, data breach handling, etc.
Dr. Tang holds a Ph.D. degree in Information Security and an MBA degree. Alan also holds numerous privacy and security designations including FIP, CIPP/E, CIPP/US/C, CIPM, CIPT, CISSP, CISA, PMP, and previously ISO27001LA and PCI DSS QSA.
作者簡介(中文翻譯)
艾倫·唐(Alan Tang)先生在隱私和安全實踐方面擁有豐富的經驗。唐博士專注於建立和運營基於風險的可行隱私框架和計劃,並與全球隱私法律、法規和標準(如GDPR、CCPA/CPRA、PIPEDA、PIPL、LGPD、GAPP、ISO 27701和NIST PF等)保持一致。他相信簡化、自動化和擴展隱私控制,以促進業務增長。
唐博士在一家《財富》50強的國際公司中,擁有實施企業範圍內統一隱私框架和計劃的第一手經驗。該隱私框架已通過三個階段在50多個國家實施。他在與商業領導者合作的歷史上,涉及廣泛的隱私相關領域,如隱私策略和路線圖、隱私影響評估(PIA)和數據保護影響評估(DPIA)、隱私政策和程序、在軟體開發生命週期(SDLC)中的隱私設計、數據主體權利保障、數據保留、數據披露和共享、數據跨境傳輸、數據安全保護、隱私意識培訓、數據洩露處理等。
唐博士擁有資訊安全的博士學位和工商管理碩士學位(MBA)。艾倫還擁有多項隱私和安全的專業資格,包括FIP、CIPP/E、CIPP/US/C、CIPM、CIPT、CISSP、CISA、PMP,以及之前的ISO27001LA和PCI DSS QSA。
