Identification of assets in the process of privacy protection
Keywords:
privacy, identification, assets, processing of personal data, threats, riskAbstract
Currently, the issue of personal data protection is a topical issue, because of the expected approval of the Personal Protection Act in the Slovak Republic, which will be the transposition of GDPR. The paper provides a guidance on identifying of assets and interrelated or interacting activities in connection with the process of identifying, analysing, evaluating, consulting, communicating and planning the treatment of potential privacy impacts with regard to the processing of personally identifiable information, framed within an organization’s broader risk management framework. In the context of a privacy risk management process, personally identifiable information will be considered as an asset. For the purposes of this article, the terms and definitions given in ISO / IEC 29100, ISO / IEC 29134, ISO / IEC 27000, ISO / IEC 27005, ISO Guide 73 will be used.
References
[2] ISO/IEC 27002:2005 Information technology -- Security techniques -- Code of practice for information security management.
[3] ISO/IEC 27005:2008 Information technology -- Security techniques -- Information security risk management.
[4] ISO/IEC 29 100:2011 Information technology - Security techniques - Privacy framework
[5] ISO/IEC 29134:2017 Information technology — Security techniques — Guidelines for privacy impact assessment
[6] Regulation (EU) 2016/679 of the European Parliament and of the Council - Article 94 - Repeal of Directive 95/46/EC
Downloads
Published
Issue
Section
License
Bánki Közlemények is loyal to open access for academic work. All the original articles and review papers published in this journal are free to access immediately from the date of publication. We don’t charge any fees for any reader to download articles and reviews for their own scholarly use.
The Bánki Közlemények also operates under the Creative Commons Licence CC-BY-NC-ND. This allows for the reproduction of articles, free of charge, for non-commercial use only and with the appropriate citation information. All authors publishing with the Bánki Közlemények accept these as the terms of publication.