Re: new security/privacy review questions

> On Jul 3, 2015, at 4:28 , Christine Runnegar <runnegar@isoc.org> wrote:
> 
> Yes, welcome Tiffany, and thank you for sharing your views.
> 
> Indeed, the scope of privacy and data protection laws (i.e. the definition of “personal data/personal information”) varies depending on the jurisdiction.
> 
> A common, but not universal definition is:
> 
> “any information [relating to/about] an identified or identifiable individual” 
> 
> (found, for example, in the OECD Privacy Guidelines, Council of Europe Convention 108 and APEC Privacy Framework)
> 
> My personal preference is not to use “PII”, but rather, “personal data” or “personal information”, as needed.

yes.  I am quite fond of ‘personally derived information’ i.e. information that derives from the actions of a single person.


David Singer
Manager, Software Standards, Apple Inc.

Received on Friday, 3 July 2015 23:19:39 UTC