Fair Information Practice Principles (FIPP)

00:00

Welcome to module 10 of 10 privacy framework comparisons.

00:07

So in this course we've completed the introduction the module one overview of this privacy framework. We've gone through modules 236 which covered in this privacy framework core, identify governed control, communicate and protect. We've completed the modules, module seven on this privacy framework profiles

00:25

as well as module later on in this privacy framework implementation tears.

00:30

And we just completed module nine on how to adopt in this privacy framework from the ready set go methodology. And now we've moved into module to non privacy framework comparisons.

00:44

So welcome to less than 10.1 fair information practice principles or f. i. pp.

00:51

So in this video we'll cover what are the fair information practice principles, the history of the FIPP and the eight fair information practice principles.

01:03

So the Fair information Practice Principles or a set of principles and practices that describe how an information based society may approach information handling, storage management and flows with the view toward maintaining fairness, privacy and security and a rapidly evolving global technology environment.

01:25

So just to give a quick overview of the history of the F. I. P. P. Um in july 1973 there was an advisory committee of the U. S. Department of Health, Education and Welfare that first took steps towards codifying the fair information practice principles. And that resulted in the he report

01:42

um of records, computers and the rights of citizens report of the secretary's Advisory committee and automated personal data systems. So was that from that report uh that it really they tried to codify the principles um that we're going to learn about. Um But then in 1980 the Organization for Economic Cooperation and Development kat did codify

02:05

um the eight principles um and this was agreed upon by member countries and that did include the U. S. And so it was a consensus and a formal ratification process in the O. E. C. D. Guidelines on the protection of privacy and transport flows of personal data that we get the Fair information Practice principles. And now today the U. S. Government accountability office does use

02:29

Um these eight fair information practice principles and we can

02:31

also see evidence of them in um current laws and regulations. Um as we go through them you'll see how they sort of correlate um If your company to be compliant with the G. D. P. R. C. C. P. A. You're going to see sort of the overview of these principles

02:51

um that it's prevalent in these laws and regulations.

02:57

So the Fair information Practice principles are the following. There's the collection limitation principle, the data quality principle, the purpose specification principle. Use limitation principle, Security safeguards. Principal openness principle, individual participation principle. And they accounted

03:15

accountability principle.

03:17

And you'll see that some of these are apparent even in how we build out privacy policies, you know, that we have to state what we're collecting, um how we intend to use the personal data that we're collecting and what the purpose is behind what, why we're collecting the data

03:37

um and how we intend to use it

03:38

as well as having to provide the security standards for how we intend to protect that personal data. So you can see all of those um elements uh here within these principles and you'll be able to see it too as we move into um other frameworks, other privacy frameworks as well.