| Presentation | 2017-11-09 Application of ISO/IEC 29100:2011 to the evaluation criteria of privacy impact assessment Ryotaro Nakata, Sanggyu Shin, Yoichi Seto, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | In the construction of an information system dealing with personal information, the conventional privacy impact assessment(PIA)was based on the OECD Privacy Guidelines as the evaluation criteria. The ISO/IEC 29100:2011 Privacy Framework was issued. In the privacy framework, 11 principles are specified. We compare and analyze PIA results using 8 principles of OECD privacy guidelines and 11 principles of ISO/IEC 29100 privacy framework. As a result, the evaluation using OECD Privacy Principles lacks the item on the influence on privacy considering the advancement of technology and the mechanism of utilization of personal information. Meanwhile, the eleven principles of ISO/IEC 29100 gained results that substantial items considering privacy, particularly matters concerning the utilization of personal information, are improved. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Act on the Protection of Personal Information / Privacy Impact Assessment / ISO/IEC29100 / ISO/IEC29134 / OECD Privacy guideline |
| Paper # | ISEC2017-52,SITE2017-34,LOIS2017-29 |
| Date of Issue | 2017-11-02 (ISEC, SITE, LOIS) |
| Conference Information | |
| Committee | LOIS / ISEC / SITE |
|---|---|
| Conference Date | 2017/11/9(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | Hiroyuki Nishi(Sojo Univ.) / Kazuto Ogawa(NHK) / Hitoshi Okada(NII) |
| Vice Chair | Tomohiro Yamada(NTT) / Atsushi Fujioka(Kanagawa Univ.) / Shiho Moriai(NICT) / Tetsuya Morizumi(Kanagawa Univ.) / Masaru Ogawa(Kobe Gakuin Univ.) |
| Secretary | Tomohiro Yamada(Nagasaki Univ.) / Atsushi Fujioka(NTT) / Shiho Moriai(Tohoku Univ.) / Tetsuya Morizumi(Tokai Univ.) / Masaru Ogawa(Gifu Shotoku Gakuen Univ.) |
| Assistant | Motoi Okamoto(Research Organization of Information and Systems) / Keita Emura(NICT) / Yuichi Komano(TOSHIBA) / Yuuji Suga(IIJ) / Akiyoshi Kabeya(Chiba Univ.) / Hisanori Kato(KDDI) |
| Paper Information | |
| Registration To | Technical Committee on Life Intelligence and Office Information Systems / Technical Committee on Information Security / Technical Committee on Social Implications of Technology and Information Ethics |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Application of ISO/IEC 29100:2011 to the evaluation criteria of privacy impact assessment |
| Sub Title (in English) | |
| Keyword(1) | Act on the Protection of Personal Information |
| Keyword(2) | Privacy Impact Assessment |
| Keyword(3) | ISO/IEC29100 |
| Keyword(4) | ISO/IEC29134 |
| Keyword(5) | OECD Privacy guideline |
| 1st Author's Name | Ryotaro Nakata |
| 1st Author's Affiliation | Advanced Institute of Industrial Technology(AIIT) |
| 2nd Author's Name | Sanggyu Shin |
| 2nd Author's Affiliation | Advanced Institute of Industrial Technology(AIIT) |
| 3rd Author's Name | Yoichi Seto |
| 3rd Author's Affiliation | Advanced Institute of Industrial Technology(AIIT) |
| Date | 2017-11-09 |
| Paper # | ISEC2017-52,SITE2017-34,LOIS2017-29 |
| Volume (vol) | vol.117 |
| Number (no) | ISEC-285,SITE-286,LOIS-287 |
| Page | pp.pp.19-26(ISEC), pp.19-26(SITE), pp.19-26(LOIS), |
| #Pages | 8 |
| Date of Issue | 2017-11-02 (ISEC, SITE, LOIS) |