Limiting data collection is the most important way that an organization can protect personal privacy. If an organization does not collect personal information in the first place, it can’t abuse, lose, or otherwise mistreat that information. In this video, learn about the ways that organizations can limit the data they collect.
- [Instructor] Limiting data collection…is the most important way…that an organization can protect personal privacy.…If the organization doesn't collect…personal information in the first place,…it can't abuse, lose,…or otherwise mistreat that information.…As I discussed in the last video,…the generally accepted privacy principles…require that organizations provide individuals…with notice of the information that they collect,…the ways that they will use it,…and that they obtain the consent…of individuals for that use.…
This is just the first barrier to data collection.…Organizations should never collect information…that falls outside of the disclosures…that they've made to individuals,…even if it's easy to do so…or seems to be incidental to the approved purpose.…If you do have a legitimate need…to collect more information than you've disclosed,…you should revise your disclosures,…notifying individuals of the new information…that you're collecting, and how you will use it.…
Obtain new consent prior to collecting new information.…
To join one of Mike's free study groups for access to bonus tips and practice questions, visit certmike.com.
- The security triad: confidentiality, integrity, and availability
- Security principles
- Resource security
- Data security
- Security controls
- Assessing security controls
- Security policy
- Physical security
Skill Level Intermediate
Q: This course was updated on 05/18/2018. What changed?
A: New videos were added that cover software licensing. In addition, the following topics were updated: integrity, leveraging industry standards, data encryption, security control selection and implementation, audits and assessments, security policy framework, security policy training and procedures, and ethics.
Insights from a Cybersecurity Professionalwith Mike Chapple32m 15s Intermediate
1. The Security Triad
2. Security Principles
3. Resource Security
4. Data Security
5. Data Security Controls
6. Security Controls
Control frameworks3m 55s
7. Assessing Security Controls
8. Security Policy
9. Awareness and Training
10. Physical Security
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.