A risk management solution
Regulators, business leaders, and technologists all agree – an organization's privacy efforts cannot be solely assured by compliance with regulations; privacy must become the default mode of an operation.
Privacy by Design: a risk management solution
Privacy by Design builds on the premise that privacy should be embedded into the design, operation, and management of IT systems, networks, and business practices in order to prevent privacy vulnerabilities and the potential for irreparable financial and reputational harm.
Originally developed by Dr. Ann Cavoukian, Privacy by Design is now law under the EU's General Data Protection Regulation (GDPR) and a globally recognized ISO standard (ISO 31700, Consumer Protection: Privacy by Design for Consumer Goods and Services).
Privacy by Design is structured around 7 Foundational Principles, which exist as a baseline for robust data protection.
Compliance with Privacy by Design allows an organization to achieve a "defensible" position. A Privacy by Design Certification demonstrates an organization's proactive, risk-based approach to achieving compliance, as well as earning customers' trust while building a true due-diligence defence in the event of a privacy breach, investigation and/or complaint.
Read more in our PDF guide.
You may also be interested in learning about Canada's recent Digital Charter Implementation Act:
© 2021 KPMG LLP, an Ontario limited liability partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee. All rights reserved.
For more detail about the structure of the KPMG global organization please visit https://home.kpmg/governance.