[Owasp-scotland] UK ICO - Consultation on the Personal Information Online Code of Practice
colin.watson at owasp.org
Mon Feb 22 07:54:53 EST 2010
Dear UK Chapters
Thank you to everyone who responded and helped with this. We have now
drafted a response to the ICO, available at:
If anyone has any final comments or corrections, please let me know.
We hope to submit to the ICO this week (5 March deadline).
OWASP Global Industry Committee
On 11 December 2009 16:24, Colin Watson <colin.watson at owasp.org> wrote:
> Dear UK Chapters
> This week, the Information Commissioner's Office launched their
> consultation process for the Personal Information Online Code of
> Practice. The OWASP Industry Committee is coordinating an official
> response from OWASP and would be pleased to receive any suggestions or
> comments for inclusion.
> This is not a technical document, and is most likely to be read in
> organisations without their own security, compliance or data
> protection staff. Some extracts from page 7 of the draft document:
> "...build in security and privacy from the very start..."
> "...if your website offers auto-completion..."
> "...review your security arrangements on a regular basis..."
> "... assess the risks of a security breach..."
> Further details at:
> If you have any comments, perhaps email them to me directly, and we
> will create a draft response and circulate that.
> Colin Watson
> Global Industry Committee
More information about the Owasp-scotland