[Global_industry_committee] UK ICO - Consultation on the Personal Information Online Code of Practice

Colin Watson colin.watson at owasp.org
Fri Dec 11 11:24:31 EST 2009


Dear UK Chapters

This week, the Information Commissioner's Office launched their
consultation process for the Personal Information Online Code of
Practice.  The OWASP Industry Committee is coordinating an official
response from OWASP and would be pleased to receive any suggestions or
comments for inclusion.

This is not a technical document, and is most likely to be read in
organisations without their own security, compliance or data
protection staff.  Some extracts from page 7 of the draft document:

   "...build in security and privacy from the very start..."
   "...if your website offers auto-completion..."
   "...review your security arrangements on a regular basis..."
   "... assess the risks of a security breach..."

Further details at:

   http://www.owasp.org/index.php/Industry:Personal_Information_Online_Code_of_Practice

If you have any comments, perhaps email them to me directly, and we
will create a draft response and circulate that.

Regards

Colin Watson
Global Industry Committee
http://www.owasp.org/index.php/Global_Industry_Committee


More information about the Global_industry_committee mailing list