Rick Mitchell reports:
The Organisation for Economic Co-operation and Development has released updated privacy guidelines with an increased focus on implementation and enforcement and a new risk-management approach to accountability for companies and public organizations, practitioners told Bloomberg BNA Sept. 11.
Posted on the OECD’s website Sept. 9, the updated guidelines replace the 33-year-old original guidelines.
[…]
Contrary to the draft EU regulation, the OECD’s guidelines take a more risk-based approach by limiting the notification requirement to significant security breaches, Proust said. “The idea is to avoid over-burdening data controllers and DPAs, and to guarantee the effectiveness of data breach notification rules,” he said.
Read more on Bloomberg BNA.