Privacy updates V1.10.9
This section lists the regulators and features that were updated in the Privacy Solution.
We always appreciate feedback on current legislation and guidance whether it appears in our product or not. Contact your Customer Relationship Manager if you have any questions about these updates or suggestions for future updates. You can also use the IBM Community to see how your peers are using the Privacy solution to simplify the complex world of information security.
Regulator/Feature | Description |
---|---|
Philippines |
Updated the language of the Notify National Privacy Commission (Philippines) task. Particularly, added the language regarding circumstances of exempting mandatory notifications to the Commission, and added the link to the NPC's breach reporting online system, which is the only notice method that is accepted by the NPC. Updated the language of the Notify Affected Individuals (Philippines). Particularly, updated the language regarding circumstances of exempting mandatory notifications to affected individuals. |
Thailand |
Updated the Resource Library to include the PDPC's new guidelines regarding Risk Assessment and Breach Notification. Updated the language of the Assess the Risk (Thailand), Notify the Committee (Thailand), and the Notified Affected Individuals (Thailand) tasks to reflect the requirements in the new guidelines. Specifically, updated the task language regarding factors to be considered in the risk assessment, the information that is required to be included in the notice to the Committee and affected individuals, and the accepted notification methods. |
Virginia |
Updated the Resource Library to add the link to the VCDPA and a relevant provision. Updated the language of the Notify VA Consumers Individually task. Specifically, added the information that is required to be included in the notice to individuals and permitted delays. Updated the language of the Notify VA AG task. Specifically, added the information that is required to be included in the notice to AG and amended the list of data types according to the latest AG guidance. |