All privacy statements must accurately express the reality of information practices.
Corporate privacy statements fulfill the principle of NOTICE by disclosing terms
of data exchanges and management. Privacy statements are an expression of the
implementation of corporate policy into the information governance practices
enterprise-wide.
Not all privacy statements are the same, even within a single enterprise. Significant
differences in the statements for Web sites, direct marketing campaigns, trade
shows, retail stores, and other activities require specific controls and review
processes to maintain consistency and compliance. Each environment has unique
information and relationship characteristics and each must promote clear and
plain communications through the statement.
The most exciting and forward-facing effort in developing and deploying privacy
statements is the Layered Notice effort sponsored by the Center for Information
Policy Leadership. For more information, visit: http://www.hunton.com
Corporate Privacy Group provides support for writing privacy statements that
are concise, clear and written in plain language. We require a review by counsel
prior to publication. In addition, we also support the development of privacy
statements expressed in a technical language called the Platform for Privacy
Preference, or P3P. These machine-readable policies interact with Internet browsers
to help computer users determine what information they share with the Web site.
For more information about the Platform for Privacy Preferences, go to http://www.w3.org/p3p.