Safe Harbors.You can still mail into Europe Two-year-old two-year-old a horse aged between 2 and 3 years, the age dating from the horse's date of birth. In racehorses the birth date of the horse is as determined by the local racing authority as the birthday of all horses. privacy legislation in Europe is now storming the beaches of the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. and has direct marketers here looking for Looking for In the context of general equities, this describing a buy interest in which a dealer is asked to offer stock, often involving a capital commitment. Antithesis of in touch with. safe harbors Safe Harbor 1. A legal provision to reduce or eliminate liability as long as good faith is demonstrated. 2. A form of shark repellent implemented by a target company acquiring a business that is so poorly regulated that the target itself is less attractive. for getting their message across the Atlantic. The European Union European Union (EU), name given since the ratification (Nov., 1993) of the Treaty of European Union, or Maastricht Treaty, to the European Community (EU) wants organizations in the United States to take this privacy issue seriously and "let in the light" by telling individuals specifically what and why information is being gathered, said Charles A. Prescott, vice president, international business and government affairs, The Direct Marketing Association. Secondly, the organization gives the individual another ability: "the right to refuse the data collection, unless the data is required by law or to fulfill ful·fill also ful·fil tr.v. ful·filled, ful·fill·ing, ful·fills also ful·fils 1. To bring into actuality; effect: fulfilled their promises. 2. a purpose to which the individual agrees, such as a hotel registration," Prescott added. U.S. organizations must obtain consent, implicit consent in some cases, and more formally and explicitly in others, he added, with distinction being made on the personal or sensitive nature of the information. An "adequate level of protection" is not directly defined in the EU Data Protection Directive, which went into effect Oct. 25, 1998. It placed numerous controls on the collection, use, and transfer of personal information in Europe. But, it does provide it through contractual clauses, a combination of self-regulation, sectoral professional codes and other devices, Prescott said. Simply, whether or not some agreement can be made, that can meet the "adequate protection" requirement, is left to the judgment of EU officials, he said. Playing it safe "When a company becomes safe harbor compliant it files a letter with the U.S. Department of Commerce that states, 'we're subject to Safe Harbor DMA (1) (Digital Media Adapter) See digital media hub. (2) (Document Management Alliance) A specification that provides a common interface for accessing and searching document databases. guidelines guidelines, n.pl a set of standards, criteria, or specifications to be used or followed in the performance of certain tasks. ,'" said Prescott. "The Federal Trade Commission can bring action against a company for having made a misrepresentation misrepresentation In law, any false or misleading expression of fact, usually with the intent to deceive or defraud. It most commonly occurs in insurance and real-estate contracts. False advertising may also constitute misrepresentation. to the consumer/public about their (privacy policy)." Prescott continued, "Our safe harbor agreement creates a way for individual companies to qualify to be in safe harbor. The policy requires that the organization provide people, at the time of collecting the information, notification of exactly what the organization is going to do with their name/information." The next step is for each company that implements internal privacy policies to tell the public that they are in compliance with the EU Directive (European Union Directive) A set of privacy requirements that took effect in 1998 and ordered European member nations to enact compliant legislation. It deals with the establishment of Data Protection Authorities, people's rights to personal information and enforcement. . According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Prescott, direct marketers have three choices from which to choose when bringing names and information in from Europe: * Establish themselves in Europe with an agent representing the organization that secures approval from the local data protection authority; * If renting a mailing list An automated e-mail system on the Internet, which is maintained by subject matter. There are thousands of such lists that reach millions of individuals and businesses. New users generally subscribe by sending an e-mail with the word "subscribe" in it and subsequently receive all new from Europe, enter into a contract with the owner of the list on how exactly the name and information will be used; * Join safe harbor by certifying under EU that your organization will follow the regulations of the directive. Governments in Europe are now getting serious that U.S. organizations follow the same privacy standards. "They (EU) don't think we have adequate protection for individuals and their information," said Prescott. The directive is based upon principles derived from the 1984 guidelines on privacy from the Organization of Economic Co-operation and Development. The directive is based on a handful of basic principles, which also form the foundation of the Safe Harbor Principles The US Safe Harbor Arrangement is a streamlined process for US companies to comply with EU Directive 95/46/EC on the protection of personal data, developed by the US Department of Commerce in consultation with EU. . The concept of safe harbor is not well known in the United States, said Prescott. "I recommend that every company has to look at where it is and how exposed they are to this," he said. "If (the organization) only deals with one list source they (might) solve it with one strong contract." Prescott suggests organizations that deal with multi-list providers in Europe use safe harbor. Becky Richards, director of compliance and policy for San Jose San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif.-based TRUSTe, a 501(c)(6) organization that works with for-profit and nonprofits on Web site privacy certification, said by giving their seal of approval nonprofits can comply with the privacy guidelines. Richards said, TRUSTe has created a program that is part of the safe harbor where organizations receive self-certification. There are five steps to become EU safe harbor compliant, according to TRUSTe: 1. Craft a privacy policy that includes all of the safe harbor privacy practice principles; 2. Provide both online and offline customer dispute resolution with third party enforcement of the policy. "TRUSTe provides that for nonprofits seeking safe harbor compliance (with its seal of approval)," said Richards. "We provide dispute resolution." 3. Provide verification of Web site privacy practices; 4. Provide verification of offline privacy practices; 5. Self-certify compliance to the U.S. Department of Commerce. Prescott said that The DMA also provides third-party resolution through its DMA Safe Harbor Enforcement Program, which will be available free of charge to DMA member as of mid-January. "Under The DMA's Safe Harbor Enforcement Program we will refer matters to the Federal Trade Commission and state attorney general's office," he said. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion