13:03 B152 a service that helps you to protect personal data | |
The issue of protection of personal data worries me is not the first year. Yes, and it is clear that not only me, the whole Internet in the last year and only talked about this subject - «SAAS and personal data", "Hosting providers and personal data, etc. Wherever you look, everywhere everyone is wondering how, why and why. And finally, in October last year the idea of ??service B-152, who would help operators of personal data is easier to cope with the requirements of 152 of the law "On personal data" and not spend a huge amount of money to attract builders. Problems152 law "On personal data" requires operators of personal data to protect the personal information of its customers / users / employees / contractors. A couple of definitions from the Act: Personal Information - any information relating to a specific or identified on the basis of such information to an individual (the subject of personal data), including his surname, first name, year, month, date and place of birth, address, family, social, property status, education, profession, income, other information. <<Operator>> - a government body, municipal body, person or entity that organizes and (or) engaged in the processing of personal data, as well as defining the purpose and content of the processing of personal data. The processing of personal data - actions (operations) with personal data, including data collection, systematization, accumulation, storage, refinement (update, change), use, distribution (including transmission), depersonalization, blocking, destruction of personal data. Of these three definitions immediately clear that operators of personal data is practically the entire business and all site owners. Personal data can be protected by inviting integrator of information security. Average ticket integrator for the protection of personal data is usually more than a million rubles, while their core audiences are large holdings, industrial giants and banks. These companies can afford such contracts for compliance with applicable laws on protection of personal data. To protect themselves, should be studied in at-least the basic regulations prescribed themes, and draw up the necessary documentation. If the first you can somehow figure out something with the second having difficulty - to find document templates, and properly fill out a fairly complex process. Therefore, for small and medium-sized businesses, many sites began selling sets of the necessary documents for the 5-30 TR Yes, they provide advice on filling some of the documents, but that's it and was limited. The operator at the hands of a set of obscure patterns and a pair of instructions for completing some of them - what to do next he did not know. In a word with the operators tried to just pump out money for something they do not know. Our service will strive to ensure that the operator understood why it is necessary and possible to help meet the requirements of the law in the sphere of personal data. The target audience for our site is just small and medium businesses, that it aimed spear regulators. The project The service allows the operator to make their own personal documentation necessary for the protection of personal data. It's really that simple!Operator should fill in questionnaires and to answer questions, the rest of the system itself will do. To correctly answer questions and enter the required information to the user will be assisted by prompts and correctly formulated questions. One of the main goals when developing the service was to create an intuitive model of questioning, because information security is full of incomprehensible to many definitions and formulations. We know how to translate them to human language. Fill in all that is needed the operator receives the output current is set for his instruments for the protection of personal data. At the moment we are developing three packages of documents for each of the tariffs - a free, basic and full. In the free tariff user will be able to make three of the most popular instrument, one of which is the notification of processing of personal data that you want to send to Roskomnadzor. At the moment we provide the most convenient and easiest way to fill the paper, so can not boast of any ReignVox, neither site Roskomnadzora. The base rate will be offered the basic documents for the protection of personal data. They will be enough to pass the test Roskomnadzora and on its basis to make further documents. The full tariff operator will receive a full set of documents, with whom he can pass the test of any of the regulators and the protection of personal data. Here you will find not only the organizational and governing documents, but others, such as chaste. threat model and the technical design of the system of protection of personal data. At this rate the service can not only make the documentation, but also help to choose the necessary technical means of information protection. Room rates will be within reasonable human limits, such that any small and medium-sized businesses can afford to create the necessary documents. We have specifically made it so affordable that everyone can afford it. Launch Project At the moment the site is blind, in which anyone can leave your e-mail, be the first to learn about the run and the first to get access to the service.Starting as we plan next week, so there are very long. Vkusnuypirogek And yet, to have as a starting point to help operators, we decided to post here an example of a general point about the personal data that each site owner can insert into the user agreement.1.1. Information about the users located at its profile, contain (may contain) his personal data. In addition, these users' personal data are anonymised and the public, and any user of the site can read them. 1.2. Posted at your personal data, User acknowledges that doing so voluntarily, and that he voluntarily exposes them to the Contractor for processing. If the Customer does not agree with the above provisions, it does not need to register on the Site, or must ask the administrator has deleted his profile. 1.3. Administration handles only those personal data, which were posted on the Site. Users' personal data are processed using software and hardware and equipment Site. 1.4. The purpose of processing personal data of the user is compiling a database users of the Site for the operation of the Site. 1.5. Processing Administration users' personal data is carried to the functioning of the Site. In this case, shall not be liable for the use of personal information by others. 1.6. User agrees not to post on the site number and a series of passport of the Russian Federation, the number of your taxpayer identification number, address of the exact place of residence and other information to identify the user as the subject of personal data. If a user posted about his contradicting the item information, it will be immediately removed by the administrator. 1.7. User agrees not to post on the Website the personal data of others, and do not use personal data about other users or customers in any manner that is inconsistent with the requirements of Russian legislation. 1.8 user's personal data processed by the Administration to complete the closure of the Site, after which the personal data will be destroyed. Watch for developments! | |
|
| |
| Total comments: 0 | |