Thread Links Date Links
Thread Prev Thread Next Thread Index Date Prev Date Next Date Index

Re: [802SEC] Fwd: IMPORTANT AND TIME DEPENDENT -- Information Request to IEEE-SA Sponsors - Please reply by 06 October 2017



According to the "any operation performed on personal data, whether or not by automated means, including collection, use, recording, etc."  we need also report manual operations  where we require personal information be provided even though it is not recorded, e.g. badge pickup where an attendee may must use a passport or other iD with a photo.  Is meeting attendance "personal" information? I don't know, so maybe we should include that this is recorded in imat and let the task force figure out if it's "personal" or not.  Not sure if this is what they are asking for, but better be too complete than to risk being incomplete.
 
B



On 9/27/2017 5:44 AM, Clint Chaplin wrote:
I can tell right now that data is collected as part of the meeting registration process and the meeting fee payment system.  As of now, that includes Authorize.net and RegOnline services.

On Wed, Sep 27, 2017 at 3:20 AM, paul.nikolich <paul.nikolich@att.net> wrote:

-------- Original message --------
From: Dave Ringle <d.ringle@ieee.org>
Date: 9/26/17 9:44 PM (GMT-05:00)
To: std-liaison-reps <std-liaison-reps@IEEE.ORG>
Cc: Yvette Ho Sang <y.hosang@IEEE.ORG>, Markus Plessel <m.plessel@IEEE.ORG>, Matt Ceglia <m.j.ceglia@IEEE.ORG>
Subject: IMPORTANT AND TIME DEPENDENT -- Information Request to IEEE-SA Sponsors - Please reply by 06 October 2017

IEEE-SA Sponsors,

As you may be aware, the European Union (EU) adopted the General Data Protection Regulation (GDPR) on 14 April 2016, which addresses collection and use of personal data. Similar regulations are being implemented in countries outside the EU. The GDPR will go into effect on 25 May 2018 and IEEE has to meet the requirements of the regulation by that date. 

In order to determine how our volunteers collect and use personal data, we will need to know what mechanisms/systems/applications are being used to collect or download personal data, where that personal data is sent, how it is used, and what retention is in place. IEEE is asking its standards development groups to provide that information so that it can determine what system or process changes may need to be implemented to meet the GDPR requirements.

An information sheet is attached to help you understand the regulation. Your IEEE Staff Program Manager will contact you in an effort to obtain the needed information. We will need your response by
​06​ 
October 2017

Thank you for your assistance in our effort to be compliant.

Regards,



Yvette  Ho Sang, MBA, ARM
Director, IPR and Risk Mgmt
IEEE Standards Association
445 Hoes Lane
Piscataway, NJ 08854

Fostering technological innovation and excellence for the benefit of humanity.


---------- This email is sent from the 802 Executive Committee email reflector. This list is maintained by Listserv.



--
Clint Chaplin
Principal Standards Engineer
Samsung Research America
---------- This email is sent from the 802 Executive Committee email reflector. This list is maintained by Listserv.

---------- This email is sent from the 802 Executive Committee email reflector. This list is maintained by Listserv.