Trusted Information Management: Data Privacy & Security Accountability in Outsourcing

This paper recognizes a growing global belief that, to promote competitiveness and innovation, businesses and service providers must address issues related to trust and accountability for information privacy and security in connection with outsourcing transactions. NASSCOM has been working on similar objectives in its exploration of how to develop a credible selfregulatory organization in India to promote trusted information management and data security by its member companies.

CIPL and USIBC see an opportunity for the DSCI to be a leader in raising awareness of the importance of information privacy and security in outsourcing. With this paper, CIPL and USIBC seek to assist NASSCOM in focusing the design and mission of the DSCI to advance privacy and information security accountability through guidance on:

• Concepts of privacy accountability in outsourcing;
• Integration of applicable portions and concepts of existing international principles, such as the APEC Privacy Framework Principles, as reference models for fulfilling the obligations that flow with personal data across borders;
• Establishing DSCI roles, including tailoring the role as a trust agent to the particular needs of its member companies; and
• Establishing targets and proposed timetables for achievement of the DSCI’s goals — central among them, the education and development of India’s own information privacy and
  security management sector.

Download Now