当前位置:首页 > 报告详情

技术隐私审查流程实战演练.pdf

上传人: 明**** 编号:617689 2025-03-13 11页 954.73KB

1、Demystifying the Technical Privacy Review Process:A Simulated ExperienceI.Session Outline II.Welcome and Introductions(10 Mins)III.Differences between DPIA and Technical Privacy Review(5 Mins)IV.Mock Technical Privacy Review (30 Mins)V.Q&A(15 Mins)AGENDA OUTLINEJay Averitt,Microsoft,Senior Privacy P

2、roduct ManagerRoche Saje,Meta,Privacy Engineering ManagerNandita Rao Narla,DoorDash,Head of Technical Privacy and GovernanceEngin Bozdag,Uber,Senior Staff Privacy ArchitectWELCOME AND INTRODUCTIONSLegal vs.Technical Privacy Review Legal Privacy Review(PIA/DPIA)Technical Privacy ReviewObjectiveDemons

3、trate regulatory compliance Surface privacy defects ScopeTypically at the process/function levelTypically smaller scope,at the feature/app/system levelOwnershipLegal team and/or privacy program managers Technical privacy team and/or cybersecurity teamEngagement PhasePre-release or after release Befo

4、re dev work and after product specs definitionInput ArtifactsPrimarily interview driven,takes into account any available process narratives Technical design artifacts-PRD,ERD,Architecture designs,system design analysisOutputPIA/DPIA documentationTechnical recommendations to address design gapsILP(I

5、Love Privacy)Fitness App ReviewThe ILP Fitness App is an all-in-one fitness solution that harnesses the power of AI to create custom workouts to match your intended fitness goals.ILP will collect information about the user in order to use a third party LLM(Large Language Model)to generate a custom f

6、itness plan,give feedback about the progress,recommend new routines,etc.ILP(I Love Privacy)Fitness App ReviewWhat are the privacy risks?Which questions should we ask engineers?Which controls should we implement?System DesignScope of technical reviewQ&ARESOURCE

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文主要介绍了一次关于技术隐私审查流程的模拟体验活动。活动分为五个部分:会议概要、欢迎与介绍、DPIA与技术隐私审查的区别、模拟技术隐私审查和问答环节。在欢迎与介绍环节,由来自微软、Meta、DoorDash和Uber的资深隐私专家进行了自我介绍。在DPIA与技术隐私审查的区别环节,对比了法律隐私审查和技术隐私审查在审查范围、所有权和参与阶段等方面的不同。在模拟技术隐私审查环节,通过一个名为ILP的健身应用程序的案例,讨论了隐私风险、应询问工程师的问题以及应实施的控制措施。最后,在问答环节,参会者就技术审查的范围和资源进行了讨论。
"如何进行技术隐私审查?" "模拟技术隐私审查体验如何?" "如何评估和控制ILP健身APP的隐私风险?"
客服
商务合作
小程序
服务号
折叠