Versions Compared

Version Old Version 11 New Version 12
Changes made by

Sasanka Gayan (Deactivated)

Sasanka Gayan (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

APP 2 - Anonymity and pseudonymity

Comments

(Yes/No)

2.1

Does APP organization entity providing the option of dealing anonymously or by pseudonym for the individuals?

Does APP organization entity ensure that, if applicable, individuals are made aware of their opportunity to deal anonymously or by pseudonym with the entity? (If anonymity or pseudonymity is the default setting, this does not apply)

Does APP organization entity required to collect personal data in order to deliver a service to a individual?

Does APP organization entity enable individuals to exercise greater control over their personal information and decide how much personal information will be shared or revealed to others?

2.2

Does APP organization entity ensure that no more personal information collected than is required to facilitate the dealing with an individual?

APP 3 - Collection of solicited personal information

Comments

(Yes/No)

3.1, 3.2

Does APP entity only collect personal information which is reasonably necessary for one or more of the entity’s functions or activities?

Collecting sensitive information

3.3

Does APP entity collects sensitive information? If yes, then APP entity express consent of the individual before you collect sensitive data?

Does APP entity only collect sensitive information which is reasonably necessary for one or more of the entity’s functions or activities?

Collecting information from third parties

3.6

Does APP entity collects data from third parties? If Yes, Does entity considered whether it is unreasonable or impracticable to obtain the personal data directly from the individual?

APP 4 — Dealing with unsolicited personal information

Comments

(Yes/No)

4.1

Does APP entity received any personal data that entity have not specifically requested from an individual?

4.3

If APP entity have received any personal data from an individual that entity did not request, does entity have procedures in place to either destroy or deidentify the data?

APP 5 — Notification of the collection of personal information

Comments

(Yes/No)

5.1

When APP entity collects personal information about an individual does take reasonable steps either to notify the individual of certain matters or to ensure the individual is aware of those matters

5.2

Does APP entity’s notification statement include following contents?

  • APP entity’s identity and contact details

  • The fact and circumstances of collection

  • Whether the collection is required or authorised by law

  • The purposes of collection

  • The consequences if personal information is not collected

  • The entity’s usual disclosures of personal information of the kind collected by the entity

  • Whether the entity is likely to disclose personal information to overseas recipients, and if practicable, the countries where they are located