There is no one-size-fits-all solution when it comes to reducing data-privacy risks.
Protection policies may depend on numerous considerations, such as different categories of data, varying legislation, or purpose of data processing.
However, there are frameworks that may be used as tools to help you structure discussions about privacy requirements in your organization.
A great example of such rules comes in the form of principles developed by the Organization for Economic Cooperation and Development (OECD).
A Practical Guide to Acquiring Consent in the Age of GDPR
Read our exhaustive guide on collecting, managing, and storing user consents, plus learn the ways GDPR Consent Manager can help you remain privacy compliantDownload FREE Guide
Guidelines on the Protection of Privacy and Transborder Flows of Personal Data by the OECD became an internationally accepted set of rules for processing personal information.
Reflected in existing and emerging data-protection laws, they can serve as an excellent basis for any analytics endeavor aiming to reduce data-privacy risks. It is also a sound direction for governance of personal data collected and processed by organizations over the course of their business.
The privacy principles defined by the OECD consist of the following:
OECD guidelines vs GDPR
The OECD principles are closely tied with the European Union legislation and cultural expectations.
That’s why it comes as no surprise that GDPR’s spirit and much of its detail reflect the OECD privacy framework. All that makes these outlined principles are a great core for your web-analytics privacy practices.
However, keep in mind that the provisions of GDPR are much broader and simply following the good practices introduced by OECD won’t be enough to comply with them.
We write about it in numerous blog post on our website – if you want to learn more about the topic, be sure to visit GDPR section on our blog.