Back

Include the outcomes of privacy rights violation complaints received in the Statement of Compliance.


CONTROL ID
12534
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Include a description of the organization's privacy policy in the Statement of Compliance., CC ID: 12362

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • As is the case with respect to criminal law enforcement authorities, Privacy and Civil Liberties Officers exist at all intelligence agencies. The powers of these officers typically encompass the supervision of procedures to ensure that the respective department/agency is adequately considering priva… (3.2.2 (164), COMMISSION IMPLEMENTING DECISION of 10.7.2023 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate level of protection of personal data under the EU-US Data Privacy Framework)
  • Firstly, Privacy and Civil Liberties Officers exist within various departments with criminal law enforcement responsibilities. While the specific powers of these officers may vary somewhat depending on the authorising statute, they typically encompass the supervision of procedures to ensure that the… (3.1.2 (108), COMMISSION IMPLEMENTING DECISION of 10.7.2023 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate level of protection of personal data under the EU-US Data Privacy Framework)
  • the outcomes of the complaints received, notably the number and types of remedies or sanctions imposed. (III.11.d.iii.(4), EU-U.S. DATA PRIVACY FRAMEWORK PRINCIPLES)
  • Independent recourse mechanisms must publish an annual report providing aggregate statistics regarding their dispute resolution services. The annual report must include: (1) the total number of Privacy Shield-related complaints received during the reporting year; (2) the types of complaints received… (ยง III.11.d.iii., EU-U.S. Privacy Shield Framework Principles)
  • the outcomes of the complaints received, notably the number and types of remedies or sanctions imposed. (iii.11.d.iii.(4), SWISS-U.S. DATA PRIVACY FRAMEWORK PRINCIPLES)
  • the outcomes of the complaints received, notably the number and types of remedies or sanctions imposed. (III.11.d.iii.(4), UK EXTENSION TO THE EU-U.S. DATA PRIVACY FRAMEWORK PRINCIPLES)