Public Policy

Jan 05 2016

WPF Files Comments on Federal Proposal for Human Subject Research (Common Rule)

The Nuremberg Code, an extraordinary document around ethics and research on human subjects written after the research abuses that took place during World War II, is akin to a global Emancipation Proclamation for human research subjects. The Nuremberg Code’s 10 principles remain a timeless rendering of thought on what should be in place prior to any entity conducting research on human subjects, and this code forms the philosophical foundation of a regulation in the US known as the Common Rule. We have written extensive comments on the US proposal that will update the Common Rule…

Nov 17 2015

WPF files comments on federal information handling to the Office of Management and Budget

The World Privacy Forum filed comments today on the Office of Management and Budget’s proposed revision to a document that advises Federal agencies on how to handle the information they store. The document, OMB Circular A-130, Managing Information as a Strategic Resource, establishes policies for the management of federal information resources, including information the US holds

Apr 21 2014

Public Comments: WPF files comments urging the SEC to protect asset-level data privacy of consumers

The World Privacy Forum submitted comments to the Securities and Exchange Commission today requesting that the SEC do more to protect the privacy of consumers’ asset information. Asset information — the financial information attached to mortgages, car loans, and other consumer borrowing activities– is very attractive to the consumer data industry. We would be happier with the current SEC proposal if it were practical to keep all sensitive asset-level data under the direct control of the Commission or, perhaps, the Consumer Finance Protection Bureau. Direct involvement by a federal agency, while no guarantee of a better outcome for data subjects, would provide better and clearer accountability for maintenance of the data as well as the possibility of meaningful enforcement.

Sep 09 2013

WPF Resource Page: Selected Agency and Public Comments

This resource page is a curated list of WPF public comments to agencies, as well as other public comments focused on privacy.

Apr 29 2013

Pam Dixon writes about India’s National ID Card in May/June issue of Foreign Policy Magazine

India’s national biometric ID card — In the May/June, 2013 issue of Foreign Policy Magazine, Pam Dixon writes about the privacy issues related to India’s national biometric ID card. In the piece, Mission Creep, Dixon discusses how government-issued biometric ID cards that serve as national ID cards and as the basis for employment and financial transactions create profound civil liberties and privacy challenges that are neither easily or well-constrained by government policy.

National IDs Around the World — Interactive map

About this Data Visualization: This interactive map displays the presence...
Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

This comprehensive report and proposed bill text is focused on the Privacy Act of 1974, an important and early Federal privacy law that applies to the government sector and some contractors. The Privacy Act was written for the 1970s information era -- an era that was characterized by the use of mainframe computers and filing cabinets. Today's digital information era looks much different than the '70s: smart phones are smarter than the old mainframes, and documents are now routinely digitized and stored and perhaps even analyzed in the cloud, among many other changes. The report focuses on why the Privacy Act needs an update that will bring it into this century, and how that could look and work. This work was written by Robert Gellman, and informed by a two-year multi-stakeholder process.
COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

The COVID-19 pandemic strained the U.S. health ecosystem in numerous ways, including putting pressure on the HIPAA privacy and security rules. The Department of Health and Human Services adjusted the privacy and security rules for the pandemic through the use of statutory and administrative HIPAA waivers. While some of the adjustments are appropriate for the emergency circumstances, there are also some meaningful and potentially unwelcome privacy and security consequences. At an appropriate time, the use of HIPAA waivers as a response to health care emergencies needs a thorough review. This report sets out the facts, identifies the issues, and proposes a roadmap for change.