January 11, 2023
It’s been four years in the making! We started the IOPD in January 2021 (after sitting around and ruminating on it since 2019) and while it took a few months to get the ball rolling once the Institute officially formed, the Standards Committee spent a little over a year through 2021 and 2022 drafting, discussing, editing, reediting, soliciting and responding to public comments, and we eventually created the 1st iteration of what we hope will become a gold standard in Privacy by Design.
We’d like to thank members of Standards Committee: Denise Schoeneich, Stuart Shapiro, Kim Wuyts, Keith Harmon, and Tarana Damania for all of their hard work.
We’d also like to thank Board member Janelle Hsia who served as an unofficial committee member, as well as Kelea Ilac, our tireless administrator.
We are currently on the hunt for organizations that would like to adhere to the standard and apply as an early adopter for certification. If you’re interested or know a company who would be interested, please contact us.
This is only the first of two planned standards:.
This standard covers the design process by which an organization designs it products, services or even other business process. The goal of this standard is to ensure privacy is a forethought in the design. The second standard, which we’ll be working on this year, will cover the end result – the product, service or business process – ensuring that it does, in fact, reduce privacy risks to an acceptable level. In theory, any product, service or business process designed and developed using the design standard, should result in meeting the subsequent standard, though the latter will have more rigorous risk tolerances included. On that note, we expect the upcoming standard to be a little hard to develop in achieving consensus on what the tolerance should be.