Solve the Privacy Puzzle
• [Your Company] is committed to meeting customer expectations regarding the collection, control, use, transfer, storage and disclosure of personally identifiable information.
• At [Your Company], privacy means giving customers control over the collection, use and distribution of their personal information in order to build and maintain trust and loyalty.
Each of these works as a high-level statement that can be issued both publicly and internally. When issued publicly, for example in the Web site privacy statement, it constitutes, or forms part of, the pre-amble. When issued internally, it prefaces more detailed statements about the privacy responsibilities of managers and employees.
From Policies Down to Procedures
“AT&T has a long-standing tradition of recognizing and protecting the privacy of customers who use its telecommunications networks. The company maintains strict customer information privacy policies and uses state of the art technologies to safeguard customer information and communications from unauthorized intrusions.”
This works for all aspects of the company’s operations, as both an internal and an external statement. Now look at the natural extrapolation to address online services:
“AT&T recognizes that the growth of online services, including Internet services, has created additional privacy concerns, particularly for consumers. Online privacy concerns focus primarily on the protection of “customer identifiable” information which an individual or other customer reasonably expects to be kept private.”