About the Privacy SIG
- Peter Murray
- James Fuller
- Julian Ladisch
- Adam Chandler
FOLIO Project Seeks Experts for Privacy Special Interest Group
The FOLIO Project seeks subject matter experts with experience in privacy practices. Information Privacy Officers or Information Security Officers are particularly good candidates. If your library or organization has someone that can lend their expertise to the project, please contact Schwill, Carsten or Adam Chandler.
Charter
Approved 2021-12-09 by Product Council, Reviewed 2021-12-22 by Technical Council
The distributed nature of FOLIO requires special care in the processing, storage, logging, and inter-module sharing of personally identifiable information (PII). Therefore the project will convene a Privacy Special Interest Group (PRIV-SIG), who's members are charged to guide the FOLIO project, software developers, and operators on architecture, functional requirements, and configuration options that provide a best effort for protecting and limiting access to PII.
The Product, Technical, and Community Councils commit to supporting the Privacy SIG in their efforts to make the FOLIO platform a safe, trusted and certifiable (see endnote) product.
Description
The Privacy SIG guides the privacy-related aspects of FOLIO by performing the following activities:
- Serve as subject matter experts in other FOLIO SIGs including making presentations and answering questions about privacy needs.
- Serve as subject matter experts for organizations conducting privacy assessments as they evaluate and/or implement FOLIO.
- Initiate and/or review standards, documentation, and architecture (processes, user interface design, data storage, Okapi platform design, and inter-module data sharing).
Membership
One or more than one person may fill each of these roles, and a person may fill more than one role.
- SIG members should be generally aware, and seek to deepen their knowledge, of professional practices and regional requirements including but not limited to:
- American Library Association (ALA) Privacy Toolkit
- National Information Standards Organization (NISO) Consensus Principles on Users’ Digital Privacy in Library, Publisher, and Software-Provider Systems
- International Federation of Library Associations (IFLA) Statement on Privacy in the Library Environment
- Regional requirements
- European Union data protection regulations and directive including (GDPR)
- California Consumer Privacy Act (CCPA)
- A SIG member will serve as the convener of the SIG (see definition in the Product Council SIG documentation)
- A SIG member will report progress to the Product Council.
Endnote: Organizations that are subject to GDPR audits may be required to locally certify that the product is compliant, we want to meet those standards and make the certification process as easy as possible.
SIG Type: Topical Group (discussion group to take up a subject of interest)