GDPR

CCPA

California Consumer Privacy Act — a US state law enhancing privacy rights and consumer protection for California residents.

Privacy by Design

An approach to systems engineering that takes privacy into account throughout the entire engineering process.

Data Protection Impact Assessment

A process required under GDPR for assessing the risks of personal data processing activities and identifying measures to mitigate those risks before implementation.

An organisation's ability to build, assure, and review its technological integrity to ensure it can withstand all types of ICT-related disruptions and threats.

The systematic process of evaluating potential risks in an organisation's operations, projects, or investments.

An independent assessment of an AI system's compliance with regulatory requirements, ethical standards, and organisational policies, examining data, models, outputs, and governance.

The process of identifying, assessing, and controlling threats to an organisation's capital and operations.

The proper handling of personal data including collection, storage, processing, and sharing in compliance with regulations.

The practice of designing, developing, and deploying AI systems with good intention and ethical principles.

The developing body of laws and policies governing the development, deployment, and use of artificial intelligence systems.

An independent assurance function that evaluates the effectiveness of an organisation's internal controls and governance.