Sun. Jan 29th, 2023

Lei Geral de Proteção de Dados (LGPD) Brazilian Federal Law 13,709/18 Lei Geral de Proteção de Dados (LGPD) Federal Law 13,709/18 was adopted in August 2018 with the aim of promoting and protecting privacy and regulating the processing of personal data by Brazilian companies. The legislation applies to all companies that provide services in Brazil or operate within the framework of data processing. For more information, see www.lgpdbrasil.com.br/o-que-muda-com-a-lei/ For more information, see www.agid.gov.it/en/infrastructures/pa-cloud Protection of Personal Information Act (POPIA) The Protection of Personal Information Act (POPIA) is a South African law that “promotes the protection of personal data processed by public and private entities”. POPIA establishes general conditions for public and private entities to lawfully process the personal data of South African data subjects. For more information, see www.justice.gov.za/legislation/acts/2013-004.pdf We may also use the names of the Company`s CEOs to provide certain Services to Oracle customers, which may include publicly available information about the names of the Company`s CEOs. If you subscribe to our magazines (e.g. “Oracle” or “Profit”), we process information about you to manage your subscription to our magazines (including the renewal process). National Cyber Security Strategy and Occurrence Preparedness Centre The National Cyber Security Incident Preparedness and Strategy Centre (NISC) was established in 2015. The governing body is responsible for overseeing government-related organizations that handle large amounts of personal data inside and outside the cloud industry. It is intended to design a wide range of security policies for government agencies that promote efficient and effective cybersecurity measures and regulatory compliance. For more information, see www.nisc.go.jp/eng/ Defense Federal Acquisition Regulation Supplement (DFARS) Parts 7010 and 7012 The Defense Federal Acquisition Regulation Supplement (DFARS) covers Department of Defense (DoD) requirements that contractors and vendors must follow when providing cloud computing services when performing a covered contract.

For more information, see www.acquisition.gov/dfars/part-252-solicitation-provisions-and-contract-clauses#DFARS-252.239-7010 Federal Information Processing Standard Publication 140-2 (FIPS 140-2) is a U.S. government security standard published by the National Institute of Standards and Technology (NIST) that specifies the security requirements associated with the design and implementation of cryptographic modules to protect sensitive data. For more information, see csrc.nist.gov/publications/detail/fips/140/2/final For more information, see dl.dod.cyber.mil/wp-content/uploads/cloud/zip/U_Cloud_Computing_SRG_V1R4.zip North American Electric Reliability Corporation Critical Infrastructure Protection The North American Electric Reliability Corporation (NERC) is an international not-for-profit regulator whose mission is to effectively and efficiently reduce Risks to the reliability and safety of the bulk power grid. NERC develops and enforces reliability standards and is regulated by the U.S. Federal Energy Regulatory Commission (FERC) and government agencies in Canada. The NERC Critical Infrastructure Protection (CIP) cybersecurity standards mandate a set of security programs for the energy industry in the United States and Canada. For more information, see www.nerc.com/pa/Stand/Pages/CIPStandards.aspx General Law on the Protection of Personal Data Held by Obliged Entities Mexico`s General Law on the Protection of Personal Data Held by Obliged Entities (LGPDPPSO) applies to the processing of data by “obliged entities”, i.e. government entities at the Mexican federal, state and municipal levels, including authorities, agencies or bodies of executive power. Legislative or judicial bodies, as well as autonomous bodies, political parties, trusts and public funds. The stated purpose of the LGPDPPSO is to establish principles to guarantee the right to the protection of personal data, including the right of access, rectification, erasure and opposition to data processing. More information can be found www.diputados.gob.mx/LeyesBiblio/pdf/LGPDPPSO.pdf The International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) have drafted ISO/IEC 27701. It aims to provide guidelines for the implementation and continuous improvement of a Privacy Information Management System (PIMS) that processes Personal Data (PII).

This standard is an extension of ISO/IEC 27001 and ISO/IEC 27002 for data protection management. For more information, see www.iso.org/standard/71670.html General Data Protection Regulation The General Data Protection Regulation 2016/679 (GDPR) is a regulation of the data protection and privacy law of the European Union (EU). It applies to all companies that process data on EU citizens, regardless of where and/or where the data is stored. For more information, see ec.europa.eu/info/law/law-topic/data-protection_en When you place an order for our products and services, or when you provide services to Oracle, our employees, customers, or partners as a vendor or business partner, Oracle processes information about you in order to complete and manage relevant transactions (for example, by sending invoices and deliverables), administer your order, and make it easier for you to get started and adopt our products and services (for example, by contacting you to activate your cloud service credits).

By admin

0
    0
    Your Cart
    Your cart is emptyReturn to Shop