-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathregulations.html
178 lines (168 loc) · 10.5 KB
/
regulations.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
<!DOCTYPE html>
<html lang="en">
<head>
<title>Regulations</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="stylesheet" href="https://www.w3schools.com/w3css/4/w3.css">
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Lato">
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Montserrat">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
<link rel="stylesheet" href="accordion.css">
<style>
body,h1,h2,h3,h4,h5,h6 {font-family: "Lato", sans-serif}
.w3-bar,h1,button {font-family: "Montserrat", sans-serif}
</style>
</head>
<body>
<!-- Navbar -->
<div class="w3-top">
<div class="w3-bar w3-black w3-card w3-left-align w3-large">
<a class="w3-bar-item w3-button w3-hide-medium w3-hide-large w3-right w3-padding-large w3-hover-white w3-large w3-red" href="javascript:void(0);" onclick="myFunction()" title="Toggle Navigation Menu"><i class="fa fa-bars"></i></a>
<a href="index.html" class="w3-bar-item w3-button w3-hide-small w3-padding-large w3-hover-white">Home</a>
<a href="regulations.html" class="w3-bar-item w3-button w3-padding-large w3-white">Regulations</a>
<a href="privacy.html" class="w3-bar-item w3-button w3-hide-small w3-padding-large w3-hover-white">Privacy Policy</a>
<a href="paper.html" class="w3-bar-item w3-button w3-hide-small w3-padding-large w3-hover-white">Paper</a>
</div>
<!-- Navbar on small screens -->
<div id="navDemo" class="w3-bar-block w3-white w3-hide w3-hide-large w3-hide-medium w3-large">
<a href="index.html" class="w3-bar-item w3-button w3-padding-large">Home</a>
<a href="privacy.html" class="w3-bar-item w3-button w3-padding-large">Privacy</a>
<a href="paper.html" class="w3-bar-item w3-button w3-padding-large">Paper</a>
</div>
</div>
<!-- Header -->
<header class="w3-container w3-deep-purple w3-center" style="padding:128px 16px">
<h1 class="w3-margin w3-jumbo">Regulations</h1>
<p class="w3-xlarge">Beneath are some of the main regulations that provide clauses for data collection and consumer privacy.</p>
</header>
<button class="accordion">GDPR</button>
<div class="panel">
<p1> The GDPR (General Data Protection Regulation) is a regulation that was created in the European Union and applies to any company that does business in the European Union. </p1>
<p1>Company Regulations</p1>
<ul>
<li>Create and maintain a privacy policy to inform consumers about how companies handle data</li>
<li>Be transparent regarding the communication of the rights of consumers</li>
<li>Companies must provide information about where personal data is collected, and what personal data is explicitly not collected</li>
<li>Show that the consumer has consented to the processing of their data, and make said consumer aware they can withdraw this consent</li>
<li>Communicate the rectification, erasure, or restriction of processing on data</li>
</ul>
<p1>Consumer Rights</p1>
<ul>
<li>Right to obtain the data the company has concerning them</li>
<li>Right to complete incomplete data</li>
<li>Right to restrict processing of data</li>
<li>Right to object to the processing of personal data</li>
</ul>
<p><a href="https://gdpr-info.eu/">Click here to go to the GDPR</a></p>
</div>
<button class="accordion">HIPAA</button>
<div class="panel">
<p1>HIPAA (The Health Insurance Portability and Accountability Act) is a federal regulation that was signed into effect on August 21, 1996, and applies to specifically electronic patient health information.</p1>
<p1>Company Regulations</p1>
<ul>
<li>Must only share patient health info on a "need-to-know" basis and have procedures in place to limit access to patient health information</li>
<li>Must explicitly state that health information cannot be used or shared without the consumer's written permission unless HIPAA allows it</li>
<li>People are not allowed to look at patient health information unless it is to help with treatment, help with payment, help family members or relatives who are involved in the care, make sure doctors give the best care they can, protect the public health, or make police reports</li>
</ul>
<p1>Consumer Rights</p1>
<ul>
<li>Right to see your health records</li>
<li>Right to have corrections made to your data</li>
<li>Right to receive notice about how your health information is being used or shared</li>
<li>Right to get reports on when and why the health information was shared</li>
<li>Right to give permission before any health information about you can be shared or used for certain purposes</li>
</ul>
<p><a href="https://www.hhs.gov/hipaa/index.html">Click here to go to HIPAA Home</a></p>
</div>
<button class="accordion">COPPA</button>
<div class="panel">
<p1>COPPA, or the Children's Online Privacy Protection Act, was enacted on October 21, 1988. This act is a federal law that imposes requirements on websites that collect data on children.</p1>
<p1>Company Regulations</p1>
<ul>
<li>It is unlawful to collect and maintain personal information about children</li>
<li>Company must provide notice about what data it collects from children, how it uses the information, how it discloses the information to other parties, and if there are any changes made to the policy for collection, use, or disclosure</li>
<li>The company must obtain parental consent prior to collection, use, or disclosure of personal information from a child</li>
<li>Companies must ensure that there is a means for parents to view the personal information collected and refuse to permit the future use of data</li>
<li>Companies must delete children's personal information after it is no longer necessary to keep, and ensure the confidentiality, security, and integrity of the data collected from children is protected</li>
</ul>
<p1>Consumer Rights</p1>
<ul>
<li>Parents of children have the right to review information provided by their children</li>
<li>Parents can permit the use or future collection of information on their child</li>
<li>Parents can direct data controllers to erase the personal information collected from the child</li>
</ul>
<p><a href="https://www.ftc.gov/legal-library/browse/rules/childrens-online-privacy-protection-rule-coppa">Click here to go to COPPA</a></p>
</div>
<button class="accordion">GLBA</button>
<div class="panel">
<p1>GLBA (The Gramm-leach Bliley Act) was enacted on November 12, 1999 and was an act that reformed the financial services industry by addressing the privacy of consumer personal financial information.</p1>
<p1>Company Regulations</p1>
<ul>
<li>Financial institutions are required to give notice of their privacy policies to their customers annually, before disclosing any financial information to third parties, and must allow the consumers to opt-out from disclosure to the third parties.</li>
<li>Account numbers are not allowed to be shared for marketing purposes</li>
<li>Companies may only obtain financial information legally and are prohibited from obtaining information by false pretenses</li>
</ul>
<p><a href="https://www.ftc.gov/legal-library/browse/statutes/gramm-leach-bliley-act">Click here to go to GLBA</a></p>
</div>
<button class="accordion">CCPA</button>
<div class="panel">
<p1>The CCPA (California Consumer Privacy Act) is a California state statute that was created to improve the privacy rights and consumer protection for residents of California and was enacted on June 28, 2018.</p1>
<p1>Regulations</p1>
<ul>
<li>Right to know what personal information is collected, how it is used, and how it is sold</li>
<li>Right to delete personal information held by businesses and providers</li>
<li>Right to opt out of the sale of their personal information</li>
<li>Right to withdraw consent at any time</li>
<li>People under the age of 16 can only opt in with consent, and children under the age of 13 must have parental permission to opt in</li>
<li>Right to non-discrimination if a customer exercises a privacy right</li>
<li>Businesses are required to provide a "do not sell my info" link and must respond to these requests without delay</li>
</ul>
<p><a href="https://oag.ca.gov/privacy/ccpa">Click here to go to CCPA</a></p>
</div>
<button class="accordion">CPRA</button>
<div class="panel">
<p1>the CPRA (California Privacy Rights Act) which was enacted on November 3, 2020, builds off of the CPPA.</p1>
<p1>How It Builds Off Of CPPA</p1>
<ul>
<li>Right to deletion now includes notifying third parties that have the shared information and instructing them to comply with the deletion request as well</li>
<li>Right to correction of information</li>
<li>Right to limit the sensitive personal information collected</li>
<li>Right to access their information</li>
<li>Right to opt out</li>
<li>Right to data portability</li>
<li>Consumers can request personal information, collection sources, collection purposes, what third parties have access to their personal information, and information that has been corrected</li>
<li>Businesses must inform consumers about how they collect and use personal information and how they can exercise their rights</li>
<li>Businesses must only collect relevant personal information for legitimate disclosed purposes</li>
<li>Businesses must take precautions to protect consumer's personal information from security breaches</li>
</ul>
<p><a href="https://thecpra.org/">Click here to go to CPRA</a></p>
</div>
<script>
var acc = document.getElementsByClassName("accordion");
var i;
for (i = 0; i < acc.length; i++) {
acc[i].addEventListener("click", function() {
this.classList.toggle("active");
var panel = this.nextElementSibling;
if (panel.style.display === "block") {
panel.style.display = "none";
} else {
panel.style.display = "block";
}
});
}
</script>
<script>
// Used to toggle the menu on small screens when clicking on the menu button
function myFunction() {
var x = document.getElementById("navDemo");
if (x.className.indexOf("w3-show") == -1) {
x.className += " w3-show";
} else {
x.className = x.className.replace(" w3-show", "");
}
}
</script>
</body>
</html>