Privacy is the right of an individual to protection from unauthorized disclosure of the individual's personally identifiable information (PII). This protection is particularly important for Web commerce transactions.

Examples of a person's individual identifiers are:

  • Names
  • Postal address information, other than town or city, state, and zip code
  • Telephone numbers
  • Fax numbers
  • Electronic mail addresses
  • Social security numbers
  • Medical record numbers
  • Health plan beneficiary numbers
  • Account numbers
  • Certificate/license numbers
  • Vehicle identifiers and serial numbers, including license plate numbers
  • Device identifiers and serial numbers
  • Web Universal Resource Locators (URLs)
  • Internet Protocol (IP) address numbers
  • Biometric identifiers, including finger- and voiceprints
  • Full face photographic images and any comparable images

An individual's right to privacy is embodied in the following fundamental principles of privacy:

  • Notice: Regarding collection, use and disclosure of PII
  • Choice: To opt out or opt in regarding disclosure of PII to third parties
  • Access: By consumers to their PII to permit review and correction of information
  • Security: To protect PII from unauthorized disclosure
  • Enforcement: Of applicable privacy policies and regulations

Privacy Policy

Organizations develop and publish privacy policies that describe their approach to handling PII. Websites of organizations usually have their privacy policies available to read online and these policies usually cover the following ...

Get Web Commerce Security Design and Development now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.