Jump to content WorldWide-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
HP.com Home

Safe Harbor

» 

Large Enterprise Business
» Products
» Business & IT Services
» Solutions
» Technologies
» Partners
» Support & Drivers
» Business Technology
» Media & Library
» Support & Troubleshooting
» Software & Drivers
Content starts here

   

The following briefly describes a law, regulation or best practice and highlights aspects that apply to application security. This page also describes how HP Application Security Center software can help you comply. Given the changing nature of laws, rules and regulations, please check the latest information from the sponsoring organization.

Get started

»  Contact HP

Legislative summary
The European Commission’s Directive on Data Protection prohibits the transfer of personal data from European organizations to non-European Union nations and organizations that do not adequately protect the safety and privacy of personal data. Upon passage of this comprehensive European legislation, all businesses and organizations in the United States that share data with European Union organizations were bound to comply with the regulations, which may have disrupted many types of trans-Atlantic business transactions. Due to the differences in approaches taken by the United States and European Union nations in protecting personal data privacy, the United States Department of Commerce, in consultation with the European Commission, developed a streamlined “ Safe Harbor” framework through which U.S. organizations may comply with the Directive on Data Protection.

Organizations participating in the Safe Harbor are committed to complying with these seven principles designed to ensure that personal data is properly used, controlled and protected: Notice, Choice, Onward Transfer, Access, Security, Data Integrity and Enforcement. Of particular significance to information technology:

  • The Notice principle requires organizations to inform individuals about the purposes for which it collects information, such as through a privacy policy.
  • The Security principle states that organizations will take reasonable precautions to protect personal data.
  • The Enforcement principle mandates that organizations have procedures in place for verifying that security commitments are satisfied, such as through comprehensive security testing.

HP Application Security Center capabilities

  • Assess your web applications for vulnerabilities that may result in the disclosure of sensitive or private information
  • Verify that links to privacy policies exist at appropriate places in your web applications
  • Get detailed security assessment reports categorized by Safe Harbor sections

Learn more

»  BTO software
»  HP Application Security Center
»  HP Application Security resources
PLEASE NOTE: This information is provided for informational purposes only. You should not rely on, take or fail to take any action based upon the enclosed information. The information on this Site is provided with the understanding that the authors and publishers are not herein engaged in rendering legal, accounting, tax, or other professional advice and services. As such, it should not be used as a substitute for consultation with professional accounting, tax, legal or other competent advisers. Future legislative amendments and/or your company's special circumstances may necessitate significant revisions to this information. Given the changing nature of laws, rules and regulations, and the inherent hazards of electronic communication, there may be delays, omissions or inaccuracies in information contained in this site and in HP software.
Printable version
Privacy statement Using this site means you accept its terms
© 2009 Hewlett-Packard Development Company, L.P.