Rational Policy Tester Privacy Edition

オンライン・プライバシー評価用の IBM Rational Policy Tester® のエディション

Rational Policy Tester® Privacy Edition は、Web アプリケーションがユーザーの個人情報を保護し、政府のプライバシー法規制に準拠しするようにします。

オンライン・プライバシー違反は、Web ユーザーの間で信用を低下させ、結果的に毎年何百万ドルものコストがかかるリスクがあります。これに呼応して、政府は厳しいプライバシー法規制を施行しています。Rational Policy Tester Privacy Edition は、お客様のオンライン・プライバシー評価を自動化し、精度を高めるために役立てることができます。

  • プライバシー・ポリシー管理: サイトで検出されたプライバシー・ポリシーのインベントリーを生成し、それらのポリシーが現在有効で正確であるかどうかを判別します。
  • PII ディスカバリー: サイト上のデータ収集 (特に「個人情報」(PII) の収集) フォームの数を確認します。Policy Tester® は、これらのフォームのセキュリティー設定 (例えば GET と Post) に関して報告して、各フォームに適切なプライバシー・ポリシーへのリンクがあることを確認します。
  • 漏えい防止: 顧客データの収集および送信時に、セキュア・ページや 128 ビット暗号化のようなセキュリティー安全機能が適所に配置されていることを確認します。
  • コンプライアンス・レビュー: 技術的な検査を COPPA、GLBA、HIPAA などの法律や規制の特定のオンライン要件にマップします。
  • ウィザードおよびスキャン構成機能によって使用が簡素化され、テクノロジーの採用が簡単になります。
  • サポートされるオペレーティング・システム: Windows

製品について

IBM ソフトウェア
IBM スマートなソフトウェア活用

ご購入 Rational Policy Tester Privacy Edition

初年度の IBM ソフトウェア・サブスクリプション & サポートは製品価格に含まれています。

ご購入には諸手続きが必要になりますので、弊社窓口までお問い合わせください。

オンラインで購入には使用できません。こちらからお問い合わせください。

お問い合わせはこちら

詳細の表示詳細の非表示

Features and benefits

Policy Tester can help improve the speed, accuracy and reliability of online privacy assessments.

Benefits:

  • Reduces online risk by isolating Website privacy and compliance issues

  • Increases online trust by managing issues that lead to customer mistrust

  • Reduces costs through the automation of manual tasks

  • Minimizes risk exposure through Web technology consolidation

  • Provides faster remediation by identifying issues more quickly than manual tracking, and reduces the risk of human error.

Privacy module reports:

Data Collection

- Form Inventory: Identifies forms that could potentially be inconsistent with privacy policies or lead to information leaks.

- Control Inventory: Provides summary information about the type of form controls used on a Web site and the number of pages that contain each type of control.

- Pages Collecting PII With Forms Using Get: Identifies pages that use the GET method of form submission - a method with known privacy vulnerabilities.

- Pages Collecting PII: Identifies pages collecting specific items of Personally Identifiable Information (PII) to ensure these pages meet specific requirements including links to a privacy statement, proper levels of encryption, and opt-out options.

Privacy Regulatory Compliance

The Privacy module reports potential compliance issues against the following legislation:

  • Children's Online Privacy Protection Act (COPPA) Requires Web operators to adhere to specific collection, disclosure and protection practices regarding personally identifiable information of children.

  • Gramm-Leach-Bliley Act (GLBA) Privacy Rules include provisions to protect consumers' personal financial information held by financial institutions.

  • Health Insurance Portability and Accountability Act (HIPAA) Privacy Rules regulate the way certain health care organizations handle the use of individually identifiable health information.

  • California SB1386 & AB1950: California AB1 950 requires businesses that obtain, own or license personal information about California residents to implement and maintain reasonable procedures to protect personal information from unauthorized access, destruction, use, modification or disclosure. In addition, SB1386 requires notification to California residents if there is a breach or suspected compromise of their unencrypted personal information/data.

  • Safe Harbor Offers a simple means of complying with adequacy requirements of the European Community's Directive on Data Protection.

  • Section 208: is for U.S. Government agencies and protects the online privacy of U.S. citizens' information by facilitating privacy impact assessments and reporting.


Operating SystemSoftwareHardware
  • Windows Server 2003 with Service Pack 2 (32/64bit )
  • Windows Server 2008 with Service Pack 2 (32/64bit )Windows Server 2008 R2 (64-bit)
  • Windows 7 (32-bit) (client-side only)
  • Windows XP (32-bit) (client-side only)

Note:

1. For best results, install all critical Microsoft updates.
2. If the website being scanned uses technologies such as Flash, Windows Media, and additional character sets, these technologies must also be installed on the agent server machines.

Supported Integrations

  • WebSphere Portal V6.0.1.4, and higher

Database

  • SQL Server 2005 Standard Edition or SQL Server 2005 Enterprise Edition Service Pack 2
  • SQL Server 2008 Standard Edition Service Pack 1 or SQL Server 2008 Enterprise Edition Service Pack 1
  • SQL Server 2008 R2 (64-bit)
  • SQL Server system requirements available from Microsoft.

Web Server

  • IIS6 (Windows 2003 Server) Note: IIS6 must be enabled on the Windows 2003 Server so that the Server installs properly
  • IIS7 (Windows 2008 Server) Note: IIS7 must be enabled on the Windows 2008 Server so that the Server installs properly

Other prerequisites

  • Before installing the Enterprise Server, you must have IIS installed Before installing the Enterprise Server, you must download and install the .NET Framework 4.0 from the Microsoft website.
  • Ensure that ASP.Net is installed and enabled in IIS.

Supported Browsers

  • Microsoft Internet Explorer 7.0, 8.0, 9.0
  • Mozilla Firefox 3.6.x, 6.x, 7.x

Processor

  • 3.0 GHz Pentium IV-compatible processor; faster processor or multiple processors recommended

Memory

  • 4 GB of RAM (minimum) or more recommended

Hard disk

  • Approximately 800 MB of available hard-disk space for the recommended installation
  • Approximately 10 GB of available hard-disk space for scan logs on the Policy Tester Scanner
  • Approximately 200 GB of available hard-disk space on the system hosting the database (equals approximately 400,000 pages)
  • Approximately 330 MB for the Web Services Explorer –(to test Web Services for compliance issues)

まずはお気軽にご相談ください

お問い合わせはこちら

まずはお気軽にご相談ください

Rational Policy Tester Privacy Edition