Ask Reggi Your Question Now
Can I use third-party project management tools that collect personal information in Delaware? What are the requirements?
Using Third-Party Project Management Tools that Collect Personal Information in Delaware
Based on the documents provided, Delaware law prohibits state agencies from disclosing personal information concerning a user to any person, firm, partnership, corporation, limited liability company, or other entity, including internal staff who do not need the information in the performance of their official duties, unless such user has consented to the disclosure of such personal information [1.1]. Additionally, any agency that maintains a state agency website shall develop a policy in conformity with the provisions of this subchapter. Each such policy shall include, but not be limited to, the statement of any information, including personal information, the state agency website may collect with respect to the user and the use of the information [1.2].
There are no specific requirements mentioned in the documents provided for third-party project management tools that collect personal information. However, Delaware law requires state agencies to comply with the State Information Security Program, which includes developing and implementing a comprehensive information security program that applies personnel, process, and technology controls to protect the State’s data, systems, and infrastructure, within the State’s computing environment and on partner systems [2.1].
Furthermore, the Department of Technology and Information establishes statewide technology standards for use in the procurement process, and if the Department has entered into a statewide contract for technology services or resources, then that contract is mandatory use for state agencies [2.3].
Therefore, it is recommended to obtain the user’s consent before disclosing any personal information to third-party project management tools. Additionally, it is important to ensure that the third-party project management tool complies with the State Information Security Program and any statewide technology standards established by the Department of Technology and Information.
In summary, while there are no specific requirements mentioned in the documents provided for third-party project management tools that collect personal information, it is recommended to obtain the user’s consent before disclosing any personal information to such tools. Additionally, it is important to ensure that the third-party project management tool complies with the State Information Security Program and any statewide technology standards established by the Department of Technology and Information.
Source(s):
- [1.1] Prohibition on disclosure of personal information.
- [2.1] State information security requirements
- [2.3] State agency technology procurement and management.
- [1.2] Development and implementation of agency privacy policies.
Jurisdiction
Delaware