The Standard
3.1.1 Registrants do not collect, use, or disclose information about a client without the informed consent of the client or their authorized representative, except as permitted or required by law.
3.1.2 Registrants familiarize themselves and comply with relevant privacy laws.
3.1.3 Registrants relying on others to provide reception or other administrative support train and supervise them on matters of confidentiality and privacy.