We are a funny lot in Europe, guarding our privacy and more importantly the privacy of our data is of paramount importance.?? The protection and privacy of personal data is a fundamental right within the EU. According to the Digital Agenda for Europe, concerns about privacy are among the most frequent reasons for people not buying goods and services online.? Personal data can be personal information and data of individuals? in many aspects of everyday life ? for example, opening a bank account, signing up for membership of a gym, booking a flight, issue of a credit card, registering for loyalty cards in shops, etc.
Attitudes towards data protection
58% of Europeans feel that there is no alternative other than to disclose personal information if they want to obtain products or services.
79% of social networking and sharing site users are likely to disclose their name, 51% their photo and 47% their nationality. Online shoppers typically give their names (90%), home addresses (89%), and mobile phone numbers (46%).
Only a third of Europeans are aware of a national public authority responsible for protecting their personal data rights (33%).
Just over a quarter of social network users (26%) and even fewer online shoppers (18%) feel in complete control of their data.
Attitudes on Data Protection and Electronic Identity in the European Union, June 2011
Read more here: Special Eurobarometer 359
?Privacy by design? and ?privacy by default? will also become essential principles in EU data protection rules ? this means that data protection safeguards should be built into products and services from the earliest stage of development, and that privacy-friendly default settings should be the norm ? or example on social networks. These rules will strengthen individuals? rights in a practical way. The Commission will raise awareness of these rights and how they can be used in the most effective way.
So, as an organization, how do you meet these strict proposals?? It?s not just about technology but more about how you implement your privacy policy.? Google recently announced changes to their privacy policy and many others will follow suit.? If individuals are going to be in charge of protecting their privacy then they will need proof that their data is being used for the right reasons and proof when it has been deleted or moved.
?The key ingredients are Privacy policy, GRC tools like the Archer eGRC platform which provides control and visibility into the use of data and also technologies like Data Loss Prevention (DLP).? In the EU this has been a bone of contention for a long time, is DLP a PET (Privacy enhancing technology) or does it take Privacy away from individuals? Security and privacy are related, but very distinct concepts.? Security can be defines as an infrastructure level lockdown that prevents to grants access to data based on authorization.? In contrast, privacy restrictions control access for users who are authorized to access a particular set of data.? Data privacy ultimately ensures that those who have legitimate business need to see sensitive data do not abuse their privileges.? So, surely given these definitions DLP can be defined a PET as it strengthens the privacy implementation for all tenets ? policy, data protection based on policy, privacy by design in built-in controls, authorization based on policy and an eGRC platform to provide the proof that data has been deleted!? Go forth and invest in PETs!
Source: http://blogs.rsa.com/knowles/eu-data-directive-privacy-by-design-and-pets-2/
joe namath stefon diggs nazi ss andrej pejic naomi watts macaulay culkin steve jobs fbi
No comments:
Post a Comment