Login     Sign Up     |      Home      Regions      Verify a Certification     EBA Portal    

Privacy and Security as an Essential Step for Privacy Protection


Soon, firms with their headquarters situated in any EU country and all companies that process EU resident data will be left with no choice than to comply with the GDPR stipulations (the EU General Data Protection Regulation). The EU parliament approved the GDPR on the 14th April 2016, to harmonize data privacy laws all over, in a bid to safeguard and bolster all EU citizen data privacy and to reform the manner in which firms in the region handle data privacy.
 
GDPR, which will commence on May 25th, 2018, has bolstered data protection legislation and introduce more stringent enforcement measures to enhance the confidence in emerging digital economy. Notable among these measures is the addition of the concept of privacy by design and by default as a legal condition.
 
The concept of privacy by design is an old concept in data protection. Mrs. Ann Cavoukian, the Information and Privacy Commissioner of Ontario in the 90’s developed this philosophy. Cavoukian is generally the main developer of the privacy by design concept. According to her, it’s an approach to technology design that comprises privacy-bolstering safeguards into technology during design and creation, and sells to clients, technology with default privacy settings that are strong.
 
There has been an accelerated growth in the Global Internet of Things (IoT) market. It is expected that the market would experience a compounded annual growth rate (CAGR) of 13.2% during the forecast period 2016-2023 worldwide. Although this growth appears exciting, the major concern remains the privacy and security.
 
Trust is increasingly becoming an essential factor in the digital ecosystem with the advancement of the Internet. The broad gathering, processing and analyses of personal data has caused privacy concerns, particularly concerning broad-scale electronic surveillance, profiling and private data disclosure. In the modern-day information community, privacy is now an essential trust enabler. Globally, it is now recognized that except a system is built from scratch with protection as its basis, failure will come-up through unforeseen weakness. Hence, incorporating privacy blend with security directly into the design is a vital step for privacy protection.
 
Citing ‘2017 Predictions: Dynamics That Will Shape the Future in the Age of the Customer’, a research carried out by Forrester, in business today, trust is priceless. Clients are now more knowledgeable of, tired of, and scared of privacy and security risks; and steadily, confidence will be garnered on the degree of trust they have in the firm.
 
It is therefore necessary that businesses take the plunge into the right privacy and data protection controls at the inception of a project. Security and privacy shouldn’t just be done for the sake of doing them. According to Cavoukian, complying with regulatory stipulations alone cannot assure privacy; instead assurance ought to be ingrained in the very core of the organization. With the recent happenings, Cavoukian is obviously right.