EU regulators seek to mandate accountability

12/01/2017

In the race to compete in today's digital world, organizations are using social, mobile, big data and analytics, and the Internet of Things (IoT) to gather as much information on their customers as possible, while simultaneously trying to do everything possible to protect their organizations from cyber attacks that come from the outside and within. In this environment, privacy protection can become an afterthought, bolted on to information security programs in an ad hoc manner. Or worse case, organizations haven't thought about privacy protection at all.

For years, regulators and privacy commissions around the world have attempted to legislate privacy protection and develop privacy standards, such as Privacy by Design (PbD) for organizations to adhere and adopt. However, even as regulators pushed accountability, many organizations saw it as more voluntary than mandatory. They were content to address the letter of the law outlined in the legislation as opposed to its spirit - to meet minimal compliance obligations without taking responsibility for their role in protecting their customers' or employees' information.

With the introduction of the European Union's General Data Protection Regulation (GDPR), and the implications for organizations across the globe, the days of organizations leaving the responsibility for privacy protection to someone else is about to end. The EU's GDPR puts the onus of privacy protection where it should be - in the hands of the entities collecting, storing, analyzing and managing personally identifiable information.

Download the Report

The General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR') and the California Consumer Privacy Act of 2018 ('CCPA') (SB-1121 as amended at the time of this publication) both aim to guarantee strong protection for individuals regarding their personal data and apply to businesses that collect, use, or share consumer data, whether the...

Organizations across all industries, including government agencies, are facing a surge of ransomware attacks launched by cybercriminals. New types of ransomware principally causing this surge have the potential to cause significantly more business disruption and difficulty restoring computer data and networks. Attackers are also often demanding...

Your customers trust that you're taking every measure possible to protect your personal and confidential information. In the U.P. we feel safe and protected living in a remote and safe part of the world. Living here makes it easy to forgot how quickly, easily connected and vulnerable we are to the rest of the world.