This year, the theme for Data Privacy Day focuses on respecting privacy, protecting data and enabling trust. Today’s global company is by necessity a digitized company. As a result, challenges around data privacy, security and trust must be addressed by everyone: companies, vendors, partners and consumers alike.
While many security and privacy trends facing companies today may start out locally, some quickly become global. New regulations in Europe and elsewhere are introducing concepts around how citizens think about their data and how companies are obligated to protect it.
More and more, new data privacy and security regulations include language that fines companies for non-compliance. As a result, global organizations are increasingly responsible for fiduciary care of data subject to compliance and fines. Companies are now obligated to look beyond privacy engineering from a strict security perspective and beginning instead to explore what it means to transfer information across borders, have geo-fencing or operate in an environment where you’re crossing borders and cultures.
As a result, respecting privacy, protecting data and enabling trust are becoming not only business necessities but also competitive enablers in a global market. To get started implementing best practices in your own business, it’s helpful to keep in mind that there is a significant, if non-intuitive, difference between security and privacy. Data privacy and data security might seem like the same thing, but they are actually complementary to one another. Essentially, security is the how, privacy is the why.
Of course, two complex fields such as privacy and security are difficult to distill into simply “how” and “why,” since issues like resiliency, context, content and transparency also come into play. Specifically, privacy is taking the time to determine why data should be protected in the way that it is, what information is being sent to which locations throughout the network, whether you should be collecting that data in the first place and who should be able to access it and/or destroy it. The privacy person knows that if the company is making a brand promise, then the data needs to be managed and protected in a certain way.
Any plan worth doing is worth doing at home first. Cisco is putting plan into action around data privacy and security with an eye toward showing trustworthiness to its customers through a number of methods, including:
- Quality information
- Integrity of data
- Defining the “how” of security
- Identifying what information qualifies as intellectual property
- Purity of process
- Efficiency of data flow
The way we see it, trust is the opportunity to empower the end user to do everything he or she wants to around technology and still be able to trust that data is being protected and secured. Cisco is proud to be working together with the National Cyber Security Alliance to give people everywhere the tools they need to excel in today’s digitized economy.
For more information on what Cisco is doing to promote trustworthiness, transparency and accountability, visit the Cisco Trust and Transparency Center at trust.cisco.com.
To learn more about Data Privacy Day, please visit staysafeonline.org/dpd.
About the Author
Michelle Dennedy is chief privacy officer at Cisco Systems.