Submitted by Audassist on Sun, 2012-04-22 18:19

Many multinational enterprises are expressing concerns on the proposed EU Data Privacy Regulations. I am recommending that they initiate their enterprise wide Data Privacy Assessments sooner rather than later. I do not for see major changes in the the proposed regulations as they make their way through the EU Counsel.

Any thoughts?

Group audience:

Security

Comments

What are the expected

Submitted by prokopas on Mon, 2012-04-30 15:10

What are the expected outcomes of these assessments and in your opinion what should EU change in the proposed regulations?

Most companies have a very

Submitted by Engberg on Fri, 2012-05-04 11:28

Most companies have a very shortsighted view on "data privacy". They want control over customers and data to datamine.

At the same time, they loose control over their customer relationshuips to an increasingly more hostile commercial infrastructure.

We are already in the sitaution where Google know more about a companys customers than do the company and even customers themselves.

At this point the markets tip over and becomse increasingly dysfunctional.

It is time that companies realise that "data privacy" is really about enabling end-to-end relationships and keeping them from invasive intrudies and intermediators.

It is NOT in corporate interest to push customers away towards behavioural-based targetting and constant re-acquisition of their own customers.

Problem is that regulatory survailllance requirement undermine markets and data protection regulation cannot compensate but end up bureaucratising the processes.

We need to go back to basic of non-digital market principles where unsecure registration simply do not occor un the first places. The digital enabling equivalent is avoiding resue of identity out of context, i.e. one purpose - one identity - one set of keys/credentials.

This is NOT about anonymity, but about isolation and ensuring that power to reuse rests with the entity at risk and the only able to put a value to a transaction/value chain.

Prokopas: the expected

Submitted by Audassist on Sun, 2012-05-06 17:58

Prokopas: the expected outcomes will be a stronger more protective human data privacy regulation which is needed in our internet age. Where many nations have instituted privacy regulations from a Consumer perspective, the EU has taken the stand on enacting regulations form a universal Regulatory basis, removing the special interest elements of specific policies. The EU has taken a position on data privacy and I hope they stand firm on their commitment and not water-down any of the major provisions presented to the EU Counsel.

European data protection

Submitted by Engberg on Thu, 2012-05-03 20:18

European data protection regulation are ignored and circumvented by american companies ssytemcially abusing personal data.

The principle of strict selfcontrol of data needs to be enforced through technology.

Present suggested regulation is NOT STRONG ENOUGH as it does not enforce a RIGTH NOT TO BE IDENTIFIED IN ONLINE ENVIRONMENTS

There is much research that

Submitted by Alan Hartman on Sun, 2012-05-06 10:39

There is much research that needs to be done in order to make the Enterprise Privacy Audit into an objective evaluation of the privacy compliance and to measure the enterprise's commitment to privacy above and beyond what is legislated. Is there a set of metrics that can be connected to the existing data protection legislation whereby a company to put its privacy policy on a scale, and use this as a trading advantage. I for one would rather blog on a site whose privacy rating was high, not to mention using sites that provide health information, or banking services...

Some interesting numbers from

Submitted by prokopas on Sat, 2012-05-12 19:57

Some interesting numbers from a report (http://ec.europa.eu/information_society/digital-agenda/scoreboard/docs/p...)

- Only one-third of Europeans are aware of the existence of a national public authority responsible for protecting their rights regarding their personal data.

- Three-quarters of the Europeans who use social networking or sharing sites think they
themselves are responsible for safe data handling, that is for the safe collection, storage and exchange of their information on these sites. Nonetheless, an equal proportion also think that these sites should take responsibility.
- The proportion of online shoppers who think that online shopping sites should be responsible (three-quarters) outnumbers those who feel they should be personally responsible (two-thirds).
- Nine out of ten of the Europeans surveyed say it is important for them to have
harmonised protection and rights across the EU with respect to personal data, regardless of the EU country in which it is collected and processed
- Almost two-thirds of Europeans believe their personal data would be better protected
in large companies if these companies were obliged to have a Data Protection Officer in charge of ensuring that people’s personal data is handled properly while
over a quarter disagree.