| ‘The security-privacy paradox: strategies to address issues and misconceptions’ The Canadian Information and Privacy Commissioner Ann Cavoukian and Deloitte & Touche LLP have published a paper that provides companies with suggestions for developing strategies for information security and privacy protection. ‘The security-privacy paradox: issues, misconceptions and strategies’ examines the complex and often misunderstood relationship between the disciplines of information security and privacy protection. "The evolution of the computer from a passive, mechanical record-keeper to an interactive, networked transaction manager has dramatically increased the volume and variety of personally identifiable information collected by organisations," said Commissioner Cavoukian. "This capability for high speed, high volume processing and dissemination of personal information creates the potential for substantial risks - as well as large-scale opportunities - associated with information security and privacy protection. However, you must address both - never just one. While information security and privacy do overlap, at times they may appear to contradict. In preserving one alone, companies can do serious damage to the other." The joint paper helps to clarify the security-privacy paradox for senior executives and other professionals. The paper: * Describes and illustrates major characteristics, points of difference and areas of overlap between information security and privacy protection; * Addresses issues and misconceptions that can lead to wasted money, time, effort, conflict and, all too often, inappropriate measures and programmes; and * Recommends and prioritises business, organisational and technical approaches that are cost-justifiable and can be beneficial in reaching regulatory compliance.
•Date:
13th August 2003 • Region: N.America •Type:
Article •Topic: ISM
|
