Protecting personal Data at the time of the Internet of things is kind of a difficult stake. Nowadays it is possible, thanks to the concept of Privacy by design established by the Information and Privacy Commissioner of Ontario, Dr Ann. Cavoukian.
Data protection is a fundamental right in the European Union. The new EU General Data Protection Regulation (the “Regulation”), which is intended to be finalized in late 2015 or in 2016, introduces principles of Privacy by design in its article 23rd.
Architected into the DNA of a system, privacy by design embeds privacy directly into products and services at the design stages. In this approach, data protection is taken into account in both administrative and technical standpoints. It is included into technologies, business practices, and physical designs into the entire system.
This concept makes privacy as a default setting. Thereby, no action is required from customers. It aims to prevent and anticipate privacy risks before it is breached.
Privacy by design should be applied to any system which process personally identifiable information. Obviously, “zero risk” doesn’t exist. However, it can be the best solution to take advantages from data science and to secure customers’ data.
Carrying about privacy requirements by designing products, systems and processes with privacy in mind is good for business. In addition to helping avoid breaches, satisfying user’s privacy expectation can be a market differentiator.
In fact, the damage to the reputation of a company and the loss of consumer trust is harder to recover after a data breach.
Ando Randrianjafisamindrakotroka
