Privacy and security go hand in hand. Privacy cannot be protected without implementing proper security controls and technologies. Organizations must not only make reasonable efforts to protect privacy of data, but they must go much further as privacy breaches are damaging to customers and reputation. Potentially, they could put companies out of business.

Privacy and data protection awareness skyrocketed in 2018 with the implementation of the EU General Data Protection Regulation (GDPR), which gave new privacy rights to individuals in the EU and EU citizens everywhere, while creating significant new regulatory burdens on companies that handle personal data (PD), personally identifiable information (PII), and protected health information (PHI). Major corporations, after decades of automation, suddenly were being held to account for all instances and uses of personal consumer data. To do so, data maps and information flow diagrams had to be created to inventory all instances of stored personal data and learn how it flows through the organization.

This inventorying step is often one of the first in launching information governance (IG) programs, so the trend provided a significant increase in support for formal IG programs.

Information Privacy

By Andrew Ysasi

In a 2018 survey, Americans stated that they were more concerned with privacy than with healthcare or economic growth.¹ Privacy came of age in 2018, when ...