Your SlideShare is downloading. ×
Business Implicationsof Evolutions in Privacy Law     Simon Deane-Johns         24 April 2012
Businesses must…• Develop privacy as a core competency• Enable consumers to share transaction data• Solve two identity pro...
Develop Privacy as a Core Competency• No longer a direct marketing issue - a very technical, broad  business issue that im...
Enable Consumer Data Sharing• Data sharing is critical to consumer control• We object to the aggregation of our personal d...
Solve Two Identity Problems• Enable consumers to simply, conveniently and  efficiently prove our identities in the course ...
Thank You                   Twitter: @sdjohns        Blog: Pragmatist        http://sdj-pragmatist.blogspot.com/   Blawg: ...
Upcoming SlideShare
Loading in...5
×

Business implications of evolutions in privacy law mes infos 23 04 12 - simon deane-johns

442

Published on

A presentation to the Ctrl-Shift conference for MesInfos, the French equivalent of the Midata initiative to encourage businesses to make available to customers their own personal transaction data. Explained further here: http://sdj-thefineprint.blogspot.co.uk/2012/04/business-implications-of-privacy-law.html

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
442
On Slideshare
0
From Embeds
0
Number of Embeds
5
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • You are on your own...with everyone else
  • Transcript of "Business implications of evolutions in privacy law mes infos 23 04 12 - simon deane-johns"

    1. 1. Business Implicationsof Evolutions in Privacy Law Simon Deane-Johns 24 April 2012
    2. 2. Businesses must…• Develop privacy as a core competency• Enable consumers to share transaction data• Solve two identity problems cost effectively
    3. 3. Develop Privacy as a Core Competency• No longer a direct marketing issue - a very technical, broad business issue that impacts competitive advantage – Requires "a socio-legal construct, not a technical fix " (O’Hara)• EC’s proposed General *Data Protection?+ Regulation – the "right to be forgotten" – "data portability" – "data protection by design and by default" – the logging/reporting of personal data security breaches – personal data processing impact assessments – prior consultation/regulatory consent for risky processing – requirements for enhanced internal controls – numerous enforcement and compliance burdens – the obligation to appoint a data protection officer
    4. 4. Enable Consumer Data Sharing• Data sharing is critical to consumer control• We object to the aggregation of our personal data by a single organisation, not necessarily the disclosure of discrete items• Information is power – key to removing asymmetry in retail transactions• Boosts usability, convenience, efficiency… and loyalty
    5. 5. Solve Two Identity Problems• Enable consumers to simply, conveniently and efficiently prove our identities in the course of our day- to-day activities. – Identity is dynamic, not static – We are distinguishable by our behaviours and the data they generate• Ensure the means of proof is not vulnerable to being hacked or guessed. – Proof based on some static data, but also behavioural data – Identity should be verified by reference to one-off behavioural datasets that can be discarded
    6. 6. Thank You Twitter: @sdjohns Blog: Pragmatist http://sdj-pragmatist.blogspot.com/ Blawg: The Fine Print http:// sdj-thefineprint.blogspot.comLinkedIn:http://uk.linkedin.com/in/simondeanejohns

    ×