Data Privacy and Security PDF
Document Details
Uploaded by Deleted User
STI
Tags
Summary
This document explains the differences between data privacy and data security, emphasizing how security protects data while privacy protects the identities of individuals. It also includes data protection regulations and focuses on rights, purposes, and the process of sharing and managing personal data.
Full Transcript
IT2028 Data Privacy Data security includes a set of standards and different...
IT2028 Data Privacy Data security includes a set of standards and different safeguards and measures that an organization is taking to Personal data refers to any information, whether recorded in a prevent any third party from unauthorized access to digital data material form or not, from which the identity of an individual is or any intentional or unintentional alteration, deletion, or data apparent or can be directly ascertained by the entity holding the disclosure. It focuses on the protection of data from malicious information. attacks and prevents the exploitation of stolen data such as: Privacy concerns the collection and use of data about o Data breach – an unauthorized or unintentional individuals. There are three (3) primary privacy issues: disclosure of confidential information. o Accuracy relates to the responsibility of those who o Cyberattack – the stealing of data or confidential collect data to ensure that the data is correct. information by electronic means, including ransomware o Property relates to who owns the data. and hacking. o Access relates to the responsibility of those who have To achieve this, organizations use tools and technology such data to control who can use that data. as firewalls, user authentication, network limitations, and internal security practices to prevent such access. Data Privacy Versus Data Security Organizations commonly believe that keeping sensitive data secure from hackers means they’re automatically compliant with data privacy regulations Data privacy and data security are often used interchangeably, but there are distinct differences, although sometimes difficult to distinguish between. Whereas security controls can be met without also satisfying privacy considerations, privacy concerns are impossible to address without first employing effective security practices. In other words, security protects data, and privacy protects the identity Privacy and security come down to which data is being protected, how it’s being protected, from whom it’s being protected, and who is responsible for that protection. Security is about protecting data from malicious threats, whereas privacy is about using data responsibly. Data privacy is a part of the data protection area that deals with the proper handling of data, with the focus on compliance with data protection regulations. Data privacy focuses on the rights of individuals, the purpose of Figure 1. Privacy and Security data collection and processing, privacy preferences, and the way organizations govern the personal data of data subjects. It focuses on how to collect, process, share, archive, and delete the data under the law. 01 Handout 1 *Property of STI [email protected] Page 1 of 2 IT2028 accessible to satisfy business needs. Figure 1. CIA Triad 01 Handout 1 *Property of STI [email protected] Page 2 of 2