Presentation is loading. Please wait.

Presentation is loading. Please wait.

Getting to the Truth about Privacy & Security Ann Cavoukian Ph.D. Information and Privacy Commissioner/Ontario Privacy & Security: Totally Committed November.

Published byBetty Darlene Wells Modified over 8 years ago

Similar presentations

Presentation on theme: "Getting to the Truth about Privacy & Security Ann Cavoukian Ph.D. Information and Privacy Commissioner/Ontario Privacy & Security: Totally Committed November."— Presentation transcript:

1 Getting to the Truth about Privacy & Security Ann Cavoukian Ph.D. Information and Privacy Commissioner/Ontario Privacy & Security: Totally Committed November 7, 2002 Toronto

2 The Privacy/Security Relationship  Privacy relates to personal control over one’s personal information  Security relates to organizational control over information  These represent two overlapping, but distinct activities

3 Security  Privacy Security  Privacy What Privacy is Not

4 The Foundation for Information Security  The rights of data users or their surrogates  Functions: –Authentication –Authorization –Confidentiality –Data Integrity –Non-repudiation –Availability

5 The Foundation: Fair Information Practices  Accountability  Identifying Purposes  Consent  Limiting Collection  Limiting Use, Disclosure, Retention  Accuracy  Safeguards  Openness  Individual Access  Challenging Compliance

6 Privacy & Security: A Visual

7 The Security/Privacy Dilemma

8 Privacy is more than Policy  The misconception: –Privacy is essentially a policy issue while security is a technology issue –PIA’s can avoid the technology design and implementation components as long as they identify the risks and privacy issues

9 Privacy/Policy, Security/Technology  Privacy is essentially a policy issue  Security is a technology issue  Oh yeah? What about:

10 Most Individuals Don’t Care About Privacy  The misconception: “What's the point of regulating Internet privacy? Consumers sure don't care.” The Privacy Hoax Eric Goldman The Privacy Hoax Eric Goldman, Forbes10.14.02

11 Wrong: They do Care  It doesn’t take much for people to get really concerned about a company’s…privacy practices. Johnathan Gaw, IDC Corp. March 29, 2001

12 Well, maybe they care, but it’s not my responsibility.  Who’s responsibility is it? –CEO? –IM/IT? –Line managers? –3 rd Party Contractors? –Front-line staff? –Vendors/Consultants?

13 PRIVACY VS. BRAND VALUE CAN $679 M PRIVACY VS. SHAREHOLDER VALUE CAN $979 M Privacy Brand Valuation Privacy Value vs. Overall Value Privacy accounts for an estimated 14% of overall Brand Value, and 7% of overall Shareholder Value,

14 It’s not me, it’s the other guy  The misconception: –It is up to the application suppliers to provide appropriate safeguards as part of their products and services

15 We Don’t Need a CPO  The misconception: –Things are just fine, we don’t need a CPO –OK, things could be better, so give the job to the Chief Security Officer

16 Privacy is Primarily a Public Relations Exercise  The misconception: –If we have a privacy policy we are home free. –We have a privacy policy now – we’ll get to the details next quarter.

17 Conclusion  In order to address privacy effectively, you need to clear your mind of the misconceptions  Privacy and security are both essential, they’re just not the same.

18 How to Contact Us Ann Cavoukian Ph.D. Information & Privacy Commissioner/Ontario 80 Bloor Street West, Suite 1700 Toronto, Ontario M5S 2V1 Phone: (416) 326-3333 E-mail: commissioner@ipc.on.ca www.ipc.on.ca Web:www.ipc.on.ca

Download ppt "Getting to the Truth about Privacy & Security Ann Cavoukian Ph.D. Information and Privacy Commissioner/Ontario Privacy & Security: Totally Committed November."

Similar presentations

Office of the Information and Privacy Commissioner, Ontario, Canada

Office of the Information and Privacy Commissioner, Ontario, Canada
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY.
BUSINESS B2 Ethics.

BUSINESS B2 Ethics.
And the finer details of patient privacy TCH Confidential Understanding HIPAA.

And the finer details of patient privacy TCH Confidential Understanding HIPAA.
1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.
NAU HIPAA Awareness Training

NAU HIPAA Awareness Training
Www.ipc.on.ca National Security in a Post-9/11 World: The Rise of Surveillance, … the Demise of Privacy? Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario.

National Security in a Post-9/11 World: The Rise of Surveillance, … the Demise of Privacy? Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario.
PIPA PRESENTATION PERSONAL INFORMATION PROTECTION ACT.

PIPA PRESENTATION PERSONAL INFORMATION PROTECTION ACT.
VIU Workshop: Creating a Culture of Privacy Awareness June 12, 2013 By Justin Hodkinson OIPC Policy Analyst/Investigator Office of the Information & Privacy.

VIU Workshop: Creating a Culture of Privacy Awareness June 12, 2013 By Justin Hodkinson OIPC Policy Analyst/Investigator Office of the Information & Privacy.
Securing North America’s Power Grid Dr. Ann Cavoukian, Ontario information and privacy commissioner Mark Fabro CISSP, CISM, President and Chief Security.

Securing North America’s Power Grid Dr. Ann Cavoukian, Ontario information and privacy commissioner Mark Fabro CISSP, CISM, President and Chief Security.
Www.ipc.on.ca Building Privacy into Health Information Technology Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Information Technology.

Building Privacy into Health Information Technology Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Information Technology.
Surveillance and Privacy on the Internet Presented by Jill Homes and Marion Barry.

Surveillance and Privacy on the Internet Presented by Jill Homes and Marion Barry.
Www.ipc.on.ca The Privacy Imperative: Go Beyond Compliance to Competitive Advantage Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Bell.

The Privacy Imperative: Go Beyond Compliance to Competitive Advantage Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Bell.
Seamless Customer Experience: What Will It Take? Offering Security and Privacy Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario The Access.

Seamless Customer Experience: What Will It Take? Offering Security and Privacy Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario The Access.
Www.ipc.on.ca Preserving Privacy in a Security-Centric World Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Canadian Information Processing.

Preserving Privacy in a Security-Centric World Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Canadian Information Processing.
Privacy in Ontario Brian Beamish Office of the Information and Privacy Commissioner/Ontario Presentation to Security Canada Central 2002 International.

Privacy in Ontario Brian Beamish Office of the Information and Privacy Commissioner/Ontario Presentation to Security Canada Central 2002 International.
Business Plug-In B7 Ethics.

Business Plug-In B7 Ethics.
Www.ipc.on.ca Biometrics & the Privacy Paradigm: Separating Fact from Fiction Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Security.

Biometrics & the Privacy Paradigm: Separating Fact from Fiction Ann Cavoukian, Ph.D. Information & Privacy Commissioner/Ontario Security.
1 The Engineer as a Professional Privacy. 2 After reading the articles please answer the following questions. 1) Is privacy a concern that engineers have.

1 The Engineer as a Professional Privacy. 2 After reading the articles please answer the following questions. 1) Is privacy a concern that engineers have.
Getting to Privacy A Presentation to: Presented by: Mike Gurski.

Getting to Privacy A Presentation to: Presented by: Mike Gurski.

Similar presentations

Ads by Google