"Privacy is about protecting our sense of self - that is, who we are; what we know; what we think; what we have done; and what we want to do. One important aspect of this is the extent of control we have over personal information about us. Exercising choice about our own information can also be an important aspect of retaining personal dignity and humanity in a relationship with another party."

[from "National Privacy Principles Draft Guidelines", Office of the Federal Privacy Commissioner, May 2001]

The term "privacy" is used in conjunction with allied concepts, particularly security and authentication.

Privacy
Refers to the extent to which the accessibility and subsequent use of information about people is protected. Including their personal details and the transactions they undertake. It refers to how personal information is collected, used, maintained, made accessible and passed on:

  • Management of personal and transactional information (customers, employees, suppliers)
  • Procedural and logical impediments to identifying a user (directly or via inference)
  • Accessibility and restrictions on subsequent use and transfer of information about users.



    • Security
    Refers to the methods used to physically block from external interception both user data and communication between two parties.

    Authentication
    Refers to the means of certifying that an online user is who he or she says he or she is. Digital certification is a one of a range of technologies to achieve authentication.

    Privacy Solutions focuses on privacy while recognizing that security and authentication are overlapping concepts and applications. In sourcing expertise, Privacy Solutions has drawn on the security arena recognizing that many clients will require help to meet both the security and privacy challenges. It also provides an independent perspective on authentication solutions.

    Why you should care

    Several factors are driving privacy as a serious business and personal issue.

    Privacy legislation for the private sector and government in Australia came into effect in December 2001. Similar legislation applies in Europe and some Asian markets. Few organisations are prepared for the implementation of systems required to conform with the legislation.

    The effect in Australia will be similar to that of the GST:

  • protecting the handling of personal information affects nearly everyone;
  • it is now compulsory under law
  • it is pervasive and won't go away; and
  • a regulator will enforce it.

    • Consumer concern about protection of personal data is significantly undermining many enterprises' efforts to deliver new services and exploit new types of marketing. Trust is central to many brands, and the potential for privacy violations to materially damage brand value will increase markedly as awareness of privacy rights escalates in the community.

    Thus the risks to brand that companies face for privacy violations are both significant and likely:

  • prosecution by regulators;
  • potential class actions; and
  • embarrassing investigation by the media

    • Some degree of privacy protection can be achieved via procedural changes and disciplines. Early work by lawyers and accountants has focused on changes to forms, posting of notices and education of staff. But technology offers greater efficiencies, greater certainty of compliance, and many new types of functionality not available via traditional means. Good privacy technology also ensures superior data security - an increased area of concern since September 11, 2001.

    While the primary driver is risk reduction across many fronts, new technology to support privacy also allows new types of functionality, particularly for data cooperation between organisations. Astute organisations will seize the opportunity to install systems that not only ensure privacy compliance, but that also allow powerful new applications and competitive advantage.

     

       
     

     

     

     

     

     

    Website by Diop Design