You are Gazetted…

By Application Security	Article Rating:
January 25, 2013 01:17 PM EST	Reads:	606

Related
Print
Email
Feedback
Add This
Blog This

Recently the government of Singapore passed a bill (or “Gazetted” as they call it, which sounds a lot fancier) about protecting personal data of consumers:

http://www.mica.gov.sg/DPbillconsultation/Annex%20D_Draft%20PDP%20Bill%20for%20Consultation.pdf

“Protection of personal data

26. An organisation shall protect personal data in its custody or under its control by making reasonable security arrangements to prevent unauthorised access, collection, use, disclosure, copying, modification or disposal or similar risks.

Cross-border Transfers

The PDPA also permits an organisation to transfer personal data outside Singapore provided that it ensures a comparable standard of protection for the personal data as provided under the PDPA (Section 26(1)). This can be achieved through contractual arrangements.”

So what they are suggesting is that gone are the days that if a business loses its customers’ data, they tell the consumers, “Oops, sorry, we lost your data…………” and that is about it. Now, the governments are taking initiatives that can hold the companies responsible for being careless with consumer data and not protecting it with their life, if not face consequences.

http://europa.eu/rapid/press-release_IP-12-46_en.htm?locale=en

CIO, CTO & Developer Resources

This means, as a corporation, you need to protect not only the data in storage and in transit, but also given the cross-border restrictions (this is especially strictly enforced in Europe; read about them on above URL links) you need to figure out a way to keep the data and the risk to yourself instead of passing this on to third parties. The easiest way to achieve that would be to tokenize the sensitive data, keep the sensitive data in your secure vault and send only the tokens to the other end. Even if the other end is compromised, your sensitive data and your integrity will be intact, and it will be easy to prove in case of an audit that you went above and beyond not only to comply with requests/ laws such as this, but also you genuinely care for your customers’ sensitive personal data. Brand reputation is a lot more important than you think.

Check out some of my older blogs on this topic:

Who is more sensitive – you or your data?

Content/ Context / Device aware Cloud Data Protection

Part 2: Context aware Data Privacy

Also, keep in mind Intel Token Broker and Cloud Security Gateway solutions can help you solve this fairly easily without messing with your existing systems too much.

Check out more details on Intel cloud data privacy solutions.

Read the original blog entry...

Published January 25, 2013 – Reads 606
Copyright © 2013 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

Related
Print
Email
Feedback
Add This
Blog This

More Stories By Application Security

This blog references our expert posts on application and web services security.

read more & respond »

Expo News

Big Data – It’s About the Application

By Jeremy Geelan

Time to Mission @ the Speed of Cloud

By Jeremy Geelan

Understanding SSD Technology

By Jeremy Geelan

Cloud Is All About Security

By Pat Romanski

OpenStack to Exhibit at Cloud Expo New York

By Liz McMillan

Wowrack to Exhibit at Cloud Expo New York

By Elizabeth White

Cloud Expo & Big Data Expo 2012 West

KEYNOTES

OpenStack

Opening Keynote | Mission-Critical Applications in the Cloud – Myth or Reality?

Rackspace

Day 2 Keynote | An Open Cloud Discussion

Progress

Day 3 Keynote | Cloud Applications: Some Assembly Required

Akamai

Day 3 Lunch Keynote | The Extended Enterprise: Taking Your App Delivery Strategy to the Cloud

Cisco

Day 4 Keynote | The Ever Changing Cloud

PLATINUM PLUS SPONSORS

Nebula | OpenStack

Discussion Panel – Powered by OpenStack

Progress Software

The Impact of Big Data and Cloud on Data Connectivity

Rackspace

The IT Talent Shift: Preparing Your Enterprise IT Talent for the Cloud

PLATINUM SPONSORS

Dell

Is There a Silver Lining to Cloud — Or Just a Lot of Hot Air?

Intel

Enterprise without Limits: A Blueprint for Organizational Agility

New Relic

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Red Hat

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Terremark

Perception vs Reality in the Cloud

GOLD SPONSORS

Akamai

Challenges and Opportunities for a Cloud-based Application Delivery Strategy

Broadcom

Sustainable Networking Innovation Through Collective Intelligence: Software Defined Networking

Citrix

Lessons Learned from 100 IaaS Cloud Deployments...and Counting

Driving Innovation Through the Cloud

SOA Software

Best Practices of API Management

SoftLayer

Building a "Mainstream" Private Cloud: What You Need to Know

VMware

From Infrastructure to Applications - the Next Step in Your Cloud Journey

Big Data Power Panel at Cloud Expo Silicon Valley: Cloud and Big Data – What's Working, What's New?

CEO Power Panel at Cloud Expo Silicon Valley

CTO Power Panel at Cloud Expo Silicon Valley: The Cloud Computing State of the Union

Click For 2012 East Event Webcasts

Cloud Expo & Big Data Expo 2012 East

KEYNOTES

SHI

Opening Keynote | Mission-Critical Applications in the Cloud – Myth or Reality?

Rackspace

Day 2 Keynote | The Era of Open Clouds is Upon Us

Oracle

Day 2 Lunch Keynote | A Pragmatic Journey to the Cloud

Citrix

Day 3 Keynote | Step up to a Higher Cloud

Akamai

Day 3 Lunch Keynote | Trends and Challenges in the Hyperconnected World

DIAMOND SPONSOR

SHI

From Chief Information Officer to Chief Innovation Officer

PLATINUM PLUS SPONSORS

Oracle

Oracle's Cloud - An Enterprise Cloud for Business-Critical Applications

Rackspace

Cloud – Vision to Reality

PLATINUM SPONSORS

Citrix

Architecting Your Cloud: Lessons Learned from 100 CloudStack Deployments

Dell

Enterprise without Limits: A Blueprint for Organizational Agility

Intel

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Pacific Control Systems

Galaxy – the Cloud-Based Platform of Platforms

GOLD SPONSORS

Akamai

Taking Your Application Delivery Strategy to the Cloud

EffectiveUI

Effectively Leveraging the Cloud for Better User Experience

Interexion

The World According to Cloud

NextAxiom Technology

Fuel Your Cloud with Metered, Virtualized Middleware

PerspecSys

Taming the Cloud Data Beast – Information Privacy, Residency and Security in the Cloud

Softlayer

Enterprise Class or Internet Scale? The Right Cloud for the Job

Terremark

Executing Enterprise Clouds

Whiptail

Data at the Speed of Life

POWER PANELS

Big Data Power Panel at Cloud Expo New York: What's Driving Big Data – and Why Now?

Cloud Trends' Power Panel at Cloud Expo New York: Unleashing the Ever-Growing Value of the Cloud

CEO Power Panel at Cloud Expo New York: Cloud Computing and Big Data Strategy

CTO Power Panel at Cloud Expo NY: Cloud Computing: What's Working, What's New, What's Next?

Click For 2011 West
Event Webcasts

Topics

Virtualization & Government IT

Virtualization Conference & Expo News Desk

Virtualization Editorial

Write For Us

Latest Articles
Latest Blogs
Latest News

About Virtualization Journal

Virtualization Journal covers the booming market of virtualization for the enterprise, offering timely updates on industry news and providing how-to articles on improving efficiency and lowering costs by leveraging network and computing resources.