负责支持隐私保护工作的专业人员通常最关心什么? Dutifully safeguarding the personal information entrusted to them.
因此,那些负责支持隐私工作的专业人员应该优先考虑有效的澳门赌场官方下载数据管理,因为这对于保护个人隐私是不可或缺的. 结构良好的数据管理框架可确保个人信息的处理符合道德规范并符合法规, 同时在组织内部培养负责任的数据管理文化. When done right, this reinforces trust with stakeholders, serves as a differentiator in the marketplace, improves visibility into data ecosystems, expands reliability of data, and optimizes scalability and innovative go to market efforts.
ISACA’s book Applied Data Management for Privacy, Security and Digital Trust 作为日常从业者导航这个复杂空间的路线图. 本书的主要读者——支持隐私工作的隐私和数据治理专业人士——将揭示开发有效数据管理程序的组件和实践, 2)澳门赌场官方下载在将数据管理与隐私和安全相结合时面临的挑战, and 3) includes an example use case scenario to bring it all to life.
Equipped with this information, 专业人员将更好地执行数据管理,并实现支持隐私的目的, security and digital trust. According to ISACA,“Digital trust is the confidence in the integrity of the relationships, interactions, 以及相关数字生态系统中供应商和消费者之间的交易. This includes the ability of people, organizations, processes, information, and technology to create and maintain a trustworthy digital world. 数字信任需要强有力的隐私和安全计划,并得到有效数据管理实践的支持.”
有效地管理数据是实现隐私和安全目标的先决条件. Without strong data management practices in place, privacy programs will fail and security risk will increase. A lack of security creates vulnerability risk; not addressing privacy creates noncompliance risk; and both increase the probability of loss of revenue, reputation and trust.
How to develop an effective data management program
Applied Data Management for Privacy, Security and Digital Trust breaks up the approach to data management into eight key tactics:
- Data Strategy
- Data Governance
- Metadata Management
- Standardization
- Data Operations
- Data Quality
- Platform and Architecture
- Supporting Processes
When combined in a holistic manner, these tactics can improve the maturity of a data management program, and deliver on the purpose of supporting privacy, security, and digital trust.
Encountering challenges along the way
But it is not necessarily a walk in the park. 一些重大挑战可能使实现有效的数据管理变得困难, including but not limited to:
- Organizational silos
- Poor data quality
- Improper data storage
- Lack of insight about data
- Shortcuts in data operations
- Compliance with global data privacy regulations
Most, if not all, 全球数据隐私法律法规要求对数据进行有效管理. To comply with these laws and regulations, organizations must first understand the data they collect, the purposes for its collection, how it is used, how it is shared, how it is stored, how it is destroyed, and so on. 只有在组织充分了解其数据生态系统之后,他们才能开始实施有效的控制,以保护数据并保持数据实现预期运营目标的能力.
Bringing it all to life
So how does the practitioner bring this all to life? Applied Data Management for Privacy, Security and Digital Trust 侧重于数据管理策略的应用,旨在向组织展示价值,并直接影响安全性和隐私,以支持数字信任. 首先强调国家标准与技术研究所的隐私工程目标 联邦系统中的隐私工程和风险管理导论, practitioners become well-oriented on the task at hand. These objectives include:
- Predictability; enabling reliable assumptions by individuals, owners, and operators about PII and its processing by an information system
- Manageability; providing capabilities for granular administration of PII, including alteration, deletion, and selective disclosure
- Disassociability; enabling processing of PII or events without association to individuals or devices beyond the operational requirements of the system
虽然这些目标应该考虑到任何新系统或技术可能收集, store, or transmit personal information, they should not be considered all-encompassing, but rather a starting point. For example, Jaap-Henk Hoepman’s Privacy is Hard and Seven Other Myths 在概述系统设计师现在可以应用的隐私设计策略的同时,揭穿了围绕数据隐私的持久神话,这一出色的工作是否值得那些想要深入研究这一特定领域的人一读.
Following the introduction of these objectives, 本书在结尾部分给出了一个虚构的用例,该用例是一个组织想要使用 AI chatbot to assist with certain operational activities. 该示例更详细地演示了如何应用所介绍的八种数据管理策略来获得切实的好处,以及它们如何支持隐私工程的既定目标. The use case is a topical illustration given the explosion of AI exploration, adoption and regulation currently underway.
Where to go from here
如果数据是商业的新货币,那么拥有更好数据管理的组织将会脱颖而出. 数字信任是数据驱动和互联环境所需的基础. Trust is essential for individuals, businesses and societies at large to engage in online transactions, share information, and collaborate effectively. As technology continues to play a pivotal role in our lives, 通过有效的数据管理,建立和维护数字信任对于保护隐私至关重要, preventing cyber threats and promoting the responsible use of technology.
Applied Data Management for Privacy, Security and Digital Trust 将在未来几周内发布,并应列入2024年隐私和数据治理专业人员的阅读清单,这些专业人员支持隐私工作,并希望在保护委托给他们的个人信息方面发挥积极作用.
