Corporate Executives Get Help With Security and Privacy Strategy

A joint paper released by Canadian Information and Privacy Commissioner Ann Cavoukian and Deloitte & Touche LLP, provides corporate executives with suggestions for developing strategies for information security and privacy protection.

The Security-Privacy Paradox: Issues, Misconceptions and Strategies examines the complex and often misunderstood relationship between the disciplines of information security and privacy protection.

"The evolution of the computer from a passive, mechanical record-keeper to an interactive, networked transaction manager has dramatically increased the volume and variety of personally identifiable information collected by organizations," said Commissioner Cavoukian. "This capability for high-speed, high-volume processing and dissemination of personal information creates the potential for substantial risks - as well as large-scale opportunities - associated with information security and privacy protection. However, you must address both - never just one. While information security and privacy do overlap, at times they may appear to contradict. In preserving one alone, companies can do serious damage to the other."

The joint paper helps to clarify the security-privacy paradox for senior executives and other professionals. The paper:

  • Describes and illustrates major characteristics, points of difference and areas of overlap between information security and privacy protection;
  • Addresses issues and misconceptions that can lead to wasted money, time, effort, conflict and, all too often, inappropriate measures and programs; and
  • Recommends and prioritizes business, organizational and technical approaches that are cost-justifiable and can be beneficial in reaching regulatory compliance.

"For those companies that can effectively master building a foundation of trust between themselves and their customers the rewards will be significant. In doing so, companies must effectively address information security and foster an environment that protects customer privacy," said William Levant, Global Privacy Leader, Deloitte & Touche. "The creation of trust in this on-line business world is what can give one company a competitive advantage over another."

The Security-Privacy Paradox cites examples of approaches that work, and those that have failed. In its concluding Roadmap for Successful Strategies section, it offers 16 key steps for smart businesses to follow.

You may like these other stories...

Remember the old joke about the devil showing a guy around Hell? There were great parties, swimming pools, and sumptuous food. The guy liked what he saw, lived a bad life and went to Hell when he died. Upon arrival the devil...
Due to fierce competition in the accounting industry, some CPAs may feel pressure to compete for business using pricing alone. However, this is a losing battle in the long run: Competing on price will lead to the need for...
If the thought of blogging makes you as nervous as an executive facing an IRS audit, stop worrying. You can overcome your challenges with these tips.1. Blogging is good for business. You'll benefit as your blog displays...

Already a member? log in here.

Upcoming CPE Webinars

Aug 26
This webcast will include discussions of recently issued, commonly-applicable Accounting Standards Updates for non-public, non-governmental entities.
Aug 28
Excel spreadsheets are often akin to the American Wild West, where users can input anything they want into any worksheet cell. Excel's Data Validation feature allows you to restrict user inputs to selected choices, but there are many nuances to the feature that often trip users up.
Sep 9
In this session we'll discuss the types of technologies and their uses in a small accounting firm office.
Sep 11
This webcast will include discussions of commonly-applicable Clarified Auditing Standards for audits of non-public, non-governmental entities.