Data forms the backbone of many personal and business processes – from e-commerce sites tailoring online experiences to businesses performing critical analyses that impact their bottom lines. However, the collection and use of data can create risks to consumer privacy and security, especially when the information is mishandled or compromised. Data protection focuses on three primary aspects: controlling access, ensuring portability and ensuring security. While data protection is often associated with cybersecurity, it can also include policies that regulate how and when an organization collects data, how the data is used and how long it is stored.
Employers face a number of data privacy issues when dealing with employees’ private information. While it is permissible to monitor an employee’s computer usage – to ensure they are not using company time for social media or frivolous browsing – employers risk running afoul of privacy laws if they disclose this information to others. They may also violate workplace privacy rights if they infer private information about an employee from unrelated data, such as credit card information or health records.
In addition, students are increasingly concerned about the privacy of their school-related information. While many believe that students who grew up using digital technologies have little interest in data privacy, research has found that they prioritize school cybersafety and student data privacy. In fact, they are more likely to be concerned about the potential impact of third-party vendors who have access to their student data than any other issue, and they want schools to be transparent and accountable in how they manage vendor relationships and contracts.
About the Author
