Author: Rafael Moscatel, CIPM, CRM, IGP

Building the Bridge Between Strategy and Governance Aboard the IT Enterprise – An Interview with Kevin Gray of the City of Burbank

Building a Bridge Between Strategy and Governance Aboard the IT Enterprise – An Interview with Kevin Gray, CIO of the City of Burbank

Eleventh in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


Kevin Gray is the Chief Information Officer for the City of Burbank, leading an IT department responsible for administrative and network management, geographic information systems and technical services for more than 1400 city employees across 15 departments. Before assuming this role he served as VP of Global Media and IT for Viacom, one of the world’s premier entertainment companies, overseeing an international team located across six continents. He received his Bachelor of Science from California State University, Long Beach and is a certified Scrum Master and PMP. I spoke with him over lunch this May about aligning governance with business strategy, balancing risks and opportunities in AI and his insights on career growth.


Kevin, you began your career path at Orion Pictures administering Unix systems and then directed data center ops for DreamWorks. How did this early hands-on experience with application design and DB administration prepare you for future IT leadership positions at Viacom and ultimately the CIO role with the City of Burbank?

Well I started out on a service desk actually, really at the entry levels in IT, and I’ve been lucky to have grown up through all aspects of it. I think climbing that ladder one rung at a time definitely helped give me a clear vision to see across all the disciplines of technology.  It enabled me to see the forest through the trees, the big picture, gave me the ability to design operations, develop strategy… and equipped me with a vision to incorporate it all. And now I can more thoughtfully pull together a clear plan for how to run an organization, understand how to innovate, how to drive change through both a specific business unit or an organization. Experience is what best prepared me to lead.

One of your focal points has always been the importance of properly aligning IT governance with an organization’s business strategy. What are some of the practical ways IT teams accomplish this goal and how critical is the relationship building component that accompanies that synchronicity?

I think the most practical way to accomplish this is to focus on the people. Focus on the people developing the strategy and look at how their business is trying to implement it, because the most important thing is to be in alignment with the shared goal, in alignment with the people you’re partnering with. You have to be a true partner with the business. And that has to be the focus, not the technology. The technology is the secondary piece. Technology is what you use to try to find the solution for the business problems that they’re trying to solve. And those business problems don’t always stay the same, they change. They change based on economic conditions, they change based on market conditions, they may change based on who might be occupying the seat that you’re trying to partner with.

smart-city-1200px

So, you have to stay close and you have to stay connected. That allows you to stay aligned. Then you can figure out the solutions that are going to help solve that business problem. You have to be agile. You have to be able to switch directions. When the business switches direction, you have to be able to switch direction. And I think too many times, IT organizations, they don’t stay connected. They believe that they’re trying to solve this business strategy, that they’re trying to solve the business’ problems. But then the business problems change, the strategies change, and they’re suddenly not connected and eventually they’re heading down the wrong direction for another three to six months, which is a lifetime in technology.

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Document Strategy Forum Next Week! My Session – Executing the Information Governance Strategy for the Post-Cloud World

Content. Communication. Strategy.

I’ve attended and spoken at many different “information management” conferences over the years and each has their strengths and weaknesses. But I’m especially excited to speak at DSF ’19 this year, sponsored by companies like OpenText, Quadient, Adobe, PitneyBowes and Doculabs. Why am I so thrilled? Besides the fact that I get to share my thoughts and experiences for the first time representing Compliance & Privacy Partners, this conference is practitioner driven, with a stellar board of advisors that has spent time with its presenters, making sure the content fits the program tracks AND elevates the conversation.

At the very heart of all the buzz surrounding “big data and artificial intelligence (AI) lives a universal truth- Information is the critical asset of every organization. Information flows through people and applications at such a rapid pace that it demands effective management. Enterprises are flying blind if they don’t have an information management strategy. It is impossible to understand customer needs and improve their experiences without the right information feeding decision making systems. Without proper management of info, employee engagement is doomed. The bottom line is that effective information management will dictate critical decisions for both internal and external facing processes that bring the intersection of employees and customers into context. –David Mario Smith in the latest Document Strategy Magazine

I’ll be presenting a best practices deck on Executing the Information Governance Strategy for the Post-Cloud World in the Automation of Information track, covering Records Compliance, Legal Hold Software and Enterprise Architecture Tools.

Agenda:

  • How to build and automate your Information Governance strategy using the right policies, technology, and stakeholders
  • How to recognize the right collaboration opportunities and strategically partner on the projects most likely to support and advance your agenda
  • What approaches to take when introducing your plans to senior leadership and how to effectively manage the optics around your contributions to your company’s bottom line

Tickets may be available if you act now but the event is quickly selling out. You can learn more here.

This slideshow requires JavaScript.

Strengthening Protections and Embracing Connections – An Interview with Douglas C. Williams of Williams Data Management

Williams Records Management - Information Governance Solutions

Strengthening Protections and Embracing Connections – An Interview with Douglas C. Williams of Williams Data Management

Tenth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


DougWilliams - Information Governance PerspectivesDouglas C. Williams is CEO of Williams Data Management and Chairman of the Board for the Vernon Chamber of Commerce. He has over thirty years of experience helping Fortune 500 clients with their document storage, destruction and data security needs. I had an opportunity to sit down with him earlier this year in Los Angeles and collect his thoughts on data protection, business continuity, civic responsibility and professional growth.


Doug, your family has been involved in the Records and Data Management business for the better part of a century and you’ve seen a lot of players come and go. How do small businesses like Williams remain resilient in the disruptive world of digital transformation, and what should executives be thinking about in terms of their long-term information management strategies?

Commercial Records Management, the holistic approach at 50,000’, includes the digital component, as well as the legacy hard copy component.  Our transition in the early 1980s into the commercial records center business from industrial freight warehousing and distribution, witnessed similar disruptions.  Those disruptions had mostly to do with the shift to the service economy from the industrial/manufacturing economy.  Our client base includes enterprise size businesses as well as mid-size businesses and SMBs.  Executives in charge of information assets need to recognize the holistic scope of those information assets, whether they be structured or unstructured, and apply the information governance and regulatory guidelines to each equally.  Knowing that digital technologies will change at light-speed, CEOs and their executive teams need to be fully knowledgeable and ready for changes in forensic discovery and know the impact of retention milestones for each type of information asset.  We all know that text messages, email, and all social media posts have a permanent residency somewhere to be found.  Each and every business, large or small, has to accept a contingent liability regarding the action or inaction of maintaining a strict policy regarding their information management policies – irrespective of the resident media.

In 2015, you were interviewed by Adam Burroughs of Smart Business Los Angeles and highlighted a growing alarm over data breaches. Here we are just a few years later and data protection is a daily news flash. With California recently passing the California Consumer Privacy Act, do you still feel the majority of organizations are taking security and privacy for granted or are you now starting to see a trend toward proactive management of data?

I do.  They are taking for granted it won’t happen to them, and if it does, they are insured.  But guess what, that is delusional.  Again, the proactive plan requires a holistic approach to information management.  The IT department knows how to protect the data, but typically do not know why, i.e., what are the governing rules for each type of data. That is the province of the CIO or the Director of Information Governance, or the General Counsel if an enterprise size firm. The breaches in the headlines are preventable; however, because of human errors in social media, emails, texts, data sharing, lack of encryption and the like, entryways into personal information data sets are available.  In our case at Williams Data Management, because we are social media users, we installed front end data intrusion software, pioneered and patented by Oasis Technologies, known as TITAN, which blocks over 500,000 intrusions attempts per week from getting into our networks.

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Marketing The Moving Targets of Digital Transformations – An Interview with Dux Raymond Sy of AvePoint®

AvePoint - Migrate Manage Protect

Marketing the Moving Targets of Digital Transformations – An Interview with Dux Raymond Sy of AvePoint

Tenth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


Dux Raymond Sy is the Chief Marketing Officer of Avepoint® and has successfully driven business and digital transformation initiatives for commercial, educational and public sector organizations across the globe. He’s a Microsoft Regional Director (RD), a Microsoft Most Valuable Professional (MVP) and has authored numerous books, articles and whitepapers on IT and business process strategy. He received his Bachelor of Science from Southern Polytechnic University in Telecommunications Engineering. I interviewed him recently about the unique challenges of marketing digital products and services, the future of cloud computing, O365 and the shifting IT career landscape.


Dux, Avepoint specializes in leveraging the breadth of Microsoft technologies including SharePoint and Office 365 to help companies migrate and manage their cloud, on-premises and hybrid environments. There are some trend reports indicating a few enterprises have shifted back toward hybrid stacks after overextending themselves in the cloud. Do you believe most enterprises eventually will evolve, or are there factors such as data protection that will always prevent full cloud adoption for certain entities?

When it comes to enterprise technology, we rarely move backwards. The cloud’s cost, scale, efficiency access, and yes, even security advantages, are too great for on-premises  or hybrid infrastructures to prevail long-term.  What I will say is the transformation will take much longer than the advertising of cloud providers would have you believe. Most organizations are not all-in the cloud today. We did a study in 2017 that showed about 70 percent of organizations were still in hybrid architectures. We sponsored a study with AIIM this year that showed 1 in 3 organizations is maintaining at least 2 versions of SharePoint. Attitudes towards the cloud have changed, now the conversation is mainly focused on how to get there rather than the why. 

Lastly, there are capabilities that the cloud offers that cannot be delivered on-premises s. Cloud-based advanced services, like machine learning, artificial intelligence, and data analytics, open new opportunities for technical teams to drive business value.

AvePoint and Office 365 - Information Governance Perspectives

The free e-book “Designed to Disrupt” unpacks this in full detail: https://azure.microsoft.com/en-us/resources/designed-to-disrupt-reimagine-your-apps-and-transform-your-industry/

How is Infrastructure, Platform and Software-as-a-Service changing the organizational hierarchy of IT departments, reporting structures and collaborative teams? Are companies beginning to hire more administrators and get along with fewer developers, architects and support staff? Where will the best IT jobs be in the next few years at the current pace?

This is a great question! My colleague Hunter Willis recent wrote a piece about this that sparked a huge debate on Twitter. What we have found is that people and organizations evolve more slowly than the technology. Right now, most organizations are just shifting on-premises  roles to the cloud. So if you were the SharePoint admin or the Exchange admin, you are now the SharePoint Online admin or Exchange Online admin. But what about applications that don’t exist on-premises ? Who owns PowerApps? This also ignores the advanced workloads and connections between apps that exist in the cloud. What you do in Microsoft Teams impacts your Exchange and vice versa. What organizations need, and we haven’t seen yet, is an Office 365 admin that truly owns the platform and looks at these platform wide issues. If were seeing some of these issues just within Office 365, imagine what we will see as multi-cloud architectures become more popular. The best IT jobs in the next few years will be business enablers who have a love of learning. You will need to be agile in the era of tech intensity.

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Establishing a Framework to Sustain the Coming IoT Tsunami – An Interview with Priya Keshav of Meru Data

Establishing a Framework to Sustain the Coming IoT Tsunami – An Interview with Priya Keshav of Meru Data

Ninth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


Priya Keshav is the founder and CEO of Meru Data LLC, a software company focused on building solutions that simplify and achieve corporate information governance goals. Prior to Meru, she was the leader of KPMG’s Forensic Technology Services Practice in the Southwest United States. She received her MBA from University of Florida’s Warrington College of Business Administration. I had the chance to sit down with her this January and discuss IG, the Internet of Things, consulting, and software development.


Priya, you’ve written extensively, often in collaboration with thought leaders in IG including Jason Baron, about the enormous ethical questions emerging from IoT. Do you think there is yet a universal, cross-industry awareness of these challenges or are business drivers in this area primarily the result of European or US regulatory pressures?

I think there is universal recognition that the use of IoT will bring unique challenges and ethical questions. However, I would not call this universal awareness or understanding at this point. The use of IoT is rapidly increasing, the solutions being developed are integrating multiple industries and we are just scratching the surface of what is possible with IoT. I think today, we are at a point where we recognize that some unique challenges are going to arise. I do not believe we have fully understood the nature of these challenges, especially as the uses and applications for IoT are rapidly evolving.

Both industry and regulators are at the same point – thinking about appropriate frameworks for discussing and addressing these challenges. I don’t believe regulatory pressures from either Europe or the US are the primary drivers for the growing awareness. It does seem regulators have more of a focus on the challenges while the industry focus is more around creating newer solutions. There are multiple efforts underway to understand challenges with IoT, driven by both industry and regulatory interest. However, I do not think this is primarily due to regulatory pressure. There is regulatory interest that has industry taking notice but even the industry is realizing the need to manage the unique challenges from the use of IoT. Existing regulations like the GDPR, COPA etc. obviously would apply to IoT. There is increased scrutiny and regulations around data privacy and security in general and that might look like there is increased regulation around IoT. However, there are very few IoT specific regulations like the California SB327.

Regulatory efforts around IoT to date have been more guidelines focused and have tried to not slow down the uptake of IoT. Examples include the recently issued NIST draft report on IoT cyber security standards that provides a great discussion of how risks from IoT are unique and how organizations could adapt their policies to handle this. There have also been integrated efforts with working groups to review existing IoT security standards and initiatives in the US (by the National Telecommunication and Information Administration) and in Europe (Working Group 3 formed by Alliance for Internet of Things Innovation). Other agencies like the the Consumer Products Safety Commission and the FTC have also been gathering comments on their roles in regulating IoT.

With the Meru Data platform, you’ve strived to develop a functional and reporting tool that simplifies and sustains data governance programs for your customers. Is most software today built around policy frameworks, such as FINRA compliance or privacy-by-design, and are these types of approaches even feasible amidst shifting customer wants and seemingly prescriptive laws like GDPR?

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Harnessing Analytical Insights and Illuminating the Physical Realm of Dark Data – An Interview with Markus Lindelow of Iron Mountain

Harnessing Analytical Insights and Illuminating the Physical Realm of Dark Data – An Interview with Markus Lindelow of Iron Mountain

Eighth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


Markus Lindelow leads the IG and Content Classification Practice Group at Iron Mountain, the world’s largest information management company, where he’s been pioneering breakthrough analytic techniques for over a decade. He holds a Master of Science degree in Computer Information Systems from Saint Edwards University and consults across a broad set of industries. I interviewed him in November to discuss his thoughts on the evolution of metadata, content classification, AI, and how organizations are using the new pillars of data science to break down their silos, help customers get lean and discover the hidden value in their big data sets.

Markus, you work with all kinds of companies to help them better understand and address the often incomplete metadata tied to some of their most valuable information assets in the form of historical paper records and materials retained over decades. In many cases, institutional memory has been completely lost and they’re struggling to figure out whether to dispose of these business records, balancing costs of over retention with risks of untimely destruction. How does your team leverage diagnostic, predictive and prescriptive analytics to make sense of what little data they might have to make informed decisions?

Our content classification process focuses on making the best use of the available metadata. This means classifying records with meaningful metadata as well as analyzing the classified inventory in order to create classification rules for records with little or no metadata. We have identified a number of attributes within the data that tend to correlate with classification conclusions. We assess the classified records associated with an attribute to create a profile that may inform a rule to classify the unclassified records sharing that same attribute…

If, for example, there are 100 cartons associated with pickup order XYZ, 90 of those cartons have been classified, and furthermore all 90 are classified to ABC100, can we create a rule to classify to ABC100 the 10 unclassified cartons belonging to pickup order XYZ? Clients may need to weigh the risk when applying this type of classification rule and the process may include a random sampling of cartons for physical inspection in order to verify the classification.

There’s usually a disconnect between the needs of information managers and legislatures which set retention periods for records. We see this in regulations where the granularity of both fixed and event based retention triggers complicates the practical management of records. Over the years, strategies like “big buckets” have attempted to lessen this challenge but even the best efforts are imperfect and carry their own risks. What can be done to better bridge the divide between the need for due diligence in retaining records and the business case for a more practical solution?

There are two pieces to the puzzle of records management: classification and retention. A records retention schedule needs to be straightforward enough to implement so that users can apply record codes to records. But the retention periods for the record classes need to be specific enough so that some types of records are not being over or under-retained because they are being grouped with other records…

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Book Review: Infonomics – How to Monetize, Manage, and Measure Information As An Asset For Competitive Advantage by Douglas B. Laney

Are CFO’s finally ready to heed the advice of their Chief Data Officers and begin adding information assets to the balance sheet?

Although the commonly used quote “There is nothing more powerful than an idea whose time has come.” is regularly and erroneously misattributed to Victor Hugo, originating from his account of the French coup d’état of 1851 that brought Napoleon III to power, I feel it’s almost appropriate for Douglas B. Laney’s passionate argument on Infonomics. It’s an idea he’s been meticulously developing and arguing for almost two decades and has at last fully articulated in his latest book published by Taylor & Francis entitled Infonomics: How to Monetize, Manage, and Measure Information As An Asset For Competitive Advantage. Laney previously published his thoughts on Infonomics in Forbes back in 2012.

This brilliantly researched book, supported by industry giant Gartner, is steeped in both a mastery of information technology as well as economics, in particular accounting methodology and complementing business disciplines that range from supply chain economics to compliance frameworks.

Laney, with brevity and unfailing pragmatism, weaves his impressive understanding of the business of information, it’s flow and it’s enormous potential into a convincing pleading that I believe is a must read for not just the aspiring digerati, but any CFO, Chief Data Officer or executive hoping to survive and thrive in the Information Age.

Continue reading “Book Review: Infonomics – How to Monetize, Manage, and Measure Information As An Asset For Competitive Advantage by Douglas B. Laney”

40th International Conference of Data Protection and Privacy Commissioners

40th Annual Data Protection Conference

Reflections on the 40th Annual International Conference of Data Protection and Privacy Commissioners

Guest Post by Abby Moscatel

It’s been about a week since Rafael and I returned from Europe, where we attended the 40th International Conference of Data Protection and Privacy Commissioners at the European Parliment’s Hemicycle in Brussels, Belgium.

The thought leaders posed the single most important question facing us today: What kind of world do we want to live in? You see, we are at the tipping point where the internet will know more about us than we know about each other, or even ourselves. And yet there is no recognized universal ethical and moral code for how we deal with all of the data that is being collected about us. How do we handle it? Right now, Data Kings hold the cards. Companies provide free services to gather our information.

Apple CEO Tim Cook was correct when he said that we are now in a time where our data is being weaponized. We see it in our news feeds. No matter what you believe, you get socials and content that affirms your position, and makes the opposite position something you must resist.

Tim Cook at the 40th Annual Conference of Data Protection Comissioners

Hong Kong artificial intelligence researcher Pascale Fung was also right when she said that unless we get all of the world leaders together, it won’t matter.

Now, we have the GDPR. And, here in the US, we are starting to get patchwork legislation, like the California Consumer Privacy Act, heavily resisted by Big Tech in favor of a federal privacy law.

I want to live in a world where I own my data, control access to my data, and where I can delete my information. If a company or individual breaks a law, then I want a private right of action. Most importantly, I want to live in a world where we have a universal agreement on digital ethics.

What kind of world do you want to live in?

The Olympics of Privacy in Brussels!

Debating Ethics: Dignity and Respect in Data Driven Life, the 40th Annual Conference of Data Protection and Privacy Commissioners

Two Americans walk into a EU Privacy Conference…

Just a few weeks ago, a colleague reached out and reminded me “the Olympics of Privacy” were being held at the EU Parliament in Brussels in late October, and also if I’d like to attend. Well, how the heck am I supposed to turn down an invitation like that? After all, this is the year of GDPR, the NYDFS, the new California Privacy legislation and the ICDPPC has leaders like Mark ZuckerbergSundar Pichai, Tim-Berners Lee, Jagdish Singh Khehar and even the King of Spain all lining up to share their thoughts.

We want to stimulate an honest and informed discussion about what digital technology has done and is doing to do to us as individuals and as societies, and to consider future scenarios. We want to better understand the impact of technology on people of all generations, in all parts of the world, including the way people think, interact with others, develop their opinions, create art and write, how they buy and sell and how they participate in civic life.  – Privacy Conference Statement

Mark and Sundar are likely showing up because they realize the stiff penalties now associated with data security and privacy violations and the rest of the speakers realize that we are on the cusp of a digital and ethical revolution of sorts, one which will affect generations to come. In fact, Debating Ethics: Dignity and Respect in Data Driven Life is probably the most important privacy conference of the 21st century. My wife Abby Moscatel, an attorney and ethicist heard about this lineup and quickly said, yeah… I’m coming with you to this one!

Continue reading “The Olympics of Privacy in Brussels!”

Navigating The Global Digital Economy – An Interview with April Dmytrenko, CRM, FAI

Navigating The Global Digital Economy – An Interview with April Dmytrenko, CRM, FAI

Seventh in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.


April Dmytrenko - Information Governance Perspectives

April Dmytrenko, CRM, FAI is a recognized thought leader in the field of information management, governance, compliance, and protection. As both a practitioner and consultant, she works with global organizations on key initiatives and best practice approaches for the enterprise; developing sustainable solutions; integrating legally compliant programs focused on information/digital assets; motivating and facilitating multi-disciplined groups to collaborate on achievable goals; and building strategic partnerships with internal and external teams. She serves on industry action committees and governing and editorial boards, and is an active industry speaker, trainer, and author. I had the pleasure of sitting down with April this September to discuss privacy, the role of industry associations and key concerns for leaders navigating the global digital economy.


April, almost five years ago I asked what the next big frontier would be for those of us managing data, and more importantly where the jobs would be. You wisely predicted that privacy would be on the horizon. Well we now have a number of legislatures drafting regulations and CPO positions can’t seem to be filled quickly enough. Do you believe there is still time to enter this emerging field and make an impact?

Right now we are experiencing an amazing transformation of the business environment based on many things but particularly the evolution of technology and the global digital economy. It is indeed an exciting time but we are acutely “headline news” aware of the impacts of compromised data security and privacy, including financial impact on brand and reputation, litigation, and the overall burden and distraction on the business. The exponential growth rate of incidents of data theft, damage, loss or inadvertent disclosure continues to expand not only in frequency but scope, and complexity. While privacy concerns gained attention over 100 years ago, and became topical about 15 years ago, it is still truly in an infancy state. Privacy offers IG professionals a rich and important opportunity to expand their leadership or advisory role in maturing a unified approach to protection, compliance with laws and regulations, and incident response and recovery.

April Dmytrenko - Governance - Not Taking Risks
Courtesy ARMA International

In your role as a fellow of ARMA International, you’ve helped to connect organizations with practitioners who truly understand the discipline and benefits of Information Governance. How has this evolved over the years and what steps do you think organizations like ARMA and the ICRM need to keep taking to remain relevant?

This is a great question as the core IG professional organizations have been dealing with an identity crisis for some time, and still struggle to have a clear and concise “elevator speech” on mission and value. IG, while it has a wide breath, has many in the industry confused, and still is a term that does not universally resonate with senior management. These associations have tremendous value and passionate support but numbers speak volumes and membership and conference attendance have been decreasing for years. We are seeing the technology vendor market taking over a leadership role and may serve as the new defining force in setting direction and guiding the industry – self-serving yes but it could be what is needed going forward. I am not concerned about relevance as it will continue to be all about information and technology, and the management, protection and leveraging of information asset. While the role of a traditional Records Manager may not continue to be relevant, I don’t find it concerning – the relevance is in the work and it evolves…

Read the entire interview and more in my new book on leadership in the information age, Tomorrow’s Jobs Today.

Congratulations to Manual Arts High Eleanor Moscatel Scholarship Winner Nicky Lopez!

Manual Arts High School

Eleanor Moscatel and a classmate practicing archery, circa 1950s
Eleanor Moscatel and a Manual Arts High classmate practicing archery, circa 1950s

Congratulations 2018 Scholarship Recipient Nicky Lopez!

This annual academic scholarship was established in honor of Eleanor Moscatel, a graduate of the Manual Arts High School Class of 1949. Her multifaceted and successful career, from Actress to Entrepreneur and Real Estate Maven spans seven decades and includes important cultural and social service contributions to both the city and the people of Los Angeles. Her story is one of education, experience, patience and self-reliance. Essays were judged based on sincerity and clarity of thought and seeks to reward students who not only believe in self-reliance, but also can articulate in 500 to 1000 words, an experience in their lives where one door of opportunity may have closed but where another one opened because of their perseverance and commitment to a goal. Congratulations again Nicky and good luck on your academic and life journey!

You Think You Don’t Know Enough About GDPR? You Are Right and Here’s How

The EU has taken the first step in protecting the data and privacy of its residents. Through the enactment of the General Data Protection Regulation (GDPR), people are now able to have the protection they are looking for online. This means changes for businesses everywhere that are planning to reach consumers in the EU.

Companies need to look at the way that they are handling the personal data of their customers and have an action plan in place to ensure their privacy is protected. Without a strong understanding of what the GDPR means and how it affects your business, you could find yourself in a situation with the EU that you didn’t count on.

Fifteen members of Forbes Technology Council discuss some of the more unexpected consequences of the new GDPR regulation. Here’s what they had to say:

1. Restriction Of Privacy And Innovation

GDPR is the latest version of Y2K compliance — long on speculation and fear, short on reality. In my opinion, regional enforcement of global technology is an impossibility and will restrict — not enhance — privacy, freedom and innovation. The result will be regions of non-compliance (GDPR havens), enormous expense and uncertainty. – Wayne LonsteinVFT Solutions

2. Roadblocks For Blockchain Data Storage

GDPR could impact the decisions and data sets being stored and collected in emerging private and public blockchains. This may create roadblocks for companies looking to embrace blockchain to store any data that may fall under GDPR. – Aaron VickCicayda

3. Opt-In Fatigue

One of the most unexpected consequences of GDPR is the wave of new regulations in jurisdictions outside of Europe, including California, New York and perhaps soon in Asia. Another unintended impact is “check the box” fatigue where opt-in consent language is presented so frequently on websites and apps that consumers don’t read the consents and just check the box, waiving their privacy rights. – Silvio Tavares, CardLinx Association

4. Poor Customer Service

One GDPR byproduct distortion or unintended consequence is excessive regulation leading to poor customer service. The pendulum has swung too far and will be moderated by citizen feedback. – Jeff BellLegalShield

5. Small Businesses Getting Hurt

The companies that are best prepared for GDPR are the big ones: Facebook, Google, Amazon — those that have the money to pour into their tech and legal teams for ultimate compliance. The small and medium-sized businesses, however, may be less prepared, making them more vulnerable to potential fines and penalties. – Thomas GriffinOptinMonster

6. The Slow Death Of Free Services

If a service is free, then your data is the product. We all love using Facebook, YouTube and the many other social media platforms. However, we fail to realize how these businesses operate. If regulations strangle business, then the alternative is a paid model. Just look at YouTube and how it’s strugglingwith its paid subscriptions. – Daniel Hindi, BuildFire

7. Talk About Similar Regulation In The U.S.

The most unintended consequence has been the multitudes of discussions about a similar impending regulation in the U.S. In fact, reading between the lines of Facebook’s testimony to Congress, it is clear to me that tech leaders realize more care ought to be given to sensitive data, and users should have more rights. They are preparing for coming regulation stateside. – Michael RoytmanKenna Security

Read more on Forbes:

https://www.forbes.com/sites/forbestechcouncil/2018/08/15/15-unexpected-consequences-of-gdpr/#2ce5537f94ad 

 

No comments