Category: GDPR

ARMA International Ethics GDPR Information Governance Privacy Professional Development

UPCOMING PRIVACY WORKSHOP IN LA 7/31: Leveraging a GDPR Compliance Investment for CCPA / Privacy By Design

By Rafael Moscatel, CRM, IGP

ARMA-GLA Summer Spotlight Workshop

LEVERAGING A GDPR COMPLIANCE INVESTMENT FOR CCPA / PRIVACY BY DESIGN WORKSHOP

Special Guest Speakers:  Brussels Privacy Experts
Will Address Leveraging GDPR Compliance Investments with the CCPA
July 31, 2019. 11:30am-2pm, San Antonio Winery New Conference Center Vintage Room!

REGISTER HERE

Part I – Join European attorneys and privacy compliance experts from Brussels based law firm Ethikos to learn how to leverage GDPR compliance investments for California’s new Consumer Privacy Act. In this presentation they’ll review key data protection concepts and privacy by design strategies already in place across the EU and explain how they’re now spreading throughout the United States. Find out what you need to know about the rules of transferring data and records internationally, PII records retention requirements, rules for managing content on customer facing websites and the impact of these new records management guidelines in contract negotiations.

Part II – Meet solutions engineers from Active Navigation who will show you real world examples of how state of the art privacy software helps apply concepts and rules from GDPR and CCPA directly into an information lifecycle program. Learn about machine learning classification, consent validation, uncovering dark data and many more intricacies of implementing a privacy framework as part of your Information Governance roadmap.

Presenters

Miguel Mairlot, Ethikos Law Firm, Brussels

Miguel Mairlot is a trusted compliance expert, with significant breadth of experience across Europe. He provides clients with advice and support on all aspects of their compliance program. His areas of expertise include Asset Management, Wealth and Insurance businesses to cover cross-border regulatory issues, risk management, contractual documentation and product development, advising and influencing senior stakeholders at executive committee level, enabling them to meet their responsibilities across a range of group policies and local requirements, including MiFID II, GDPR, AML, ABC and Sanctions. Before Ethikos, Miguel has worked for prestigious international law firms and financial institutions as Head of Compliance. Miguel speaks English, French, Dutch and is a Certified Compliance Officer (Febelfin Academy) since 2013 and a Data Protection Officer. He has written and spoken widely on compliance and financial law topics and teaches at the Cooremans Institute. He also serves on the Editorial Board of “la Revue de Droit Bancaire et Financier”.

Posted in: ,
No comments
Cloud Computing GDPR Information Governance Information Technology Interviews Professional Development SharePoint

Marketing The Moving Targets of Digital Transformations – An Interview with Dux Raymond Sy of AvePoint®

By Rafael Moscatel, CRM, IGP
AvePoint - Migrate Manage Protect

Marketing the Moving Targets of Digital Transformations – An Interview with Dux Raymond Sy of AvePoint

Tenth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.

Dux Raymond Sy is the Chief Marketing Officer of Avepoint® and has successfully driven business and digital transformation initiatives for commercial, educational and public sector organizations across the globe. He’s a Microsoft Regional Director (RD), a Microsoft Most Valuable Professional (MVP) and has authored numerous books, articles and whitepapers on IT and business process strategy. He received his Bachelor of Science from Southern Polytechnic University in Telecommunications Engineering. I interviewed him recently about the unique challenges of marketing digital products and services, the future of cloud computing, O365 and the shifting IT career landscape.

Dux, Avepoint specializes in leveraging the breadth of Microsoft technologies including SharePoint and Office 365 to help companies migrate and manage their cloud, on-premises and hybrid environments. There are some trend reports indicating a few enterprises have shifted back toward hybrid stacks after overextending themselves in the cloud. Do you believe most enterprises eventually will evolve, or are there factors such as data protection that will always prevent full cloud adoption for certain entities?

When it comes to enterprise technology, we rarely move backwards. The cloud’s cost, scale, efficiency access, and yes, even security advantages, are too great for on-premises  or hybrid infrastructures to prevail long-term.  What I will say is the transformation will take much longer than the advertising of cloud providers would have you believe. Most organizations are not all-in the cloud today. We did a study in 2017 that showed about 70 percent of organizations were still in hybrid architectures. We sponsored a study with AIIM this year that showed 1 in 3 organizations is maintaining at least 2 versions of SharePoint. Attitudes towards the cloud have changed, now the conversation is mainly focused on how to get there rather than the why. 

Lastly, there are capabilities that the cloud offers that cannot be delivered on-premises s. Cloud-based advanced services, like machine learning, artificial intelligence, and data analytics, open new opportunities for technical teams to drive business value.

AvePoint and Office 365 - Information Governance Perspectives

The free e-book “Designed to Disrupt” unpacks this in full detail: https://azure.microsoft.com/en-us/resources/designed-to-disrupt-reimagine-your-apps-and-transform-your-industry/

How is Infrastructure, Platform and Software-as-a-Service changing the organizational hierarchy of IT departments, reporting structures and collaborative teams? Are companies beginning to hire more administrators and get along with fewer developers, architects and support staff? Where will the best IT jobs be in the next few years at the current pace?

This is a great question! My colleague Hunter Willis recent wrote a piece about this that sparked a huge debate on Twitter. What we have found is that people and organizations evolve more slowly than the technology. Right now, most organizations are just shifting on-premises  roles to the cloud. So if you were the SharePoint admin or the Exchange admin, you are now the SharePoint Online admin or Exchange Online admin. But what about applications that don’t exist on-premises ? Who owns PowerApps? This also ignores the advanced workloads and connections between apps that exist in the cloud. What you do in Microsoft Teams impacts your Exchange and vice versa. What organizations need, and we haven’t seen yet, is an Office 365 admin that truly owns the platform and looks at these platform wide issues. If were seeing some of these issues just within Office 365, imagine what we will see as multi-cloud architectures become more popular. The best IT jobs in the next few years will be business enablers who have a love of learning. You will need to be agile in the era of tech intensity.

Continue reading “Marketing The Moving Targets of Digital Transformations – An Interview with Dux Raymond Sy of AvePoint®”

Posted in: , , , ,
No comments
Analytics Artificial Intelligence Big Data Data Governance GDPR Giving Back Information Governance Interviews Privacy Records Retention Policy

Harnessing Analytical Insights and Illuminating the Physical Realm of Dark Data – An Interview with Markus Lindelow of Iron Mountain

By Rafael Moscatel, CRM, IGP

Harnessing Analytical Insights and Illuminating the Physical Realm of Dark Data – An Interview with Markus Lindelow of Iron Mountain

Eighth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.

Markus Lindelow leads the IG and Content Classification Practice Group at Iron Mountain, the world’s largest information management company, where he’s been pioneering breakthrough analytic techniques for over a decade. He holds a Master of Science degree in Computer Information Systems from Saint Edwards University and consults across a broad set of industries. I interviewed him in November to discuss his thoughts on the evolution of metadata, content classification, AI, and how organizations are using the new pillars of data science to break down their silos, help customers get lean and discover the hidden value in their big data sets.

Markus, you work with all kinds of companies to help them better understand and address the often incomplete metadata tied to some of their most valuable information assets in the form of historical paper records and materials retained over decades. In many cases, institutional memory has been completely lost and they’re struggling to figure out whether to dispose of these business records, balancing costs of over retention with risks of untimely destruction. How does your team leverage diagnostic, predictive and prescriptive analytics to make sense of what little data they might have to make informed decisions?

Our content classification process focuses on making the best use of the available metadata. This means classifying records with meaningful metadata as well as analyzing the classified inventory in order to create classification rules for records with little or no metadata. We have identified a number of attributes within the data that tend to correlate with classification conclusions. We assess the classified records associated with an attribute to create a profile that may inform a rule to classify the unclassified records sharing that same attribute…

Continue reading “Harnessing Analytical Insights and Illuminating the Physical Realm of Dark Data – An Interview with Markus Lindelow of Iron Mountain”

Posted in: , , , , ,
No comments
Data Governance Ethics GDPR Information Governance Internet of Things Privacy

The Olympics of Privacy in Brussels!

By Rafael Moscatel, CRM, IGP

Debating Ethics: Dignity and Respect in Data Driven Life, the 40th Annual Conference of Data Protection and Privacy Commissioners

Two Americans walk into a EU Privacy Conference…

Just a few weeks ago, a colleague reached out and reminded me “the Olympics of Privacy” were being held at the EU Parliament in Brussels in late October, and also if I’d like to attend. Well, how the heck am I supposed to turn down an invitation like that? After all, this is the year of GDPR, the NYDFS, the new California Privacy legislation and the ICDPPC has leaders like Mark ZuckerbergSundar Pichai, Tim-Berners Lee, Jagdish Singh Khehar and even the King of Spain all lining up to share their thoughts.

We want to stimulate an honest and informed discussion about what digital technology has done and is doing to do to us as individuals and as societies, and to consider future scenarios. We want to better understand the impact of technology on people of all generations, in all parts of the world, including the way people think, interact with others, develop their opinions, create art and write, how they buy and sell and how they participate in civic life.  – Privacy Conference Statement

Mark and Sundar are likely showing up because they realize the stiff penalties now associated with data security and privacy violations and the rest of the speakers realize that we are on the cusp of a digital and ethical revolution of sorts, one which will affect generations to come. In fact, Debating Ethics: Dignity and Respect in Data Driven Life is probably the most important privacy conference of the 21st century. My wife Abby Moscatel, an attorney and ethicist heard about this lineup and quickly said, yeah… I’m coming with you to this one!

Continue reading “The Olympics of Privacy in Brussels!”

Posted in: , , , ,
No comments
Archives Big Data Data Governance Data Storage and Archiving Ethics GDPR Information Governance Information Management Information Security and Protection Information Technology millennials Privacy Risk and Compliance Search Engines

You Think You Don’t Know Enough About GDPR? You Are Right and Here’s How

By Rafael Moscatel, CRM, IGP on

The EU has taken the first step in protecting the data and privacy of its residents. Through the enactment of the General Data Protection Regulation (GDPR), people are now able to have the protection they are looking for online. This means changes for businesses everywhere that are planning to reach consumers in the EU.

Companies need to look at the way that they are handling the personal data of their customers and have an action plan in place to ensure their privacy is protected. Without a strong understanding of what the GDPR means and how it affects your business, you could find yourself in a situation with the EU that you didn’t count on.

Fifteen members of Forbes Technology Council discuss some of the more unexpected consequences of the new GDPR regulation. Here’s what they had to say:

1. Restriction Of Privacy And Innovation

GDPR is the latest version of Y2K compliance — long on speculation and fear, short on reality. In my opinion, regional enforcement of global technology is an impossibility and will restrict — not enhance — privacy, freedom and innovation. The result will be regions of non-compliance (GDPR havens), enormous expense and uncertainty. – Wayne LonsteinVFT Solutions

2. Roadblocks For Blockchain Data Storage

GDPR could impact the decisions and data sets being stored and collected in emerging private and public blockchains. This may create roadblocks for companies looking to embrace blockchain to store any data that may fall under GDPR. – Aaron VickCicayda

3. Opt-In Fatigue

One of the most unexpected consequences of GDPR is the wave of new regulations in jurisdictions outside of Europe, including California, New York and perhaps soon in Asia. Another unintended impact is “check the box” fatigue where opt-in consent language is presented so frequently on websites and apps that consumers don’t read the consents and just check the box, waiving their privacy rights. – Silvio Tavares, CardLinx Association

4. Poor Customer Service

One GDPR byproduct distortion or unintended consequence is excessive regulation leading to poor customer service. The pendulum has swung too far and will be moderated by citizen feedback. – Jeff BellLegalShield

5. Small Businesses Getting Hurt

The companies that are best prepared for GDPR are the big ones: Facebook, Google, Amazon — those that have the money to pour into their tech and legal teams for ultimate compliance. The small and medium-sized businesses, however, may be less prepared, making them more vulnerable to potential fines and penalties. – Thomas GriffinOptinMonster

6. The Slow Death Of Free Services

If a service is free, then your data is the product. We all love using Facebook, YouTube and the many other social media platforms. However, we fail to realize how these businesses operate. If regulations strangle business, then the alternative is a paid model. Just look at YouTube and how it’s strugglingwith its paid subscriptions. – Daniel Hindi, BuildFire

7. Talk About Similar Regulation In The U.S.

The most unintended consequence has been the multitudes of discussions about a similar impending regulation in the U.S. In fact, reading between the lines of Facebook’s testimony to Congress, it is clear to me that tech leaders realize more care ought to be given to sensitive data, and users should have more rights. They are preparing for coming regulation stateside. – Michael RoytmanKenna Security

Read more on Forbes:

https://www.forbes.com/sites/forbestechcouncil/2018/08/15/15-unexpected-consequences-of-gdpr/#2ce5537f94ad 

 

Posted in:
No comments
Blockchain Data Governance GDPR Giving Back Information Governance Interviews MER Conference millennials Privacy Professional Development

Using Blockchain for the Common Good – An Interview with Ashish Gadnis of BanQu

By Rafael Moscatel, CRM, IGP
BanQu - Information Governance Perspectives

Using Blockchain for the Common Good – An Interview with Ashish Gadnis of BanQu

Sixth in a series of in-depth interviews with innovators and leaders in the fields of Risk, Compliance and Information Governance across the globe.

Information Governance Perspectives - Ashis Gadnis of BanQu discusses Blockchain

Ashish Gadnis is CEO of BanQu, Inc. and a recognized thought leader in the blockchain community. He chairs the Financial Inclusion Working Committee for the Wall Street Blockchain Alliance and travels the world explaining how this revolutionary new technology is transforming the way we think about supply chain economics. He holds an MBA from the University of Minnesota’s Carlson School of Management and graduated from the Global Leadership and Public Policy program at the Harvard Kennedy School of Government. I spoke with him this July about blockchain, business administration and professional development.

Ashish, you recently spoke at the MER conference where the theme was “Records for Humanity,” how data governance impacts the human condition. And your company, BanQu, offers a unique solution to the challenge of extreme poverty by leveraging blockchain. With BanQu, people ensure their economic identity with an immutable record of their transactions in a system benefiting the entire supply chain. But how exactly do you, your clients and big brands set about prioritizing and realizing these goals?

Over the last two and a half years we’ve realized that 2.7 billion people, that includes refugees displaced and those in extreme poverty zones, participate in some sort of a supply chain. That can mean you’re the poorest farmer in Congo growing coffee, cacao or shea butter, you know, the ingredients that go into cosmetics, and your contributions show up in brands like eight dollar lattes and expensive body lotions. And in examining this, we realized that that current models for getting people out of poverty have failed. Those models have failed because they look at the ability to help people out of poverty separate from enabling people in poverty to participate in the supply chain. And so we actually took the other route. And nobody had ever done it. We said, “What if the people who are absolutely in that last mile, if they get to equally participate?” Then the value for the brand is suddenly more relevant.

Let’s use a simple example. If you’re buying cacao in Ghana and you’re a large chocolate company, there’s a good chance today that your last mile farmers are extremely poor and also invisible. No matter much traceability, transparency or fair trade you implement, until and unless that farmer can participate in his data, to know for example “I’m selling 40 kilos every other week to this big brand,” then that farmer will continue to live in poverty. And this is kind of a long answer, but the detail is important because that poor farmer today has everything stacked against him or her, especially if conditions are so rough. I was just in Zambia a week and a half ago and I saw firsthand some of this problem, which was that women farmers have to borrow at a higher price point.

Women farmers are always at the short end of the stick because they’re not allowed in many cases to prove their history. So what happens if you happen to be selling 40 kilos upstream and there are seven middlemen… after I sell my coffee… somebody picks it up, then brings it to somebody else, the next one goes to the warehouse and eventually you’ve lost the ability to track. And while the internet has come to people in poverty it hasn’t pulled people out of extreme poverty permanently. There’s mobile money, there’s big data, AI, etc., but none of those models actually have ever allowed that mother, that farmer, to participate equally.

When I say participate equally, it’s very basic. To me participate equally means that one, she has a physical (stored digitally) copy of that transaction that nobody can ever steal or manipulate. Two, she has the ability to prove her transaction history which legitimizes her existence in that supply chain. And three, it allows her to now leverage that data in a way that reduces her cost of borrowing. It allows her to be portable. That’s how we decided to look at blockchain and nobody in the world has ever done this. People keep talking about how they’re going to use blockchain for good and we’re the only ones doing it everyday, taking a commercial approach while being simultaneously deeply purpose driven. We started a for profit, for purpose software company and now the largest brands are coming to us because it solves two sides of the problem for them. One side is that the supply chain now becomes more cost effective and efficient. They get better visibility into the supply chain in terms of quality, market access and forecasting which enables an ecosystem for crop insurance, climate protection, education. And the other side of the coin is now they can start addressing issues like gender equality, labor rights and other important issues.

Continue reading “Using Blockchain for the Common Good – An Interview with Ashish Gadnis of BanQu”

Posted in:
No comments
Artificial Intelligence GDPR Information Governance Information Management Interviews Privacy Professional Development Records Management SharePoint

Emerging From The Dense, Digital Fog – An Interview with Dr. Ulrich Kampffmeyer

By Rafael Moscatel, CRM, IGP
GDPR - General Data Protection Requirement - Information Governance Perspectives

Third in a series of interviews with leaders in the fields of Risk, Compliance and Information Governance across the globe.

IMG_992_kff_400x400

Dr. Ulrich Kampffmeyer is the Managing Director of Project Consult in Hamburg, Germany and a renowned expert on digital transformations, business intelligence and enterprise content management. I had the opportunity to sit down with him in May and discuss the GDPR, artificial intelligence and social issues emerging from the dense, digital fog we all find ourselves in.

Ulrich, you write and teach extensively about the cultural and social changes in work environments that are a direct result of the emergence of digital transformations. Now that data is at the fingertips of everyone, what changes should society expect that the business world may have already?

The pace of digital transformation accelerates day by day. Cloud technologies, artificial intelligence, IoT and other developments are happening so fast that there is a danger they’ll get out of control. The mightier AI becomes the larger the danger that it gets uncontrollable. Consider Soshana Zuboff (one of the first tenured women at Harvard Business School) and her three laws:

  1. Everything that can be automated will be automated.
  2. Everything that can be informated will be informated.
  3. Every digital application that can be used for surveillance and control will be used for surveillance and control.

Neither our businesses or society are currently prepared for this change. Just have a look at the GDPR discussions. Data protection as general necessity, data safety as the requirement for continuity, data privacy by default, information governance to keep control, keep the value, keep information accessible – these are basic requirements that should not be ignored like in the past. Future historians will call our era the dark age of the early information society.

You spent quite a bit of time at the Fraunhofer Institute developing imaging systems and processes to support archaeological studies. Given that images provide so much of the fuel for artificial intelligence engines, do you envision some of our older legacy systems and indexes ever providing value to future AI efforts?

In the mid-80’s I worked on pattern recognition, image processing, database systems and expert systems for archaeologists and prehistorians. Too early. Today, taking a computer, drones and sensor systems to an excavation is standard. The capabilities of software, hardware and self-learning algorithms are far more sophisticated than in those days. But lets consider so-called old fashioned methods of organizing information. You mentioned the terms “legacy” and “indexes.” Metadata is not legacy. It is a question of quality, control and governance. Controlled metadata, vocabularies and taxonomies are of special value to big data analytics, artificial intelligence and machine learning. Controlled data sets work as guide poles to train new technologies with high quality information. This is important for automated indexing when capturing information, when sharpening enterprise search for qualified results, and managing your repositories in regard to compliance requirements. Especially when it comes to compliance, straightly organized high quality information is an asset. But AI will change the game as well in the near future. Currently classification schemes and file plans are developed manually by academic rules. In the future software will analyse all information and organize itself by protection guidelines, user models, processes, value, retention.

This series of interviews with global leaders in information governance, risk and compliance seeks to find common values and themes in these disciplines across disparate cultures. I know that you are major advocate of standardization. Are there one or two common threads that run between all of the projects and people you’ve worked with that you also believe should be universal aims?

Continue reading “Emerging From The Dense, Digital Fog – An Interview with Dr. Ulrich Kampffmeyer”

Posted in: , ,
No comments