Large scale data breaches and cyber hacks are a constant in today’s world. PayPal and Uber are two of many examples that have had hackers gain unauthorised access to their personal data. Focusing on the latter, Uber acknowledged that they suffered a high-profile data breach that exposed employee and company data.
hackersHackers breached the company by compromising Amazon Web Services cloud server used by a third-party that provides Uber with asset management and tracking services. While no customer information was compromised in the breach, the personal data of 77,000 Uber employees were leaked. This incident highlights the third-party risk that organisations face when vendors or third-party companies are responsible for or have access to personal data.
Companies have a responsibility to use personal data in an ethical and responsible way. By implementing Privacy Enhancing Technologies (PETs), companies can ensure that personal data is processed in a way that is respectful of individuals' privacy rights. This would include mapping organisational capabilities and security controls towards vendors and third parties through technological methods such as access controls, encryption, anonymisation of personal data etc.
To stay up to date with pertinent news, articles, events and webinars that resonate with PICCASO Privacy Labs- PETs, ESG, RISK and the advancement of privacy within firms and sectors, visit PICCASO at www.piccaso.org
For the full article, visit: https://www.shoutoutuk.org/2023/02/17/how-attitudes-towards-online-data-privacy-are-changing/