The Stakes:

From big Data to Data protection

​

• Organizations today need to maintain large amounts of both structured and unstructured data for OPERATIONAL and COMPLIANCE purposes.

​​

• Big data due to its volume can’t be handled anymore via traditional data base tool handling¹.

​

• New challenge : How to ensure data security – concurrent with this growth of computing power & storage capacity has been a comparable growth in the number of ways unscrupulous operators can exploit security lapses and vulnerabilities in organizations’ data systems.

​

• $60 BILLION are spent every year in the field of the cybersecurity (Security software, Security services, equipment's, networks of companies etc. See Scheme 1), According to the Global State of Information Security Survey 2013 – PWC, with an estimated increase of more than  10 % a year during the next 5 years.

​

• New functions appear within companies at group  (CISO – Chief Information Security officer)

​​

• Companies have in fact an ambiguous role:

  • They are at the same time potential victims of cyber-attacks

  • and responsible of the security of the personal data that they have to handle and store.

​

• This new environment  imposes to implement:

  • A cybersecurity policy, not only based on systems of control and prevention of the occurrence of the risks, regarding  internal as external personal data, reconciling this security requirement in the justifiable interests of the company and in the fundamental rights of personal data protection and of respect for private life.

  • This should be facilitated by a new corporate culture integrating the imperative of data protection and raising company actors awareness in the roles and the responsibilities of each of them etc.

  • but also on a repressive adapted action insuring the incrimination of such behavior, via a raising awareness of persons and institutions to the imperative of data protection.