Privacy By Design is a key concept in the study of modern data privacy. It’s incorporated into the text of the GDPR as a core principle, and its influence is considerable across a number of data privacy laws worldwide.
Privacy By Design is a key concept in the study of modern data privacy.
It’s incorporated into the text of the GDPR as a core principle, and its influence is considerable across a number of data privacy laws worldwide. The key figure in Privacy By Design’s development was Dr. Ann Cavoukian, Information and Privacy Commissioner for Ontario from 1997-2014.
In the foreword of Cavoukian’s groundbreaking work, former FTC Commissioner Pamela Jones Harbour stated:
“There must be some balance between regulation and innovation. One way to achieve that harmony is to embed privacy features from the beginning, starting with the design specifications of new technologies, i.e., Privacy by Design.”
If you’re interested, you can read Cavoukian’s full Privacy By Design White Paper here. The concept is based on seven “foundational principles.” Any organization must carefully consider each one in order to fully incorporate Privacy By Design.
There’s a great Medium explainer on what each of these terms means here.
Some GDPR commentators have expressed a wish that Privacy By Design contained more actionable specifics and less vague principles. They might have an argument, but it remains a key concept for data privacy regulators all over the world.
At Ethyca, we believe that software engineers are becoming major privacy stakeholders, but do they feel the same way? To answer this question, we went out and asked 337 software engineers what they think about the state of contemporary privacy… and how they would improve it.
The UK’s new Data Reform Bill is set to ease data privacy compliance burdens on businesses to enable convenience and spark innovation in the country. We explain why convenience should not be the end result of a country’s privacy legislation.
Our team at Ethyca attended the PEPR 2022 Conference in Santa Monica live and virtually between June 23rd and 24th. We compiled three main takeaways after listening to so many great presentations about the current state of privacy engineering, and how the field will change in the future.
For privacy engineers to build privacy directly into the codebase, they need agreed-upon definitions for translating policy into code. Ethyca CEO Cillian unveils an open source system to standardize definitions for personal data living in the tech stack.
Masking data is an essential part of modern privacy engineering. We highlight a handful of masking strategies made possible with the Fides open-source platform, and we explain the difference between key terms: pseudonymization and anonymization.
The American Data Privacy and Protection Act is gaining attention as one of the most promising federal privacy bills in recent history. We highlight some of the key provisions with an emphasis on their relationship to privacy engineering.
Our team of data privacy devotees would love to show you how Ethyca helps engineers deploy CCPA, GDPR, and LGPD privacy compliance deep into business systems. Let’s chat!Book a Demo