As of 25 May, anyone trading with EU businesses, marketing to EU citizens, or holding the personal data of even a single European national, needs to be fully compliant. This means making major changes to how one captures, processes and stores consumer data, with a strong focus on data protection and archiving practices. Ignore GDPR, and you run the risk of hefty fines (up to €20 million or 4% of annual global turnover, whichever is greater), a loss of consumer trust, and untold damage to your reputation. Are you ready to face GDPR head-on? If you have been readying yourself for compliance to our own POPI (Protection of Personal Information) act, then you should not be far off complying with GDPR which is based on similar principles.
The requirements of GDPR
Globally, recent years have seen some of the worst data leaks and malicious hacks in history. As a result, people are far more concerned about their fundamental right to privacy and have also become more vigilant and aware of their liberties when it comes to their digitally-gathered personal data, and what businesses are doing with it. GDPR outlines a new set of regulations that are designed to prioritise the rights of EU citizens and give them more control over their private data, including valuable and sensitive information such as financial details, phone numbers, addresses, religious and political views, and much more.
Regardless of where a business is located, if it collects or processes the personal information of any EU resident, GDPR applies. In this regard, it’s imperative to understand what data you collect, where it is stored and how it’s being used. The legislation highlights two main data rights for customers: the right to be forgotten, where a customer can request their data be deleted; and the right for data portability, where a customer can request that their data is moved from one company to another. Customers are further protected in the form of necessary updated privacy notices, which need to be worded in clear, concise and plain language that anyone can understand. By outlining exactly what you’ll be doing with the data, a strong focus on transparency is emphasised, and customers feel more at ease.
Another important aspect of the regulation involves data breaches. Businesses are required to notify authorities of any kind of cybercrime within 72 hours. In an effort to minimise exposure to these kinds of attacks, a company is encouraged to only collect, share and keep the data that they really need, and to ensure that it is effectively searchable in case they are called upon to provide it.
The importance of change and compliance
Any South African company needing to align itself with the GDPR requires the appropriate internal processes and technical capabilities to be able to execute these changes correctly. For example, a data processing company, such as Connection Telecom, would need to sharpen its security controls and data breach continuity plans, and seek advice from a specialist attorney that can assist with updating its policies and documentation to ensure informed consent and water-tight compliance.
The relationship and transfer of data between data controllers and data processors is an important part of GDPR, and businesses need to work together to ensure consumer information is secure. Companies should also consider assigning dedicated individuals or teams to focus on GDPR, to ensure that data is accurately documented, safely stored, and permanently deleted – not to mention that practices are regularly tested to ensure optimal protection.
Beyond the negative financial implications of non-compliance, there’s another important reason for businesses to implement these data security and integrity practices: a digitally-savvy generation of customers is better informed than ever before, and the reputational risks associated with irresponsible handling of data are known all too well. Consumers expect ethical behaviour and utter transparency, even from the largest corporation.
Finally, it is worth noting the positives of GDPR compliance. By gaining a true understanding of a business’s data practices, more effective business decisions can be made in the long run. It’s not just a legal responsibility, it’s an opportunity to do better business – and organisations across the globe would do well to embrace it with open arms.
The future of the book… and of reading
Many fear that the days of the printed book are numbered. In truth, it is not so much the book that is evolving, but the very act of reading, argues ARTHUR GOLDSTUCK.
Let’s talk about a revolutionary technology. One that has already changed the course of civilisation. It is also a dangerous technology, one that is spreading previously hidden knowledge among people who may misuse and abuse the technology in ways we cannot imagine.
Every one reading this is a link in a chain of this dangerous and subversive technology.
I’m talking, of course, about the printed book.
To understand how the book has changed society, though, we must also understand how the book has changed reading. That, in turn, will help us understand the future of the book.
Because the future of the book is in fact the future of reading.
Let’s go back to a time some may remember as their carefree youth. The year 400.
(Go back in history with the links below.)
Wearables enter enterprise
Regardless of whether wearables lack the mobility or security capabilities to fully support the ways in which we now work – organisations remain keen and willing to unlock the potential such devices have, says RONALD RAVEL, Director B2B South Africa, Toshiba South Africa.
The idea of integrating wearable technology into enterprise IT infrastructure is one which, while being mooted for several years now, has yet to take-off in earnest. The reasons behind previous false dawns vary. However, what is evident is that – regardless of whether wearables to date have lacked the mobility or security capabilities to fully support the ways in which we now work – organisations remain keen and willing to unlock the potential such devices have. According to ABI Research, global wearable device shipments will reach 154 million by 2021 – a significant jump from approximately 34 million in 2016.
This projected increase demonstrates a confidence amongst CIOs which perhaps betrays the lack of success in the market to date, but at the same time reflects a ripening of conditions which could make 2018 the year in which wearables finally take off in the enterprise. A maturing IoT market, advances in the development of Augmented Reality (AR), and the impending arrival of 5G – which is estimated to have a subscription base of half a billion by 2022 – are contributing factors which will drive the capabilities of wearable devices.
Perhaps the most significant catalyst behind wearables is the rise of Edge Computing. As the IoT market continues to thrive, so too must IT managers be able to securely and efficiently address the vast amounts of data generated by it. Edge Computing helps organisations to resolve this challenge, while at the same time enabling new methods of gathering, analysing and redistributing data and derived intelligence. Processing data at the edge reduces strain on the cloud so users can be more selective of the data they send to the network core. Such an approach also makes it easier for cyber-attacks to be identified at an early stage and restricted to a device at the edge. Data can then be scanned and encrypted before it is sent to the core.
As more and more wearable devices and applications are developed with business efficiency and enablement in mind, Edge Computing’s role will become increasingly valuable – helping organisations to achieve $2 trillion in extra benefits over the next five years, according to Equinix and IDC research.
Where will wearables have an impact?
At the same time as these technological developments are aiding the rise of wearables, so too are CIOs across various sectors recognising how they can best use these devices to enhance mobile productivity within their organisation – another factor which is helping to solidify the market. In particular it is industries with a heavy reliance on frontline and field workers – such as logistics, manufacturing, warehousing and healthcare – which are adopting solutions like AR smart glasses. The use case for each is specific to the sector, or even the organisation itself, but this flexibility is often what makes such devices so appealing. While wearables for the more traditional office worker may offer a different but no more efficient way for workers to conduct every day tasks such as checking emails and answering phone calls, for frontline and field workers they are being tailored to meet their unique demands and enhance their ability to perform specific tasks.
Take for example boiler engineers conducting an annual service, who could potentially use AR smart glasses to overlay the schematics of the boiler to enable a hands-free view of service procedures – meaning that when a fault becomes a barrier to repair, the engineer is able to use collaboration software to call for assistance from a remote expert. Elsewhere, in the healthcare sector smart eyewear may support clinicians with hands-free identification of patient records, medical procedures and information on medicines and results.
Such examples demonstrate the immediate and diverse potential of wearables across different verticals. With enterprise IT infrastructure now in the position to embrace such technologies, it is this ability to deliver bespoke functionality to mobile workers which will be the catalyst for continued uptake throughout 2018 and beyond.