Security, Identity and Privacy


Bruce Devlin - new Download PDF
Download PDF

Put your hand up if you have more than one online-identity. Keep your hand up if the adverts for your latest online purchase follow you between identities as you surf the web. You can now let your hand fall into your lap because adverts that follow you indicate algorithms that have merged your multiple identities into the one and only you.

Why does this matter? Most of us have a work life and a private life, and it’s often a good idea to keep some separation between the two in case you change jobs or have embarrassing hobbies like wearing lycra and riding bicycles. You probably don’t want everyone in your linked-in group seeing photos of your kids playing in a swimming pool. Conversely, you (probably) don’t want your kids being Snapchat friends with every person you have ever met at work.

You might sometimes need an identity that you can pass on to someone else. I am the SMPTE Standards Vice President. At some stage, I will hand the post onto someone else, so all the online-metadata gathered by that online identity will instantly become someone else’s property. I should probably be careful with how that identity is used!

This makes the new European legislation called GDPR (General Data Protection Regulation) quite interesting from a professional point of view. GDPR applies from 25 May 2018 to any company from the size of a one-man-band, right up to a huge multi-national corporation. The only thing that matters is that at least one of your customers is in a member country of the European Union. The rules apply whether the data is stored on a disc, in a database, in the cloud or written on a paper napkin and stored behind the blue filing cabinet in the basement.

The rules apply to any personal data related to any natural person (identified by name, id, genetic material etc.) that is used by a data processor (person or company anywhere in the world) on behalf of a data controller (the person or company responsible for the data who might be anywhere in the world). Basically, GDPR gives a natural person the right to their own data, but there are some interesting consequences of those rights which might make you think about how you manage your online identities.

The GDPR right to portability and the right to be forgotten means that you are now legally entitled to take your data and move it from one controller to another. This means that a company must be able to isolate the personal data and ensure that it can deleted as well as copied or moved in a structured and commonly used, machine-readable format. The GDPR consent criteria mean that your private data can only be stored if your consent is freely given, specific, informed and unambiguous.

The GDPR data quality provisions mean that personal data should only be collected for specified and legitimate purposes; and should not be excessive given the purposes for which the data was collected and processed; as well as accurate and kept up to date. It also means that if the original purpose for collection has gone then the data must be deleted – Even if the data is still useful to the controller.

“But I’m not in marketing why do I care?”, I hear you ask. There are 3 aspects to that:

(1) you will provide personal information to manage your private identity every day. You should be aware of GDPR because affects almost every online portal you use.

(2) in your job, you will manage an identity which might involve your personal identity leaking into your work identity. This might be an issue if you use online tools which have merged your professional and personal data e.g. because you signed into a portal with a private Facebook account. Oops! Who owns that login identity – you or your employer?

(3) in your job you might manage other peoples’ identity information which is almost certainly linked to some personal information. I am sure you know and have implemented your GDPR requirements.

By the time you read this, GDPR will be in its early stages of enforcement. Whether you’re a UK, EU or US company, the world will have changed for you. You might be an international expert and familiar with the EU-US Privacy Shield or you might be a sole trader searching google and jotting your data breach plan onto a table napkin for later use. Whatever you do, spend an hour or two figuring out how it applies to your identities. In today’s cyber-security world, you’ll need that information either as a professional or an individual. Security relies on identity and identity is affected by GDPR.

Until next time, whoever you are!


Tags: iss131 | class | Security | Identity | Privacy | gdpr | Bruce Devlin - new
Contributing Author Bruce Devlin - new


Download PDF
Article Copyright tv-bay limited. All trademarks recognised.
Reproduction of the content strictly prohibited without written consent.

Related Interviews
  • Classic tubes reinvented by Kino Flo at IBC 2018

    Classic tubes reinvented by Kino Flo at IBC 2018

  • Winner of the LP54 Miller Classic

    Winner of the LP54 Miller Classic

  • Viaccess-Orca content security at IBC 2015

    Viaccess-Orca content security at IBC 2015

  • Viaccess-Orca at IBC 2016

    Viaccess-Orca at IBC 2016

  • Viaccess-Orca at IBC 2013

    Viaccess-Orca at IBC 2013


Articles
MEDIAPRO leads across the audiovisual value chain
Marc Andreu Valls

MEDIAPRO is a leading independent production company in Europe’s audiovisual market. Offering a full slate of technical and creative services, our portfolio includes everything from content production, to post production, to media and digital asset management, to the acquisition of sports TV rights, and the distribution and broadcast of television channels. We currently have 58 offices spread across 36 countries on four continents.

Tags: iss141 | signiant | mediapro | media shuttle | transport | Marc Andreu Valls
Contributing Author Marc Andreu Valls Click to read
Taking a Stand at IBC - The Future of Exhibiting Clouds
Julian Wright If you’re reading KitPlus you probably don’t need us to tell you that, each year, the IBC Show attracts 1,700 exhibitors, each parting with a significant sum of money for the privilege of touting their wares from the darkened halls for five whole days. For the last eight years Blue Lucy has been one of these exhibitors and the show has always more than paid for itself in generating new business, as well as the less directly-tangible benefits from partnerships and networking opportunities.
Tags: iss140 | blue lucy | ibc | cloud | iabm | Julian Wright
Contributing Author Julian Wright Click to read
IBC 2019 Question Time
Jon Finegold

The media and entertainment industry is in an exciting period of transformation and innovation, and Signiant is thrilled to be in the midst of it. Nowhere was this energy more apparent than at this year’s IBC conference, where we had the opportunity to speak with a wide range of organizations, vendors, and thought leaders to better understand where M&E businesses are at, where they’re going, and what they need.

Now with IBC 2019 in the rearview mirror, we’ve been reflecting on everything we’ve learned, and Jon Finegold, Signiant’s CMO, has taken the time to share his experience from the conference, and how that might affect Signiant as we charge toward 2020.

Tags: iss140 | signiant | ott | streaming | media shuttle | Jon Finegold
Contributing Author Jon Finegold Click to read or download PDF
IBC 2019 A Whistle Stop Rundown
Ben Sherriff I’ve been to IBC once before, taking to the floor with Simon, Matt, Jon and the rest of the KitPlus team to assist with the filming of interviews. This was a lot of fun, but it was hard to find the time to look at the kit I wanted to see. This year with the demise of BVE and unable to make it to the Media Production Show I decided to fork out for a ‘research’ trip to IBC. In the spirit of full disclosure, I ought to note that I have two small children and a very busy work schedule, so the trip had nothing to do with escaping for a weekend of uninterrupted sleep and meal times (honest). Due to these commitments I could only manage one full day and a few hours the next day at the show so it was a lot to cram in trying to see everything I wanted to see!
Tags: iss140 | spellbinder | fx9 | fs7 | c500mkii | c500 | canon | sony | 6k | baselight | blackmagic | frame.io | sonnet | echo express | tb50 battery | xpine | bright tangerine | atem mini | sigma | Ben Sherriff
Contributing Author Ben Sherriff Click to read
Solving Rigorous Digital Workflow Challenges
Michael Urban

Headquartered in New Zealand, The Rebel Fleet offers digital workflow services to top film and television production companies. Clients address broad creative needs and retain total image control across multiple shooting units with fast turnarounds. Recent projects include The Meg, Adrift, Ash vs Evil Dead, and The Shannara Chronicles.

The company was on the hunt for a scalable, high-performance storage solution that would meet the rigorous demands of a large-scale live-action film project for a major Hollywood studio.

Tags: iss140 | rebel fleet | alexa 65 | nas | quantum | stornext | qxs | storage | mam | Michael Urban
Contributing Author Michael Urban Click to read or download PDF