With all of the good work accomplished in the data privacy field each day, it is easy to sometimes forget how far there is to go. A funny thing happened recently to remind me that, despite all the progress of this profession, our work is not done.
The effort in the marketplace to drop policies onto every Web site has been successful. But we cannot disconnect the posting of a policy from the active management of a privacy program. This copy-and-paste policy approach, while quick, undercuts the valuable and intellectually strenuous work of developing sound, thoughtful privacy policies that help establish trust in the marketplace.
In a speech earlier this month, EU Consumer Protection Commissioner Meglena Kuneva cited the need for a heightened level of Internet trust and privacy awareness to help Europeans feel comfortable engaging in e-commerce. She said: “Confidence and trust is the new currency in Europe.” Her words could not be more timely.
I hope the aforementioned organization enlists the expertise of a privacy professional soon. And I hope to see many of you next month at the IAPP Practical Privacy Series in Silicon Valley, where Heartland Payment Systems Chairman and CEO Bob Carr will discuss his company’s data breach, and what Heartland is doing to help others prevent data breaches.
J. Trevor Hughes, CIPP
Executive Director, IAPP