Privacy, also known as data privacy or information privacy is a way to define what data can be safely shared with third-parties without violating personal rights, business policies, or other factors.
Terms related to Privacy: Data privacy, information privacy, regulations, compliance, GDPR, encryption, data breach.
Data privacy is a regulatory and compliance issue for businesses. Many governing bodies and other regulatory agencies have strict requirements for protecting sensitive data, especially that belonging to individuals. Good examples include PCI DSS (payment data), HIPAA (medical data), and GDPR (data held on European citizens).
Privacy comes into play whenever data is collected, amended, managed, used, stored, or destroyed. It involved many complex, interrelated factors including an individual’s right to privacy, legitimate sharing of information with others, compliance, and other related fields.
The privacy that a business needs to provide depends on exactly what data is being held, how the data will be stored, transmitted, received, used, and managed, rules governing data use in your industry and country, and more.
Privacy is compromised when a criminal gains access to sensitive data and exploits of exposes it, often in a data breach. Such breaches cause significant reputational and financial damage.
Privacy protections can come from “principle of least privilege” access, role-based access, encryption of information, multifactor authentication, and making privacy a central part of your cybersecurity strategy.