Edgar Versteeg • 23 May 2018

The world past GDPR

Countdown ... from days, we switch to hours.

Never has there been so much attention to privacy. At least it seems so, but is it sincere? My mailbox is overflowing with notices like 'we have rewritten our privacy regulations', 'opt in to stay with us' and so on. The introduction of the General Data Protection Regulation has preceded years of preliminary work. The starting point is the fact that privacy is a fundamental right and that in a data driven economy the ownership of data should really lie with you as a user and not with the app or the platform on which you have made your data available. The recent scandals have made it clear to us how things can go wrong.

Yet the question is whether the world will change substantially after the 25th of May? Undoubtedly there will still be a lot of consultants making long hours to inventorize all data that has been scattered accros companies. In order to convert this into an appropriate set of measures such as privacy regulations, privacy policies, procedures and technical measures. But how do we know for certain that companies 'improve' their behaviour when it regards your fundamental right for privacy?

Most of us have no idea what it is about. Who actually reads the privacy regulations now? Who asks questions about how it should all be interpreted. I often wonder why all those data are collected, I do not always see the need for it. In addition, it is often an all or nothing matter if you do not agree then you can forget the use of a product or service. Well, ... in that case what do you choose?

The implementation of the GDPR is a starting point, I think to a more and more privacy conscious society, were there is still a strong need to raise awareness as well as improvement in all kinds of areas. Many uncertainties that need to be clarified, also regards law enforcement. For example, it does not work at my private life when I first show my teeth to my kids and then be consistent in drawing a line. Children know how to play the game very well. How does enforcement work in practice? Will the Authoriteit Persoonsgegevens start to scale their investigations and and issue penalties? Not really likely if you rely on the news about limited manpower and capacity. Will companies and governments more intricately organize their handling of data and associated privacy? That’s also not very likely either, why should the rush … let’s see and wait how things evolve. The GDPR is derived from Wet Bescherming Persoonsgegevens, which has been in force since 2001. The GDPR was announced in 2016 with an implementation period of 2 years! And then in the last weeks the call they all call for postponement. Fortunately, the Authority holds on, but yes ... some leniency will be applied in the first period.

The question remains why do we come into action so slowly ...

In the past, it was the case that most of us only opened the books at the last moment and then went mad to study for a test or exam. Now it is true that many of us - sometimes with the heels over the ditch - succeed in that. But let's face it ... every time I thought next time I will do better. And then - ha ha - fall back into the old pattern again. Privacy can not be neglected. Nowadays a large amount of data is processed. Let alone that we know exactly which data we collect and how it is processed and to which outcome it leads. In addition, the way of working over the last years has changed a lot, we work flexible and with many partners who also add value, process data, etc. somewhere in this chain. This means that it is almost impossible to sit down for a last minute crash action. Because if a supervisor gives you a reprimand you have to. No, this is simply not possible.

So it requires a different approach, in which we learn to put the client (and the trust of the customer) first. And from the first design process respect the privacy and the way data is processed. You will see that this requires a multidisciplinary approach, because a marketer has different interests than a corporate lawyer or an IT professional. In the discussion and development of the proposition, the right balance must be found. The demand for all-round professionals who can properly translate the impact of privacy into service design will, I think, increase.

We will actually have to take measures whereby both the customer and internally involved parties are transparent about which customer data is used and which measures have been taken to protect it. I am very curious as to how the supervision will work out over time. It is to be hoped that enforcement by the Dutch Data Protection Authority will also give a lot of clarity. I think it's a utopia to think that self-regulation or the influence of a competitive playing field will have a lot of influence here. Then you will always have some ones in the ecosystem that will take advantage of this or abuse it. In short, a supervisory body that has the power to actually inspire, motivate and maintain the regulaory framework is needed. 'Is it the end of the world as we know it' as REM sang in their song in 1987?

I keep reading and developing myself in the field of privacy and cybersecurity because I think it is a fascinating playing field and it will probably become even more interesting in the coming years. Interesting times are coming up 'And I feel fine'.

#GDPR #AVG #Privacy #Privacybydesign #innovation #disruption

Pig butchering an online romance scam explained

by Edgar Versteeg 12 March 2024
An growing online romance scam named as pig butchering explained

Transforming the world of mobility

by Edgar Versteeg 12 October 2023
"Driving the Shift from an Analog to Digital business model in mobility"

Empowering SMEs with Cybersecurity Awareness

by Edgar Versteeg 17 September 2021
"How to make small and medium enterprises aware of the power of cybersecurity"

Social Energy Networks

by Edgar Versteeg 25 November 2020
How to trigger consumers and prosumer to rethink their relationship with energy?

Keynote about blockchain technology

by Edgar Versteeg 14 February 2024
In February 2019 I was asked to provide a keynote to the staff of DIQQ and Q-GRP about the potential of blockchain technology. Below is a short summary of my talk. What is blockchain, and what are the benefits? In my view, the power of blockchain consists of three elements. Blockchain is a new technology that enables participants in a distributed network to securely exchange data. Network security is protected by applying cryptography. A well-known definition is a shared ledger containing all network transactions, accessible to everyone. This database offers maximum transparency, unlike other databases that are often shielded. Data and network security are maintained through cryptography, making it impossible to hack a blockchain or manipulate data. Today, cybersecurity is a significant concern, and when you look at well-known hacks (e.g., Mt Gox), you'll see that hackers targeted the exchange platform or wallet but not the blockchain technology itself. Blockchain technology lacks value without an ecosystem for sharing data. Its strength lies in being open-source technology, allowing anyone to contribute to the ecosystem. Additionally, in the decentralized network, peer-to-peer exchange of 'data' or 'value' is possible, a particularly powerful feature. No central authority or middleman is required, allowing for significant efficiency gains. Moreover, crypto-economics or game theory plays a crucial role in blockchain. This involves protecting the network by considering 'rules' and 'adversarial thinking' (‘What could participants do to disrupt the network?’). Designing the ecosystem and desired and undesired behaviors among all (decentralized) participants can be encoded using incentive mechanisms (tokenization and smart contracts), which holds great potential. The interplay between a well-designed ecosystem, game theory's design patterns, and applying cryptography to concrete customer needs or use cases determine blockchain's success. Blockchain in Practice Blockchain is a powerful technology applicable in various forms, often combined with existing technology. Experimentation with various blockchain applications is underway worldwide, focusing on creating value for customers and sharing information transparently and efficiently with chain partners. A well-known example is bitcoin, which can be viewed as an alternative economic system. The bitcoin network is supported by participants, with cryptography protecting the network and facilitating value transfer. Unlike the euro, there is no central party influencing the operation of bitcoin or the ecosystem. This brings several benefits. However, the governance of a blockchain ecosystem is crucial to prevent undesirable behavior, given the atmosphere of 'get rich quick' schemes and fraud surrounding crypto. Worldwide experimentation with blockchain applications is ongoing, with the potential to significantly disrupt existing platforms like Uber, Netflix, and Facebook. Smart Contract A smart contract involves programming transactions occurring on a blockchain. A blockchain can carry value (e.g., bitcoin), which is automatically disbursed when a transaction meets certain conditions. This means processes in the financial, legal, and logistics sectors can be significantly optimized, requiring fewer human interventions to monitor network transactions. Many startups and corporates are developing blockchain applications with the potential to have a substantial impact on the increasingly digitized world. Maturity Blockchain technology is still in its infancy. After the hype in 2017 and early 2018, things have settled down. Blockchain's strength lies in its ability to carry value (e.g., a cryptocurrency) and program desired behavior in the ecosystem, such as tokenization and the application of smart contracts. Although the value of various cryptocurrencies like bitcoin has significantly declined recently, many companies continue to experiment with blockchain technology with conviction. In short, the technology is still evolving, and finding the right use cases or product-market combination remains a challenge. In my role as a product owner, this is what makes my work so challenging! The full article can be read [In Dutch] on the DIQQ website

Are we on the eve of the blockchain breakthrough?

by Edgar Versteeg 19 August 2019
In the past months, there were some interesting markers which I would like to share with you which could potentially indicate fundamental changes in the blockchain ecosystem.

Odyssey hackathon

by Edgar Versteeg 18 April 2019
Winner of the 2nd prize in the hackathon focused on the inclusive finance

Tracking the trends that steer our industry

by Edgar Versteeg 11 April 2019
Trends around blockchain that steer the automotive industry

Do you fall for the tricks of internet scammers?

by Edgar Versteeg 18 March 2019
Test your online security awareness

Cybersecurity for start-ups

by Edgar Versteeg 11 July 2018
Cybersecurity is an essential element to take care of building your startup or enterprise. Read my top 5 recommendations to start with today when it comes to security measures for start-ups.
More posts