The principles of Privacy by Design (PbD) are, in theory, a relevant reference for the protection of personal data from conception. But in practice, I think that these principles are far from most products that are fundamental to the digital transformation process.
In this context, and to my understanding, one of the key points of this gap between theory and practice is the fact that PbD solutions are basically concentrated in the software stack, when they should, at the factory, also be supported by the hardware stack.
A practical example, for a better understanding of my viewpoint, would be that each and every smartphone or notebook would be delivered with external switches for hardware control of the activation of microphones and cameras.
With hardware resources as simple as that, we would be helping people, in theory, to have greater control over relevant resources that can impact their privacy.
In other words, my point is that it is necessary, or key, to expand the PbD stack view to achieve the levels of quality that users and device owners expect in terms of security and privacy systems.
However, we know that, between theory and practice, there is a long way to go in this field.
Anyway, the positive point is that innovation opportunities are open for organizations that know how to view and leverage their clients’ privacy as a competitive factor and strategic for your business.
By Rogerio Figurelli em 10/17/2020
Senior IT Architect, Engineer, Expert & Solutions Consultant