HP Tech@Work
Today's trends for tomorrow's business
Why so many privacy emails in my inbox?

Why so many privacy emails in my inbox?

And why you should pay attention

If it feels like your email has been flooded with messages about privacy lately, you're not imagining it. A perfect storm of industry and regulatory challenges has companies scrambling - as never before - to ensure you know what they are doing to safeguard your personally identifiable information (PII).
All of these emails are coming your way for two reasons. First, the European Union's General Data Protection Regulation (GDPR), arguably the largest privacy rules in history, took effect on May 25. At the same time, Facebook continues to face a public relations nightmare as well as government scrutiny and fines over how it has handled (or possibly mishandled) the private records of subscribers.
Clearly, this unparalleled combination of privacy related events has companies doing their best to avoid running afoul of regulators or the media. But that doesn’t suggest their notices are entirely self-serving.
In all likelihood, most of these companies want your help in managing your digital privacy, which is why you should not ignore their emails. Yes, there is plenty of legalese to paddle through, the type we often see and ignore at the bottom of form letters. But in this case, buried amongst the mumbo jumbo, you could also find vitally important information for actively defending your privacy.

What to do

Here’s what to do about all those emails: take a few moments and skim through them for helpful ideas about protecting your information and consider heeding this advice. At the same time, watch out for buried requests for your consent – or language asking you to agree, or “opt-in,” to a site’s terms of use. If you fail to respond, you’ve given your consent.
For example, the New York Times reported that Quora, the questions-and-answers site, recently sent an email noting its privacy policy had changed. The message included a passage toward the end saying, “your continued use of the service will be considered acceptance of our updated terms” (by the way, Quora updated its language after the Times story to avoid any consumer confusion about their request).

For your business

If you’re a business, you also need to know something about this recent push around privacy. In particular, it’s important to understand what GDPR is because it could significantly affect your ability to operate in compliance with current or upcoming laws and regulations.
GDPR essentially replaces all other data protection regulations within Europe. With it comes the potential for hefty fines for companies that do not comply: up to €20million, or 4 percent of the organization’s global turnover, whichever is higher. In fact, some major companies already face lawsuits alleging GDPR violations.

So what do the new regulations actually do?

This regulation does two things: It protects the data rights of EU citizens, as well as their privacy, namely their personal data. Anyone who does business within the single market must comply with it. That includes non-EU businesses who deal with EU customers. Businesses should also keep in mind that GDPR will probably raise the bar within non-EU countries and eventually become baseline for data privacy around the world – another reason to understand and prepare for it.
So, if you have plans potentially involving EU customers, and you haven’t done much to adjust to a GDPR world, there are a three steps your IT department will want to take before too long:
  • First, audit your situation, which means going through a process of determining where all your data lives, both internally, externally on service partner and cloud sites as well as on authorized and unauthorized devices with access to personal data.
  • Next, make sure you’re putting mechanisms in place to control this data. This should involve a combination of administrative privilege controls, tiered access policies (if they don’t need sweeping network access they don’t get it) and ensuring remote access and erasure rights for company data, enabling IT to wipe or lock down records access in event of loss or theft.
  • Finally, consider investing in new, more secure devices. Security strategies typically focus on the network edge and on fortifying devices with software, such as anti-virus applications. But some newer notebooks, laptops and printers now include embedded security features that help protect those devices at a hardware level, an access point that hackers are increasingly identifying as the soft underbelly of many corporate and government IT security strategies.
While we’re on the subject of beefing up security, you should also consider security awareness training for employees given an Experian study showing that 55 percent of organizations attribute security incidents and data breaches to malicious or negligent employees, and 66 percent view employees as the “weakest link” in efforts to create a strong security posture.

Be prepared

No consumer or company should be caught flat-footed when it comes to managing digital privacy. According to Gemalto, a digital security company, 2.6 billion records were stolen, lost or exposed worldwide last year, an 88 percent increase from 2016. The risk is clearly real, it’s becoming more pronounced and nobody can afford to just “hit delete” when privacy information comes their way.
It’s not just up to European regulators or the Facebooks of the world to watch over the privacy of customer data. Each of us must be aware of the threat, be responsible and take precautions to safeguard our own information.
For details on what companies can do to be more secure and achieve GDPR compliance, consider this checklist. To learn more about securing endpoint devices, check out this information.

Disclosure: Our site may get a share of revenue from the sale of the products featured on this page.

Disclaimer

Prices, specifications, availability and terms of offers may change without notice. Price protection, price matching or price guarantees do not apply to Intra-day, Daily Deals or limited-time promotions. Quantity limits may apply to orders, including orders for discounted and promotional items. Despite our best efforts, a small number of items may contain pricing, typography, or photography errors. Correct prices and promotions are validated at the time your order is placed. These terms apply only to products sold by HP.com; reseller offers may vary. Items sold by HP.com are not for immediate resale. Orders that do not comply with HP.com terms, conditions, and limitations may be cancelled. Contract and volume customers not eligible.

HP’s MSRP is subject to discount. HP’s MSRP price is shown as either a stand-alone price or as a strike-through price with a discounted or promotional price also listed. Discounted or promotional pricing is indicated by the presence of an additional higher MSRP strike-through price

The following applies to HP systems with Intel 6th Gen and other future-generation processors on systems shipping with Windows 7, Windows 8, Windows 8.1 or Windows 10 Pro systems downgraded to Windows 7 Professional, Windows 8 Pro, or Windows 8.1: This version of Windows running with the processor or chipsets used in this system has limited support from Microsoft. For more information about Microsoft’s support, please see Microsoft’s Support Lifecycle FAQ at https://support.microsoft.com/lifecycle

Ultrabook, Celeron, Celeron Inside, Core Inside, Intel, Intel Logo, Intel Atom, Intel Atom Inside, Intel Core, Intel Inside, Intel Inside Logo, Intel vPro, Itanium, Itanium Inside, Pentium, Pentium Inside, vPro Inside, Xeon, Xeon Phi, Xeon Inside, and Intel Optane are trademarks of Intel Corporation or its subsidiaries in the U.S. and/or other countries.

In-home warranty is available only on select customizable HP desktop PCs. Need for in-home service is determined by HP support representative. Customer may be required to run system self-test programs or correct reported faults by following advice given over phone. On-site services provided only if issue can't be corrected remotely. Service not available holidays and weekends.

HP will transfer your name and address information, IP address, products ordered and associated costs and other personal information related to processing your application to Bill Me Later®. Bill Me Later will use that data under its privacy policy.

Microsoft Windows 10: Not all features are available in all editions or versions of Windows 10. Systems may require upgraded and/or separately purchased hardware, drivers, software or BIOS update to take full advantage of Windows 10 functionality. Windows 10 is automatically updated, which is always enabled. ISP fees may apply and additional requirements may apply over time for updates. See http://www.microsoft.com.

HP Rewards qualifying and eligible products/purchases are defined as those from the following categories: Printers, Business PCs (Elite, Pro and Workstation brands), select Business Accessories and select Ink, Toner & Paper.