Privacy-Centric Discovery for Big Data: Do You Know Who’s Swimming in Your Data Lake?

More than 2.5 quintillion bytes of data are created every day, and most of it never gets deleted. It flows from multiple business units and into numerous systems in the form of structured and unstructured data, and into business applications. Organizations are building data lakes and data warehouses for business intelligence and analytics purposes that … Continued

Data Rights in the USA

Fourteen US States have now introduced legislation around privacy with California’s new law already passed and effective starting Jan 1. Like their European antecedent, the US laws place a significant emphasis on individual data rights whether the right to access, delete or similar. For companies, this requires new capabilities to identify personal data across their … Continued

Access Intelligence Meets Data Intelligence

Today at the 2019 RSA Security Conference, on the one year anniversary of receiving the 2018 RSA innovation sandbox award, BigID is unveiling a new big idea: Data Access Intelligence.  We created BigID’s platform to provide a first-of-its-kind identity-centric view of personal information for GDPR and CCPA. BigID is the industry’s first solution to find … Continued

The US Privacy Wave

Thank you Shawn Sprecker, Senior Manager at Accenture, for collaborating with us on this blog post.  The regulatory tsunami that began with European Union (EU) General Data Protection Regulation (GDPR) continues in the United States (U.S.) with the California Consumer Privacy Act (CCPA). A Federal Privacy law also looms large on the regulatory horizon. To … Continued

BigID Wins Award for Excellence in Data Privacy

Building upon our strong end to 2018, we are happy to share that BigID has been selected as the Gold winner in the 2019 Info Security Product Guide’s Global Excellence Awards for the “Privacy Solutions” category. With the continued global adoption of privacy laws such CCPA, NYDFS, LGPD and others, we remain committed to helping … Continued

DSARs: The Essential Privacy Problem

DSARs or data subject access requests are in some ways the most elemental requirement to emerge from the new wave of privacy regulations like GDPR and the California Consumer Privacy Act (CCPA). DSARs herald that individuals have a legal right to their data even after sharing it with an organization. This requirement, often labeled as … Continued

2019: Global Privacy Gets Personal

2018 was a watershed year for privacy. The passage of the EU GDPR ushered in a new era in which data privacy became a first-order data security and governance problem warranting corporate attention and investment. This is not to say that the profession of privacy began last year. Quite the opposite.  Regulations covering privacy protection … Continued

Consent Governance: Moving From Process to Purpose via Data Intelligence

As the dust clears since the EU GDPR came into effect, and most companies come to terms with managing their consent collection processes, many are increasingly finding themselves struggling with how to transition those consent agreements into a practical control for application processing and data holders. Much of the focus around consent has been on … Continued

The Advent of Privacy Engineering

Move over privacy attorneys, analysts, consultants, CPOs and DPOs. Let’s make room for the Privacy Engineers who can facilitate the technical implementation of privacy and data protection by design and default into products and services. Welcome, the emergence of Privacy Engineering. The field of privacy has typically been the realm of lawyers and consultants responsible … Continued

Rethinking Data Classification For The New Era of Privacy

It’s rare to spot a flip phone these days when smartphones are practically ubiquitous.  Yet, in the realm of data security, where precision and context are critical, too many are still using flip phone technology to discover, understand and classify personal data. In the flip phone era, classification was intended as a means to an … Continued

GDPR-like Privacy Protection Crosses the Atlantic: California Sets Its Sights On Consumer Data Rights.

California, which has long set the national precedent for consumer protection in the digital era, has passed the far most reaching privacy protection law yet in the US.  The California Consumer Privacy Act (“CCPA”) will grant California consumers control over their personal information and sets the stage for a fundamental realignment for how companies doing … Continued