Page 65 - Cyber Defense eMagazine September 2018
P. 65

65


         Mistake 5: Being too radical

         Richard Stallman, president of the Free Software Foundation, has suggested that, instead of protecting and
         regulating personal data, we should ban its collection. I personally know of companies that have deleted all
         customer data that could be considered sensitive to try to eliminate the risk of GDPR fines.

         These responses aren’t just radical; they’re also ineffective. Getting rid of your customer database won’t erase
         your obligation to report to auditors; it will just hurt your ability to be competitive. Auditors will be looking for a
         credible plan to ensure compliance, so make sure you can demonstrate them you are on the right path to
         better control your security. As for your customers, respecting their privacy and preferences will increase their
         loyalty; ditching the information you have about them makes it impossible for you to do that, and customers
         will look for someone else who can.
         For too long, businesses have been collecting personal data from customers to meet their own revenue goals.
         Now it’s time to recognize their rights and make the tenets of the GDPR into your core values. The scope of
         this change might seem daunting, especially with the deadline for compliance fast approaching, but your
         customers will reward you with stronger loyalty. Plus, if you address GDPR compliance as a strategic business
         challenge, you’ll be in good shape when the next piece of compliance legislation comes around; you’ll have a
         simple reporting issue, not a fundamental engineering task, on your hands.




         About the Author

                                              Steve Dickson was named Netwrix CEO in April, 2018 after joining
                                              the  Netwrix  board  of  directors  in  August  2017.  Dickson was
                                              previously  with  Dell,  Inc.,  where  he served  as Vice  President  and
                                              General Manager of the Windows Platform Management business,
                                              as  well  as  VP  of  Marketing  for  the  Systems  Infrastructure
                                              Management Group.  Prior  to  Dell’s  acquisition of Quest  Software,
                                              Steve  held  leadership  positions  including  SVP  of  the  Windows
                                              Management business unit and the Identity and Access Management
                                              business unit. Other positions he held at Quest include SVP Products
                                              and  Marketing,  VP  of Worldwide  Sales  for  Microsoft  Management
                                              Solutions, and VP of Sales for the Western Region. Before joining
                                              Quest  Software  in  1998,  he  worked  for  Air  Liquide  as  a  general
                                              manager. Steve holds a bachelor’s degree in applied mathematics
                                              from  Weber  State  University  and  a  master’s  degree  in  business
                                              administration   from    Pepperdine     University   in   Southern
                                              California.Steve      can      be       reached      online      at
                                              [email protected]
                                              and at www.netwrix.com
   60   61   62   63   64   65   66   67   68   69   70