Establishing Data Ownership is a fundamental component or building block of any Information Security Management System (ISMS). The Data Owner is the single person ultimately responsible for their data. They define policy, control who has access and may delegate some or all of their responsibility to Data Stewards. The Data Custodians (typically IT) are the instrument of the Data Owner’s policies, enforce and manage policy compliance and help manage access rights and other IT controls according to the Data Owner’s requirements.
- From one security assessment report
Recently, the famous networking website Facebook changed its policy which threatens the users’ privacy. While this seems to be an isolated case, however, it sends us strong message on how to protect our own privacy in such an information society.
Generally,we sign up a bunch of accounts at too many websites. For example, we create accounts on financial website for investing, and create another account on the other websites for emailing purpose. One month or one year later, we turned our attention to a new hot subject for one reason or another, say we like playing online game now, so we continue to create accounts, and setup another password for security purpose. We do the same things over and over again. Eventually we have created so many accounts without actually using it. So much of your personal data online without any care! (Even if you are very vigilant about the information, but it’s too long to remember the password to close your account accurately) Read more…
Recent Comments