GDPR
PRIVACY BY DESIGN
A reflection of 6 months GDPR in EU
MICHELANGELO VAN DAM
I'm a senior #php architect, co-founder
and #ceo of @in2itvof, #community leader
at @phpbenelux, coach
at @CoderDojoBelgium, #MVP, #digitalnomad,
likes #coffee.
GDPR
WHAT WAS GDPR AGAIN?
GDPR
WHAT WAS GDPR AGAIN?
Regulate the privacy of EU data subjects
GDPR
WHAT WAS GDPR AGAIN?
Regulate the privacy of EU data subjects
Sanction corporations in violation of GDPR
GDPR
WHAT WAS GDPR AGAIN?
Regulate the privacy of EU data subjects
Sanction corporations in violation of GDPR
Offer a privacy framework for businesses
GDPR
6 MONTHS LATER…
GDPR
6 MONTHS LATER…
Lots of consent e-mailsX
GDPR
6 MONTHS LATER…
Lots of consent e-mailsX
Insufficient staff at DPA’sX
GDPR
6 MONTHS LATER…
Lots of consent e-mailsX
Insufficient staff at DPA’sX
Businesses still neglect regulationX
IS GDPR A FUD?
IS GDPR A FUD?
Promise to increase staff?
IS GDPR A FUD?
Promise to increase staff?
More compliance control?
IS GDPR A FUD?
Promise to increase staff?
More compliance control?
Other GDPR-like regulations outside of EU?
DATA BREACH PROTECTION?
DATA BREACH PROTECTION?
Cases against Facebook, Google & Microsoft
DATA BREACH PROTECTION?
Cases against Facebook, Google & Microsoft
Warnings given for EU violations
DATA BREACH PROTECTION?
Cases against Facebook, Google & Microsoft
International violations not consideredX
Warnings given for EU violations
STATISTICS
Breaches reported between May 25 2018 and January 28 2019
0
4000
8000
12000
16000
Austria
Belgium
Bulgaria
Croatia
Cyprus
Czechia
Denmark
Estonia
Finland
France
Germany
Greece
Hungary
Ireland
Italy
Latvia
Lithuania
Luxembourg
Malta
Netherlands
Poland
Portugal
Romania
Slovakia
Slovenia
Spain
Sweden
UK
Source: BleepingComputer
PERSONAL BREACHES
๏ Sales Intelligence business
๏ Breached on July 23, 2018
๏ 200+ Million records
๏ Data aggregator
PERSONAL BREACHES
NO PERSONAL NOTIFICATION
Privacy by design
“Action from Europe not possible”
“Action from Europe not possible”
“Change your password”
Privacy by design
THIS GDPR ISSUE WAS FEATURED ON
TROYHUNT.COM
๏ Global hotel chain
๏ November 19, 2018
๏ 500+ Million records breached
๏ Data includes passport numbers
PERSONAL BREACHES
Privacy by design
Privacy by design
“GBA does not have any information”
“GBA does not have any information”
“Contact Starwood on their data
breach website”
Privacy by design
WHY CARE?
It seems nothing changed and things
are what they were before GDPR
PROTECTION CORE
Individual
PROTECTION CORE
Individual
Finance
Health
Religion
Politics
Education
Sex
Identity
Relationship
Privacy by design
Privacy by design
THE LATEST BREACH
#ProTip:
Register with
haveibeenpwned.com to
be notified when your
data was found in a
breach
WE NEED PROTECTION!
Our identity is at stake!
PRIVACY BY DESIGN
Require minimal personal information
PRIVACY BY DESIGN
Require minimal personal information
PRIVACY BY DESIGN
Encryption on data, storage and networks
Require minimal personal information
PRIVACY BY DESIGN
Encryption on data, storage and networks
Remove data when no longer needed
INTERNATIONAL ADOPTION
INTERNATIONAL ADOPTION
Australia
India
US (California)
Canada
Argentina
Uruguay
New Zealand
South Africa
INTERNATIONAL ADOPTION
INTERNATIONAL ADOPTION
More countries are taking actions
IT’S UP TO THE DEVELOPERS!
IT’S UP TO THE DEVELOPERS!
Learn about (web application) security
IT’S UP TO THE DEVELOPERS!
Learn about (web application) security
Learn about encryption types & techniques
IT’S UP TO THE DEVELOPERS!
Learn about (web application) security
Learn about encryption types & techniques
Add more telemetry in your applications
GREENFIELD PROJECT
GREENFIELD PROJECT
User information
GREENFIELD PROJECT
User information
Location data
GREENFIELD PROJECT
User information
Location data
Advertisements
BROWNFIELD PROJECT
BROWNFIELD PROJECT
Customer data
BROWNFIELD PROJECT
Customer data
Financial records
BROWNFIELD PROJECT
Customer data
Financial records
Employee info
SUMMARY
SUMMARY
GDPR is here to stay
SUMMARY
GDPR is here to stay
Personal information protection goes global
SUMMARY
GDPR is here to stay
Personal information protection goes global
We all have a responsibility to protect data
REFERENCES
Article 25 GDPR ENISA Privacy By Design ICO Data protection
QUESTIONS?
QUESTIONS?
Slides online
slideshare.net/DragonBe
QUESTIONS?
Slides online
slideshare.net/DragonBe
Contact me
twitter.com/DragonBe

More Related Content

PDF
Privacy by Design and by Default + General Data Protection Regulation with Si...
PPTX
Training privacy by design
PPTX
General Data Protection Regulation
PPTX
Privacy by Design: legal perspective
PDF
GDPR Demystified
PDF
Introduction to data protection
PPTX
Introduction to GDPR
Privacy by Design and by Default + General Data Protection Regulation with Si...
Training privacy by design
General Data Protection Regulation
Privacy by Design: legal perspective
GDPR Demystified
Introduction to data protection
Introduction to GDPR

What's hot (20)

PPTX
Presentation on GDPR
PPTX
Privacy by Design - taking in account the state of the art
PPTX
General Data Protection Regulation (GDPR)
PPTX
Legal obligations and responsibilities of data processors and controllers und...
PPTX
Data protection and privacy
PPT
Data Classification Presentation
PDF
GDPR Basics - General Data Protection Regulation
PPTX
Data protection ppt
PPTX
skillcast-gdpr-training-presentation-q320.pptx
PPTX
PPTX
Big data by Mithlesh sadh
PDF
Data Privacy & Security
PPT
Data Privacy in India and data theft
PPTX
PDF
Privacy and Data Security
PPTX
Gdpr presentation
PDF
An overview of the Indian Data Privacy Bill
PPTX
General Data Protection Regulation (GDPR)
PPTX
General Data Protection Regulations (GDPR): Do you understand it and are you ...
Presentation on GDPR
Privacy by Design - taking in account the state of the art
General Data Protection Regulation (GDPR)
Legal obligations and responsibilities of data processors and controllers und...
Data protection and privacy
Data Classification Presentation
GDPR Basics - General Data Protection Regulation
Data protection ppt
skillcast-gdpr-training-presentation-q320.pptx
Big data by Mithlesh sadh
Data Privacy & Security
Data Privacy in India and data theft
Privacy and Data Security
Gdpr presentation
An overview of the Indian Data Privacy Bill
General Data Protection Regulation (GDPR)
General Data Protection Regulations (GDPR): Do you understand it and are you ...
Ad

Similar to Privacy by design (20)

PPTX
12th July GDPR event slides
PPTX
Ritz 4th-july-gdpr
PPT
GDPR - are you ready?
PPT
GDPR - are you ready?
PDF
How Enterprises Can Gain Data Privacy, and Build their Bottom Lines, By Compl...
PPTX
GDPR: A ticking time bomb is approaching - Another Millennium Bug or is this ...
PDF
Data Protection Magazine
PDF
General Data Protection Regulation, a developer's story
PPTX
GDPR Is Coming – Are Search Marketers Ready?
PPTX
GDPR Is Coming – Are Emailers Ready?
PPTX
Le soluzioni tecnologiche a supporto della normativa GDPR
PDF
Getting Started with GDPR Compliance
PDF
GDPR Art. 25 - Privacy by design and default
PPTX
CBC GDPR The Physics
PDF
Designing products and services with GDPR
PDF
The GDPR Is Only for Europe—Right?
PPTX
What Are The Pitfalls Of People Analytics And Data-Driven HR?
PPTX
Ifc gdpr strat digit mai 2021
PPTX
Cloud Privacy Update: What You Need to Know
PPTX
Data Economy_FINTECHBELGIUM_15062023_DV_for publishing_ok.pptx
12th July GDPR event slides
Ritz 4th-july-gdpr
GDPR - are you ready?
GDPR - are you ready?
How Enterprises Can Gain Data Privacy, and Build their Bottom Lines, By Compl...
GDPR: A ticking time bomb is approaching - Another Millennium Bug or is this ...
Data Protection Magazine
General Data Protection Regulation, a developer's story
GDPR Is Coming – Are Search Marketers Ready?
GDPR Is Coming – Are Emailers Ready?
Le soluzioni tecnologiche a supporto della normativa GDPR
Getting Started with GDPR Compliance
GDPR Art. 25 - Privacy by design and default
CBC GDPR The Physics
Designing products and services with GDPR
The GDPR Is Only for Europe—Right?
What Are The Pitfalls Of People Analytics And Data-Driven HR?
Ifc gdpr strat digit mai 2021
Cloud Privacy Update: What You Need to Know
Data Economy_FINTECHBELGIUM_15062023_DV_for publishing_ok.pptx
Ad

More from Michelangelo van Dam (20)

PDF
Moving from app services to azure functions
PDF
DevOps or DevSecOps
PDF
Privacy by design
PDF
Continuous deployment 2.0
PDF
Let your tests drive your code
PDF
Leveraging a distributed architecture to your advantage
PDF
The road to php 7.1
PDF
Open source for a successful business
PDF
Decouple your framework now, thank me later
PDF
Deploy to azure in less then 15 minutes
PDF
Azure and OSS, a match made in heaven
PDF
Getting hands dirty with php7
PDF
Zf2 how arrays will save your project
PDF
Create, test, secure, repeat
PDF
The Continuous PHP Pipeline
PDF
PHPUnit Episode iv.iii: Return of the tests
PDF
Easily extend your existing php app with an api
PDF
Your code are my tests
PDF
200K+ reasons security is a must
PDF
QA for PHP projects
Moving from app services to azure functions
DevOps or DevSecOps
Privacy by design
Continuous deployment 2.0
Let your tests drive your code
Leveraging a distributed architecture to your advantage
The road to php 7.1
Open source for a successful business
Decouple your framework now, thank me later
Deploy to azure in less then 15 minutes
Azure and OSS, a match made in heaven
Getting hands dirty with php7
Zf2 how arrays will save your project
Create, test, secure, repeat
The Continuous PHP Pipeline
PHPUnit Episode iv.iii: Return of the tests
Easily extend your existing php app with an api
Your code are my tests
200K+ reasons security is a must
QA for PHP projects

Recently uploaded (20)

PPTX
chapter 1.pptx dotnet technology introduction
PPTX
WN UNIT-II CH4_MKaruna_BapatlaEngineeringCollege.pptx
PDF
MLpara ingenieira CIVIL, meca Y AMBIENTAL
PPTX
AI-Reporting for Emerging Technologies(BS Computer Engineering)
PDF
Engineering Solutions for Ethical Dilemmas in Healthcare (www.kiu.ac.ug)
PDF
Cryptography and Network Security-Module-I.pdf
PDF
ASPEN PLUS USER GUIDE - PROCESS SIMULATIONS
PPTX
Real Estate Management PART 1.pptxFFFFFFFFFFFFF
PPT
Programmable Logic Controller PLC and Industrial Automation
PDF
LS-6-Digital-Literacy (1) K12 CURRICULUM .pdf
PPTX
CS6006 - CLOUD COMPUTING - Module - 1.pptx
PDF
IAE-V2500 Engine Airbus Family A319/320
PPTX
SE unit 1.pptx by d.y.p.akurdi aaaaaaaaaaaa
PPTX
Environmental studies, Moudle 3-Environmental Pollution.pptx
PPTX
INTERNET OF THINGS - EMBEDDED SYSTEMS AND INTERNET OF THINGS
PDF
electrical machines course file-anna university
PDF
VTU IOT LAB MANUAL (BCS701) Computer science and Engineering
PDF
IAE-V2500 Engine for Airbus Family 319/320
PPTX
Agentic Artificial Intelligence (Agentic AI).pptx
PDF
Principles of operation, construction, theory, advantages and disadvantages, ...
chapter 1.pptx dotnet technology introduction
WN UNIT-II CH4_MKaruna_BapatlaEngineeringCollege.pptx
MLpara ingenieira CIVIL, meca Y AMBIENTAL
AI-Reporting for Emerging Technologies(BS Computer Engineering)
Engineering Solutions for Ethical Dilemmas in Healthcare (www.kiu.ac.ug)
Cryptography and Network Security-Module-I.pdf
ASPEN PLUS USER GUIDE - PROCESS SIMULATIONS
Real Estate Management PART 1.pptxFFFFFFFFFFFFF
Programmable Logic Controller PLC and Industrial Automation
LS-6-Digital-Literacy (1) K12 CURRICULUM .pdf
CS6006 - CLOUD COMPUTING - Module - 1.pptx
IAE-V2500 Engine Airbus Family A319/320
SE unit 1.pptx by d.y.p.akurdi aaaaaaaaaaaa
Environmental studies, Moudle 3-Environmental Pollution.pptx
INTERNET OF THINGS - EMBEDDED SYSTEMS AND INTERNET OF THINGS
electrical machines course file-anna university
VTU IOT LAB MANUAL (BCS701) Computer science and Engineering
IAE-V2500 Engine for Airbus Family 319/320
Agentic Artificial Intelligence (Agentic AI).pptx
Principles of operation, construction, theory, advantages and disadvantages, ...

Privacy by design