that would otherwise be beyond the original purposes of data collected for assessing
               creditworthiness for a loan.





               GDPR Versus Big Data


               The  GDPR  has  effects  beyond  lending,  insurance  and  other  firms  where  sensitive

               personal data is collected and processed as a matter of course. The rules apply to the
               human  resources  record  of  employees  and  even  the  IP  addresses  of  people  using

               online services. The GDPR builds upon data rights that the EU has been pushing for,
               such as the right of an individual to be forgotten and the right to data portability.


               As such, it is expected that the GDPR will lead to data minimization where companies

               willingly prune down the amount of information they collect to the functional essentials
               needed to complete a transaction. This could be a reversal of one of the big data trends

               where  companies  seek  to  collect  and  analyze  as  much  data  on  their  customers  as

               possible in order to gain new insights.

               This  analysis  can  still  take  place  after  appropriate  pseudonymization,  but  other  data

               rights prevent those insights from being used to profile customers in a way that could be
               discriminatory  or  put  them  at  a  financial  disadvantage.  As  the  GDPR  is  a  new

               regulation, there will no doubt be a period of adjustment where gaps and thorny issues

               like profiling are addressed.


               Thanks to our friends at ExigentNetworks for the great infographic that follows….

















                   44    Cyber Defense eMagazine – December 2017 Edition
                         Copyright © 2017, Cyber Defense Magazine,  All rights reserved worldwide.