Data security refers to securing the data of a company by using multiple technologies and techniques. Companies need to have data security to prevent unauthorized access, intentional loss of sensitive data, and accidental loss or corruption of sensitive data. The techniques used in data security include multi-factor authentication, multiple layers of access control at the network, and the detection and isolation of unauthorized devices immediately upon attachment to a network. Disaster recovery plans and taking regular backups are also a part of data security as well as the risk management process of the companies.
Data privacy speaks about technical details on how to implement data security and who will have authorized access to sensitive data. The most important concern of data privacy is the application of policies and procedures that govern the collection, storage, and use of Personally Identifiable Information (PII)* and proprietary corporate information, such as trade secrets, personnel, and internal processes. It states how the data is to be used by the company and its employees across all its systems. It also spells out how to avert improper data exposure and how to deal with the situations of policy issues and policy breaches.
*Personally identifiable information (PII) is any data that could potentially be used to identify a particular person through name, address, telephone number, email address, etc.
Security Considerations related Posts:
