Security Systems News

MAY 2018

Security Systems News is a monthly business newspaper that reaches 25,100 security installers, product distributors, central stations, engineers & architects, and security consultants. Our editorial coverage focuses on breaking news in all major se

Issue link: https://ssn.epubxp.com/i/972885

Contents of this Issue

Navigation

Page 16 of 82

www.securitysystemsnews.com May 2018 SECURIT y S y STEMS NEWS Guest Commentary 10 L E A D I N G T H E I N D U S T R Y Y E S T E R D A Y · T O D A Y · T O M O R R O W Leading the Industry Together − Yesterday. Today. Tomorrow. Proud Sponsor to the process of ensuring compli- ance for the operation of video surveillance, access control and other physical security systems. The concern for most in the physi- cal security industry is how will it affect them and is this something that they should be concerned about in the United States. Well, By Pierre Bourgeix M U ch ha S been written about the EU GDPR, or General Data Protection Regulation, which was adopted on a pril 27, 2016 and becomes enforceable on May 25. Yet given the unique challenges involved, surprisingly little has been devoted Are you ready for the GDPR? data of a EU citizen being viewed by security personnel? What should organiza- tions do to prevent data breaches? a rticle 24 of the GDPR outlines an organization's respon- sibility to implement "appropriate techni- cal and organizational measures" to ensure and demonstrate proper processing of personal data. a rticle 32 goes unfortunately, as you are about to find out, the issues facing the entire security industry include not only how to mitigate the hidden liability associated with this regulation but also—how do manufacturers, con- sultants, and integrators protect themselves from the inevitable law- suits that could arise from personal a step further to explain that "In assessing the appropriate level of security, account shall be taken of the risks that are presented by processing, in par- ticular, from accidental or unlawful destruction, loss, alteration, unau- thorized disclosure of, or access to personal data transmitted, stored or otherwise processed." a n important aspect of this regulation is the emphasis on preventing unauthorized access. This is where physical security is essential. Specifically, it can help safeguard data against internal and external human threats that aim to exploit gaps within your orga- nization's walls and through your workforce. This includes limiting what data can be observed, stolen or accessed. Review the following and assess whether your workforce has the appropriate technical and organizational measures in place to comply. The critical issues center around the protection of data, which encompasses video manage- ment, video storage, camera with onboard storage, video analytics, access control, biometric, docu- ment storage, document sharing, etc. The basis of GDPR is the desire to protect all individual's privacy rights who are citizens of the EU. This must be treated as extremely important since the alleged fines could amount to more than one million euro per alleged violation. The gravity of this for the United States is that corporations who presently admit anyone from the European Union must put imme- diate provisions to ensure that any form of data that is collected on that person be either destroyed or masked to prevent others from viewing the information. The only provision is that the person can give permission, if asked. a s you can see, this could become a mas- sive burden to corporations as well as the public sector. Finally, it is important to under- stand how GDPR affects cloud solutions and the storage of data on servers in the cloud. This could be an issue for manufacturers who use cloud to maintain their secu- rity solutions. If data is at rest on a server in Europe, you are required to fulfill the requirements of GDPR. Potential remedies, which may need to come from the federal government, may state that any- one who enters into the United States from Europe must sign a release of privacy regarding GDPR guidelines. Pierre Bourgeix is president of ESICONVERGENT LLC, a man- agement consulting firm focused on helping companies assess and define the use of people, process, and tech- nology within the physical and cyber security arena. Pierre Bourgeix

Articles in this issue

Links on this page

Archives of this issue

view archives of Security Systems News - MAY 2018