Peter Yared, Co-Founder & CEO ,InCountry - How to Scale with All the New Data Regulations Across Countries

•

1 gefällt mir•444 views

Techsylvania

https://techsylvania.com

Technologie

How to scale with all the new data
regulations across countries
PeterYared
Founder & CEO

Countries are passing data residency laws so they
have jurisdiction over citizen data

Countries are also increasingly enforcing data
residency

You can’t ignore it
Maybe OK
• Taxi & LimoCommission
• Scooter parking
• News site
• Ad serving
TotallyScrewed
• Health insurance
• Wage payments
• Financialtransfers
• Employeedata

Health, transaction, payment, and employee data is
increasingly regulated worldwide

Every business will
be just like
McDonald’s
• Uniform branding
• Some consistency
• Aspects tailored to each local
market
• Have to follow a variety of
regulations in each market

Be careful about what kind of data you store
OK
• Profiledata
• Transactiondata
• Payment data
• Health data
Not OK
• Socialmedia posts
• Text messages
• Instant messages
• Personalphotographs

Building compliant infrastructure across countries is
expensive and time consuming
Step Team
Research data compliance Legal
Create compliance regimen Compliance
Select hosting provider Hosting operations
Contract hosting provider Hosting operations
Select secondary hosting provider Hosting operations
Contract secondary hosting provider Hosting operations
Implement API layer Engineering
Implement data layer Database administrators
Implement data backup Database administrators
Implement efficient WAN access Network operations
Ensure security Information security
Educate application developers on API Technical writing / education
Appropriate cyberinsurance Risk
Ongoing maintenance Technical operations
Audits Compliance, Technical operations

Use global to local vendors to offset compliance
Vendor Feature
TaxJar Localtax calculator
PassportShipping Handofffor customs/countrypostalservices
Coinbase Crypto exchange that runs in multiple countries
Trulioo Global“know your customer”checkslocalIDs
Bitwage Internationalwage payments usingcrypto
Hummingbird Anti money launderingAI
Integris Data privacyautomation
Okta User authentication

Deglobalization is
happening
everywhere
• Automated manufacturing
• 3D printing
• Vertical farms
• Lab grown meat
• Clean energy
• Fracking

Weitere ähnliche Inhalte

Was ist angesagt?

GDPR FAQ'S

Morgan McKinley

California Consumer Privacy Act and the Role of IAM

WSO2

Student Assignment Presentation Template

Brandon S

Ed Wright - Staying on the right side of the law in the digital world

Hallam

GDPR: A ticking time bomb is approaching - Another Millennium Bug or is this ...

Jessica Pattison

Legal vectors - Survey of Law, Regulation and Technology Risk

William Gamble

Electronic Communications Act (2000)

Ed Dickinson

What Is E Commerce

Ed Dickinson

Carlien Roodink - Congres 'Data gedreven Beleidsontwikkeling'

ScienceWorks

Securing data in the cloud: A challenge for UK Law Firms

CloudMask inc.

DataKillers

Brian Ethridge

Today’s data marketplaces are large, closed ecosystems that are in the hands of few established players or a consortium that decide on the rules, policies, etc. Yet, the main barrier of the European data economy is the fact that current data spaces and marketplaces are “siloes”, without support for data exchange across their boundaries. This webinar reveals how these boundaries can be overcome through the i3-MARKET “backplane”, which is an infrastructure able to connect all the stakeholders providing the suitable level of trust (consensus-based self-governing, auditability, reliability, verifiable credentials), security (P2P encryption, cryptographic proofs) and privacy (self-sovereign identity, zero-knowledge proof, explicit user consent).

Market into context - Three pillars for building a Smart Data Ecosystem: Trus...

Big Data Value Association

Security, GDRP, and IT outsourcing: How to get it right

N-iX

E-Signature in Document Management - Megan Smale

Joshua Tree Internet Media, LLC

Watch the on-demand webinar: https://info.trustarc.com/WB-2019-10-23-CCPASurvivalGuideMasteringConsentDoNotSellConsumerRightsandLookBackRequirements_RegPage.html The CCPA compliance deadline is fast approaching. Whether you are just starting, or have been working on your program for months, chances are you are having a lot of last minute implementation questions. Join this session to hear from a panel of industry experts who have been working on the front lines with companies of all sizes across all industries as they share tips and best practices on how to handle key aspects of CCPA compliance. You will also have the opportunity to ask the experts questions. This webinar will provide: -Tips on how to implement Do Not Sell and manage consumer rights requests -Best practices and tools to support look back reporting requirements -Updated guidance on the latest CCPA requirements changes

2019 10-23 ccpa survival guide

TrustArc

*Webinar* CCPA: Get Your Business Ready

MoEngage Inc.

Whether you're using spreadsheets or the first generation privacy technology tools available - privacy management can still be a time-consuming and manual process for the privacy team and the broader business. Automation and intelligence are the key to streamlining this process but where to start? In this webinar we've assembled some of the best privacy and security professionals to share their tips to cut out the time-consuming work so that you can focus on strategic input. CONSIDER: Just imagine what you could accomplish and influence if even 25% of your time was freed from manual processes. This webinar will provide insights into: -How to determine what activities to automate -Key considerations for assessing tools and vendors -Making the business case to increase the efficiencies and effectiveness of the privacy office

2019 08-21 Automating Privacy Management

TrustArc

Three pillars for building a Smart Data Ecosystem: Trust, Security and Privacy

Big Data Value Association

The continuous news of personal information stolen from major retailers and financial institutions have driven consumers and regulatory bodies to demand that more action be taken to ensure data protection and privacy. Regulations such as PCI DSS, HIPAA, GDPR, and FISMA require that personal data be protected against unauthorized access using technologies like encryption, tokenization, masking, secure file transfer and more. With all the options available for securing IBM i data at rest and in motion, how do you know where to begin? Join this webinar to get up to speed on the key concepts you need to know about assuring data privacy for your customers, business partners and employees. Topics will include: - Protecting data with encryption and the need for strong key management - Use Cases that are best for tokenization - Options for permanently deidentifying data - Securing data in motion across networks

Key Concepts for Protecting the Privacy of IBM i Data

Precisely

Investments in Compliance and Legal Automation and the AI Factor

Vladimir Vereskoun

Was ist angesagt? (20)

GDPR FAQ'S

California Consumer Privacy Act and the Role of IAM

Student Assignment Presentation Template

Ed Wright - Staying on the right side of the law in the digital world

GDPR: A ticking time bomb is approaching - Another Millennium Bug or is this ...

Legal vectors - Survey of Law, Regulation and Technology Risk

Electronic Communications Act (2000)

What Is E Commerce

Carlien Roodink - Congres 'Data gedreven Beleidsontwikkeling'

Securing data in the cloud: A challenge for UK Law Firms

DataKillers

Market into context - Three pillars for building a Smart Data Ecosystem: Trus...

Security, GDRP, and IT outsourcing: How to get it right

E-Signature in Document Management - Megan Smale

2019 10-23 ccpa survival guide

*Webinar* CCPA: Get Your Business Ready

2019 08-21 Automating Privacy Management

Three pillars for building a Smart Data Ecosystem: Trust, Security and Privacy

Key Concepts for Protecting the Privacy of IBM i Data

Investments in Compliance and Legal Automation and the AI Factor

Ähnlich wie Peter Yared, Co-Founder & CEO ,InCountry - How to Scale with All the New Data Regulations Across Countries

Blockchains : Risk or Mitigation?

ITU

Log Management for PCI Compliance [OLD]

Anton Chuvakin

Fines in the Millions Levied Every Year Coming Soon! The Business Case for ...

CA Technologies

Fintech summit 2016 thomson reuters tim baker_presentation final

Glen Frost

Isaca new delhi india privacy and big data

Ulf Mattsson

Many Federal agencies can benefit from the real-world experience of the financial services sector when it comes to best practices for big data management, cybersecurity, and fraud detection and mitigation. The reality is that most government organizations struggle to manage and reconcile financial information, as they must rely on a mix of legacy systems and newer applications to make fundamental business decisions. If you have big data challenges and are looking for a better way to streamline and secure data management to support your agency’s business and IT operations, plan to attend this session. This is your opportunity to understand how Hadoop can support your specific financial management mandates and help you use your organizational information to make defensible, data-driven decisions.

Relying on Data for Strategic Decision-Making--Financial Services Experience

Cloudera, Inc.

Infosecurity ISACA North America Expo and Conference will debut in New York City’s Javits Convention Center 20-21 November 2019. The event will leverage ISACA’s Cybersecurity Nexus (CSX) community and solutions with Infosecurity Group, Reed Exhibition’s immersive event series staged worldwide for the infosecurity industry. Download Event Brochure ISACA will bring experience developed since the 2015 launch of its CSX Conferences, expert workshop series, certification preparation sessions, and latest developments related to the CSX Training Platform, all to the new event programming. Infosecurity, which entered the North American conference arena in 2017, will build on its strengths in industry expositions, media, immersive learning and leadership networks.

What i learned at the infosecurity isaca north america expo and conference 2019

Ulf Mattsson

Isaca new delhi india - privacy and big data

Ulf Mattsson

B11: Central IP & IT Court | FinTech: Legal and Regulatory Challenges (7 Aug ...

Kullarat Phongsathaporn

Evolve Pci Compliance

hypknight

As the cyber threat landscape continues to evolve, organizations worldwide are increasing their spend on cybersecurity technology. We have a transition from 3rd party security providers into native cloud security services. The challenge of securing enterprise data assets is increasing. What’s needed to control Cyber Risk and stay Compliant in this evolving landscape? We will discuss evolving industry standards, how to keep track of your data assets, protect your sensitive data and maintain compliance to new regulations.

New regulations and the evolving cybersecurity technology landscape

Ulf Mattsson

State regulation of information protection in the cloud - international and K...

Vsevolod Shabad

Avoid security blind spots with an enterprise-wide view. If your organization relies on Splunk as its security nerve center, you can’t afford to leave out your mainframes. They work with the rest of your IT infrastructure to support critical business applications–and they need to be viewed in that wider context to address potential security blind spots. Although the importance of including mainframe data in Splunk is undeniable, many organizations have left it out because Splunk doesn’t natively support IBM Z® environments. Learn how Precisely Ironstream can help with a straight-forward, powerful approach for integrating your mainframe security data into Splunk, and making it actionable once it’s there.

Improve IT Security and Compliance with Mainframe Data in Splunk

Precisely

Piwik PRO The Real Cost of Data Privacy

Piwik PRO

Continuous Compliance 14.9.2016

Digia Plc

DataPower for PCI

DanteJara8

This presentation was delivered by Shawn E. Tuma, Cybersecurity and Data Privacy Attorney, to the Joint Meeting of ISACA and IIA North Texas on January 12, 2017. This presentation was significantly updated from past presentations and included a discussion of the groundbreaking New York Department of Financial Services (NYDFS) Cybersecurity Requirements for Financial Services Companies. The main points of this presentation are: (1) Cybersecurity events create a crisis situation and should be treated as such; (2) Cybersecurity incidents are as much legal events as they are IT or Business / Public Relations events; (3) Companies must have a cybersecurity breach response plan in place and tested, in advance; (4) While consumer class action data breach litigation is a significant threat to companies and their leadership, it is not as great of a threat as regulatory enforcement by agencies such as the FTC and SEC, or the shareholder derivative claims for officer and director liability; and (5) The odds are that all company will be breached, but preparation and diligence can help minimize the likelihood that such a breach from being a catastrophic event. This presentation addresses the role of attorneys as the first responders in leading their clients through cybersecurity and data loss crisis events. The discussion begins by looking at the risk business have of being the victim of a cybersecurity or data loss incident and examining the nature of such incidents and the crisis environment they create. Then, because of this crisis environment, the need for leadership in helping keep the parties calm, rational, and making deliberate, calculated decisions. The discussion then explains why cybersecurity events are legal events and legal counsel is the natural leader that should fulfill this role and how they can do so. It will then discuss the process legal counsel will take, including assembling the key players in such an event, both internally and externally. It discusses the obligations for responding to such an event, the steps that must be taken, those that must be considered, and certain factors that go into the decision-making process. It briefly addresses the costs of such an incident and the liability issues that can arise from such an incident and failing to properly respond to the incident. This section includes a discussion of the cybersecurity lawsuit landscape, cybersecurity regulatory landscape, and the issue of cybersecurity-related officer and director liability stemming from shareholder derivative lawsuits based on cybersecurity incidents. It concludes with a discussion of the steps that companies can take to prepare for and be in a better position to respond to and mitigate the negative repercussions of such an incident.

Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...

Shawn Tuma

Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing the Impact of a Breach Encryption has been viewed as the ultimate way to protect sensitive data for compliance. But it has also been considered very complex to implement. Today, encryption is essential to meet compliance objectives, and has become much simpler to implement. The challenge is knowing when and where to use encryption, how it can simplify compliance, what controls need to be in place, and the options for good encryption key management. This session will cover the options for encryption and key management, what each provides, and their requirements. Encryption and key management topics include application-level encryption for data in use, network encryption of data in motion, and storage encryption for data at rest.

Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...

IBM Security

Virtual Data Room Industry Growth Statistics and Trends.pdf

Hokme

BrightTALK webinar January 14 2015 The biggest challenge in this new paradigm of the cloud and an interconnected world, is merging data security with data value and productivity. What’s required is a seamless, boundless security framework to maximize data utility while minimizing risk. In this webinar, you’ll learn about value-preserving data-centric security methods, how to keep track of your data and monitor data access outside the enterprise, and best practices for protecting data and privacy in the perimeter-less enterprise.

Where data security and value of data meet in the cloud brighttalk webinar ...

Ulf Mattsson

Ähnlich wie Peter Yared, Co-Founder & CEO ,InCountry - How to Scale with All the New Data Regulations Across Countries (20)

Blockchains : Risk or Mitigation?

Log Management for PCI Compliance [OLD]

Fines in the Millions Levied Every Year Coming Soon! The Business Case for ...

Fintech summit 2016 thomson reuters tim baker_presentation final

Isaca new delhi india privacy and big data

Relying on Data for Strategic Decision-Making--Financial Services Experience

What i learned at the infosecurity isaca north america expo and conference 2019

Isaca new delhi india - privacy and big data

B11: Central IP & IT Court | FinTech: Legal and Regulatory Challenges (7 Aug ...

Evolve Pci Compliance

New regulations and the evolving cybersecurity technology landscape

State regulation of information protection in the cloud - international and K...

Improve IT Security and Compliance with Mainframe Data in Splunk

Piwik PRO The Real Cost of Data Privacy

Continuous Compliance 14.9.2016

DataPower for PCI

Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...

Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...

Virtual Data Room Industry Growth Statistics and Trends.pdf

Where data security and value of data meet in the cloud brighttalk webinar ...

Mehr von Techsylvania

Tom Mason (Stability AI) - Computing Large Foundational Models Unlisted

Techsylvania

Sergiu Biris (MultiversX) - Blurring the Lines Between Web 2.0 and Web 3.0

Techsylvania

Conversation w/ Tijana Kovacevic (Happening) - Keeping Your Startup Heart Whi...

Techsylvania

Aarik Mudgal (METRO.Digital) - How to Implement DDoS Protection in GCP

Techsylvania

Tudor Mafteianu (Blu Capital Partners) - What Drives the Value of Your Business?

Techsylvania

Andrew O’Neal (Clearbit) - Scaling a Product Vision Through World-Class Team ...

Techsylvania

Andrew Davies (Paddle) - From Zero to $350m Revenue: Finding and Scaling Your...

Techsylvania

Jonathan Oakes (Google) - Powering Health and Fitness Products

Techsylvania

Yossi Matias (Google) - Driving Societal Change Through AI Innovation

Techsylvania

Angus Keck (AgUnity) - Mastering Determination, Adaptability, and Storytellin...

Techsylvania

Efi Dahan (PayPal) - From Local to Global: Tips and Trends to Scale Your Busi...

Techsylvania

Amy Varney (Systemiq Capital) - Has Climate Tech Graduated?

Techsylvania

Nima Banai - Vision to Product: Product Design, Development, and Manufacturin...

Techsylvania

Chris Leacock aka Jillionaire - Embracing Diversity Through Interdisciplinary...

Techsylvania

Emil Boc (Mayor of Cluj-Napoca) - Opening Remarks Day 1

Techsylvania

Patrick Poels (Snyk) - The 3 Key Rules of Building Globally Distributed Teams

Techsylvania

Eduard Varvara (Barings, MassMutual) - How Barings is Shaping a Culture of In...

Techsylvania

Cristina Morariu (MassMutual Romania) -How Is Technology & Innovation Shaping...

Techsylvania

Marie Astrid Molina (Scaleway), How to Design for a Product You Understand No...

Techsylvania

Julie Xu (Carta) - Designing a product experience vision at scale

Techsylvania

Mehr von Techsylvania (20)