Issue of Data Protection & Privacy in India

Just what I had highlighted in the previous two posts about the Government intentions to get access to the Google mails along with the Blackberry and Skype.  Interestingly the news is here -  "Government wants to read your Gmail".  Well pretty Interesting huh!!! Just when we were worried about the Privacy of the previous cases, we get to know the cave in of the defense of Nokia and now Google is in Line.


I am not sure how would the Government ensure the security of the Personal Information associated with the emails et al.  It is well understood that the step is taken in the interest of National Security, but if the Government can't secure the Information collected through the access obtained, I do not see why the Netizens shouldn't Panic?


Its High-time for the Government to create an infrastructure that is Effective, Efficient and Resilient to counter Hacking attempts and at the same time ensure that the Privacy of Information is maintained at the level of "Classified Information" that should be accessible ONLY to the Agency responsible for and is in-charge of the said investigation. 


National Security also includes in its Folds the Security of Its Citizens and Netizens.  We should not be going Draconian Ways to create a scenario where the Individuals and Corporates get back to the traditional means of communication for the Fear Information Compromise by Government Agencies and then Leaking it in the Public Domain....Yeah there has to be some restrains on that side too.....

VoIP and the Risk of Data Privacy and Protection

Just finished reading "Encrypted Phone Calls & Skype Security" by a fellow blogger and a technocrat Friend Mukesh Kesharwani. Indeed pretty interesting and well covered stuff no doubts and that is what we expect from Mukesh.

However, when I look in from my Risk and Compliance Corner, the concern of using Skype in Corporate Network still looms large and Rings the Bell in my head... Can't do away with that as for me the Data Privacy and Protection (be it in any form) is primer.

Some of you might have read my previous post on this when I had written about the Blackberry Security and Issue of National Security.  I would reiterate those concerns in the case of Skype Usage also.  For most of the cases, if Skype is used for Corporate purpose, the corporates would try to cut the cost and try and use the retail version of Skype that's available to one and all with access to Internet.  In this case, I am sure that as and when the Security Agencies get access to the Data exchanged on Skype, though the sorts of agreement it now has with Research in Motion (the Company that owns the Blackberry Brand), there would be a High Risk to the Confidential and Business Critical Data that would be shared using Skype and mind it that may include files shared or voice communication.  Certainly if a company is using Skype, it would also use the VOIP facility to ensure that the Cost of Communication stays low.  

I would still suggest to take a step at a time in this arena to ensure that the Corporate Risk related to Data Privacy and Protection does not get High "Particularly when the Country DOES NOT have a Data Protection and Data Privacy Regime".  When I highlighted that risk in my previous blog, certainly there were few high profile cases of Data leak, but now we have the example of Telephone Tapes in which the conversations were taped in by an enforcement agency authorities to investigate some case, but the tapes went to Public Domain and now to the Apex Court.  

I still would be not too happy to hear from the Corporates Adopting Public Domain technologies for handling Corporate Affairs and Exchange Business Critical and/or Business Sensitive information over such channels.  Unless, the Govt comes around with a Data Privacy and Protection Regulation to ensure that the information stays where it is supposed to be and is not leaked out in a domain where it may be utilized in a fashion to cause material damage to the Corporate Affairs or so......

The Risk Remains High till such time....