Federal laws now require that organizations protect personally identifiable information. In fact, some of Canada’s privacy laws now fall under an act known as the Personal Information Protection and Electronic Documents Act (PIPEDA, sometimes also called the PIPED Act). While protecting the personal information of customers has always been a good idea, it is no longer simply a "suggestion" in Canada. It is the law, and organizations must comply with it or face penalties and legal repercussions.
Many private-sector organizations, as well as federally-regulated organizations, are affected by the privacy act. To learn more about how your organization might be affected, click here.
Until recently, many organizations felt the most comfortable storing sensitive information in data centres on their premises. While Cloud technology can be convenient, numerous businesses have avoided this convenience due to the prevalence of online hackers. However, advances made in the security and standards of Cloud technology have made it more appealing. Now, many organizations are considering Cloud technologies, such as the platforms offered by Google, Microsoft, and Amazon Web Services (AWS). By updating their systems for ensuring PII security, such groups can modernize internal systems, such as their data access and storage, compute power, and IT infrastructure.
Some of the major technology companies, including Google, have invested much money and other resources into ensuring that the Cloud is as secure as possible. Over time, the concerns previously attached to Cloud technology should dissipate. In fact, recent international standards have been established to protect PII in the Cloud. These standards also offer some guidance for those who provide Cloud services. An international standard clearly defines the set of controls that Cloud service providers must implement, so they may address the risks involved and keep them to a minimum.
Next Pathway offers a unique platform that can help organizations to secure the PII that they are required to protect. Cornerstone®, the leading data lake platform, secures personally identifiable information at a granular level the moment it is ingested. This function works whether that information is in the Cloud or in a data centre on the organization’s premises.
Cornerstone® provides security features that are flexible and customizable. The platform adapts and integrates an organization’s existing security policies and technologies, such as Active Directory or Lightweight Directory Access Protocol (LDAP).
If your organization is concerned about complying with the laws related to PII, we can help. Please contact us for more information.