The blockchain may become the allied technology in Data Protection and allow us to own our digital identity in the metaverse.
At first glance, we might expect the future of data protection to be full of regulatory breaches and security gaps. These breaches where data loss occurs have very negative consequences, such as the loss of reputation for many organisations, and directly impact the development and continuity of their business.
Unfortunately, Onur Korucu, Data Protection and Cybersecurity Manager at Avanade-Microsoft, was unable to attend his presentation at the Digital Trust conference held by ISACA in Rome. Although we did not enjoy his talk live, he sent us a video explaining his vision of the future of data protection.
Growth in data generation
Korucu began his speech by talking about the enormous amount of data being generated and the complexity of dealing with this growth. The growth that is also driving the awareness of individuals to require greater protection measures for their personal data.
Although greater certainty is required for some parts of the regulation, the GDPR was intended to increase transparency, accountability and user truth, and was expected to influence legislation in countries outside the European Union with which they do business.
The evolution of data ownership
Onur Korucu boldly predicts that “Data ownership will move to a model where individuals will use a single, fully encrypted identity. The single digital identity can be created using systems such as the Blockchain, usually related to cryptocurrency transactions.” Therefore, it seems that the next front for the blockchain will be the use of private data.
As an example of this trend, Korucu mentioned the case of the metaverse that Facebook is preparing: “It’s going to be interesting to see how Facebook establishes relationships between brands and users. With users leaving a digital footprint in the metaverse and brands waiting to be able to use that data, there will be a need for a compensation model when individuals own their data”.
Security and authorisation of data use
It is common knowledge that data flows between organisations, tools and technologies, so there is a growing demand to understand how data is being used. Korucu has recognised that there are models based on security and authorisation, which will help shift the horizon of data privacy towards one that becomes a digital currency and from which individuals can benefit.
Extending the GDPR
The GDPR regulates how technologies create and process all personal data, and the protection offered was welcomed by most participants, as the amount of data collected, processed, shared, stored and reused has grown dramatically. Korucu explained that there are new aspects that the regulation should address that “will have an impact on how emerging technologies are used by organisations”, such as developments on consent, privacy-based design, data protection impact assessment, the right to be forgotten and new sanctions.
The impact on emerging technologies
On Cloud Computing technologies, which are closely linked to the spread of Big Data and Artificial Intelligence, Kuroko explained that “strengthening algorithm analysis, data availability from IoT devices, and data mining applications are some of the features of the Big Data revolution.
To conclude his presentation, Onur Korucu wanted to express that “the relationship between technologies and data protection is extremely fascinating. Rights can be strengthened or severely compromised, especially considering the latest applications and potential of AI. Finally, he hinted that the role that emerging technologies will play in the future is astonishing but also extremely worrying, which makes investigating their implication on personal data and organisations strictly necessary.