Presented By
O’Reilly + Cloudera
Make Data Work
March 25-28, 2019
San Francisco, CA

Executive Briefing: Big data in the era of heavy worldwide privacy regulations

Mark Donsky (Okera), Nikki Rouda (Amazon Web Services)
2:40pm3:20pm Thursday, March 28, 2019
Secondary topics:  Security and Privacy
Average rating: ****.
(4.33, 3 ratings)

Level

Intermediate

The General Data Protection Regulation (GDPR) went into effect on May 25, 2018, for all organizations that offer services to EU residents, as well as anyone who controls or processes data within the EU. The State of California is following suit with its California Consumer Protection Act (CCPA), targeted to be enforced in 2020. GDPR and CCPA compliance requires cross-departmental effort that touches upon oversight, technology, processes, and people. With possible fines for violations, businesses should work to build a data environment that is flexible enough to be meet the needs of current and future regulations.

GDPR deals specifically with broad data privacy and grants individuals in the EU the following rights:

  • The right to personal data protection, ensuring that personal data is handled with industry-standard data security controls and best practices, including data protection by design and cross-border data transfer prevention
  • The right to data portability so that individuals can choose to take their data elsewhere
  • The right to be forgotten and to erasure so that individuals can request deletion
  • The right to notification of personal data breach, ensuring that any data breach is communicated to both authorities and users

The implications of new privacy regulations for data management and analytics can seem complex. Mark Donsky and Nikki Rouda highlight aspects of the rules and outline the approaches that will assist with compliance.

Topics include:

  • Metadata classification upon ingest
  • Integration with tools that can profile, tag, and catalog the contents of datasets
  • Lineage to view how impacted data is used for analysis
  • Fine-grained data authorization and access controls by role and type of data
  • Comprehensive encryption at rest and in motion, with separation of duties so admins can’t access user data
  • Data organization and anonymization minimizing the locations of personal data
  • Data erasure strategies for compliance with the right to be forgotten
Photo of Mark Donsky

Mark Donsky

Okera

Mark Donsky leads product management at Okera, a software provider that provides discovery, access control, and governance at scale for today’s modern heterogeneous data environments. Previously, Mark led data management and governance solutions at Cloudera, and he’s held product management roles at companies such as Wily Technology, where he managed the flagship application performance management solution, and Silver Spring Networks, where he managed big data analytics solutions that reduced greenhouse gas emissions by millions of dollars annually. He holds a BS with honors in computer science from the Western University, Ontario, Canada.

Photo of Nikki Rouda

Nikki Rouda

Amazon Web Services

Nikki Rouda is a principal product marketing manager at Amazon Web Services (AWS). Nikki has decades of experience leading enterprise big data, analytics, and data center infrastructure initiatives. Previously, he held senior positions at Cloudera, Enterprise Strategy Group (ESG), Riverbed, NetApp, Veritas, and UK-based Alertme.com (an early consumer IoT startup). Nikki holds an MBA from Cambridge’s Judge Business School and an ScB in geophysics from Brown University.