Step 1 – Define the Policy (for both Digital and Cyber/ Information Security)

Thank you for reading through this and as I had mentioned earlier, this is a series. This article is the next in the series. Your feedback means a lot and I appreciate the comments coming my way. In case you have missed the earlier articles, the links are below. Article 1 – http://arrka.com/index.php/2017/07/12/exploring-the-ciso-role-especially-for-the-smb/ Article 2 – http://arrka.com/index.php/2017/08/13/smb-ciso-series-article-2-going-digital-what-dangers-are-you-walking-into/ A policy document, for all practical purposes, is a statement of intent of…

Read More

A Crucial Milestone for Privacy in India

As conversations and debates are in full flow all around us on privacy and data protection, India quietly crossed a crucial milestone in its privacy journey for enterprises last week. The Data Security Council of India (DSCI), India’s focal body on data protection which is an independent Self Regulatory Organization (SRO) under NASSCOM®, launched the ‘DSCI Lead Assessor for Privacy’ program last week. Why is this significant? Where does it…

Read More

Wake Up, Marketers in India!

A recent conversation with a friend who’s putting together an online campaign for her brand: Me: BTW, in your campaign, have you ensured all the consumer data you are planning to collect would be properly protected? After all, you are collecting some sensitive personal data from folks She: Our IT Team is excellent – am sure they have the most secure database systems. Besides, Indian junta is not all that…

Read More