In Part 1 of this data privacy series, we focused on the importance of maintaining data privacy for individuals and entrepreneurs and provided in-
depth analysis of relevant tools and resources. In Part 2, we will now focus on the business side of this subject. When using the internet and digital devices, most activity is monitored by default, making digital privacy and safety challenging for businesses and business associations. That is why the Center for International Private Enterprise (CIPE) works on projects related to digital rights and democratic digital transformation, creating online spaces where businesses can freely and safely operate with integrity.
Businesses of all sizes that operate online create large data footprints and face an evolving landscape of cyber threats.
The Importance of Digital Privacy for Businesses
Businesses of all sizes that operate online create large data footprints and face an evolving landscape of cyber threats. Bad actors can acquire data to target business owners, especially businesses owned by marginalized communities, or women, who may be doxxed, threatened, or financially boycotted due to prejudice. Businesses may also not recognize the differences between responsible and irresponsible data collection or lack the funds to properly handle and secure collected data. These attitudes and mismanagements can lead to security breaches, which have financial and reputational consequences. Businesses risk undermining the confidence of consumers, especially if data collection policy is not communicated transparently. These dangers can lead to businesses failing to attract partners or customers. The opposite is also true; explained in CIPE’s Risk to Value Guide, businesses that prioritize consumer protection and good corporate governance can leverage that trust and confidence into new opportunities in the digital economy.
Recommendations for Staying Safe Online
Businesses face complex threats that can undermine digital security. Here are some practical steps to reduce online risks:
Virtual Private Networks (VPNs)
A VPN’s primary purpose is masking a user’s Internet Protocol (IP) address. Businesses tie user IP addresses to collected data, so VPNs prevent internet service providers and businesses from associating users with any data. Additionally, if the location is changed via VPN to a country with more stringent data privacy protection laws, websites comply with local laws. The research paper VPNalyzer: Systematic Investigation of the VPN Ecosystem, conducted by researchers at the University of Michigan, has an easily consumable table (pg. 16) that can be a starting point when considering a secure VPN, such as ProtonVPN, which has a free version with an unlimited data cap.
Adblockers, Cookies, and Application Permissions
Adblockers remove unwanted advertisements, malicious pop-ups, and cumbersome website functions, like moving, obstructive videos. Cookies are small files with unique identifiers that websites use to track users across websites. On phones used for work, caution is important; there are settings that allow users to withhold permission from applications that would collect data from across the entire phone. Being safe online is crucial to a business’ integrity, so making use of resources like AdBlock Plus and uBlock Origin, two free, open-source adblockers, adjusting settings in a web browser, running a scheduled system cleaner, and choosing a privacy-oriented browser, such as Firefox Focus, help keep businesses safe.
Open Technology Fund Tools
This independent non-profit organization provides services and funds for open-source tools that strengthen digital security. Some examples include Tella, a mobile tool that encrypts sensitive material on phones and securely delivers to recipients, and Mobile Surveillance Monitor, which analyzes active surveillance threats targeting at-risk individuals’ phones.
Technology for Democracy Tools
This CIPE interactive course is designed to improve the knowledge and use of digital tools and strategies among business membership organizations. The 2nd module, digital security, and the 4th module, data privacy, help educate businesses on the implications of data collection.
Fostering Resilience and Embracing Digitalization Training Course
CIPE and the International Training Centre of the International Labour Organization (ITC-ILO) jointly developed this e-learning course designed for managers and board members. The course highlights best practices and strategies for businesses to become more resilient and embrace digitalization.
While the practice of widescale data collection likely will not disappear, online users should consider adopting tools that better protect their data. Businesses can reduce risks to information security, trust, and reputation by using the resources and tools listed here. Above all, businesses need to remain diligent as technology risks change and tools and resources evolve or become obsolete. Beyond proper diligence in their own operations, one way for businesses to remain informed on best practices would be to join and work with local business associations to promote and advocate for data privacy laws and practices that adequately balance privacy with innovation, which would help create a stronger sense of awareness, accountability, and transparency in the digital space. Leveraging CIPE’s tools and resources can help private-sector actors with this endeavor and promote more democratic and safe digital environments.
Published Date: October 05, 2023