On computer security day we pay tribute to Ada Lovelace, the forgotten mother of the computer. Often described as the first computer programmer — before computers were even invented — Ada was a real visionary. Imagine what she might have achieved had Babbage actually built his “computer” and she hadn’t died at the age of 36.
Cyber Talk: Do’s and don’ts for the set-up of your whistleblowing system
1 June 2021 – Cyber Security Coalition
Time running out to get whistleblowing organized?
If you are an organization with 250 or more employees, you must have a whistleblowing system up and running by the end of this year. Get the ‘do’s and don’ts’ right!
The ‘European Directive on the protection of persons who report breaches of European law’ requires companies in many industries to have a ‘whistleblowing’ system up and running by December 17th of this year (250+ person companies), or by December 17th 2023 at the latest (50 – 249 person companies). Whether you are on top of this obligation, or only starting out, you will benefit from the cyber talk by Mona Caroline Chammas and Catherine de Dorlodot, respectively Founder and Expert Counsel at GOVERN&LAW, on ‘The do’s and don’ts for the set-up of your whistleblowing system’.
A whistleblowing system, that is yet another bothersome and expensive obligation? Actually, no. People very rarely abuse a whistleblowing system, while very often raising valid concerns (50+ percent of cases). But you must do it right, with strong attention paid to the anonymity and support of whistleblowers (they are often ‘fragile’). Do get management buy-in, with the right foundations (ethics, policies…) and with affinity for the required managerial courage (admitting to problem situations). A whistleblowing system is more than buying a tool (a phone works fine too), with a suitable balance between all aspects (security, specific laws, HR…) and a clear and well-communicated access for all in the organization. And go for a broad scope of topics.
A whistleblowing system can be organized internally (also with the help of outside services), or externally (calling upon a designated authority). Smaller companies can share a whistleblowing system. It is too expensive? Do understand that virtually all whistleblowers raise alerts ‘in good faith and in the interest of the company’, if offered the opportunity and means (thus e.g. rendering outside leaks to the press etc. unnecessary). Finding out about fraud and other messes will save money and avoid costs, making for an interesting ‘ROI’. Indeed, companies with whistleblowing systems find out more often and faster about infringements than companies without these systems. If you do not hear about any problems, it does not mean they are not festering in your company. So check out this presentation and www.whistleblowing.center, whether you are new to whistleblowing systems, or already well ahead.
Other blog posts
The second webinar of the Privacy Focus Group on the subject of ‘Artificial Intelligence’ (AI) tackles a major challenge: how to reconcile the use of AI with the demands of GDPR, particularly regarding data protection? It is still very much unknown territory for developers, users and privacy protection officers. This webinar helps you find your way!
API’s (Application Programming Interfaces) are ubiquitous and used to interconnect all our popular web applications. Without API’s, applications cannot communicate and we would simply not be able to use the majority of the current cloud and web applications. But at the same time, because of these API’s, security threats are greater than ever. API attacks are different compared to traditional attacks: they target vulnerabilities in the business logic, and hackers exploit these zero-day vulnerabilities.
This webinar organized by the Privacy Focus Group in cooperation with KU Leuven helps you gain a much-needed insight in the hot topic of Artificial Intelligence (AI). It gives an overview of the different types of AI applications and points to the ethical and societal implications of the use of such applications. It is a splendid starting point to delve deeper into the fascinating world of AI.
During the last Privacy Focus Group meeting, the VBO-FEB explained the functioning and the advantages of the interactive DPO Connect platform which was set up by the Data Protection Authority (DPA) in collaboration with DPO-Pro and the Vrije Universiteit Brussels (VUB) with the support of the European Commission.