What are your top IoT privacy concerns?

890 views1 Upvote5 Comments

Vice President, Head of IT, 1,001 - 5,000 employees
For us at GitLab we’re all remote and one of our biggest obstacles is to put what you’d normally consider basic security measures in a traditional brick and mortar world. We're in the process of getting an MDM product installed on laptops. Because of the very nature of open source and DevOps, a majority of the company is thinking about, “What data are you collecting and what is your responsibility around that data?”  With WFH, you're not just getting the IP address of their personal work laptop.  There’s the potential you’re getting other information on things in their environment. It's that real mashup of personal and work environment that makes it tricky.  How do you strike that balance, especially when you're trying to sell in the enterprise and you’ve got certain companies demanding you do certain security measures and track certain things? I don't have an answer. It is a really complicated problem and I think it’s just going to get worse. But there's going to be an opportunity for new solutions to help manage this stuff.   For example, cloud data products like DataBricks. It’s only going to get more and more complex, especially as these IoT devices have more compute power and become capable of doing so much more.
VP of Technology, 51 - 200 employees
The devices are amazing and there’s so much promise (e.g., making good predictions on health, having a doctor look and actually give you real time health updates and remedies) but then the flip side is, what about privacy?   There's really two big buckets to think about. There's cyber security, and making sure that it can't be compromised, and then there's this other big bucket of privacy.  What data is being collected on you? What sensors do you have in your own home? We have watches looking at the pulse of your heart and oxygen in your blood. It’s promising but it’s also a bit scary.
1 1 Reply
VP - Head of Information Technology in Software, 1,001 - 5,000 employees

We look at PII as something that directly identifies you, but if there's a signature to something that’s being measured by an IoT device, technically that would be another metric of invading your privacy because you would be uniquely identified by something that's tracked.  So it's a little bit terrifying!

Vice President, Head of IT, 1,001 - 5,000 employees
We’re going to have to figure out a way to let people view the data so that they feel comfortable about what’s being collected.  “I'm checking up on you about what you were checking up on me about.”  That's been a broad discussion at GitLab. If you can create that sort of environment, you'll actually have much better outcomes because a two-way trust will develop. The reason I don't have my nest hooked up to the Internet is I don't trust that that data is being used properly, and even if it is being properly used, I don't trust that it couldn't be used for nefarious reasons or applications from someone else.  There has to be a new layer of openness around data collection and IoT. That's my belief.
Assistant Director IT Auditor in Education, 10,001+ employees
Sensitive data, such as PII and corporate critical information assets.  Accessing data using IoT devices over the Internet could be analyzed by Internet service providers.

Content you might like




1.1k views4 Upvotes

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
42.5k views131 Upvotes319 Comments