Page 16 - SAMENA Trends - July-August 2022
P. 16

FEATURED  SAMENA TRENDS

        to uniquely identify an EU citizen, including   or other sensitive data.  expected to grow to 73.1 ZB by 2025.
        their name, address, phone  number,   2.  Consent  to  Processing:  In  addition to
        medical data, and more.  The US  Health   consent  to  data  collection,  GDPR and   The sheer volume of data  IoT devices
        Insurance  Portability  and Accessibility   other laws  require  explicit consent   produces  turns storing,  transmitting, and
        Act (HIPAA) protects the types of PHI that   from data subjects for their data to be   processing  it  into  significant  challenges.
        an  IoMT  device  would collect.  Most  IoT   processed.  With IoT devices,  massive   IoT devices  are commonly  deployed  in
        devices are likely to gather  at least one   amounts of data are collected  and   remote locations  with  limited  Internet
        type of protected information.         processed,  making it  challenging to   bandwidth,  making  it  difficult  and  often
                                               monitor how data will be processed and   expensive to transmit the collected data. In
        In addition to securing this protected data   get consent for that processing.  the cloud, servers must rapidly process and
        against attack, IoT device  manufacturers   3.  Encryption: Data protection laws require   analyze growing volumes of data to extract
        and users must protect  it  per  applicable   data to be encrypted  at  rest and in   essential insights and send any  required
        laws.  Some  important considerations   transit to protect against unauthorized   alerts or commands to the IoT devices.
        include:                               access and misuse. IoT devices often
        1.  Consent to Collection: Under the GDPR   have limited power  and processing   4. Data Complexity
          and similar  laws,  data  subjects must   resources, making  appropriate data   Many IoT devices are designed to adopt a
          provide explicit  consent  to  collect   encryption  difficult.  As  a  result,  these   Big Data mentality. These devices collect
          their personal,  protected  data.  With   devices  may not  always be  designed   as much information as possible and send
          IoT  devices,  this  can  be  difficult  as   to meet regulatory  requirements for   it to cloud-based servers for processing. In
          devices may  inadvertently collect data   protecting the data that they collect.  addition to producing massive volumes of
          without the appropriate permission. For   4.  Access  Management:  Data  protection   data, this approach also creates complex
          example, voice assistants may overhear   laws  like GDPR, HIPAA, and others   datasets.
          conversations that  collect  protected   mandate that  access to  sensitive
          personally identifiable information (PII)   information be limited to  those who   The data  produced  by  IoT  devices is
                                               require it for their roles. IoT devices are   often unstructured and provides a limited
           Data protection  laws like          designed  to be  distributed  and have   perspective. This data  must be carefully
           GDPR,  HIPAA,  and  others          their data processed on cloud servers,   timestamped, indexed, and correlated with
                                                                                 other  data  sources to make the context
                                               making  it  more  difficult  to  track  and
           mandate  that  access to            control access.                   required for effective decision-making.
           sensitive         information     5.  Jurisdiction: The GDPR restricts the data   This  data  volume  and  complexity
                                               from EU citizens from being transmitted
           be limited  to those  who           to countries that do not have “adequate”   combination makes it difficult to effectively
           require it for  their  roles.       data  protection  laws  in  place. With   and  efficiently  process  data  from  IoT

           IoT devices  are designed           IoT  devices and their cloud-based   devices. Many tools designed to manage
                                               processing servers, tracking and limiting
                                                                                 complex  datasets  cannot cope  with  the
           to be distributed and have          data flows can be complex.        volume of data that IoT devices produce.
           their  data processed  on         3. Data Volume                      On  the other  hand, solutions  that  can
                                                                                 handle massive volumes of data may not
           cloud  servers, making  it        The Internet of Things is snowballing, and   offer the required level of in-depth analysis
           more difficult to track and       IoT devices produce massive amounts of   and may not meet the latency requirements
           control access.                   data.  In  2019, IoT devices generated an   of IoT devices.
                                             estimated 18.3 zettabytes of data, which is

























                                                                                                  16  JULY-AUGUST 2022
   11   12   13   14   15   16   17   18   19   20   21