Data should be protected

Data should be protected from access by persons who are not the user. 

What we would like to see


End-to-end encryption will be the default in devices, networks and platforms for data in-transit and at-rest. If deviation from the default is to occur, other essential and equivalent safeguards in law are required.

Data minimisation will be implemented across all devices and platforms by design. Less data generation and processing means that less data that can be misused or breached. 

What this will mean

Cybersecurity policies must ensure that they protect all people across economic and geographic boundaries and promote end-to-end encryption.

Initiatives promoting the ‘Fourth Industrial Revolution’ and the ‘data revolution’ must place privacy at the centre of their policies where the minimisation of data is essential to a safe and secure future.