Because the internet has taken such an importance and so many critical public infrastructures (including the utility grids and so-called smart grids, transports just to name a few) can now be operated remotely with data aggregated and managed in the cloud, it is important to make sure that data cannot be accessed by non-authorized entities, or worth remotely tampered with. The expansive galaxy of internet of things is only accelerating the need for better data protection.
As we have grown dependent on networked digital systems, the variety and quantity of cyber-threats has also expanded from traditional IT security threats to new sources of threat such as social media, the cloud, new mobile devices or ‘bring your own device’ (BYOD) policies.
Of course, there are already many ways and standards to secure data transactions, but with so many implementations across the various EU Member States, it is not always easy to assess the respective risks and to make the right choices to ensure security. In some cases, it may be that weak implementations of good security measures will render them vulnerable to attacks (often at end-points or during data retention procedures).