Data SovereigntyGORDON TANM A N A G I N G D I R E C TO RR & G T E C H N O LO G I E S

Agenda

◦ Data Sovereignty

◦ Australian Privacy Principles (APPs)

◦ Protect Yourself

◦ Consequences

◦ Common cloud providers – where is your data?

◦ Common nonprofit implications

◦ About R & G Technologies

◦ Q & A

Data Sovereignty

What is Data Sovereignty?

The Background◦ In a nutshell, the digitisation of data is the reason why the problem exists.

◦ Digital Data:◦ Creation and Duplication is easy

◦ Portable

◦ Is a source of management headaches for corporate entities

◦ Innovative solutions

◦ Cloud solution providers make very compelling business cases

The Legal Challenge◦ Each country has a set of information privacy laws

◦ Variations between countries

◦ Privacy acts outdated

◦ Again, the problem is that principles found in APPs only apply to Australian based entities

‘Before an APP entity discloses personal information to an overseas recipient, the entity must take reasonable steps to ensure that the overseas recipient does

not breach the APPs in relation to the information.’

- Australian Privacy Principles (APPs) Chapter 8

Protect yourself

‘Enter into an enforceable contractual arrangement with the overseas recipient to handle the personal information in accordance with the APPs.’

- Office of the Australian Information Commissioner

◦ The Government are basically saying that it is your responsibility to contractually ensure your technology partners comply with the APPs

◦ This is all well and good… but… most cloud technology trends are inherently built with high availability, robustness, low cost, collaboration and business continuity goals in mind

Consequences◦ The Government will hold YOU accountable for any breaches made by technology partners or cloud

providers

◦ Government departments, agencies and fund recipients will shy away from doing business with you if you don’t satisfactorily demonstrate your (and your technology partners’) compliance with APPs

‘In July 2014, Australia’s Department of Defence terminated a $33.5M contract of Luxottica (OPSM) after it became apparent they were storing client information on

overseas servers.’- The Australian (July 25th 2014)

Where is your data?

Australia Overseas

MYOB MS Office 365

Xero Google Apps

MS Azure Salesforce

Connecting Up IaaS Dropbox

Amazon Web Services One Drive

Common Nonprofit Implications◦ File Storage

◦ Data retention legislations

◦ Cost implications

◦ Client Management Systems

About R & G Technologies

◦ Award winning ICT consultancy with offices in Brisbane, Sydney and Melbourne

◦ Servicing nonprofits Australia-wide

◦ Trusted ICT partner; single source supplier for all your ICT needs

◦ Connecting Up IaaS delivery partner

Want more 15 minute not for profit CEO debriefs?Email ross.beard@rgtech.com.au and we’ll add you to the subscription list

Q & A1300 562 886

rgtechnologies.com.au

gordon.tan@rgtech.com.au