Question

1. Discuss in 2 pages format APA, privacy issues of the internet of things (IoT) facing accounting departments in the U.S, and what policies and/or controls may need to be added/strengthened to protect privacy.

Answer 1

What is privacy, in the context of IoT?

Privacy is a key factor in trust relationships. When we disclose data to others, we are (implicitly or otherwise) trusting them not to use it in ways that conflict with our interests. As we will note in the following section, privacy is linked to the context in which we disclose data. In the context of IoT, privacy boils down to two things: either we trust third parties not to abuse the data generated by our use of connected objects, or we rely on the ability to control the collection and use of that data. In the IoT domain, privacy therefore carries strong implications of trust, transparency and control:

• The ability for individuals to control how the information collected by their IoT devices is shared, and determine who has access to the data from devices in your home, in your car, and on your person. This means easy ways to blind and mute devices, and to have a say in how IoT data is analyzed or shared with third parties.
• Clarity about how information about people is collected, used, and shared with others. IoT devices and their applications should enable the user to find out what information is collected and shared, when and with whom.
• The ability to determine how identifiable one is when undertaking online or offline activities. IoT devices should have the option for pseudonymous or anonymous use.
• The ability to control one’s digital footprint especially from IoT devices in intimate settings. The user should understand where information about them has gone, and how long it is kept.

IoT is characterised by a number of factors:

• Scale (the sheer number of devices, objects, sensors and imbedded systems)
• Proximity (the intimacy of devices such as wearables and implants)
• Ubiquity (the mass deployment of IoT in public and private spaces)
• Connectedness (which is not the same as device intelligence!)

These factors have an impact on privacy. They make it easier for the individual to be:

• Identified
• Tracked
• Profiled
• Influenced