Information Privacy and Data Security

Cardozo Law Review de Novo, 2015

12 Pages Posted: 30 Apr 2015 Last revised: 24 Oct 2015

See all articles by Lauren Henry Scholz

Lauren Henry Scholz

Florida State University - College of Law

Date Written: June 3, 2015

Abstract

Legal academic and policy discourse generally presumes that information privacy and data security are interchangeable goals. The conventional wisdom is that data security is a handmaiden of information privacy, and so what serves data security will serve information privacy. However, this view is an oversimplification of the relationship between the two fields. This Essay aids law and policy development in both fields by correctly defining their relationship to one another. Data security has separate objectives from information privacy that can be agnostic or even in opposition to information privacy. The law should acknowledge information privacy and data security as separate institutional objectives to prevent undesirable — or at least unpredictable — results in edge cases in which data security’s objectives run counter to those of information privacy.

Keywords: cybersecurity, data security, data breach, security breach, breach notification, privacy, regulation, consumer protection, chief privacy officers, Federal Trade Commission, data protection, new governance, organizational fields, professionalization

Suggested Citation

Scholz, Lauren, Information Privacy and Data Security (June 3, 2015). Cardozo Law Review de Novo, 2015, Available at SSRN: https://ssrn.com/abstract=2600495

Lauren Scholz (Contact Author)

Florida State University - College of Law ( email )

425 W. Jefferson Street
Tallahassee, FL 32306
United States
850-645-0278 (Phone)
850-644-5487 (Fax)

HOME PAGE: http://www.law.fsu.edu/our-faculty/profiles/scholz-lauren

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
527
Abstract Views
2,937
Rank
82,686
PlumX Metrics