Identity at the Center Identity At The Center #15: KuppingerCole Consumer Identity World Conference Part 2
Oct 4, 2019
Jim and Jeff recap intriguing highlights from a recent consumer identity conference. They tackle crucial themes like privacy, consent management, and the implications of data breaches. The duo discusses the impact of GDPR and the tension between true compliance and minimal checkbox tactics. User expectations around multi-factor authentication are on the rise, while consent pop-ups earn their fair share of criticism. The show also delves into the threats posed by deepfakes and stresses the importance of strong connections with law enforcement for effective breach responses.
AI Snips
Chapters
Transcript
Episode notes
Privacy Laws Drive Productized Solutions
- GDPR and similar privacy laws are pushing companies beyond checkbox compliance toward productized privacy solutions.
- Jim McDonald expects cloud vendors to absorb complexity and drive adoption by offering compliant functionality.
Use Compliance As A Practical Starting Point
- Start with checkbox compliance as a minimum viable product and expand from there.
- Prioritize achievable steps over designing an ideal state when resources or organizational will are limited.
UMA Enables Granular Consent Control
- User-Managed Access (UMA) enables fine-grained consent at the entitlement and data level rather than account-wide grants.
- Full lifecycle control includes granting, revoking, receipts, and visibility over who has access.