Out of the Box Solutions Blog

How Exactly Is the GDPR Working to Incorporate Blockchain?

How Exactly Is the GDPR Working to Incorporate Blockchain?

Now that the European Union’s General Data Protection Regulation (GDPR)--the most comprehensive individual data protection law in history--has gone into effect, it is important to know where your business stands in regard to your potential liability. One technology that has a rather lot of ambiguity surrounding it is blockchain, which is essentially an encrypted and distributed digital ledger. How is the development of blockchain, which is built on the idea of security through transparency, going to fare under the guidelines of the new GDPR regulations?

Let’s start with the GDPR itself. Despite not using the PII designation that we’ve come to know, the regulation is the strongest data protection law ever established for its overreaching stance of protecting any individual that is doing business within the member nations of the European Union. Additionally, any organization that works with suppliers or partners in the EU has to comply with the regulations found in the GDPR. If you’ve noticed that all of your favorite online businesses and websites have updated their privacy policy recently, it’s because the GDPR went into effect on May 25, and they need to protect themselves against the immense fines that come with non-compliance to the regulation.

The issue at hand for blockchain technology is actually in the GDPR mandate itself. Under the GDPR, if an organization that doesn’t need personal data, obtains personal data, they are not to keep that data, but are required to delete it. Since you can’t delete blockchain nodes, it stands to reason that the GDPR would be a problem for companies that are looking to innovate using blockchain technology. Ironically, blockchain and the GDPR, despite not having the same agenda in creation, have been cultivated with a shared purpose: to protect the rights of individuals to make the decisions about their own data, but blockchain is not designed to be GDPR-compatible as it is written today.

Technology moves fast so while the GDPR has just now gone into effect, it is already being challenged by technological innovation. The GDPR was designed to be technologically agnostic and flexible enough to allow for such innovations, the blockchain is already testing that. Many of the applications that blockchain is used for actually lend themselves well to the mandate triad of confidentiality, integrity, and availability. In blockchain, the transactions themselves use encryption to be confidential, but the overall ledger, and this is the problem, will still be transparent.

For example, Joe could pay with his blockchain-based account for a physical (as most of the EU has universal healthcare). The particulars (account number, and other personal information) could be hidden, but the record would show that Joe paid so many euros worth of cryptocurrency for a physical. Under the GDPR, because that information, while encrypted, is still in possession of the company that has no rights to it--and it can’t be deleted from the blockchain--it constitutes a breach of the GDPR. Many EU-based companies have stopped accepting Bitcoin and other distributed cryptocurrencies as payments (for a litany of reasons, one being the GDPR).

Now, the GDPR only covers EU-member countries and people doing business with them, but with how much money is being invested in venture capital for blockchain research and application development, it stands to reason that the EU governing body will have to make eventual amendments to the mandate.

The most interesting question going forward is, which is the future of data security? Is it GDPR-like mandates like the California Consumer Privacy Act (CCPA), or is it blockchain itself? What do you think about the GDPR regulation? Would you like to see data privacy be as protected in your country? Or do you think that it is a hindrance to innovation and progress? Leave your comments below and return to our blog regularly. 

Sexy Scam Relies on Your Belief that Someone Was W...
Intro to Your Tech: Software as a Service


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Tuesday, January 22 2019

Captcha Image

Mobile? Grab this Article!

Qr Code

Tag Cloud

Tip of the Week Security Best Practices Technology Business Computing Network Security User Tips Tech Term Privacy Productivity Internet Smartphones Cybersecurity Efficiency Hardware Communication Microsoft Mobile Device Malware Browser Android Email Small Business Data IT Support Cloud Ransomware Network Wi-Fi Mobile Devices Data recovery Internet of Things Passwords Wireless Windows 10 Holiday Business Management IT Services Communications Collaboration Applications Managed IT services Users Innovation Data Backup Google Backup Saving Money Information Employer-Employee Relationship Networking Business Hackers VoIp Software Marketing Workplace Tips Cloud Computing Outsourced IT Business Intelligence Social Media Managed IT Services Blockchain Hosted Solutions Data Management Remote Monitoring and Management Computers Cortana Save Money Tech Terms Access Control Microsoft Office Gmail Automation Connectivity Medical IT Smartphone Facebook Artificial Intelligence Apps Cost Management Analytics Bandwidth Virtual Assistant Password Managed Service Mobility Wireless Charging Managed IT Service Remote Computing Compliance Patch Management Virtualization VPN Computer BDR Data Protection RAM Telecommuting Edge Virus Safety Threat Security Cameras Server Microsoft Office 365 Tip of the week HP Tactics Business Continuity Knowledge Office 365 Settings Hard Drives Trends Content Filtering HIPAA disposal Bring Your Own Device Profitability Phishing Storage Mobile Security Microsoft Teams Miscellaneous Antivirus Printing Reporting Word Comparison User Tip Document Management Telecommute Upgrade Telephony IT budget SSD A.I. Dark Web Hard Drive Value Hybrid Cloud Amazon Eliminating Downtime Data Breach Physical Security Operating System Company Culture Workers Staff Dongle Paper Wearables Specifications Lead Generation Network Attached Storage Authentication Paperless Office Maintenance Analysis Certification Voice over IP Battery Movies Error Gadgets Processors Cables BYOD Sales eCommerce Laptop Technology Tips Managing Stress Troubleshooting Millennials Ink SaaS Healthcare Twitter Authorization Digital Data loss Router Vulnerability Machine Learning Database Voice over Internet Protocol Plug-In Wireless Internet Tablet Online Shopping Streaming Media Environment Update Business Technology Government PowerPoint GDPR Data Security Conferencing Inventory Unified Communications Spam Websites Internet Explorer Training IT Management Touchscreen Spyware Cybercrime Proactive IT Help Desk Excel Backup and Disaster Recovery Downloads WannaCry Server Management e-waste G Suite Outlook Big Data Sports Office Disaster Recovery Regulation Alert Printers Quick Tips Personal Information