comptia tech+ mod 2 Data and Privacy: Security (Part 1)

Introduction

Focus on data and privacy regarding personal information.

Data Overview

Data: Files created by users (photos, documents, databases).
Importance: CEOs prioritize securing customer databases.
Privacy: Methods like encryption used to protect information.
Access: Authentication required for data access.

Personal Identifiable Information (PII)

Direct PII: Unique identifiers (name, address, phone number, SSN, email).
- Risks: Identity theft and financial loss.
Indirect PII: Broader identifiers (zip code, gender, race).

Data Collection by Companies

Algorithms: Automated software collecting user data from browsing habits.
Targeted Ads: Companies segment users based on demographics for marketing.

Cookies

Definition: Small text files stored on user's computer for tracking visits and behaviors.
Functionality: Helps in user experience and session continuity.
Management: Ensure understanding of cookie agreements when visiting sites.

Privacy and Advertising

Monetization: Ad space sold based on user data; data brokers sell personal information.
Social Media: Users relinquish ownership of their shared content once posted.
Privacy Settings: Adjust who can view profiles; be cautious with shared content.

Messaging and Security Risks

SMS Messages: Typically sent in plain text, vulnerable to interception.
Phishing Emails: Scams disguised as legitimate communications targeting user data.

Privacy and Artificial Intelligence (AI)

AI Applications: Concerns about data handling in health apps and online experiments.
Risks with AI: Identity theft and unauthorized use of personal images.

Regulatory Frameworks

GDPR: European regulation for personal data ownership.
CCPA: California's privacy standards.
FERPA, HIPAA, PCI: Regulations for educational records, health information, and payment security respectively.

Conclusion

Importance of being aware of data privacy practices and regulations when using online services.