Privacy and security are both fundamental pillars for continued growth of data-driven innovation. Without trust, there cannot be significant progress through innovation; and without adequate privacy and security protections, there can be no trust. SIIA promotes the following principles to provide an effective framework for privacy and cybersecurity.
Promote Flexible, Risk-based Cybersecurity Practices. Our country’s national and economic security depends on strong cybersecurity protections, including but not limited to the reliable function of critical infrastructure. Despite this, cyber threats continue to increase at a dramatic pace. Effective cybersecurity risk-management is imperative for all organizations, both public and private. Additionally, effective authentication techniques and the ability to combat online fraud are both critical cybersecurity objectives to ensure continued success of the digital economy. It is the role of the Federal Government to ensure that that individuals and organizations—both public and private—have the knowledge and the incentive to manage their own cybersecurity risks.
Update Policies to Create an Effective Legal Framework for Government Access to Information. Today, U.S. companies face conflicting legal obligations from the U.S. and foreign governments pertaining to law enforcement and intelligence agency access to electronic data. At the same time, U.S. law enforcement officials are challenged by an outdated legal framework that is hampered by the cumbersome Mutual Legal Assistance Treaty (MLAT) process. In the new data-driven economy, policy updates are needed to create an effective framework for U.S. business to continue as global leaders, and to balance the rights of citizens with the ability for law enforcement to do its job effectively.