top of page
  • Writer's pictureDeborah

According to the Canadian Centre for Cyber Security, ‘encryption encodes (or scrambles) information. Encryption protects the confidentiality of information by preventing unauthorized individuals from accessing it.’

The UK Information Commissioner’s Office (‘ICO’) also provides a simple and clear explanation of data encryption by defining it as ‘a mathematical function that encodes data in such a way that only authorized users can access it’.

It is the process of turning data into “ciphertext”, rendering it unreadable to users that do not detain the correct decryption key or password.

Depending on the type and risks of a processing activity, encryption is considered as a good process for data protection. It is indeed mentioned in regulations such as GDPR in the EU.

Encryption is an important part of cyber security, one of the many security controls that helps protect the confidentiality of data. One of the best practices recommended is to implement an encryption policy by, amongst others, evaluating the sensitivity of the information. Entities should also provide training in the use and importance of encryption to protect and store data in a secure manner.

Various international standards exist with regard to encryption. and entities should ensure that their encryption solution or technology meets the relevant standards.

Recent Posts

See All

The Secured Overnight Financing Rate (SOFR) is a broad measure of the cost of borrowing cash overnight collateralized by Treasury securities. SOFR is the overnight interest rate for US dollar-denomina

13/06/2023 - Canadian Securities Administrators (CSA) SEDAR+ go-live date. All issuer filings, cease trade orders and disciplined list entries will be filed in SEDAR+ 16/06/2023 - OSFI consultation pe

On May 11, the Bank for International Settlements (BIS) published a Handbook on how central bank digital currencies (CBDCs) could work for offline payments, defined as a “transfer of value between dev

bottom of page