Writing and Blog

A collection of my writing, musings, and opinion pieces. Please check back for updates!

Hire Ross

Ross is available for technical and other writing.

Should you be interested, please get in touch!

A crash course in your rights under POPIA

As someone who deals with business a lot on POPIA, my blog is often focused in this area. Today, I will focus on the consumer side as I have seen a dramatic increase in posts on social media around actions contravening POPIA (that actually don’t). The purpose of POPIA is, among others, to give effect to the right to privacy of the individual. This however, is met with the clause “balancing the right to privacy against other rights” and “protecting important interests including the free flow of information within the Republic”.

read more

POPIA and Software-as-a-Service, an interesting year ahead

As a Software-as-a-Service (SaaS) provider, POPIA is going to have a profound effect on your business. The act, now signed, comes into effect on the 1st of July, 2020, with the deadline for compliance being the 30th of June 2021. This is not a lot of time, and you’ll need to address a number of challenges in the year to come.

read more

Logging and Diagnostics – 5 Sources of PII You Never Considered

Working in the Software-as-a-Service space means that you’re dealing with loads of logging and diagnostic information being generated every second. When we talk privacy, we often don’t consider these operational systems as they are removed from the client facing side and don’t contain sensitive data (on the surface).

read more

How to implement DLP and monitoring legally

It’s easy for a business to claim total ownership of communications in a company with a blanket monitoring policy applied across the board, but are you allowed to? Over the years, I’ve seen dozens of clauses claiming the right to monitor everything – the fact is, it’s probably not as legal as you think it is, and you probably believe you have more rights than you do as an employer!

read more

Data Protection as taught by Ferris Bueller (Part 3)

For the past few weeks I’ve been drawing comparisons between Ferris Beuller’s Day Off and data protection, and how this movie details a number of techniques that are used in cyber security and privacy. In this last instalment we’ll reach a little and “milk the metaphor” a bit, but all in good fun!

read more

Data Protection as taught by Ferris Bueller (Part 2)

In part 2 of this series (read part 1 here), I continue with three more scenes as to how this cult classic relates to Data Protection. We know Ferris was cunning and endearing, both of which are traits that can be used for persuasion and deception.

read more

Data Protection as taught by Ferris Bueller (Part 1)

I rewatched Ferris Bueller’s Day Off a few days ago and couldn’t help but notice that it’s a beautiful illustration of Data Privacy, Open Source Intelligence (OSInt), Cyber Security and Persuasion. Our budding grey-hat analyst, Ferris, can teach us a lot about these subjects, even 34 years on. Data Protection moves pretty fast. If you don’t stop and look around once in a while, you could miss it.

read more

My Remote Speaking Equipment

The speaking industry has been absolutely turned on its head with COVID-19 and many speakers are now moving online. I am very thankful that I opted to start my remote speaking journey long before COVID-19 hit, and as such I have oodles of equipment and gadgets to assist in presenting virtually. Many of my speaking colleagues (and some clients) have asked what technology I use, and therefore this post has been put together.

read more

Has your selfie caused a data breach?

Amidst the madness that is Coronavirus and exponentially more people working from home, we have social media going crazy with folks showing their “work from home” setups. As with any new development, working from home can be exciting, and because of that there is an urge to share your WFH setup on Instagram or other social media platforms.

read more