ISACA Now Blog

COBIT 4.1 (IT Governance & Control)
Risk IT
Val IT (IT Value Delivery)
BMIS (Business Model For Information Security)
IS Audit and Assurance
Research
Academia
NEW! Partner Content Featuring MIT’s Center for Information Systems Research
Glossary
ISACA Now
Knowledge & Insights > ISACA Now > Posts > Geolocation: Fun, functionality—and fear

Geolocation: Fun, functionality—and fear 

| Posted at 4:57 PM by ISACA News | Category: Security | Permalink | Email this Post | Comments (2)

Marcos Damianides

We love our smartphones…oh, the fun, the functionality…but what about our privacy? But we still go on loving them! This is one of the key themes from the recent geolocation study conducted by ISACA, which polled 1,000 U.S. consumers and found that 58 percent of smart-device owners use location-based apps, despite having concerns about those apps infringing on their privacy.

Depending on how much information they are sharing, users’ concerns ranged from too much marketing, lack of privacy and even physical assault (read about the Girls Around Me app here). On the question of whether user agreements address these concerns, the answer is mixed: but certainly the consensus is that they don’t go far enough - 25 percent believe the agreements are not clear about how location information about them is being used!

But there are upsides to geolocation, including apps that offer precise navigation, location-based coupons and easy information sharing through features like social check-ins. And the appeal of geolocation is growing; nearly one-third (32%) of consumers in ISACA’s survey use location-based apps more than they did a year ago.

Users should educate themselves so they can understand how their information is being used. They should also learn how to disable location-based features. Of course, businesses that collect location-based data have a responsibility, too. They need to define an ethical governance policy and communicate it transparently.

Getting informed about geolocation is easy for those willing to invest a little time to protect themselves. ISACA has created a simple acronym—ROUTE—to educate location-based app users:

For a deeper analysis, look to ISACA’s recently published white paper on geolocation, which you can find here. You can also view a series of geolocation video segments from my friend and fellow ISACA volunteer Ramsés Gallego here.

Geolocation is a big issue that is increasingly grabbing headlines. In recent weeks a number of publications, including the Washington Post, produced articles based on ISACA’s geolocation study.

This blog’s readers—mainly IT professionals such as yourself—are likely more knowledgeable about geolocation and location-based apps than the average user, and more likely have a deeper understanding of the perils and possibilities afforded by them.

But we IT professionals are smartphone users, too. And like those hundreds of smartphone owners who participated in the ISACA study, I, too, have my concerns about privacy.

Marios Damianides, CISA, CA, CPA

Partner, Ernst & Young, USA

Past International President, ISACA

We welcome your comments! Please log in using the Sign In link at the top right of this page and then leave your comment in the box at the end of the post. To view all blog posts, please click on the ISACA Now link in the blue box on the left.

Comments

Security concerns valid, ROUTE effort is right on target

Marios,
Great post.  The increasing use of Geolocation is not fully appreciated by the public.  This is a great example of ISACA at work.
KWK
www.ip3inc.com
kkousky at 5/1/2012 3:49 PM

Geolocation is a new discipline to consider into the Governance perspective

Marios, a great article focusing on the need of the right balance of risk and rewards, productivity and privacy.
Geolocation is getting the attention of C-level executives since it might lead to great benefits but to an exposure as well.
We must Govern the Geolocation angle, embrace the technology while preventing the bad from happening: that's Risk Management at its core...
Consider the mobility arena and all of those devices within your Asset Management Program, get the assurance on which services are running and what they do.
Say hello to a new dimension that requires a sound conversation. Welcome to the world of Geolocation.
Ramses at 5/3/2012 5:50 AM
You must be logged in and a member to post a comment to this blog.
Email