dataturvallisuus

Dataturvallisuus, or data security, is the practice of protecting data from unauthorized access, disclosure, alteration, or destruction throughout its lifecycle. It aims to preserve confidentiality, integrity, and availability of information, often referred to as the CIA triad.

Data can be at rest, in transit, or in use; protection spans technical controls (encryption, access control,

Core controls include authentication and authorization, least-privilege access, and strong identity management; encryption for data at

Governance and compliance: Organizations implement data protection policies, risk management processes, and user awareness programs. Legal

Lifecycle management: Data creation, storage, usage, sharing, archiving, and disposal require safeguards to minimize exposure and

Standards and risk management: International standards such as ISO/IEC 27001 and the NIST Cybersecurity Framework provide

Challenges: Cloud adoption, remote work, and supply chain dependencies increase complexity. Balancing security with usability, privacy