If security risks are treated solely as technical challenges, there are limitations to how effective any intervention will be. Approaches that address the economic and social forces driving poor digital security have been adopted by many G20 nations. But tackling these issues on a piecemeal basis undermines the impact of a policy or campaign. Thinking holistically about security will strengthen the impact.
Reciprocal Data Applications (RDAs) are an example of this. RDAs exist purely to collect data. They often take the form of discrete service with a relatively small prompt (e.g. tag a photo with a person's name). With enough data these can be used or sold as training data for machine learning programs. That data takes many forms, some of it mundane, some extremely personal. Any successful approach to protect consumers means understanding the economic model that drives these businesses, unpacking the design and technology decisions in the services involved, and educating consumers about the risks of contributing to them.
Meanwhile, national strategies need to ensure that competition remains high and that small, innovative companies aren't blocked from entry to the market. They also need to address the increasingly global dimension of security risks. Interoperable frameworks and approaches will help ensure that people are protected worldwide.