The global and independent platform for the SAP community.
MAG 15-11

A gift horse ...

Free of charge! Free! Free! There are many terms for labeling software. What at first glance means the same thing, is at best the same thing at second glance. This small but subtle difference must also be taken into account on the Internet.
E-3 Magazine
29 October 2015
Content:
2015 xxx
avatar
This text has been automatically translated from German to English.

While commercial and paid-for software used to be the rule, today you can find more and more free offers. However, there is no such thing as "free" or "gratis" in the free economy.

In English, there is also an apt description for this: "TANSTAAFL - there ain't no such thing as a free lunch".

There may be no payment, but you still have to pay with something of value. In most cases today, users simply pay for free internet offers or apps with their data.

A user becomes a "profile" - and the more you enrich it with data, the better you can tailor advertising to that user. This "business model" is omnipresent today, even with some security products.

However, with this model, the data usually remains in the relationship between provider and customer. This is something that the customer can normally still penetrate. However, it becomes critical when (even anonymized) profiles are sold on to third parties.

This "Holy Grail" for advertisers makes it possible to create even better and more transparent profiles by cross-correlating a wide variety of data sources.

And this is all the more true if it is possible to "de-anonymize" data that is actually anonymous in this way.

This is all the more tragic because both theoretical and practical experiments clearly show that de-anonymization is basically a purely statistical problem that depends solely on the available data sources and quantities.

Galloped

Unfortunately, even providers of security solutions are now using this opportunity to earn extra money. This is all the more tragic as a certain level of sensitivity is expected when handling personal data, especially in the security sector.

Although legally perfectly legal, the question of ethics must also be allowed here. Of course, the resale of data is a lucrative additional business for the provider. However, customers can no longer penetrate this "three-or-more" relationship.

The simple question "Who has my data?" is almost impossible to answer.

Until now, the only option was to stubbornly work through the provider's terms and conditions. The fact that these are usually written in the finest legal English did not exactly make the task any easier ...

Backing the right horse

This is where the so-called "minimum standard" of the European Expert Group for IT Security (EICAR) comes into play. It is probably known to many as an independent European research organization in the antivirus sector, but has long been concerned with IT security as a whole.

The most recent project is the "minimum standard", which forces certified providers to maintain data hygiene. This means that security products may only collect and transfer data to the manufacturer that is absolutely necessary to fulfill the security functions.

The collection and transfer of personal data clearly violates this requirement. As CTO of Trend Micro, it is also a personal concern of mine to say that we were the first manufacturer to certify solutions according to the EICAR minimum standard.

Trend Micro's business model is to sell our customers the best possible protection against the dangers of the IT world. The collection and secondary use of customer data and its resale are definitely not part of this.

Ultimately, you have to ask yourself which horse you want to back, what price you are prepared to pay for a service or solution.

On the one hand, there is the commercial option with a clearly defined monetary price and corresponding performance. On the other hand, you pay with your data ...

avatar
E-3 Magazine

Information and educational outreach by and for the SAP community.


All articles of the author

Write a comment

Advising Wisely Thanks to Hybrid Archiving

SAP FUE for AI Agents

SAP Clean Core 2016

Working on the SAP basis is crucial for successful S/4 conversion. 

This gives the Competence Center strategic importance for existing SAP customers. Regardless of the S/4 Hana operating model, topics such as Automation, Monitoring, Security, Application Lifecycle Management and Data Management the basis for S/4 operations.

For the second time, E3 magazine is organizing a summit for the SAP community in Salzburg to provide comprehensive information on all aspects of S/4 Hana groundwork.

Venue

FourSide Hotel Salzburg,
Trademark Collection by Wyndham
Am Messezentrum 2, 5020 Salzburg, Austria
+43-66-24355460

Event date

Wednesday, June 10, and
Thursday, June 11, 2026

Early Bird Ticket

Regular ticket

EUR 390 excl. VAT
available until 1.10.2025
EUR 590 excl. VAT

Venue

Hotel Hilton Heidelberg
Kurfürstenanlage 1
D-69115 Heidelberg

Event date

Wednesday, April 22 and
Thursday, April 23, 2026

Tickets

Regular ticket
EUR 590 excl. VAT
Subscribers to the E3 magazine
reduced with promocode STAbo26
EUR 390 excl. VAT
Students*
reduced with promocode STStud26.
Please send proof of studies by e-mail to office@b4bmedia.net.
EUR 290 excl. VAT
*The first 10 tickets are free of charge for students. Try your luck! 🍀
The event is organized by the E3 magazine of the publishing house B4Bmedia.net AG. The presentations will be accompanied by an exhibition of selected SAP partners. The ticket price includes attendance at all presentations of the Steampunk and BTP Summit 2026, a visit to the exhibition area, participation in the evening event and catering during the official program. The lecture program and the list of exhibitors and sponsors (SAP partners) will be published on this website in due course.