Un nouveau d\u00e9lit\u00a0:\u00a0la divulgation d\u2019informations prot\u00e9g\u00e9es par le secret des affaires<\/strong><\/h2>\nInspir\u00e9 du COHEN Act des \u00c9tats-Unis mais aussi d\u2019autres textes europ\u00e9ens, ce texte d\u00e9fini la notion \u00ab\u00a0d\u2019informations prot\u00e9g\u00e9es relevant du secret des affaires d\u2019une entreprise\u00a0\u00bb (Art 325-1) et introduit le d\u00e9lit de divulgation de ces informations (Art 325-2).<\/p>\n
Ces informations sont \u00ab quel que soit leur support, les proc\u00e9d\u00e9s, objets, documents, donn\u00e9es ou fichiers de nature commerciale, industrielle, financi\u00e8re, scientifique, technique ou strat\u00e9gique ne pr\u00e9sentant pas un caract\u00e8re public dont la divulgation non autoris\u00e9e serait de nature \u00e0 compromettre gravement les int\u00e9r\u00eats de cette entreprise en portant atteinte \u00e0 son potentiel scientifique et technique, \u00e0 ses positions strat\u00e9giques, \u00e0 ses int\u00e9r\u00eats commerciaux ou financiers ou \u00e0 sa capacit\u00e9 concurrentielle\u00a0<\/em>\u00bbArt. 325-1 .<\/p>\nCette large d\u00e9finition permet de couvrir les diff\u00e9rents incidents rencontr\u00e9s ces derni\u00e8res ann\u00e9es.<\/p>\n
Jusqu\u2019ici, en cas de fuites, les responsabilit\u00e9s pouvaient \u00eatre recherch\u00e9es pour vol, abus de confiance ou encore violation de propri\u00e9t\u00e9s intellectuelles.\u00a0 Mais il \u00e9tait difficile de faire reconna\u00eetre des d\u00e9lits \u00ab\u00a0virtuels\u00a0\u00bb touchant des donn\u00e9es immat\u00e9rielles non reconnues par le code p\u00e9nal.<\/p>\n
Les exemples de jurisprudence sont rares, comme le jugement de juin 2010 du tribunal correctionnel de Clermont-Ferrand. L\u2019ex-employ\u00e9 de Michelin souhaitant vendre des donn\u00e9es \u00e0 la concurrence a \u00e9t\u00e9 condamn\u00e9 d\u2019abus de confiance, mais sa peine est toute relative\u00a0: 2 ans de prison avec sursis et 5000 euros d\u2019amendes.<\/p>\n
Les peines pr\u00e9vues dans ce nouveau texte sont largement plus\u00a0dissuasives\u00a0: 3 ans de prison et 375 000 \u20ac d\u2019amendes. Seul regret, la tentative de fuite d\u2019information n\u2019est pas r\u00e9primand\u00e9e. Il est important de pr\u00e9ciser que les donn\u00e9es identifi\u00e9es ne seront pas prot\u00e9g\u00e9es en cas d\u2019investigations de la justice ou encore d\u2019autorit\u00e9 de contr\u00f4le comme la CNIL. D\u2019autre part, les journalistes sont \u00e9galement exclus du champ de la loi en cas de recel. Pour finir, les mesures de s\u00e9curit\u00e9 devront faire l\u2019objet d\u2019une information des instances repr\u00e9sentatives du personnel.<\/p>\n
Mais quels vont \u00eatre les impacts dans les entreprises et comment le RSSI doit-il aborder ce sujet\u00a0?<\/p>\n
Des impacts non n\u00e9gligeables<\/h2>\n
Le dispositif qui sera prochainement adopt\u00e9 va n\u00e9cessiter un travail important dans les grandes organisations. En effet pour que la loi s\u2019applique, les donn\u00e9es doivent faire \u00ab\u00a0l\u2019objet de mesures de protection sp\u00e9cifiques destin\u00e9es \u00e0 informer de leur caract\u00e8re confidentiel et \u00e0 garantir celui-ci\u00a0\u00bb (Art 325-1).<\/p>\n
Le texte pr\u00e9cise que les mesures seront pr\u00e9cis\u00e9es par d\u00e9cret en conseil d\u2019\u00e9tat. Les premi\u00e8res discussions font \u00e9tat du marquage de l\u2019ensemble des documents, de\u00a0l\u2019\u00e9tablissement de listes de personnes autoris\u00e9es \u00e0 prendre connaissance des informations, d\u2019un stockage des documents papier dans des coffres ou des locaux s\u00e9curis\u00e9s ou encore la mise en place de dispositifs de chiffrement et de codes d\u2019acc\u00e8s.<\/p>\n
Des pratiques minimums mais d\u00e9j\u00e0 complexes \u00e0 d\u00e9ployer \u00e0 large \u00e9chelle. En effet, m\u00eame si les donn\u00e9es les plus sensibles sont souvent connues instinctivement, il peut \u00eatre ardu de les identifier dans l\u2019entreprise et \u00e0 fortiori de les prot\u00e9ger dans son syst\u00e8me d\u2019information. Il s\u2019agit d\u2019un travail souvent m\u00e9ticuleux pour bien embrasser l\u2019ensemble des donn\u00e9es et tous les cas d\u2019usage associ\u00e9s.<\/p>\n
\u00a0Une r\u00e9flexion \u00e0 entamer d\u00e8s aujourd\u2019hui<\/strong><\/h2>\n\u00a0<\/strong>Il est \u00e9vident que tout ne devra pas \u00eatre classifi\u00e9 \u00ab\u00a0secret des affaires\u00a0\u00bb dans une entreprise. \u00a0Un bon r\u00e9glage du \u00ab\u00a0curseur\u00a0\u00bb sera cependant ardu \u00e0 trouver. Il faudra osciller entre \u00ab\u00a0trop classifier\u00a0\u00bb, et donc augmenter les co\u00fbts, ou \u00ab\u00a0ne pas assez classifier\u00a0\u00bb, et donc prendre de risques de fuites. L\u2019implication des m\u00e9tiers et de la direction sera, encore une fois essentielle, et les efforts des ann\u00e9es pr\u00e9c\u00e9dentes dans la r\u00e9alisation d\u2019analyse de risques s\u2019av\u00e8reront tr\u00e8s utiles.<\/p>\nM\u00eame si de nombreuses \u00e9tapes l\u00e9gislatives restent \u00e0 franchir, r\u00e9jouissons-nous cependant de l\u2019avanc\u00e9e que repr\u00e9sente ce texte, qui va d\u2019une part aider \u00e0 la sensibilisation du management et d\u2019autre part apporter enfin une r\u00e9ponse juridique aux nombreux incidents rencontr\u00e9s ces derni\u00e8res ann\u00e9es\u00a0!<\/p>\n","protected":false},"excerpt":{"rendered":"
Apr\u00e8s des ann\u00e9es de r\u00e9flexion, le texte relatif au \u00ab\u00a0secret des affaires\u00a0\u00bb a \u00e9t\u00e9 adopt\u00e9 par l\u2019assembl\u00e9e nationale en premi\u00e8re lecture le 23 janvier 2012. Nous devrions donc \u00eatre dot\u00e9s \u00ab\u00a0prochainement\u00a0\u00bb d\u2019une nouvelle arme p\u00e9nale dans notre arsenal r\u00e9glementaire pour…<\/p>\n","protected":false},"author":15,"featured_media":3381,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"page-templates\/tmpl-one.php","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3223,36,34],"tags":[3259,81,78],"coauthors":[837,782],"class_list":["post-1415","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cloud-next-gen-it-security","category-cybersecurity-digital-trust","category-strategie-d-entreprise","tag-data-protection-2","tag-protection-des-donnees","tag-reglementation"],"acf":[],"yoast_head":"\n
Le "secret des affaires" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Le "secret des affaires" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight\" \/>\n<meta property=\"og:description\" content=\"Apr\u00e8s des ann\u00e9es de r\u00e9flexion, le texte relatif au \u00ab\u00a0secret des affaires\u00a0\u00bb a \u00e9t\u00e9 adopt\u00e9 par l\u2019assembl\u00e9e nationale en premi\u00e8re lecture le 23 janvier 2012. Nous devrions donc \u00eatre dot\u00e9s \u00ab\u00a0prochainement\u00a0\u00bb d\u2019une nouvelle arme p\u00e9nale dans notre arsenal r\u00e9glementaire pour...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\" \/>\n<meta property=\"og:site_name\" content=\"RiskInsight\" \/>\n<meta property=\"article:published_time\" content=\"2012-02-20T07:01:36+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-01-02T10:08:24+00:00\" \/>\n<meta name=\"author\" content=\"G\u00e9r\u00f4me Billois, Marion Couturier\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"G\u00e9r\u00f4me Billois, Marion Couturier\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\"},\"author\":{\"name\":\"G\u00e9r\u00f4me Billois\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17\"},\"headline\":\"Le “secret des affaires” arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ?\",\"datePublished\":\"2012-02-20T07:01:36+00:00\",\"dateModified\":\"2020-01-02T10:08:24+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\"},\"wordCount\":806,\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage\"},\"thumbnailUrl\":\"\",\"keywords\":[\"data protection\",\"protection des donn\u00e9es\",\"R\u00e8glementation\"],\"articleSection\":[\"Cloud & Next-Gen IT Security\",\"Cybersecurity & Digital Trust\",\"M\u00e9tiers - Strat\u00e9gie d\u2019entreprise\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\",\"name\":\"Le \\\"secret des affaires\\\" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage\"},\"thumbnailUrl\":\"\",\"datePublished\":\"2012-02-20T07:01:36+00:00\",\"dateModified\":\"2020-01-02T10:08:24+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Le “secret des affaires” arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"name\":\"RiskInsight\",\"description\":\"The cybersecurity & digital trust blog by Wavestone's consultants\",\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\",\"name\":\"Wavestone\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"width\":50,\"height\":50,\"caption\":\"Wavestone\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17\",\"name\":\"G\u00e9r\u00f4me Billois\",\"description\":\"G\u00e9r\u00f4me Billois is a Partner at Wavestone in the Cybersecurity and Digital Trust practice. He graduated from the National Institute of Applied Sciences in Lyon. He has deep expertise in risk management and cybersecurity, developed over more than 15 years of experience. G\u00e9r\u00f4me is a board member of CLUSIF, a member of the ISO JTC1\/SC27 committee, responsible for information security standardisation, and a founding member of Club27001, a non-profit dedicated to promoting the ISO 27001 standard. He holds CISA, CISSP and ISO 27001 PA certifications. G\u00e9r\u00f4me co-authored several books on cybersecurity (Eyrolles, Cepadues, Wiley & Sons, Larcier), is a regular media and conference speaker (Assises de la S\u00e9curit\u00e9, ISACA, CLUSIF, CNIS, etc.), and gives university lectures.\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/author\/gerome-billois\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Le \"secret des affaires\" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/","og_locale":"en_US","og_type":"article","og_title":"Le \"secret des affaires\" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight","og_description":"Apr\u00e8s des ann\u00e9es de r\u00e9flexion, le texte relatif au \u00ab\u00a0secret des affaires\u00a0\u00bb a \u00e9t\u00e9 adopt\u00e9 par l\u2019assembl\u00e9e nationale en premi\u00e8re lecture le 23 janvier 2012. Nous devrions donc \u00eatre dot\u00e9s \u00ab\u00a0prochainement\u00a0\u00bb d\u2019une nouvelle arme p\u00e9nale dans notre arsenal r\u00e9glementaire pour...","og_url":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/","og_site_name":"RiskInsight","article_published_time":"2012-02-20T07:01:36+00:00","article_modified_time":"2020-01-02T10:08:24+00:00","author":"G\u00e9r\u00f4me Billois, Marion Couturier","twitter_misc":{"Written by":"G\u00e9r\u00f4me Billois, Marion Couturier","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#article","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/"},"author":{"name":"G\u00e9r\u00f4me Billois","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17"},"headline":"Le “secret des affaires” arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ?","datePublished":"2012-02-20T07:01:36+00:00","dateModified":"2020-01-02T10:08:24+00:00","mainEntityOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/"},"wordCount":806,"publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage"},"thumbnailUrl":"","keywords":["data protection","protection des donn\u00e9es","R\u00e8glementation"],"articleSection":["Cloud & Next-Gen IT Security","Cybersecurity & Digital Trust","M\u00e9tiers - Strat\u00e9gie d\u2019entreprise"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/","url":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/","name":"Le \"secret des affaires\" arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ? - RiskInsight","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage"},"thumbnailUrl":"","datePublished":"2012-02-20T07:01:36+00:00","dateModified":"2020-01-02T10:08:24+00:00","breadcrumb":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#primaryimage","url":"","contentUrl":""},{"@type":"BreadcrumbList","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2012\/02\/le-secret-des-affaires-arrive-dans-notre-cadre-reglementaire-quel-impact-pour-les-entreprises\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.riskinsight-wavestone.com\/en\/"},{"@type":"ListItem","position":2,"name":"Le “secret des affaires” arrive dans notre cadre r\u00e9glementaire ! Quel impact pour les entreprises ?"}]},{"@type":"WebSite","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","name":"RiskInsight","description":"The cybersecurity & digital trust blog by Wavestone's consultants","publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization","name":"Wavestone","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","width":50,"height":50,"caption":"Wavestone"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17","name":"G\u00e9r\u00f4me Billois","description":"G\u00e9r\u00f4me Billois is a Partner at Wavestone in the Cybersecurity and Digital Trust practice. He graduated from the National Institute of Applied Sciences in Lyon. He has deep expertise in risk management and cybersecurity, developed over more than 15 years of experience. G\u00e9r\u00f4me is a board member of CLUSIF, a member of the ISO JTC1\/SC27 committee, responsible for information security standardisation, and a founding member of Club27001, a non-profit dedicated to promoting the ISO 27001 standard. He holds CISA, CISSP and ISO 27001 PA certifications. G\u00e9r\u00f4me co-authored several books on cybersecurity (Eyrolles, Cepadues, Wiley & Sons, Larcier), is a regular media and conference speaker (Assises de la S\u00e9curit\u00e9, ISACA, CLUSIF, CNIS, etc.), and gives university lectures.","url":"https:\/\/www.riskinsight-wavestone.com\/en\/author\/gerome-billois\/"}]}},"_links":{"self":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/1415","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/comments?post=1415"}],"version-history":[{"count":11,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/1415\/revisions"}],"predecessor-version":[{"id":1460,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/1415\/revisions\/1460"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media?parent=1415"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/categories?post=1415"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/tags?post=1415"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/coauthors?post=1415"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}