 Our last speaker probably doesn't need much of an introduction. I'm Jarek from YA and Chief Technology Officer and CEO as well. So first, what I would like to talk is a bit about privacy from a macro perspective because it is in my opinion very important also to understand some of the reasons why GDPR has been made. And if you look beginning of our century, 2000s, we started tackling damages of passive smoke and there's been put way more attention to smoking and all of the hazards that second hand smoking or passive smoking is causing here. And why I'm talking about this? Because when I was kid in 70s and 80s, the awareness of the damages and hazards of a passive smoke strikingly reminds me on lack of awareness of our privacy exploitation. And there's a number of things that we can compare there. And if you are looking from today's perspective, we know about the damages that passive smoking is causing. But it wasn't like that before. You see those are some of the commercials from 50s, 60s, even similar was in the 70s. So more doctors, small cameras and it is a good for a baby's smoke. Yeah, it is funny and it's ridiculous when you look at it from today's perspective. But what I'm worried is that my daughter is not going to look upon a certain things where I had to rise to awareness about the privacy and exploitation of her privacy in the same way as I'm questioning my parents. Because you know when I was kid during 70s, when kids were playing games, that was a pre-play station and pre-exbox time. So we had a cardboard games or just a simple games. And our parents were playing cards and smoking in the same room. Very kids were playing. Why? Because you know, they didn't know better and also there was quite a bit of a media fast, lobby, large, massive corporations. You see the pattern as well with the privacy. Just some of those companies at that time were called BAT, like British American Tobacco. Today they are called the FSG's, M's, etc. And then once when some of the research and some of the knowledge about hazards of a passive smoking started popping up, then my parents said like, we are not smoking anymore at home, there is no smoking anymore in the car. Imagine smoking in the car with the kids. That's what I passed and that's what our kids born in 70s have passed. Even kids born in 80s. And then as there is more of a data and more of a regulation coming out so that people were not allowed to smoke anymore at work or were not allowed to smoke where people are eating, etc. Then parents also picked up and seen it's maybe a good thing that we don't smoke anymore. But of course it left quite a bit of impact on their health. So what we were seeing in 2000 and beginning of 2000s was like a massive fines for tobacco industry due to abuses that can be compared I think in the same way with the privacy and what Katrina said I fully agree with it. The only way to change the things and to enforce things is by fines. If you don't find someone, but it's not like finding 100 plus billion corporation with 200,000 euros fine. It's a joke, just the legal cost for them would be a way bigger to get into any discussion so it's easy for them to pay. But now with GDPR for the first time those fines are getting magnitudes bigger and there is a pity that there is a cap on the amount. So it goes with a percentage but there is a cap on the amount there. And let's see if you are going to see those not multi-trillion but multi-million fines for the F's, G's and M's coming forward. Because GDPR and data protection should not be and it's not only about protecting situations where data loss happens because of negligence or not knowing better but also should be for a misuse of your private data even if there was no data breach. Because there is no difference and in a number of cases it's less harmful. So it's a bit obscure to talk about it but it's less harmful if some of the data that goes out from telecom players or other companies that we've seen in the past comes out then what are the potential damages and hazards of exploitation of your data without any data breach. And I was also glad to hear that Telefonica is the one that started moving there because I've been also for a number of years in a telecom sector and we've been collecting all of that data because there was a saying that all of this is goldmine and that data from users is an oil of a new economy and then what I was witnessing in a telecom sector for 15 years was that data was not used for almost anything useful with air to say or hardly anything useful and it was just staying there waiting for someone to exploit it. So that's also why I like to compare this data or a metadata or any kind of your private data to a nuclear waste. If you are collecting it and not using it because sometimes there is some metadata that you need to use and at wire we use it because this is something that improves functionality of wire so we needed a tiny bit of a metadata in order to enable multi-device support proper multi-device support on wire but you need also to be prudent about it and then delete it when you don't need it and this is something what will take mentality shift for a number of companies that are sitting on this data and not really doing anything because now with a GDPR they know that this is liability and it's becoming their nuclear waste and that they can pay severe fines for that. When we are looking things from the data perspective I like there to look of course the field that I'm in and this is the communication space and social networking space, messaging space and why GDPR is important yet another reason is because when you look social network perspective Europe is the only one that doesn't have a massive one everyone else has it and we know that it's a way harder to get a grasp on what's happening within those territories that are outside of EU and especially then when there comes dispute situation experience there is not the best looking there it's needless to stress all of the risks of EU private data being outside of EU and this is why GDPR is also important because it's addressing up to a pretty good extent this issue and other thing that is important to make this as mentioned and forcing any kind of laws on those companies that are outside of EU it's quite difficult and what's even worse is that similar thing is happening on the business side and with a shadow IT what's up being used my personal situation on a Tegel airport where my wife first looks a bit difficult so the handle can be also seen as a weapon and security personnel they are debating for a couple of minutes if this can go in the airplane or not and then what is happening next think shock they are taking a photo of her passport taking a photo of this purse sending it with a whatsapp somewhere back this is German police and if this is happening in Germany you can imagine what's happening in the rest of the European countries so needless to say how important it is that this shadow ITC's to exist and that the cases like this one are being properly sanctioned because one of the first things what GDPR tells you is that there shouldn't be an upload and storage of address book and what's happening first thing when you install your whatsapp you upload your address book and then of course it is further being matched with your Facebook account and the whole story goes on there and if this is done by German police officer it's something that's very serious and needless to say there that industrial espionage is real and this is something that was extremely to protect not only in Europe but elsewhere but especially in Europe weakest link of the chain email how many of you still using email for let's say serious business communication see pretty much everyone in the room and 97% of people so here is maybe roughly 100 of us so 3 of us would be able to spot the phishing mail it's one of them is Sebastian there and Raphael maybe this room has a couple of more people than what is the usual percentage but a number of those exploits are happening through email and 30% of those phishing messages get opened by targeted users and then 12% are going to click so you see some of the biggest exploits that happened in the last year and also that brought multi-billion damage to Mayesh and the number of other companies around Europe came by clicking stuff from employees what they shouldn't be doing and if you look further, partner source through 2020 email is still primary targeting me to get those exploits and one and a half billion people is going to be affected with this according to IDC so needless to say for sensitive work information not only for the efficiency reasons email is way beyond communication tools, messaging tools, etc but for potential data breaches how they are going to happen the easiest, the softest target is email server and we've seen it during the US election campaign and during the number of other situations where this should have not happened, it still happened there and if you look there one third of consumers would stop dealing with a business after a security breach happens so it's not only the GDPR fine is going to hit those businesses they are going to also lose a lot of customers and if you see for instance the Lloyd hit by cyber attack and they are also the one that was saying email should not be used for sensitive communication some makes after they are being hit and super sensitive data of all of their customers is out so those also that are preaching the story are not really executing and if you see some other interesting cases when email is used where it should have been used and the situation is not much better with the business messaging tools that are not deploying the highest grade of security standards because it's basically the same risk as it is with the email server or maybe a little bit better but still a very similar game so here what is really important is that with the solutions that are deploying end-to-end encryption the encryption keys are on your side on the subjects of communication the ones that you are exchanging sensitive information not in the core of the network and there we can say like you know why we are great guys you see we have a nice office we are nice people we are not going to be abusing your data you don't have to trust us on that because technology is the one that should make sure that it doesn't happen you've seen also that at Twitter where employee kicked out US president not like it was a bad thing to do it is still something what should not happen and this is continuously happening if there is a mean for exploit like this to happen it is only a question of time when it will happen so there we'll talk a little bit about the EU-grown alternative so with a wire using Simon Sinek's language start with a why why for us is protecting your essential data and shielding your digital privacy how we do it we do it by using the best possible technologies encryption high definition audio video sound and everything delivering the highest experience without sacrificing on usability or security because we've seen what is happening when systems that are used that might even be secure if they are very hard to use then shadow IT kicks in and then the trouble starts and what today we have a great messaging tool and the collaboration suit for consumers and businesses and as mentioned by Jonne we need also to start looking at how the privacy is further going into the world of machines and communication human to machine and machine to machine so this is exactly some of the next steps that we are doing and then once when you have this in your core it's easy to address any of the new growing verticals when you are following certain principles and then when you have this privacy and security built by design so there also just as a reference it's not only good enough to say we have this, this is the best and the greatest or this is as it's number of times referred that military grade encryption whenever you hear military grade encryption beware of that check rather if it's open source how transparent it is and also who has audited that solution when was the last time audited what was audited, was it audited only specification or was it audited implementation that is running so there when you do things like that also comes some more recognition from people that are true privacy activists they may be disputed by someone but they are the benchmark at least for our team extremely important there mentioned by other panelists full transparency and there I like to say that our terms of use and privacy policy is written by ordinary people or normal people that are in their company and then it is checked by our lawyers that they didn't put anything super stupid there but it's only checked, it's used still the same language it's a super short and it's meant to be understood by any of our users it's not written by lawyers for lawyers and this is something that needs to change and this is something where us and you in this room need to make a difference because we need to rise awareness we are the ones that our opinion makers and we are the ones that are being asked by our families and friends and if people do not demand different privacy policies and different terms of use not much is going to happen here so GDPR is the one again that helps quite a lot here so just to wrap it up two words about wire and messaging solution and the collaboration suite for consumers and the businesses within the same application you can have the both spaces similar as you would have with email and available for download on any of those platforms we'd like to get your feedback about it and to get to know how we can make it better and the ones that helped us a lot to make wire a better privacy tool and better security tool are exactly our users and from beginning we've done also a number of mistakes and our first privacy policy was taken from lawyers while for lawyers from lawyers for lawyers and we've been hammered in the media so it was a good learning experience and we improved it so in the same way if you see some other stuff where we can improve we'd love to hear your feedback and hear more so a couple of closing remarks there needs to be businesses seized usage of shadow IT stop using email for your sensitive information and sensitive company data and lead by example not like the lawyer that is talking one thing and then doing something totally different so it's my favorite author and Gibson says the future is here it's just not even been distributed yet thank you