“Just as water supply and sewage disposal systems need to be regulated to be reliable and to protect our health, the flow of data needs to be regulated so its potential can be realised, and breaches and misuse contained”
An interesting lens on Australia’s Consumer Data Right (CDR) regime and the role that data governance plays for cleaning up ‘waste data’ and minimising the impact of breaches.
Never have come up with a good analogy for data privacy, but water/sewer is not the analogy I would have picked. "Data rights" are more about protecting confidentiality, whereas water/sewage regulation is more about integrity. Plus a well designed water delivery system has a primary goal of delivering equal pressure/flow to all outlets whereas data privacy is about turning off delivery to all but authorized outlets.