Data Privacy for the Smart Grid: 1st Edition (Hardback) book cover

Data Privacy for the Smart Grid

1st Edition

By Rebecca Herold, Christine Hertzog

Auerbach Publications

250 pages | 18 B/W Illus.

Purchasing Options:$ = USD
Hardback: 9781466573376
pub: 2015-01-15
SAVE ~$17.39
eBook (VitalSource) : 9780429190209
pub: 2015-01-15
from $41.98

FREE Standard Shipping!


Many Smart Grid books include "privacy" in their title, but only touch on privacy, with most of the discussion focusing on cybersecurity. Filling this knowledge gap, Data Privacy for the Smart Grid provides a clear description of the Smart Grid ecosystem, presents practical guidance about its privacy risks, and details the actions required to protect data generated by Smart Grid technologies. It addresses privacy in electric, natural gas, and water grids and supplies two different perspectives of the topic—one from a Smart Grid expert and another from a privacy and information security expert.

The authors have extensive experience with utilities and leading the U.S. government’s National Institute of Standards and Technologies (NIST) Cyber Security Working Group (CSWG)/Smart Grid Interoperability Group (SGIP) Privacy Subgroup. This comprehensive book is understandable for all those involved in the Smart Grid. The authors detail the facts about Smart Grid privacy so readers can separate truth from myth about Smart Grid privacy.

While considering privacy in the Smart Grid, the book also examines the data created by Smart Grid technologies and machine-to-machine (M2M) applications and associated legal issues.

The text details guidelines based on the Organization for Economic Cooperation and Development Privacy Guidelines and the U.S. Federal Trade Commission Fair Information Practices. It includes privacy training recommendations and references to additional Smart Grid privacy resources.

After reading the book, readers will be prepared to develop informed opinions, establish fact-based decisions, make meaningful contributions to Smart Grid legislation and policies, and to build technologies to preserve and protect privacy. Policy makers; Smart Grid and M2M product and service developers; utility customer and privacy resources; and other service providers and resources are primary beneficiaries of the information provided in Data Privacy for the Smart Grid. However, everyone interested in Smart Grid privacy implications will derive great value from this book.

Table of Contents

The Smart Grid and Privacy

What Is the Smart Grid?

Changes from Traditional Energy Delivery

Smart Grid Possibilities

Business Model Transformations

Emerging Privacy Risks

The Need for Privacy Policies

Privacy Laws, Regulations, and Standards

Privacy-Enhancing Technologies

New Privacy Challenges


Big Data

What Is the Smart Grid?

Market and Regulatory Overview

Traditional Electricity Business Sector

The Electricity Open Market

Classifications of Utilities

Rate-Making Processes

Electricity Consumers

Electricity Technology Overview

Electricity Supply Chain Vulnerabilities

The Smart Grid

Market Changes in the Smart Grid

Prosumer Evolution

Other Relevant Market Changes

Buildings as Prosumers

Automated Demand Response and the OpenADR Initiative


The Future Smart Grid

Technology Changes

Energy Storage

Transmission Grids

Data Volumes within the Smart Grid

Data Owners, Data Custodians, and Data Managers

Energy Consumption

Smart Grid Privacy Risk Examples

Energy Regulation

Smart Grid, Smart Infrastructure

Key Points for Smart Grid Technologies

What Is Privacy?

What Is Privacy?

Categories of Privacy

What’s the Difference between Security and Privacy?

Data Types

Smart Data Privacy Implications

Data Communications Privacy Concerns

Smart Meter Data and Privacy

Meter Comparisons

AMR Metering

Smart Meters Overview

Signaling Types

Smart Meter Communications Capabilities

Smart Meter Data Read Frequency

Smart Meter Data Granularity

Energy Savings Initiatives

Green Button Initiative

Green Button Connect

AMI Networks

Smart Meter Data Summary

The Connected Home

Home Area Networks

Communications Options

Home Energy Management Systems

HEMS Adoption

HEMS Communications with the Smart Grid

HANs Do Not Need Smart Meters

HANs as Communications Gateway Devices

Privacy Risks within Rentals and Other Leased Spaces

Employee Privacy Risks within Commercial Buildings and Industrial Sites

Disaggregation Technologies



Smart Appliances

Connecting Home Appliances

DR Programs

Electric Vehicles, Charging Stations, and Privacy

Publicly Owned Charging

Private Charging

Utility-Supplied Network Charging

Other Privacy Implications with EVs


Mitigating Privacy Risks

Basic Risk Mitigation Strategies

Smart Grid Privacy Risks

Energy Usage Data Privacy Risks

Energy Production Data Privacy Risks

Identifying Risks

Privacy Risk Mitigation Methods

How to Take Charge of Your Privacy

Roles and Responsibilities

Privacy Possibilities and Responsibilities for the Data Subject

Data Subject Privacy Use Case Example

Information Security Controls to Support Privacy Protection

Privacy Responsibilities for the Data Controller/Data

Custodian and the Data Processor/Data Manager

Other Helpful Privacy and Information Security Resources

Transactive Energy



Regulatory Policy



Going Forward

Addressing Common Privacy Claims

Beyond the Smart Grid: The Monetization of Data

Sensor Proliferation

Appendix A: Smart Grid Categories and Associated Privacy Risks

Appendix B: Example of One State’s Actions for Smart Grid Privacy


About the Authors

Rebecca Herold has over two and a half decades of information privacy, security, and compliance expertise. Rebecca is CEO of Privacy Professor® and owner/partner for SIMBUS® and has led the NIST SGIP Smart Grid Privacy Group since June 2009. She has been an adjunct professor for the Norwich University MSISA program since 2005 and has written 17 books and hundreds of published articles. Rebecca is invited to speak at a wide variety of events throughout the United States, and other worldwide locations such as Melbourne, Australia, Bogotá, Colombia, and Ireland.

Rebecca is widely recognized and respected, and has been providing information privacy, security, and compliance services, tools, and products to organizations in an extensive range of industries for over two decades. Just a few of her awards and recognitions include the following:

  • Named in the Top Two Female Infosec Leaders to Follow on Twitter in 2014 by Information Security Buzz
  • Named to the ISACA International Privacy Task Force in 2013
  • Named on Tripwire’s list of InfoSec’s Rising Stars and Hidden Gems: The Top 15 Educators in July 2013
  • Named one of Information Security Buzz’s list of Top 5 Female Infosec Leaders to Follow on Twitter in 2013 and 2014
  • Has been named one of the "Best Privacy Advisers in the World" multiple times in recent years by Computerworld magazine, most recently ranking number 3 in the world in the last rankings provided
  • In 2012 was named one of the most influential people and groups in online privacy by
  • In 2012 was named a privacy by design ambassador by the Ontario, Canada, data privacy commissioner

Rebecca is an owner and partner for the SIMBUS services for healthcare organizations and their business associates to meet their HIPAA, HITECH, and other legal requirements, with more industries added in late 2014. She is also a partner for the Compliance Helper services and has been leading the NIST SGIP Smart Grid Privacy Group since June 2009. Rebecca is a member of the IAPP Certification Advisory Board, and is an instructor for the IAPP’s CIPM, CIPP/IT, CIPP/US, and CIPP Foundations classes.

She currently serves on multiple advisory boards for security, privacy, and high-tech technology organizations. Rebecca is frequently interviewed and quoted in diverse broadcasts and publications such as IAPP Privacy Advisor, BNA Privacy & Security Law Report, Wired, Popular Science, Computerworld, IEEE’s Security and Privacy Journal, NPR, and many others. Rebecca regularly appears on the Des Moines, Iowa-based Great Day morning television program on KCWI to discuss and provide advice for information security and privacy topics. Born and raised in Missouri, she has degrees in math, computer science, and education.

Christine Hertzog is the founder and managing director of the Smart Grid Library and SGL Partners, delivering consulting and information services about Smart Grid and Smart Infrastructure technologies, services, and solutions. Her firm provides pragmatic guidance to global vendors, governmental entities, and utilities covering a broad range of needs, such as strategic corporate and market insights and design and deployment of prosumer-centric utility operations.

Ms. Hertzog is the author of the Smart Grid Dictionary that defines the jargon, acronyms, and terminology about technologies, international standards, and organizations associated with the Smart Grid and Smart Infrastructure. She is the coauthor of The Smart Grid Consumer Focus Strategy, which identifies consumer/utility challenges and methods to ensure successful prosumer operations and interactions. She is a recognized thought leader and regular speaker at industry conferences and writes a syndicated blog about Smart Grid and Smart Infrastructure topics.

Based in Silicon Valley, Ms. Hertzog serves as an advisor to Smart Grid start-ups and industry associations and publications, including The Energy Collective,, Energy Post, Agrion, and IBCon. She has a master of science degree in telecommunications from the University of Colorado–Boulder. See more about Ms. Hertzog at

Subject Categories

BISAC Subject Codes/Headings:
COMPUTERS / Information Technology
COMPUTERS / Security / General