Mrs Drudeisha Madhub Data Protection Commissioner Big Data for Development: Privacy Risks and Opportunities.

Slides:



Advertisements
Similar presentations
STRENGTHENING FINANCING FOR DEVELOPMENT: PROPOSALS FROM THE PRIVATE SECTOR Compiled by the UN-Sanctioned Business Interlocutors to the International Conference.
Advertisements

BUSINESS B2 Ethics.
1 Tools and mechanisms: 1. Participatory Planning Members of local communities contribute to plans for company activities potentially relating to business.
Safeguarding trust in Irish Official Statistics A Code of Practice for the Irish Statistical System Pádraig Dalton Director General Central Statistics.
Social Context of Computing Chapter 7. Digital Divide  Technological inequalities  Impact of communication technologies  Radio  Television  Press.
Data-Sharing and Governance Consultation ANALYSIS OF RESPONSES.
Developing a Records & Information Retention & Disposition Program:
P3P: Platform for Privacy Preferences Charlin Lu Sensitive Information in a Wired World November 11, 2003.
Property of Common Sense Privacy - all rights reserved THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.
Taking Steps to Protect Privacy A presentation to Hamilton-area Physiotherapy Managers by Bob Spence Communications Co-ordinator Office of the Ontario.
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
The Nuffield Council on Bioethics Report : The collection, linking and use of data in biomedical research and health care: ethical issues. Martin Richards.
RFID Policy Update 1/23/08 Dan Caprio President DC Strategies, LLC.
Strategic Information Systems Planning
HIPAA PRIVACY AND SECURITY AWARENESS.
Performance Measurement and Analysis for Health Organizations
Guidance for AONB Partnership Members Welsh Member Training January 26/
Toolkit for Mainstreaming HIV and AIDS in the Education Sector Guidelines for Development Cooperation Agencies.
S7: Audit Planning. Session Objectives To explain the need for planning To explain the need for planning To outline the essential elements of planning.
Privacy, Quality and Electronic Health Information Royal New Zealand College of GPs Quality Forum 14 February 2009 Sebastian Morgan-Lynch
European Commission, Technical Assistance Information Exchange Unit (TAIEX), DG Enlargement in co-operation with The Bulgarian Chamber of Commerce and.
Audit Planning. Session Objectives To explain the need for planning To outline the essential elements of planning process To finalise the audit approach.
Data Protection Act AS Module Heathcote Ch. 12.
IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.
Europe's work in progress: quality of mHealth Pēteris Zilgalvis, J.D., Head of Unit, Health and Well-Being, DG CONNECT Voka Health Community 29 September.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.
Overview of Issues and Interests in Standards and Interoperability Mary Saunders Chief, Standards Services Division NIST.
Reclaimed Wastewater Quality Criteria, Standards, and Guidelines
Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.
Creating Open Data whilst maintaining confidentiality Philip Lowthian, Caroline Tudor Office for National Statistics 1.
PRESENTED AT THE STAKEHOLDERS FORUM ON QUALITY OF SERVICE AND CONSUMER EXPERIENCE LAICO REGENCY HOTEL Creating Space for Consumer Rights in.
Data Protection: Workplace, Health and Safety. Employers’ responsibilities Employer obliged to provide safe place of work. Health and Safety Act 2004.
Social value reporting: An integrated approach John Maddocks – CIPFA
Threat Prevention and Detection (within Critical Infrastructures) under EU Data Protection Legislation– Purpose Specification and Limitation. Laurens Naudts.
APEC Privacy Framework “The lack of consumer trust and confidence in the privacy and security of online transactions and information networks is one element.
Data protection—training materials [Name and details of speaker]
Protection of Personal Information Act An Analysis on the impact.
Understanding Privacy An Overview of our Responsibilities.
Development Account: 6th Tranche Strengthening the capacity of National Statistical Offices (NSOs) in the Caribbean Small Island Developing States to fulfill.
UNHCR‘s Policy on the Protection of Personal Data of Persons of Concern - An introduction (October 2016)
Privacy principles Individual written policies
Issues of personal data protection in scientific research
ServiceNow Implementation Knowledge Management
General Data Protection Regulation
GDPR Overview Gydeline – October 2017
Data Protection Update – GDPR or bust
GDPR Overview Gydeline – October 2017
EU Directive 95/46/EC (Paragraph 2) “Whereas data-processing systems are designed to serve man; whereas they must Respect their fundamental rights.
Data Protection & Freedom of Information- An Introduction
GENERAL DATA PROTECTION REGULATION (GDPR)
Move this to online module slides 11-56
Internal control - the IA perspective
G.D.P.R General Data Protection Regulations
The Public Sector Equality Duty
Ethical questions on the use of big data in official statistics
General Data Protection Regulation
Data Protection principles
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
Information technologies/NBIC and Big data
New Data Innovation Projects: Data Privacy and Data Protection
Information Handling Research Student Induction Day
PERSONAL INFORMATION BILL
Public Privacy: juridical & ethical perspective
The Public Sector Equality Duty
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Legislative Response to Data Inferences
Ethical Implications of using Big Data for Official Statistics
Presentation transcript:

Mrs Drudeisha Madhub Data Protection Commissioner Big Data for Development: Privacy Risks and Opportunities

Data Protection Office - Mauritius- 2 INTRODUCTION Big data consists mainly of data that is openly available, created and stored. It includes public sector data such as national health statistics, procurement and budgetary information, and transport and infrastructure data. While big data may carry benefits for development initiatives, it also carries serious risks, which are often ignored. In pursuit of the promised social benefits that big data may bring, it is critical that fundamental human rights and ethical values are not cast aside.

Data Protection Office - Mauritius- 3 Applied Privacy Principles ● Purpose specification and limitation: data are to be collected for specified, explicit and legitimate purposes and cannot be further processed in a way incompatible with these. However, in general, further processing for historical, statistical or scientific purposes should not be considered incompatible with the initial purpose. ● Transparency and concern: individuals are to be informed about the processing of their data, which requires explicit consent that can be withdrawn anytime. ● Data minimisation: data must be accurate, relevant and not excessive in relation to the purposes for which they are processed. ● Limited retention: keeping data in a form which permits identification of a person only as long as it is necessary for the purposes for which the data were collected or for which they are further processed.

Data Protection Office - Mauritius- 4 Whose data and for what policies and programmes? New technologies are enabling the creation of new forms and high quantities of data that can inform policy-making processes, improving the effectiveness and efficiency of public policy and administration. However, inaccuracies can exist in the data used – either because data is not regularly updated, relates only to a sample of the population, or lacks contextual analysis.

Data Protection Office - Mauritius- 5 Whose data and for what policies and programmes? A recurring criticism of big data and its use to analyse socio-economic trends for the purpose of developing policies and programmes is the fact that the big data collected does not necessarily represent those towards whom these policies are targeted. The collection of data may itself be exclusionary when it only relates to users of a certain service (health care, social benefits), platforms (i.e. Facebook users, Twitter account holders, etc.) or other grouping (i.e. online shoppers, loyalty card members of airlines, supermarkets, etc.)

Data Protection Office - Mauritius- 6 Whose data and for what policies and programmes? In the developing world, only 31 per cent of the population is online, 63 in 100 inhabitants have a mobile phone and 11 per cent have access to mobile-broadband. Ninety per cent of the 1.1 billion households that are not connected to the Internet are located in the developing world. Some countries in Africa have less than 10 percent of their population active on the internet. This means whole populations can be excluded in data-based decision- making processes.

Data Protection Office - Mauritius- 7 Dangers of Big Data While access to such data is posited as opening opportunities for development, it also has the potential to seriously threaten the right of individuals to keep their personal information private

Data Protection Office - Mauritius- 8 Dangers of Big Data If private sector data falls into the wrong hands, it could enable monitoring of individuals, identification and surveillance. Despite guarantees of anonymisation, the correlation of separate pieces of data can (re)identify an individual and provide information about them that is even more private than the data they consented to share, such as their religion, ethnicity or sexual orientation. If this were to happen in certain contexts the consequences could have tragic impacts, especially if the data concerned relates to vulnerable groups such as minorities or refugees, as well as societal groups including journalists, social dissidents and human rights advocates.

Data Protection Office - Mauritius- 9 Dangers of Big Data Big data development initiatives such as that conducted by French telecommunication company, Orange, in Côte d’Ivoire have shown that even a basic mobile phone traffic data set can enable conclusions about social divisions and segregation on the basis of ethnicity, language, religion or political persuasion.

Data Protection Office - Mauritius- 10 Dangers of Big Data Internet users — who are the primary producers of data — may be unaware that they are producing data; they may also be unaware of what their data is being used for and by whom it is being used. Data is often sold or distributed to third parties without an individual’s knowledge of where the data is going and for what purposes it will be used. Data proliferation could pose other even more perverse security risks.

Data Protection Office - Mauritius- 11 Opportunity As individuals across the planet connect to the Internet and to mobile networks, creating more and more data, there are opportunities to make new observations and inferences about the world and, one hopes, craft better policy outcomes. There is, however, an absence of legal and technical safeguards for data protection, privacy and accountability, particularly in many developing countries where most of this new connectivity and data production is happening. Relevant policy actors need to soberly assess these risks to privacy and security, and move quickly to fill current governance gaps. Otherwise, as we step forward to embrace big and open data’s significant potential to make policy better, we risk undermining opportunities for people in developing countries.

Data Protection Office - Mauritius- 12 What must be done? Data is data. Yet the short- and long-term consequences of collecting data in environments where appropriate legal and institutional safeguards are lacking have not been properly explored. Amassing and analysing data always has the potential to enable surveillance, regardless of the well-intentioned objectives that may underpin its collection. Development is not merely about economic prosperity, and social services. It is about providing individuals with a safe environment in which they can live in dignity..

Data Protection Office - Mauritius- 13 Towards accountability Crawford and Schultz, two researchers are challenging the fairness of the process of collection rather than the attempting to regulate it, which would be more complex and contested. They have thus applied these principles to address existing privacy concerns linked to the development and use of big data, namely:

Data Protection Office - Mauritius- 14 Towards accountability requiring those who use big data to “adjudicate” others, to post some form of notice disclosing not only the type of predictions they are attempting, but also the general sources of data that they are drawing upon as inputs, including a means whereby those whose personal data in included can learn of that fact; providing an opportunity for a hearing to challenge fairness of the predictive process; and the establishment of an impartial adjudicator and judicial review to ensure accountability of those who adjudicate others, i.e. those who deprive individuals of a liberty interest do so without unwarranted bias or a direct financial interest in the outcome.

Data Protection Office - Mauritius- 15 Data Protection Measures ● Individual control over what personal data companies collect from them and how they use it. ● Transparency, or easily understandable and accessible information about privacy and security practices. ● The collection, use, and disclosure of personal data to be done in ways that are consistent with the context in which consumers provide the data. ● Security and responsible handling of personal data. ● Access to their personal data in usable formats, with the power to correct errors. ● Reasonable limits on the personal data that companies collect and retain.

Data Protection Office - Mauritius- 16 Conclusion The use of big data is intrinsically linked to ethical values, which means that the starting point must be the development international guidelines governing access to and analysis of individuals’ data. Thus as Crawford and Schultz conclude: Before there can be greater social acceptance of big data’s role in decision-making, especially within government, it must also appear fair, and have an acceptable degree of predictability, transparency, and rationality. Without these characteristics, we cannot trust big data to be part of governance”.

References

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.