Lecture 7 Ethics, Privacy, and Politics in the Age of Data
Module Roadmap Representation Technologies Digital workplaces Ethics, Privacy and Politics Digital Workplaces and Capitalist Accumulation tbc Lecture 5 Lecture 6 Lecture 7 Lecture 8 Lecture 9 Lecture Aim Lecture Contents Within a changing landscape of ICTs and business practices, privacy has emerged as a major concern for both individuals and organizations. This lecture deals with current developments that made privacy such a central focal point for information management. 1. The Internet and a Changing Landscape of Information Privacy 2. Privacy and Adjunct Concepts 3. Real-World Developments & Issues Data Legislation Cryptocurrencies
Part 1. The Internet and a Changing Landscape of Information Privacy
MN1024 Lecture 7 Part 1. Changing Information Privacy Landscape The development of Information Privacy as a concept 1945-60 1961-79 1980-89 1990- Privacy Baseline: Limited information technology High trust in government and business General comfort with information collection First Era: Rise of information privacy as an explicit issue Fair Information Practices Framework (FIP) Establishment of government regulatory mechanisms, e.g. Privacy Act of 1974 Second Era: Rise of computer and network systems, database capabilities European nations move to national data protection laws for both the private and public sectors Third Era: Rise of the Internet and Web 2.0 The attacks of 9/11 and a drastic change in the landscape of information exchange. Rise in reported privacy concerns.
MN1024 Lecture 7 Part 1. Changing Information Privacy Landscape Fourth era: the end of trust? 1. Large scale, high-profile data scandals in leading businesses Hacking attack in 2013-14 affect all 3 billion accounts. Stolen data includes: passwords, payment card and bank details, dates of birth. Company takes more than 5 years to disclose, only during negotiation with Verizon. Alphebat closes Google+ after a discovery of a major API security flaw effecting the entire platform. Google knew about the breach since 2015, deciding not to make pubic for reputational reasons. Data breach in summer 2018 affecting some 400,000 customers. Hackers were inside BA s systems for more than 2-weeks.
MN1024 Lecture 7 Part 1. Changing Information Privacy Landscape 2. Whistleblowing and the discovery of large scale government sponsored surveillance operations: The Snowden NSA files and PRISM
MN1024 Lecture 7 Part 1. Changing Information Privacy Landscape 3. Politically oriented intervention in democratic processes Facebook Cambridge Analytica Scandal
MN1024 Lecture 7 Part 1. Changing Information Privacy Landscape Activity 7.1 Do you know what data Facebook keeps on you? Download your data from Facebook to find out. Try to reflect what are your privacy concerns?
Part 2. Privacy and Adjunct Concepts
MN1024 Lecture 7 Part 2. Privacy Concepts and Data Management Orientation Different ways of managing data can reflect varying dimensions of privacy issues How would you know about an organization data practices? Information Governance Policy Data Protection Policy - Is the policy about the organization or about its users?
Part 3. Real World Developments & Issues
MN1024 Lecture 7 Part 3. Current developments Legislation governing data collection and usage Fair Information Practices (FIP) a set of principles and practices that describe how an information-based society may approach information handling, storage, management, and flows with a view toward maintaining fairness, privacy, and security in a rapidly evolving global technology environment. (World Privacy Forum) OECD Principles: Collection Limitation Data Quality Purpose Specification Use Limitation Security Safeguards Openness Individual Participation Accountability EU Regulations Data Protection Directive 1995 General Data Protection Regulation 2015 UK Legislation Data Protection Act, 1984 Data Protection Act, 1998 Data Protection Act, 2018
MN1024 Lecture 7 Part 3. Current developments Legislation is changing The EU s GDPR (General Data Protection Regulation) New, drastic change to data protection regulations. Came into effect in May, 2018 replaces the UK Data Protection Act 1998. Applies to all companies processing data on EU citizens no geographic boundaries. Fines and penalties can reach 4% of annual global turnover. Not keeping records in order can lead to a 2% fine. Consent is a major new focus. A requirement for a Data Protection Officer. Data Subject Rights Breach notification Right to Access Right to be forgotten Data portability
Cryptocurrencies and Privacy