A Citizen s Guide. to Big Data and Your Privacy Rights in Nova Scotia. Office of the Information and Privacy Commissioner for Nova Scotia

Similar documents
Big Data and Personal Data Protection Challenges and Opportunities

Protection of Privacy Policy

28 TH INTERNATIONAL CONFERENCE OF DATA PROTECTION

Privacy by Design: Integrating Technology into Global Privacy Practices

Privacy Law in Canada: Obligations and Risks in the Cyber Age Dina L. Maxwell Associate Lawyer

CCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: Safeguarding Policy Data Protection Policy

YOUNG PERSONS PRIVACY NOTICE

CONSENT IN THE TIME OF BIG DATA. Richard Austin February 1, 2017

Transforming while performing Deep Dive: Artificial Intelligence. Hype or not?

IAB Europe Guidance THE DEFINITION OF PERSONAL DATA. IAB Europe GDPR Implementation Working Group WHITE PAPER

Marine Renewable-energy Application

CCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: T:Drive. Safeguarding Policy Data Protection Policy

Privacy Policy Framework

Views from a patent attorney What to consider and where to protect AI inventions?

Violent Intent Modeling System

BATTELLE AND THE SMART CITY. Turning vision into reality for tomorrow s urban environments.

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Privacy framework

Surveillance and Privacy in the Information Age. Image courtesy of Josh Bancroft on flickr. License CC-BY-NC.

ArkPSA Arkansas Political Science Association

BUREAU OF LAND MANAGEMENT INFORMATION QUALITY GUIDELINES

The Information Commissioner s response to the Draft AI Ethics Guidelines of the High-Level Expert Group on Artificial Intelligence

ICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate?

BARRIE PUBLIC LIBRARY COLLECTION DEVELOPMENT POLICY MOTION #16-34 Revised June 23, 2016

Ocean Energy Europe Privacy Policy

Biometric Data, Deidentification. E. Kindt Cost1206 Training school 2017

ICC POSITION ON LEGITIMATE INTERESTS

Quantum Technologies Public Dialogue Report Summary

Privacy Policy SOP-031

NUCLEAR SAFETY AND RELIABILITY

Intelligent, Rapid Discovery of Audio, Video and Text Documents for Legal Teams

Municipal Census Manual

Social Big Data. LauritzenConsulting. Content and applications. Key environments and star researchers. Potential for attracting investment

Image Extraction using Image Mining Technique

ITAC RESPONSE: Modernizing Consent and Privacy in PIPEDA

Office of the Director of National Intelligence. Data Mining Report for Calendar Year 2013

Our position. ICDPPC declaration on ethics and data protection in artificial intelligence

Unified Ethical Frame for Big Data Analysis IAF Big Data Ethics Initiative, Part A. Draft March 2015

The Future of Patient Data The Global View Key Insights Berlin 18 April The world s leading open foresight program

How Explainability is Driving the Future of Artificial Intelligence. A Kyndi White Paper

CHANGE OF SEX DESIGNATION - 16 YEARS OF AGE OR OLDER Instructions to complete application to Vital Statistics, Service Nova Scotia

Networking. Networking Interview. conducting the. 5 minute career clips. career tips & information for Midd students. Middlebury Career Services

Robert Bond Partner, Commercial/IP/IT

What We Heard Report Inspection Modernization: The Case for Change Consultation from June 1 to July 31, 2012

Guide to the Requirements for Public Information and Disclosure GD-99.3

FIPPs Fair Information Practice Principles

2018 INUVIALUIT TRUST APPLICATION PACKAGE FOR ENROLMENT

CHANGE OF SEX DESIGNATION - 16 YEARS OF AGE OR OLDER Instructions to complete application to Vital Statistics, Service Nova Scotia

OECD WORK ON ARTIFICIAL INTELLIGENCE

Upgrade from Medtronic Pump. Existing Bridging the Gap Patient. Upgrade from other Brand (please specify)

EFRAG s Draft letter to the European Commission regarding endorsement of Definition of Material (Amendments to IAS 1 and IAS 8)

Census Response Rate, 1970 to 1990, and Projected Response Rate in 2000

Advancing Health and Prosperity. A Brief to the Advisory Panel on Healthcare Innovation

INTERNATIONAL TELECOMMUNICATION UNION

The Third Industrial Revolution

PRIVACY ANALYTICS WHITE PAPER

The EFPIA Perspective on the GDPR. Brendan Barnes, EFPIA 2 nd Nordic Real World Data Conference , Helsinki

freelancing FOR BEGINNERS

(ii) Methodologies employed for evaluating the inventive step

Toward Objective Global Privacy Standards. Ari Schwartz Senior Internet Policy Advisor

VENTURE CAPITAL MONITOR

Abuse Prevention of Street Camera Network by Browsing-History Disclosure

IBM SPSS Neural Networks

Guidelines for the Stage of Implementation - Self-Assessment Activity

Initial Insulin Pump Funding Request

The Alan Turing Institute, British Library, 96 Euston Rd, London, NW1 2DB, United Kingdom; 3

Public and Aboriginal Engagement Public Information and Disclosure REGDOC-3.2.1

Social Network Analysis and Its Developments

COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT. pursuant to Article 294(6) of the Treaty on the Functioning of the European Union

Use of Network Patent Analysis (NPA) for advanced analysis of patent data

24 May Committee Secretariat Justice Committee Parliament Buildings Wellington. Dear Justice Select Committee member,

RecordDNA DEVELOPING AN R&D AGENDA TO SUSTAIN THE DIGITAL EVIDENCE BASE THROUGH TIME

Standards Correlated to Teaching through Text Sets: The American Revolution 20190

Patent Due Diligence

COMPREHENSIVE COMPETITIVE INTELLIGENCE MONITORING IN REAL TIME

Q INTRODUCTION VC ACTIVITY OVERVIEW. Summary of investment and fundraising. ($ millions)

Report to Congress regarding the Terrorism Information Awareness Program

2016 Census of Population and Housing: Submission Form for Content or Procedures, 2016

MORE TO THE STORY. Because the Times chose to publish despite the facts, we present them here:

Managing Information Systems Seventh Canadian Edition. Laudon, Laudon and Brabston. CHAPTER 4 Social, Ethical, and Legal Issues in the Digital Firm

Technologies that will make a difference for Canadian Law Enforcement

Communication and dissemination strategy

ARTICLE 29 Data Protection Working Party

Swiss Re Institute. September 2018 Dr. Jeffrey R. Bohn

How do you teach AI the value of trust?

Big Data & AI Governance: The Laws and Ethics

PRIVACY IMPACT ASSESSMENT

Security and Risk Assessment in GDPR: from policy to implementation

Visual Analytics in the New Normal: Past, Present & Future. geologic Technology Showcase Adapting to the New Normal, Nov 16 th, 2017

Diana Gordick, Ph.D. 150 E Ponce de Leon, Suite 350 Decatur, GA Health Insurance Portability and Accountability Act (HIPAA)

TRUSTING THE MIND OF A MACHINE

COMEST CONCEPT NOTE ON ETHICAL IMPLICATIONS OF THE INTERNET OF THINGS (IoT)

March 27, The Information Technology Industry Council (ITI) appreciates this opportunity

Using Deep Learning for Sentiment Analysis and Opinion Mining

Analogy Engine. November Jay Ulfelder. Mark Pipes. Quantitative Geo-Analyst

PURPOSE OF THIS EBOOK

Development and Integration of Artificial Intelligence Technologies for Innovation Acceleration

The method requires foreground and background sequence datasets. The users can use fasta files as input.

Solutions to selected exercises

The Tool Box of the System Architect

Should privacy impact assessments be mandatory? David Wright Trilateral Research & Consulting 17 Sept 2009

Transcription:

A Citizen s Guide to Big Data and Your Privacy Rights in Nova Scotia Office of the Information and Privacy Commissioner for Nova Scotia

A Citizen s Guide to Big Data and Your Privacy Rights in Nova Scotia 1 New tools for combining and analyzing information have made it possible for researchers to uncover hidden patterns and connections in large data sets that would have previously been unknown. Collectively, these large data sets and the analytical tools and practices used to identify trends are known as big data. While private sector companies often use big data analyses to support marketing and product development, public organizations are attracted to it as a way to improve policy and program development and ensure it is supported by better evidence. Big data has the potential to provide public bodies and health custodians with greater insights into the quality and effectiveness of services and programs such as healthcare, social services, public safety and transportation. However, it also raises concerns regarding privacy and the protection of individuals personal information. The Office of the Information and Privacy Commissioner for Nova Scotia (OIPC) is responsible for oversight of the Freedom of Information and Protection of Privacy Act, the Municipal Government Act, Part XX and the Personal Health Information Act. Public bodies governed by these acts, such as government departments, municipalities, police services, health custodians, universities and school boards, must comply with these acts when collecting, using and disclosing personal information. This fact sheet has been developed to help members of the public understand what big data is, and how it can have an impact on an individual s privacy. 1 This Guide is based entirely on Big Data and Your Privacy Rights produced by the Office of the Information and Privacy Commissioner of Ontario available at: https://www.ipc.on.ca/wpcontent/uploads/2017/01/fact-sheet-big-data-with-links.pdf. We are very grateful for their assistance and support in creating this Nova Scotian version of their fact sheet. 2

What is big data? The term big data is used for a lot of different things, and it can be difficult to pin down one single definition. In general, when the term big data is used, it is referring to data collections that cannot be easily managed or understood using traditional means because of the size, irregularity or complexity of the data. It is often defined by three V s: Volume there is so much data and so many data points that it can be difficult to sift through and comprehend Velocity data is generated and added rapidly to the collection and can be updated in real time Variety the data included in the collection can have many different forms and come from many different sources. For example, a big data collection might have structured data, like what you would find in a database, and unstructured data, such as collections of social media posts or blog entries Big data analytics refers to the various methods and tools used to generate insights from big data. Algorithms 2 can be applied to large collections of data to identify patterns and connections, derive rules to automate decision making and even predict the results of a course of action, including a person s behaviour. What impact does big data have on privacy? Big data can, and often does, include personal information, which is any recorded information about an identifiable person, such as name, address, opinions or medical history. Just like any collection of data that includes personal information, Nova Scotia s privacy laws set out certain safeguards that public bodies and health custodians need to have in place to ensure that your personal information is appropriately collected, used, retained and disclosed. 2 An algorithm is a process or set of rules to be followed in calculations or other problem-solving operations, especially by a computer (Concise Oxford English Dictionary). Algorithms specify a series of steps that perform a particular computation or task: http://fiftyexamples.readthedocs.io/en/latest/algorithms.html. 3

Big data, however, raises a number of unique privacy issues due to its size and complexity, and the types of analytical processes used by it. Surveillance Information collected by public bodies and health custodians can provide a great deal of detail about us, such as where we live, who we associate with and what our political or religious beliefs might be. When big data projects involve the collection and combination of large amounts of data (both publicly available and internal to organizations), it is possible to learn a lot about people and how they live their lives. When this happens, and when it is tracked over time, it becomes surveillance, which is any activity that monitors behaviours, actions or communications. There are many permissible uses for surveillance, such as for public safety and health care research. However, big data, when used irresponsibly, can lead to surveillance activities that are unwarranted. Whenever public bodies and health custodians decide to engage in big data activities that include personal information, the benefits of those activities must outweigh any potential privacy risk. Accuracy of results As a consequence of collecting and combining a lot of personal information that may not be related, it is possible for big data analytics to find patterns in the data that are merely coincidental. This may occur as a result of the sheer amount of information involved in the analysis. With so many variables at play, there are likely to be some data elements that appear to be related without actually being so. Understanding the difference between correlation and causation is an essential part of evaluating the accuracy of big data analytics. Correlation means that the values of two variables in a data set are statistically related. For example, they tend to increase or decrease together. Causation is the stronger claim that the two variables relate by necessity and that a change in one always brings about a change in the other. A correlation, however, does not necessarily mean that the change in one variable was the cause of the change in the other variable. The two could simply relate by chance. For example, discovering a pattern in a data set that red haired people driving red cars have been in car accidents does not imply that being red haired and driving a red car caused those accidents. While there may be a correlation between these facts, that by itself is not sufficient to establish causation. 4

Bias in data sets Big data is sometimes characterized as being more objective and unbiased than traditional data analyses because of its ability to analyze all the data. However, even if it were possible to collect all relevant data, biases can still be present in big data analytics. Data collection or generation practices can contain implicit biases that exclude or single out certain groups of people. For example, if the hiring practices of an organization have resulted in people from similar backgrounds being hired more often, then the data on those hires will simply reflect those decisions. If that data is analyzed to find common attributes to be used to screen future applicants, the biases of the earlier hiring practices can be reinforced. Automatic decision making or application screening based on this data analysis can result in qualified people being automatically excluded from consideration due to an irrelevant attribute. Unauthorized use When we give our personal information to public bodies and health custodians subject to Nova Scotia s privacy laws, we should be told what that information will be used for and why. Big data projects, however, complicate things. Information that is collected for one reason may be combined with information collected for a different reason. The results of the combination and any analytics that are run on the combined data may be part of a study or program that the people who gave their information have never heard of. Generally speaking, under Nova Scotia s privacy laws, personal information should only be used in accordance with the purpose for which it was originally collected or for a purpose that has been authorized by law. If not properly managed, the collection, use and disclosure of big data sets may be contrary to Nova Scotia s privacy laws. What is the OIPC doing to protect my privacy? The OIPC is committed to ensuring that your privacy is protected. Big data creates new challenges and opportunities for Nova Scotia s public bodies and health custodians, but we believe that with diligence, proper planning and education on the unique issues raised by big data and analytics, it can be used in a privacy protective way. The OIPC will continue to work closely with public bodies and health custodians and will release guidance materials on privacy best practices and compliance in big data projects. 5

What rights do I have under Nova Scotia s privacy laws? If you have any questions about what personal information a public body or health custodian is collecting or how it is being used, consult the public body s or health custodian s website or contact them for more information. If you would like a copy of the information that a public body or health custodian has about you, you can file a freedom of information request directly with that public body or health custodian. To learn more about making a freedom of information request and what you can do to protect your privacy, visit the OIPC s website: www.foipop.ns.ca. This document was produced by the Office of the Information and Privacy Commissioner for Nova Scotia. We can be reached at: Office of the Information and Privacy Commissioner for Nova Scotia 509-5670 Spring Garden Road P.O. Box 181 Halifax, NS B3J 2M4 Phone: 902-424-4684 Toll Free (NS): 1-866-243-1564 TDD/TTY: 1-800-855-0511 Fax: 902-424-8303 Website: www.foipop.ns.ca Email: oipcns@novascotia.ca Twitter: @NSInfoPrivacy 6

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback