SlideShare une entreprise Scribd logo

Superweek 2016 Would You Lie to Your Physician?

Aurélie Pols
Aurélie Pols

A tale of caution about lack of transparency and rolling heads. Pragmatic Data Privacy take-aways for an era of Digital Entanglement and fluid Privacy legislation. See superweek.hu

Données & analyses
1  sur  23
Télécharger pour lire hors ligne
@aureliepols Would you lie to your physician? Aurélie Pols, Superweek February 2016
@aureliepols Monkey repor6ng on remote-controlled data cows? Aurélie Pols, February 2016 Superweek.hu h-p://www.theguardian.com/technology/2016/jan/30/europe-google-facebook-technology-ethics-eu-marCn-schulz
@aureliepols Let’s Play a Game: Are you willing to give & allow storage of this data about you? 1.  My first- and last name 2.  My birthdate 3.  My current home address 4.  My bank account info 5.  All of my online searches 6.  All websites I have ever visited 7.  The names of everyone I communicate with (email, Skype, app, chat, snap, call) 8.  Names, phone numbers and photos of everyone I know 9.  Where I am and where I’ve ever been 10. The content of all my communicaCon with others at all Cmes Source: not my quesCons! h-ps://www.youtube.com/watch?v=BVM]zKnSgs
@aureliepols Would you lie to your physician? Aurélie Pols, Superweek February 2016
@aureliepols I do! (lie to my doctor) When it applies to me! Not for what’s most dear…
@aureliepols Risk averse for my children Ø  My most precious assets Ø  We share common goals Ø  And speak the same language Could you say the same of your Legal Counsel?
@aureliepols Consider before crucifying the Rule of law 1.  The specifics of data as an Economic Asset: ²  Data in infinitely transferable without decay 2.  Oeen forgo-en LegislaCve Challenges ²  Defining and recognizing Data Harms 3.  Related to evolving Privacy LegislaCon ²  Compliance is a Risk Exercise 4.  Minimizing Privacy related Risks ²  YOUR liability within the Data Ecosystem
@aureliepols I’m not here to define Privacy AnalyCcs Privacy (& Data ProtecCon)
@aureliepols Fact remains: RACI matrices Ø  Legal counsel will be held accountable Ø  Legal council should be consulted •  Responsible •  Who is/will be doing this task? •  Who is assigned to work on this task? R •  Accountable •  Who’s head will roll if this goes wrong? •  Who has the authority? to take decision? A •  Consulted •  Anyone who can tell me more about this task? •  Any stakeholders already idenCfied? C •  Informed •  Anyone whose work depends on this task? •  Who has to be kept updated about the progress? I
@aureliepols In a world of dynamic regula6on Two fundamental Data Privacy quesCons: 1.  How far is too far (for data use & transparency)? 2.  Who will decide (what is acceptable)?
@aureliepols If I had 1 £ for every 6me I heard… 1.  Yes but we don’t collect PII 2.  InternaConal data transfers? Safe Harbour!
@aureliepols So what to do? 1 rules them all Transparency Choice Informa6on review & correc6on Informa6on protec6on Accountability
@aureliepols There is no PII NOC list, get over it! SensiCve data? A wash list of controversial variables!
@aureliepols PII vs. Risk Levels DIGITAL EXHAUST Low Risk OBA Medium Risk (profiling) HIPAA HEALTH DATA High Risk (sensiCve) Risk Level Data type InformaCon Security Measures Geong closer to uniquely idenCfying an individual FCRA CREDIT SCORING Extremely High Risk (profiling of sensiCve data) US: if/then exercises PII
@aureliepols Where to start? 1.  Define yourself •  Who are you in the data ecosystem? •  What are your obligaCons? •  What is expected of you? •  (Who can find out?)
@aureliepols Where to start? 2.  Document your Digital Entanglement High-level mock-up of exisCng client. Next steps: ü Terms & sovereignCes ü Data points & access/sharing ü Purpose & Consent ü Data retenCon periods
@aureliepols Where to start? 3.  Align your liabiliVes: Ø  What do the terms allow? Ø  Which data points are you collecCng? Ø  Which clauses are being used (InternaConal data transfer mechanisms: SafeHarbour)? Ø  Who has access? Data sharing Ø  …
@aureliepols Where to start? Purpose Consent 4.  Don’t drop the ball on Purpose and Consent! What happens if opt-out of email list, ? h-ps://support.google.com/adwords/answer/ 6276125?hl=en UK: OpCcal Express bought “consented” data from Thomas Cook See ICO PECR: h-ps://ico.org.uk/for- organisaCons/guide-to-pecr/introducCon/ what-are-pecr/
@aureliepols Where to start? 5.  Understand your risk Ø  Of legal issues: fines, class acCons Schleswig-Holstein DPA considers SafeHarbour clauses today unacceptable + can’t be replaced by model clauses either => is this a risk for your company? Ø  Of customer backlashes: unexpected/creepy data uses Target: using shopping behavior to define pregnancy state (sensiCve data) => consent!
@aureliepols Where to start? 6.  Document, train & communicate •  If asked, be able to show you’ve done your homework •  Define accountability (data stewards) & escalaCon procedures •  Explain & ask for help: your company is the paVent!
@aureliepols We all hated the “cookie Direc6ve”, right?
@aureliepols Find out where the next Data Privacy challenges lie For you: Piwik webinar h-ps://piwik.pro/c/privacy-webinar/ For your colleagues: IAPP webinar h-ps://my.iapp.org/nc__event? id=a0l1a000000nDWsAAM
@aureliepols LET’S START THE DISCUSSION Gracias por su atención! aurelie@mindyourprivacy.com THANK YOU FOR LISTENING!

Recommandé

SUPERWEEK Analytics Presentation
SUPERWEEK Analytics PresentationSUPERWEEK Analytics Presentation
SUPERWEEK Analytics PresentationAnalytics Ninja LLC
 
Google Analytics Enhanced Ecommerce Reports - Superweek 2015
Google Analytics Enhanced Ecommerce Reports - Superweek 2015Google Analytics Enhanced Ecommerce Reports - Superweek 2015
Google Analytics Enhanced Ecommerce Reports - Superweek 2015Analytics Ninja LLC
 
ESQUEMA CORPORAL POR DAYANA LÓPEZ
ESQUEMA CORPORAL POR DAYANA LÓPEZESQUEMA CORPORAL POR DAYANA LÓPEZ
ESQUEMA CORPORAL POR DAYANA LÓPEZDAYISLOPEZ
 
Ashlyn McCoy Caffey Resume (1)
Ashlyn McCoy Caffey Resume (1)Ashlyn McCoy Caffey Resume (1)
Ashlyn McCoy Caffey Resume (1)Ashlyn Caffey
 
Cumple Kyra
Cumple KyraCumple Kyra
Cumple KyraMartina y Aiora
 
ISA-MiningMetals_newsletter_fall2016 (1)
ISA-MiningMetals_newsletter_fall2016 (1)ISA-MiningMetals_newsletter_fall2016 (1)
ISA-MiningMetals_newsletter_fall2016 (1)Bas Mutsaers
 
Why Customers Want To Lease
Why Customers Want To LeaseWhy Customers Want To Lease
Why Customers Want To LeaseLaura4MVD
 
Tema2
Tema2Tema2
Tema2mozartmusical
 

Recommandé

SUPERWEEK Analytics Presentation
SUPERWEEK Analytics PresentationSUPERWEEK Analytics Presentation
SUPERWEEK Analytics PresentationAnalytics Ninja LLC
 
Google Analytics Enhanced Ecommerce Reports - Superweek 2015
Google Analytics Enhanced Ecommerce Reports - Superweek 2015Google Analytics Enhanced Ecommerce Reports - Superweek 2015
Google Analytics Enhanced Ecommerce Reports - Superweek 2015Analytics Ninja LLC
 
ESQUEMA CORPORAL POR DAYANA LÓPEZ
ESQUEMA CORPORAL POR DAYANA LÓPEZESQUEMA CORPORAL POR DAYANA LÓPEZ
ESQUEMA CORPORAL POR DAYANA LÓPEZDAYISLOPEZ
 
Ashlyn McCoy Caffey Resume (1)
Ashlyn McCoy Caffey Resume (1)Ashlyn McCoy Caffey Resume (1)
Ashlyn McCoy Caffey Resume (1)Ashlyn Caffey
 
Cumple Kyra
Cumple KyraCumple Kyra
Cumple KyraMartina y Aiora
 
ISA-MiningMetals_newsletter_fall2016 (1)
ISA-MiningMetals_newsletter_fall2016 (1)ISA-MiningMetals_newsletter_fall2016 (1)
ISA-MiningMetals_newsletter_fall2016 (1)Bas Mutsaers
 
Why Customers Want To Lease
Why Customers Want To LeaseWhy Customers Want To Lease
Why Customers Want To LeaseLaura4MVD
 
Tema2
Tema2Tema2
Tema2mozartmusical
 
Blackwell tailgate banner LO
Blackwell tailgate banner LOBlackwell tailgate banner LO
Blackwell tailgate banner LOTony Meuser
 
Meie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane KalevipoegMeie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane Kalevipoegminuslaidid
 
Historia alemana
Historia alemanaHistoria alemana
Historia alemanaJuan Pablo Montelongo
 
Functional Programming In Jdk8
Functional Programming In Jdk8 Functional Programming In Jdk8
Functional Programming In Jdk8 Bansilal Haudakari
 
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연 Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연 양 한빛
 
Digital marketing
Digital marketingDigital marketing
Digital marketingMark Evlampiev
 
Processing 3rd Class: If & Loop
Processing 3rd Class: If & LoopProcessing 3rd Class: If & Loop
Processing 3rd Class: If & LoopMinGi KYUNG
 
Smart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades InteligentesSmart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades InteligentesNicholas Gimenes
 
Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017Mark Edmondson
 
Marco teorico
Marco teoricoMarco teorico
Marco teorico1ivanramos
 
Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017Stéphane Hamel
 
AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024Aurélie Pols
 
Preparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcementPreparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcementAurélie Pols
 
Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie? Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie? Aurélie Pols
 
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...Aurélie Pols
 
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...Aurélie Pols
 
Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club Aurélie Pols
 
For Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCFFor Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCFAurélie Pols
 
Interoperability in Digital will take a Global Village
Interoperability in Digital will take a Global VillageInteroperability in Digital will take a Global Village
Interoperability in Digital will take a Global VillageAurélie Pols
 
The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?Aurélie Pols
 
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...Aurélie Pols
 
GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?Aurélie Pols
 

Contenu connexe

En vedette

Blackwell tailgate banner LO
Blackwell tailgate banner LOBlackwell tailgate banner LO
Blackwell tailgate banner LOTony Meuser
 
Meie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane KalevipoegMeie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane Kalevipoegminuslaidid
 
Functional Programming In Jdk8
Functional Programming In Jdk8 Functional Programming In Jdk8
Functional Programming In Jdk8 Bansilal Haudakari
 
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연 Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연 양 한빛
 
Processing 3rd Class: If & Loop
Processing 3rd Class: If & LoopProcessing 3rd Class: If & Loop
Processing 3rd Class: If & LoopMinGi KYUNG
 
Smart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades InteligentesSmart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades InteligentesNicholas Gimenes
 
Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017Mark Edmondson
 
Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017Stéphane Hamel
 

En vedette (11)

Blackwell tailgate banner LO
Blackwell tailgate banner LOBlackwell tailgate banner LO
Blackwell tailgate banner LO
 
Meie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane KalevipoegMeie VõImas Rahvuskangelane Kalevipoeg
Meie VõImas Rahvuskangelane Kalevipoeg
 
Historia alemana
Historia alemanaHistoria alemana
Historia alemana
 
Functional Programming In Jdk8
Functional Programming In Jdk8 Functional Programming In Jdk8
Functional Programming In Jdk8
 
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연 Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
Track1 03. 지적 프로그래밍을 위한 넓고 얇은 습관 카카오 서지연
 
Digital marketing
Digital marketingDigital marketing
Digital marketing
 
Processing 3rd Class: If & Loop
Processing 3rd Class: If & LoopProcessing 3rd Class: If & Loop
Processing 3rd Class: If & Loop
 
Smart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades InteligentesSmart Cities - Tecnologia nas Cidades Inteligentes
Smart Cities - Tecnologia nas Cidades Inteligentes
 
Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017Turning Analysis into Action with APIs - Superweek2017
Turning Analysis into Action with APIs - Superweek2017
 
Marco teorico
Marco teoricoMarco teorico
Marco teorico
 
Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017Radical Analytics, Superweek Hungary, January 2017
Radical Analytics, Superweek Hungary, January 2017
 

Plus de Aurélie Pols

AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024Aurélie Pols
 
Preparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcementPreparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcementAurélie Pols
 
Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie? Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie? Aurélie Pols
 
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...Aurélie Pols
 
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...Aurélie Pols
 
Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club Aurélie Pols
 
For Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCFFor Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCFAurélie Pols
 
Interoperability in Digital will take a Global Village
Interoperability in Digital will take a Global VillageInteroperability in Digital will take a Global Village
Interoperability in Digital will take a Global VillageAurélie Pols
 
The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?Aurélie Pols
 
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...Aurélie Pols
 
GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?Aurélie Pols
 
Who Goes There? Demystifying Digital Identity for All (1/2)
Who Goes There? Demystifying Digital Identity for All (1/2)Who Goes There? Demystifying Digital Identity for All (1/2)
Who Goes There? Demystifying Digital Identity for All (1/2)Aurélie Pols
 
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...Data is the new infrastructure, Privacy is the new green, Trust is the new cu...
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...Aurélie Pols
 
How digitization challenges our values as citizens
How digitization challenges our values as citizens How digitization challenges our values as citizens
How digitization challenges our values as citizens Aurélie Pols
 
Technical Consequences of the Data Subject's Rights
Technical Consequences of the Data Subject's RightsTechnical Consequences of the Data Subject's Rights
Technical Consequences of the Data Subject's RightsAurélie Pols
 
From GDPR to ePrivacy: what does it mean to the advertising sector?
From GDPR to ePrivacy: what does it mean to the advertising sector?From GDPR to ePrivacy: what does it mean to the advertising sector?
From GDPR to ePrivacy: what does it mean to the advertising sector?Aurélie Pols
 
State of EU legislation: GDPR & ePrivacy for Superweek
State of EU legislation: GDPR & ePrivacy for SuperweekState of EU legislation: GDPR & ePrivacy for Superweek
State of EU legislation: GDPR & ePrivacy for SuperweekAurélie Pols
 
The Great GDPR MyData Debate - Aurelie Pols - Keynote
The Great GDPR MyData Debate - Aurelie Pols - KeynoteThe Great GDPR MyData Debate - Aurelie Pols - Keynote
The Great GDPR MyData Debate - Aurelie Pols - KeynoteAurélie Pols
 
The Data Subject First? Decoding the GDPR at StrataData
The Data Subject First? Decoding the GDPR at StrataDataThe Data Subject First? Decoding the GDPR at StrataData
The Data Subject First? Decoding the GDPR at StrataDataAurélie Pols
 
Brussels data science - Privacy Engineering for Big Data & Data Science
Brussels data science - Privacy Engineering for Big Data & Data ScienceBrussels data science - Privacy Engineering for Big Data & Data Science
Brussels data science - Privacy Engineering for Big Data & Data ScienceAurélie Pols
 

Plus de Aurélie Pols (20)

AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024AI Roles and Risk for election year 2024
AI Roles and Risk for election year 2024
 
Preparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcementPreparing for the AI Act - 5 years into GDPR enforcement
Preparing for the AI Act - 5 years into GDPR enforcement
 
Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie? Creative destruction & Privacy Whitewashing: where does risk lie?
Creative destruction & Privacy Whitewashing: where does risk lie?
 
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
ePrivacy Directive, a 10 steps framework to be as compliant as possible for m...
 
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
 
Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club Women in STEM for IE Girl Up Club
Women in STEM for IE Girl Up Club
 
For Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCFFor Superweek 2022: discussing risk using IAB's TCF
For Superweek 2022: discussing risk using IAB's TCF
 
Interoperability in Digital will take a Global Village
Interoperability in Digital will take a Global VillageInteroperability in Digital will take a Global Village
Interoperability in Digital will take a Global Village
 
The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?The GDPR is here. So do you know what the courts are saying?
The GDPR is here. So do you know what the courts are saying?
 
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
CPDP: Data ownership, Innovation and Privacy: looking for an approach on both...
 
GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?GDPR and the aftermath: what are we building towards?
GDPR and the aftermath: what are we building towards?
 
Who Goes There? Demystifying Digital Identity for All (1/2)
Who Goes There? Demystifying Digital Identity for All (1/2)Who Goes There? Demystifying Digital Identity for All (1/2)
Who Goes There? Demystifying Digital Identity for All (1/2)
 
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...Data is the new infrastructure, Privacy is the new green, Trust is the new cu...
Data is the new infrastructure, Privacy is the new green, Trust is the new cu...
 
How digitization challenges our values as citizens
How digitization challenges our values as citizens How digitization challenges our values as citizens
How digitization challenges our values as citizens
 
Technical Consequences of the Data Subject's Rights
Technical Consequences of the Data Subject's RightsTechnical Consequences of the Data Subject's Rights
Technical Consequences of the Data Subject's Rights
 
From GDPR to ePrivacy: what does it mean to the advertising sector?
From GDPR to ePrivacy: what does it mean to the advertising sector?From GDPR to ePrivacy: what does it mean to the advertising sector?
From GDPR to ePrivacy: what does it mean to the advertising sector?
 
State of EU legislation: GDPR & ePrivacy for Superweek
State of EU legislation: GDPR & ePrivacy for SuperweekState of EU legislation: GDPR & ePrivacy for Superweek
State of EU legislation: GDPR & ePrivacy for Superweek
 
The Great GDPR MyData Debate - Aurelie Pols - Keynote
The Great GDPR MyData Debate - Aurelie Pols - KeynoteThe Great GDPR MyData Debate - Aurelie Pols - Keynote
The Great GDPR MyData Debate - Aurelie Pols - Keynote
 
The Data Subject First? Decoding the GDPR at StrataData
The Data Subject First? Decoding the GDPR at StrataDataThe Data Subject First? Decoding the GDPR at StrataData
The Data Subject First? Decoding the GDPR at StrataData
 
Brussels data science - Privacy Engineering for Big Data & Data Science
Brussels data science - Privacy Engineering for Big Data & Data ScienceBrussels data science - Privacy Engineering for Big Data & Data Science
Brussels data science - Privacy Engineering for Big Data & Data Science
 

Dernier

RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝DelhiRS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhijennyeacort
 
Real-Time AI Streaming - AI Max Princeton
Real-Time AI Streaming - AI Max PrincetonReal-Time AI Streaming - AI Max Princeton
Real-Time AI Streaming - AI Max PrincetonTimothy Spann
 
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...limedy534
 
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Boston Institute of Analytics
 
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理e4aez8ss
 
LLMs, LMMs, their Improvement Suggestions and the Path towards AGI
LLMs, LMMs, their Improvement Suggestions and the Path towards AGILLMs, LMMs, their Improvement Suggestions and the Path towards AGI
LLMs, LMMs, their Improvement Suggestions and the Path towards AGIThomas Poetter
 
20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdfHuman37
 
Top 5 Best Data Analytics Courses In Queens
Top 5 Best Data Analytics Courses In QueensTop 5 Best Data Analytics Courses In Queens
Top 5 Best Data Analytics Courses In Queensdataanalyticsqueen03
 
RABBIT: A CLI tool for identifying bots based on their GitHub events.
RABBIT: A CLI tool for identifying bots based on their GitHub events.RABBIT: A CLI tool for identifying bots based on their GitHub events.
RABBIT: A CLI tool for identifying bots based on their GitHub events.natarajan8993
 
Learn How Data Science Changes Our World
Learn How Data Science Changes Our WorldLearn How Data Science Changes Our World
Learn How Data Science Changes Our WorldEduminds Learning
 
Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Cathrine Wilhelmsen
 
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...Boston Institute of Analytics
 
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一F sss
 
Defining Constituents, Data Vizzes and Telling a Data Story
Defining Constituents, Data Vizzes and Telling a Data StoryDefining Constituents, Data Vizzes and Telling a Data Story
Defining Constituents, Data Vizzes and Telling a Data StoryJeremy Anderson
 
Heart Disease Classification Report: A Data Analysis Project
Heart Disease Classification Report: A Data Analysis ProjectHeart Disease Classification Report: A Data Analysis Project
Heart Disease Classification Report: A Data Analysis ProjectBoston Institute of Analytics
 
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degreeyuu sss
 
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024thyngster
 
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...Amil Baba Dawood bangali
 
Conf42-LLM_Adding Generative AI to Real-Time Streaming Pipelines
Conf42-LLM_Adding Generative AI to Real-Time Streaming PipelinesConf42-LLM_Adding Generative AI to Real-Time Streaming Pipelines
Conf42-LLM_Adding Generative AI to Real-Time Streaming PipelinesTimothy Spann
 
Semantic Shed - Squashing and Squeezing.pptx
Semantic Shed - Squashing and Squeezing.pptxSemantic Shed - Squashing and Squeezing.pptx
Semantic Shed - Squashing and Squeezing.pptxMike Bennett
 

Dernier (20)

RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝DelhiRS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
 
Real-Time AI Streaming - AI Max Princeton
Real-Time AI Streaming - AI Max PrincetonReal-Time AI Streaming - AI Max Princeton
Real-Time AI Streaming - AI Max Princeton
 
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
 
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
 
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
 
LLMs, LMMs, their Improvement Suggestions and the Path towards AGI
LLMs, LMMs, their Improvement Suggestions and the Path towards AGILLMs, LMMs, their Improvement Suggestions and the Path towards AGI
LLMs, LMMs, their Improvement Suggestions and the Path towards AGI
 
20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf
 
Top 5 Best Data Analytics Courses In Queens
Top 5 Best Data Analytics Courses In QueensTop 5 Best Data Analytics Courses In Queens
Top 5 Best Data Analytics Courses In Queens
 
RABBIT: A CLI tool for identifying bots based on their GitHub events.
RABBIT: A CLI tool for identifying bots based on their GitHub events.RABBIT: A CLI tool for identifying bots based on their GitHub events.
RABBIT: A CLI tool for identifying bots based on their GitHub events.
 
Learn How Data Science Changes Our World
Learn How Data Science Changes Our WorldLearn How Data Science Changes Our World
Learn How Data Science Changes Our World
 
Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)
 
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...
Data Analysis Project : Targeting the Right Customers, Presentation on Bank M...
 
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
 
Defining Constituents, Data Vizzes and Telling a Data Story
Defining Constituents, Data Vizzes and Telling a Data StoryDefining Constituents, Data Vizzes and Telling a Data Story
Defining Constituents, Data Vizzes and Telling a Data Story
 
Heart Disease Classification Report: A Data Analysis Project
Heart Disease Classification Report: A Data Analysis ProjectHeart Disease Classification Report: A Data Analysis Project
Heart Disease Classification Report: A Data Analysis Project
 
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree
办美国阿肯色大学小石城分校毕业证成绩单pdf电子版制作修改#真实留信入库#永久存档#真实可查#diploma#degree
 
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024
Consent & Privacy Signals on Google *Pixels* - MeasureCamp Amsterdam 2024
 
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
 
Conf42-LLM_Adding Generative AI to Real-Time Streaming Pipelines
Conf42-LLM_Adding Generative AI to Real-Time Streaming PipelinesConf42-LLM_Adding Generative AI to Real-Time Streaming Pipelines
Conf42-LLM_Adding Generative AI to Real-Time Streaming Pipelines
 
Semantic Shed - Squashing and Squeezing.pptx
Semantic Shed - Squashing and Squeezing.pptxSemantic Shed - Squashing and Squeezing.pptx
Semantic Shed - Squashing and Squeezing.pptx
 

Superweek 2016 Would You Lie to Your Physician?

  • 1. @aureliepols Would you lie to your physician? Aurélie Pols, Superweek February 2016
  • 2. @aureliepols Monkey repor6ng on remote-controlled data cows? Aurélie Pols, February 2016 Superweek.hu h-p://www.theguardian.com/technology/2016/jan/30/europe-google-facebook-technology-ethics-eu-marCn-schulz
  • 3. @aureliepols Let’s Play a Game: Are you willing to give & allow storage of this data about you? 1.  My first- and last name 2.  My birthdate 3.  My current home address 4.  My bank account info 5.  All of my online searches 6.  All websites I have ever visited 7.  The names of everyone I communicate with (email, Skype, app, chat, snap, call) 8.  Names, phone numbers and photos of everyone I know 9.  Where I am and where I’ve ever been 10. The content of all my communicaCon with others at all Cmes Source: not my quesCons! h-ps://www.youtube.com/watch?v=BVM]zKnSgs
  • 4. @aureliepols Would you lie to your physician? Aurélie Pols, Superweek February 2016
  • 5. @aureliepols I do! (lie to my doctor) When it applies to me! Not for what’s most dear…
  • 6. @aureliepols Risk averse for my children Ø  My most precious assets Ø  We share common goals Ø  And speak the same language Could you say the same of your Legal Counsel?
  • 7. @aureliepols Consider before crucifying the Rule of law 1.  The specifics of data as an Economic Asset: ²  Data in infinitely transferable without decay 2.  Oeen forgo-en LegislaCve Challenges ²  Defining and recognizing Data Harms 3.  Related to evolving Privacy LegislaCon ²  Compliance is a Risk Exercise 4.  Minimizing Privacy related Risks ²  YOUR liability within the Data Ecosystem
  • 8. @aureliepols I’m not here to define Privacy AnalyCcs Privacy (& Data ProtecCon)
  • 9. @aureliepols Fact remains: RACI matrices Ø  Legal counsel will be held accountable Ø  Legal council should be consulted •  Responsible •  Who is/will be doing this task? •  Who is assigned to work on this task? R •  Accountable •  Who’s head will roll if this goes wrong? •  Who has the authority? to take decision? A •  Consulted •  Anyone who can tell me more about this task? •  Any stakeholders already idenCfied? C •  Informed •  Anyone whose work depends on this task? •  Who has to be kept updated about the progress? I
  • 10. @aureliepols In a world of dynamic regula6on Two fundamental Data Privacy quesCons: 1.  How far is too far (for data use & transparency)? 2.  Who will decide (what is acceptable)?
  • 11. @aureliepols If I had 1 £ for every 6me I heard… 1.  Yes but we don’t collect PII 2.  InternaConal data transfers? Safe Harbour!
  • 12. @aureliepols So what to do? 1 rules them all Transparency Choice Informa6on review & correc6on Informa6on protec6on Accountability
  • 13. @aureliepols There is no PII NOC list, get over it! SensiCve data? A wash list of controversial variables!
  • 14. @aureliepols PII vs. Risk Levels DIGITAL EXHAUST Low Risk OBA Medium Risk (profiling) HIPAA HEALTH DATA High Risk (sensiCve) Risk Level Data type InformaCon Security Measures Geong closer to uniquely idenCfying an individual FCRA CREDIT SCORING Extremely High Risk (profiling of sensiCve data) US: if/then exercises PII
  • 15. @aureliepols Where to start? 1.  Define yourself •  Who are you in the data ecosystem? •  What are your obligaCons? •  What is expected of you? •  (Who can find out?)
  • 16. @aureliepols Where to start? 2.  Document your Digital Entanglement High-level mock-up of exisCng client. Next steps: ü Terms & sovereignCes ü Data points & access/sharing ü Purpose & Consent ü Data retenCon periods
  • 17. @aureliepols Where to start? 3.  Align your liabiliVes: Ø  What do the terms allow? Ø  Which data points are you collecCng? Ø  Which clauses are being used (InternaConal data transfer mechanisms: SafeHarbour)? Ø  Who has access? Data sharing Ø  …
  • 18. @aureliepols Where to start? Purpose Consent 4.  Don’t drop the ball on Purpose and Consent! What happens if opt-out of email list, ? h-ps://support.google.com/adwords/answer/ 6276125?hl=en UK: OpCcal Express bought “consented” data from Thomas Cook See ICO PECR: h-ps://ico.org.uk/for- organisaCons/guide-to-pecr/introducCon/ what-are-pecr/
  • 19. @aureliepols Where to start? 5.  Understand your risk Ø  Of legal issues: fines, class acCons Schleswig-Holstein DPA considers SafeHarbour clauses today unacceptable + can’t be replaced by model clauses either => is this a risk for your company? Ø  Of customer backlashes: unexpected/creepy data uses Target: using shopping behavior to define pregnancy state (sensiCve data) => consent!
  • 20. @aureliepols Where to start? 6.  Document, train & communicate •  If asked, be able to show you’ve done your homework •  Define accountability (data stewards) & escalaCon procedures •  Explain & ask for help: your company is the paVent!
  • 21. @aureliepols We all hated the “cookie Direc6ve”, right?
  • 22. @aureliepols Find out where the next Data Privacy challenges lie For you: Piwik webinar h-ps://piwik.pro/c/privacy-webinar/ For your colleagues: IAPP webinar h-ps://my.iapp.org/nc__event? id=a0l1a000000nDWsAAM
  • 23. @aureliepols LET’S START THE DISCUSSION Gracias por su atención! aurelie@mindyourprivacy.com THANK YOU FOR LISTENING!