Presentation on theme: "Privacy by Design: Big Privacy for Big Data"— Presentation transcript:
1Privacy by Design: Big Privacy for Big Data 2013 Digital Odyssey: Big Data, Small WorldOntario Library IT AssociationToronto, CanadaJune 7, 2013
2Overview Introduction to IPC Privacy 101 Challenges to Privacy in the Age of Big DataPrivacy by DesignBig Privacy for Big Data
3Ann Cavoukian, PhD Ontario’s Information and Privacy Commissioner Ensure that government organizations (provincial and municipal) comply with freedom of information and privacy laws in OntarioInvestigate privacy complaints and resolve appeals when the government refuses to grant access to government-held informationConduct research on and raise awareness of emerging privacy & access to information issues3
4IPC Philosophy: 3 C’sConsultation: by keeping open lines of communicationCo-operation: rather than confrontation in resolving complaintsCollaboration: through working together to find solutions
5Privacy 101Information privacy refers to the right or ability of individuals to exercise control over the collection, use and disclosure by others of their personal informationPersonally-identifiable information (“PII”) can be biographical, biological, genealogical, historical, transactional, locational, relational, computational, vocational or reputational, and is the stuff that makes up our modern identityPersonal information must be managed responsibly. When it is not, accountability is undermined and confidence in our evolving information society is eroded.
6From PC to Web 4.0: Challenges to Privacy in the Age of Big Data Radar Networks & Nova Spivack, 2007
7Wireless and Mobile: Beware of Unintended Consequences 7
9“We need to be more deliberate (about privacy) “We need to be more deliberate (about privacy). A lot of information-age architecture is about data: what is collected, who controls it, and how it is used. Data is the lifeblood of the information age, but much of it is very personal. We need to design systems that limit unnecessary data collection, give individuals control over their data, and limit the ability of those in power to use that data for mass surveillance.”(Bruce Schneier, IEEE Security & PrivacyJanuary/February 2009 )
11Data Assets = Data Risks and Liabilities Threats to Privacy
12Data Privacy requires Good Data Security but Good Data Security ≠ Privacy
13Why We Need Privacy by Design Most privacy breaches remain undetected – as regulators, we only see the tip of the icebergThe majority of privacy breaches remain unchallenged, unregulated ... unknownRegulatory compliance alone, is unsustainable as the sole model for ensuring the future of privacy
14Privacy by Design: The 7 Foundational Principles Proactive not Reactive: Preventative, not RemedialPrivacy as the DefaultPrivacy Embedded into DesignFull Functionality: Positive-Sum, not Zero-SumEnd-to-End Security: Full Lifecycle ProtectionVisibility and Transparency: Keep it OpenRespect for User Privacy: Keep it User-Centric
15Privacy by Design Security Purpose Specification Data Minimization FIPPsSecurityEnd to End Lifecycle ProtectionPurpose SpecificationData MinimizationPrivacy as the Default (Setting)Consent, Accuracy, AccessRespect for User PrivacyAccountability, Openness, ComplianceOpenness & TransparencyProactive Not Reaction; Preventative Not RemedialPrivacy Embedded into DesignFull Functionality – Positive-Sum, not Zero-Sum
16Privacy by Design www.privacybydesign.ca Information Technology AccountableBusinessPracticesPhysicalDesign &Infrastructure
18De-identification – Data Minimization Restoring the value of de-identification;Challenges in re-identifying de-identified information;The implications of including de-identified information under privacy legislation;Rejecting the zero-sum paradigm;Conducting re-identification risk assessment.
19Data Co-management Data accountability Data minimization Data security In the Web 2.0 era, information may very well “want to be free” but not necessarily personal information!Data accountabilityData minimizationData securityData accessThe Big Idea:Data co-management – Citizen participation in the care and management of his/her own personal data held by others throughout the data life cycle
20PERSONAL DATA ECOSYSTEM (PERSONAL DATA VAULT/PERSONAL DATA PLATFORM)
21UI Design Concepts: Transparency & Trust Context – think of the device as well as the context for how the information will be treatedAwareness – does the user know that privacy policies exist and that they can exercise choiceDiscoverability – ease of finding relevant privacy policies & ease of acting on available privacy settingsComprehension - consider if users can understand the privacy policies & privacy settings to be able to make an informed decision
22Privacy by Design in the Age of Big Data and Sensemaking Systems Ability of analytical tools to process & make sense of extremely large sets of structured and unstructured dataNew class of analytic capability where the data finds the data and the relevance finds the userIncrease in accuracy of data – context reduces ambiguityAccumulation of bad data = smarter systemAs data store increases, context is enhanced = faster resultsRequires Big Privacy!
23PbD Features for Next-generation Sensemaking Systems Full attribution: preserve record metadata; do not allow merge/purge processingData tethering: any changes to records must apply across the information sharing ecosystem in real-timeAnalytics on anonymized data: anonymize data at source prior to transfer; utilize homomorphic encryptionTamper-resistant audit logs: every user search logged, even database administratorFalse negative favoring methods: trust but verifySelf-correcting false positives: reverse earlier assertions real-time and scaledInformation transfer accounting: capture data flows for discovery by individual
24Patience, Persistence and Faith: The Chronicles of a Crusader “Your identity is your most valuable possession. Protect it. And if anything goes wrong, use your powers.”Helen (aka Elastigirl)The IncrediblesDisney/Pixar 2004Privacy by Design NOT Privacy by Disaster!
25How to Contact UsMichelle Chibba, Director, Policy and Special ProjectsInformation and Privacy Commissioner’s Office of Ontario2 Bloor Street East, Suite 1400Toronto, Ontario, CanadaM4W 1A8Phone: (416) /Web: