This morning’s discussion – jointly hosted by the All-Party Parliamentary Groups on Data Analytics and Health – suggested that if we want uses of health data to be trusted, we need to trust citizens and patients to think more deeply about benefits and risks than media headlines might suggest. The session was inspired by a […]
Month: October 2020
Categories
Assessing our security services
Jisc performs a number of different activities to keep Janet and customer sites secure. Here’s a very short video on how we used a Data Protection Impact Assessment and a Legitimate Interests Assessment to check that those activities do not themselves create disproportionate risks. You can read the reports: Security Operations Centre (SOC): Data Protection Impact […]
Since it has provided the foundation for most of the work I’ve been doing on data for the past couple of years, I’ve recorded a video explaining our standard model for “analytics”, in both practical and legal terms If you’d like to know more, a couple of papers set out the theory Downstream Consent: a […]
Categories
Where should I put my data?
After a couple of years when the question of data location had dropped a little down the priority list, two things have pushed it back up again. First, the Schrems II decision of the European Court, which cancelled the US-EU Privacy Shield and added some – but it’s not yet clear how onerous – new […]
Categories
AI: thinking about definitions…
To ensure a lively discussion at a recent round-table on AI Ethics participants were asked, provocatively, “was the A Level algorithm fair?”. OK, I can be provoked… It depends on what you mean by “fair”… As has been widely discussed, the main objective set for those who designed the algorithm seems to have been to […]
Categories
Incident Response and Law
On and off, I’ve been researching the legal aspects of incident detection and response for fifteen years, and published more than 25000 words in law journals. So, can that be summarised in less than five minutes? You judge… And if you’d like to read more, here are the original papers: Processing Data to Protect Data: […]
Categories
AI: Regulation isn’t enough
Alan Shark’s SOCITM ShareNational keynote looked at why regulation is not sufficient to deal with emerging technologies, and the complementary role that needs to be played by ethics. Although privacy is not the only threat posed by such technologies, it does seem to be the one that has got people interested in the debate, whether over […]
Categories
AI: It’s not (just) what you use…
Allison Gardner’s keynote to the SOCTIM ShareNational conference last week highlighted how using AI responsibly is at least as much about how decisions are made as about the technology itself. Questions of “transparency” often focus on whether the AI is explainable, but how decisions were made – even how a particular problem was identified and […]