Self-service access to safe data
Protect data and manage risk
Analyze conversational chat data
Reduce the time and cost to comply
Right data in the right hands
Align control and business use
Controlled access to data
Flexibility, consistency, scalability
Our professional services
Power responsible use
From clinical to commercial
Optimize data tests
Open new revenue streams
Realize the potential of the cloud
Protect data from misuse
Transform your data
Opinion and industry insights
An A to Z of the industry
The podcast for data leaders
Press releases, awards, and more
Staying at the cutting edge
The team behind Privitar
A thriving partner ecosystem
Our story, values, and careers
Dedicated customer assistance
Oct 23, 2018
The Data Policy Network
We’re in the foothills of the 4th industrial revolution. A raft of new technologies, perhaps most notably in the field of AI, promise to solve pressing problems and boost economic output. McKinsey estimate the economic benefit of AI alone to be around $13T by 2030. The smart world we’re moving into offers new opportunities, but also throws up new risks, and changes how we can and should respond to existing risks.
Whilst it took months and years to prototype new products, build factories, and distribute the hardware of the first three industrial revolutions. Today’s software is built in ‘sprints’ measured in weeks, with updates pushed out and installed in seconds. As such policy makers must become more agile themselves to keep up. Partially this can be done by creating networks and forums for those in the policy community to discuss their projects and challenges and share learning and ideas.
Privitar is committed to driving the responsible growth of the data economy. Our close links with academia, the public sector, and the business community make us well placed to bring this diverse network together to tackle these emerging policy issues. To that end Privitar hosts networking and discussion evenings every other month. Each event focuses on a particular topic. The theme of our most recent event was ‘accountability’.
Our Second Data Policy Evening – September 2018
Organisations today have access to much greater quantitates of personal data, and new tools with which to automatically process, analyse, and act on this data.
This throws up new challenges to accountability. As organisations look to use data in more innovative and complex ways, how does society ensure they can be held for account and do not put individuals at risk by acting irresponsibly? And when new technologies replace humans as sources of analysis and decision making, how do we ensure that those responsible can still be held accountable for the consequences of these decisions?
The second Data Policy Evening was focused on the theme of accountability, focusing on two questions:
1) How do we maintain democratic accountability when political decisions are being embedded in code?
Modern tools change where, how, and by whom decisions and recommendations can be made. Decisions and recommendations which could previously only be made by humans can now be made at scale by algorithms. Those designing these algorithms may be data scientists and developers, not the operational staff previously responsible. Whilst more efficient, and arguably more consistent than humans, this automation raises new policy issues, especially around who is responsible for the recommendations made, and how the recommendations being made are affected by automation.
Algorithmic decision making/recommendation tools, such as COMPAS in the US or HART in the UK (longer read) have shown how political decisions are being embedded in code. In these instances the weighting of how an algorithm prioritises false positives against false negatives represents a statement of values. This prioritisation translates to how much the system aims to prevent future crimes, compared to ensuring those who won’t reoffend aren’t kept in jail. The results of these decisions can also, in the case of COMPAS, arguably lead to racially biased results.
Are we equipped to deal with this change? How do we ensure that accountable decision makers have the access, understanding, and control to ensure effective democratic oversight is possible?
Three thoughts from the discussion:
2) In an increasingly complex world, are additional oversight mechanisms required to ensure fundamental rights and freedoms are not put at risk by data controllers?
Many times a day we are asked to make decisions about our personal data. We lack the mental bandwidth or understanding to engage with most of these decisions, so how can the consent we give be considered an effective way of protecting our fundamental rights and freedoms?
The GDPR makes use of consent harder, whilst effectively promoting the legitimate interest basis, where responsibility for determining if something presents an acceptable risk to the data subject is taken on by the controller. But whilst the controller may have the understanding and bandwidth to consider the risks and benefits of processing personal data, do they have the right incentives? With regulators stretched, who will provide effective oversight for how controllers make decisions about processing personal data? Do we need new transparency mechanisms which would allow civil society, or others, to oversee controllers’ decision making processes? If so, what do these look like? And how would they work?
What do you think? If you want to continue the discussion please leave a comment below!
Our team of data security and privacy experts are here to answer your questions and discuss how modern data provisioning can fuel business growth.