Data Policy Evening: Privacy Enhancing Technologies
5:45pm – 9pm | Tuesday 4th June 2019
Privacy Enhancing Technologies; a timely new report from the Royal Society
In the last few years the UK’s Royal Society has produced a series of reports looking at how to take advantage of the promise of the data age, whilst also thinking about how to mitigate new risks that come alongside these opportunities.
This includes ‘Progress and research in cybersecurity’ (2016), ‘Machine learning’ (2017), ‘Data management and use’ (2017) and its latest report, published last month: “Protecting privacy in Practice, the current use development and limits of Privacy Enhancing Technologies in data analysis”. This report on Privacy Enhancing Technologies (PETs) came out of the requirements and opportunities identified in the previous reports, and looks at five PETs in detail, which it defines as:
- “Trusted Execution Environment (TEE): isolated part of secure processors that allow the isolation of secret code from the rest of the software that is running on a system in order to achieve confidentiality of the data. Trusted execution environments are also known as secure enclaves.”
- “Homomorphic Encryption (HE): a property that some encryption schemes have, so that it is possible to compute on encrypted data without deciphering it.”
- “Secure Multi-Party Computation (SMPC or MPC): a subfield of cryptography concerned with enabling private distributed computations. MPC protocols allow computation or analysis on combined data without the different parties revealing their own private input.”
- “Differential Privacy: security definition which means that, when a statistic is released, it should not give much more information about a particular individual than if that individual had not been included in the dataset. The differential privacy definition allows one to reason about how much privacy is lost over multiple queries (see privacy budget).”
- “Personal Data Store (PDS): systems that provide the individual with access and control over data about them, so that they can decide what information they want to share and with whom.”
This report is an excellent step in providing greater clarity on some particularly promising technologies, but, as the report recommends, further work is needed. The report itself touches on this in some of its seven recommendations:
- Accelerate the research and development of PETs
- Promote the development of an innovation ecosystem
- Drive the development and adoption of PETs.
- Support organisations to become intelligent users of PETs.
- Give public sector organisations the level of expertise and assurance they need to implement new technological applications, enable a centralised approach to due diligence, and assure quality across the board.
- Create the skilled workforce needed to develop and implement PETs.
Promote human flourishing by exploring innovative ways of governing data and its use that are enabled by PETs.
With privacy concerns an ever present part of the data debate, an analysis of which technologies might help us to navigate the opportunities and risks of the data age couldn’t be more timely. But what are these PETs? What can they do and what can’t they do? How are they being used today, and how might they be used in the future? What are the barriers which stand in their way? And what privacy problems do they not address?
For our next data policy evening we’re fortunate to have Dr Franck Fourniol, Policy Advisor at the Royal Society and the author of the report, providing his reflections. In the usual way this will then be followed by a structured discussion of three key issues in this space.
- 5.45 – 6.30: General discussion and networking over food and drinks
- 6.30 – 7.00: Reflections on Royal Society report from Dr Franck Fourniol, followed by Q&A
- 7.00 – 8.00: Debate of selected questions in groups
- 8.00 – 9.00: Back to open discussion with more food and drinks.
We try to keep the event relatively small to enable group discussions, but if you think there’s someone who would be particularly interested in the topic then please let us know and we’d be happy to invite them.
Please come and join us for an evening of food, drinks, lively debate, and all things data policy.
Ready to learn more?
Our team of data privacy experts are here to answer your questions and discuss how data privacy can fuel your business.