Geodemographics in a digital age: Ethical and data protection - - PowerPoint PPT Presentation

geodemographics in a
SMART_READER_LITE
LIVE PREVIEW

Geodemographics in a digital age: Ethical and data protection - - PowerPoint PPT Presentation

Nov 25, 2022 43 likes •107 views

Geodemographics in a digital age: Ethical and data protection considerations CGG Seminar 2 nd May 2017 Dr. Michelle Goddard Director of Policy & Standards Complicated matrix of ethical and legal data protection requirements ePrivacy

slide-1
SLIDE 1

Geodemographics in a digital age: Ethical and data protection considerations CGG Seminar

2nd May 2017

  • Dr. Michelle Goddard

Director of Policy & Standards

slide-2
SLIDE 2

Complicated matrix of ethical and legal data protection requirements ePrivacy

EU Proposal for ePrivacy Regulation; Privacy & Electronic Communications Regulations (PECR)

Data Protection

EU General Data Protection Regulation 2017; UK Derogations; DPA Regulatory Guidance

Codes of Conduct & Guidance

MRS Code of Conduct; DMA Code of Conduct; ethics reviews boards

Ethical data sharing frameworks

Administrative Data Research Centre; Digital Economy Bill

2

slide-3
SLIDE 3

Expanded definition of personal data in GDPR Article 4 'personal data' means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

3

slide-4
SLIDE 4

Geo-demographic data clear benefits but also legal risks

Data Project Benefits (?) Legal Considerations/Privacy Risks

Online targeting for advertising merging geo-demographics categories, personal preferences, individual consumer behaviour

  • Broader insights and

customer intelligence

  • More effective targeted

advertising

  • ePrivacy - direct marketing regime

consents

  • GDPR - right to object to DM & profiling
  • GDPR - appropriate grounds for primary

and secondary processing

  • GDPR - risk assessment DPIA requirements
  • Privacy impact - Discrimination concerns
  • Privacy impact - Opacity of processing and

limited individual controls Product development for a news service that captures IP addresses, GPS coordinates

  • Better customer

experience

  • Targeted news relevant

to location

  • Timely relevant news

information alerts

  • GDPR – specific consent
  • GDPR - data minimisation

Wi-fi location tracking in retail environment

  • Broader insights and

customer intelligence

  • Uncertain impact of ePrivacy reforms
  • GDPR consents

4

slide-5
SLIDE 5

Compliance tools & privacy solutions to achieve your data vision

5

  • Consider if personal data in dataset can be

effectively anonymised or pseudonymised

Anonymisation

  • Use transparent privacy notices
  • Be innovative in approach

Privacy Notices

  • Use PIA/DPIA to identify and mitigate privacy risks

in a consultative process

  • May be mandatory especially if using large dataset

Privacy impact assessment (PIA)

  • Data protection by design and default is legal

requirement

  • Includes anonymisation; security measures; data

minimisation; purpose limitation etc

Privacy by design approach

slide-6
SLIDE 6

JUST BECAUSE YOU CAN DOESN'T MEAN YOU SHOULD!

6