Topic 8: Big Data & Machine Learning: Ethical & Privacy Issues Flashcards
(35 cards)
Discuss the potential big data for business.
Potential:
- Source of innovation
- Enabler of development
Explain how the new term “data trust deficit” developed.
public developed greater awareness and sensitivity towards the big data topic driven by increasingly prominent role of IoT.
Big Brother serves the economic interest of businesses over which people have little or no control.
List five methods of protecting human rights in the ‘Era of Big Data.
- Stop High-Tech profiling
- Ensure fairness in Automated Decisions
- Respect the Law
- Enhance Individual Control of PI
- Protect People from Inaccurate Data
Describe a concern for each of the three main privacy issues: customer profiling, group privacy, and data security.
Customer profiling: individuals have no way to contest the information that has been gathered about them.
Group privacy: could be used for ethically questionable marketing strategies (e.g. target racial group).
Data security: misuse of data by employees
Discuss what constitutes informed consent.
Individuals agree to the terms & conditions BEFORE their data can be used for research of commercial purposes.
List six questions that ethics professionals within an organization using big data can ask themselves.
- Do we know how the company uses Big Data and to what extent it is integrated into strategic planning?
- Do we send a privacy notice when we collect personal data? Is it written in a clear and accessible language which allows users to give a truly informed consent?
- Does my organisation assess the risks linked to Big Data?
- Does my organisation have any safeguard mechanisms in place to mitigate these risks?
- Do we make sure that the tools to manage these risks are effective and measure outcome?
- Do we conduct appropriate due diligence when sharing or acquiring data from third parties
List three main features characterizing artificial intelligence
- Learning - ability to acquire relevant/rules information
- Reasoning - ability to turn Learning into outcomes
- Iterative - Ability to adapt based on new information
List three immediate risks of artificial intelligence
- Ethics risk - uses might lead to ethical lapses
- Workforce risk - automation lead to deskilled workers
- Technology risk - black box algos can make it difficult to identify tampering
Discuss each of the following as they impact the ethical nature of applications of artificial intelligence in business: Accurate results
Companies need to ensure AI systems they use produce correct, precise, and reliable results.
Discuss each of the following as they impact the ethical nature of applications of artificial intelligence in business: Respect for privacy
AI is often coined as the death of privacy. European commission says that everyone has the right to protection of personal data, this led to GDPR.
Discuss each of the following as they impact the ethical nature of applications of artificial intelligence in business: Transparency and openness
Usually the code for algos are kept secret, being transparent is an important step. (improves trust)
List five measures organizations can take to minimize the risk of ethical lapses due to improper use of AI technologies.
- Design new and more detailed decision-making tools (ensure they do the right thing and are in line with company’s ethical values)
- Engage with third parties (if ethical values are same)
- Establish Ethics Research Unit.
- Introduce ‘ethics tests’ for AI machines
- Empower people through training
List potential questions addressing the use of AI in a code of ethics.
- What is the purpose of our job and what AI do we need to achieve it.
- Do we understand how these systems work?
- Are we in control of this technology?
Describe the primary purpose of the GDPR.
seeks to harmonize the protection of fundamental rights and freedoms of natural persons in respect of processing activities and to ensure the free flow of personal data between Member States
Describe the key changes in data protection regulation, including the meaning of
• Rights of the individual
Individuals have the right to access, amend, restrict, withdraw consent and request that their personal data be erased.
Describe the key changes in data protection regulation, including the meaning of
• Informed Consent
Requests for consent to be explicit (not implied) and written in clear and easy to understand language, and as easy to withdraw as to give.
Describe the key changes in data protection regulation, including the meaning of
• Notification
Mandatory breach notification period of 72 hours.
Describe the key changes in data protection regulation, including the meaning of
• Data portability
Customers can transfer personal data from one company to another.
Describe the key changes in data protection regulation, including the meaning of
• Supervision and enforcement
One stop shop approach; higher penalties (max 20meur or 4% of revenues)
Describe the key changes in data protection regulation, including the meaning of
• Liability
Data processors, in additional to the Data Controller, are directly liable
Distinguish between two types of threats of personal data breaches
External and Internal
Discuss ‘people risk.’
poorly trained individual with a desire or capacity to act against values.
List key questions around the role an ethical culture plays in preventing data breaches.
- Have we decided at Board level and throughout the organization what constitutes an appropriate attitude and approach in choosing how to respond to threats and breaches?
- Is our culture sufficiently built on our values such that each individual knows and understands why and how we approach confidentiality and privacy the way we do?
- Do we make our decisions and state outcomes with openness, transparency and honesty?
Describe how establishing the boundaries and standards can help foster an ethical culture and compliance with the GDPR.
It provides clarity on the company’s approach. What should people expect within the process and what can they do if they are not satisfied.
