LAST-JD Workshop on Law, Technology and Society at Tilburg University, Nov.2013
Privacy and Social Networks Antoni Roig
Institute of Law and Technology Universitat Autònoma de Barcelona http://idt.uab.es Nov., 6th-7th 2013
Privacy and Social Networks • 1. Social Networks as a “Law, Technology and Society” shared field • Risk of Engineers interpreting Law • Data Protection compliance as Risk Management with Legal Ontologies • Legal fulfilment as behavioural monitoring: average = legal • PIAs • Everyone can be a data processor
Privacy and Social Networks • 2. Legal approach to Privacy and SN • Data Protection: access, purpose, quality of data • Privacy by default • PET/PbD Principle (Cavoukian -Proportionality Principle second test): • PrimeLife EU Project: monitor the use of the data/ multiple contexts/sticky policies • Minors access to SN • Right to be forgotten/to oblivion • PIAs
Privacy and Social Networks • 2. Technology • Traditional PETs: cryptography, anonymizers and access and identity management • Transparency and context: Project ICT-2007-216483 PrimeLife on Privacy and Identity Management • PET for Data Mining (Privacy preserving Social Network Analysis (SNA) • Data Portability • Graph statistical monitoring
• New Concept of Privacy: • Collaborative Privacy • Differential Privacy/k Anonymous
Privacy and Social Networks • 3. Society • PET are the use of Technology to regulate • Two problems: A. Efficiency B. Average • A. How can we be sure that a PET really works? • A need for a Privacy/PET Measurement
• B. Average • Protection of the average citizen not the one that disclosures more than the average
Privacy and Social Networks • Conclusions • Data Protection Regulations are not enough • Technology can help to protect Privacy • General Awareness is also needed because no technology can statistically protect those people that disclosure more than on average
6
Privacy and Social Networks
• Thank you • Antoni Roig • Institute of Law and Technology (IDT-UAB) • http://idt.uab.es