HUBCorporate

BRUSSELS PRIVACY HUB

HomescreenAtomium

Brussels Privacy Symposium 

The Brussels Privacy Symposium, is a joint programme of Future of Privacy Forum and BPH that aims to address the following challenges regarding the de-identification of personal information taking into account its central role in current privacy policy, law, and practice. 

There are deep disagreements about the efficacy of de-identification to mitigate privacy risks.  Some critics argue that it is impossible to eliminate privacy harms from publicly released data using de-identification because other available data sets will allow attackers to identify individuals through linkage attacks. Defenders of de-identification counter that despite the theoretical and demonstrated ability to mount such attacks, the likelihood of re-identification for most data sets remains minimal. As a practical matter, they argue most data sets remain securely de-identified based on established techniques.

There is no agreement regarding the technical questions underlying the de-identification debate, nor is there consensus over how best to advance the discussion about the benefits and limits of de-identification.  The growing use of open data holds great promise for individuals and society, but also brings risk. And the need for sound principles governing data release has never been greater.

Academic workshop  - Identifiability: Policy and Practical Solutions for Anonymization and Pseudonymization. 

On 8 November 2016, the Brussels Privacy Symposium will be hosting an academic workshop on Identifiability: Policy and Practical Solutions for Anonymization and Pseudonymization. Selected authors from multiple disciplines including law, computer science, statistics, engineering, social science, ethics and business will present papers at this full-day programme. The final programme will be available shortly. More information.

Data protection in humanitarian action 

Since July 2014, the Brussels Privacy Hub and the International Committee of the Red Cross (ICRC) have been running a project exploring the relationship between data protection law and humanitarian action.

The work of organisations working in humanitarian emergencies such as armed conflicts, other situations of violence, situations of forced displacement within and across national borders, migration, natural disasters, and epidemics is essential for the protection of life, integrity, and dignity of the vulnerable persons involved. This work requires the collection and processing of a great deal of, often highly sensitive, personal data. To deal with humanitarian emergencies, it is in many cases necessary for personal data to flow between the concerned countries.

There is also increasing interest from both the humanitarian world, and the donors supporting it, in identifying innovative ways of providing better, and more efficient humanitarian assistance. This often involves exploring the possibilities offered by new technologies which in turn requires the identification of clear guidance in respect of data processing in humanitarian action. It is also crucial to ensure that data protection rules be interpreted so as not to impede essential humanitarian action.

Purpose of the project
By building bridges between stakeholders involved in international humanitarian action, the project seeks to:

  • Clarify the relationship between data protection laws and humanitarian action. 
  • Identify data protection concerns with use of new technologies in the humanitarian sector, and formulate appropriate guidance to address them. 

Topics to be covered

  • Data Analytics / Big Data
  • “Humanitarian” UAV/Drones
  • Biometrics
  • Mobile Cash Assistance
  • Cloud based data processing (including health data)
  • Internet of Things/Connected Devices
  • Basic concepts of data protection in humanitarian action
  • Legitimate basis for processing (informed consent, and alternatives)
  • Data sharing (transfers, and controller/processor relationship)
  • Bulk mobile text communication (SMS/ Messaging apps) including two way communication
  • Telemedicine
  • Staff monitoring

Stakeholders
The project seeks to bring together key experts in the area of data protection law, practitioners from humanitarian organisations, data protection authorities, and interested stakeholders from the private sector.  The project partners will engage with stakeholders through a series of closed-door workshops, under Chatham House rule, to allow open and frank discussions between experts, with a view to deepening understanding of practical and legal issues relevant to data processing in humanitarian action, as well as identifying solutions/recommendations/guidance. 

Project outputs
The project will: 

  • Draft a series of short papers on areas of interest for humanitarian action to provide guidance to the humanitarian sector; 
  • Compile the papers into a Handbook on Data Protection and Humanitarian Action.

​Useful References

VUB2016Wnegatief

dont-delete-me