embedding a privacy and ethics by design approach into
play

Embedding a privacy and ethics by design approach into your digital - PowerPoint PPT Presentation

Embedding a privacy and ethics by design approach into your digital transformation journey Raminta ulskut - Data Protection Consultant Edward Williams - Head of Digital Transformation Structure Understanding Digital Transformation:


  1. Embedding a privacy and ethics by design approach into your digital transformation journey Raminta Šulskutė - Data Protection Consultant Edward Williams - Head of Digital Transformation

  2. Structure  Understanding Digital Transformation:  Definition  Examples  Considerations  Understanding Privacy and Ethics by Design:  Definition  Principles  Digital Journey  Privacy and Ethics by Design for Your Systems  Compliance Considerations Gemserv 2

  3. What Does the Digital Transformation Mean for Your Organisation? Digital Transformation is the process of exploiting Digital Transformation profoundly digital technologies and supporting capabilities to changes an organisation – how it create a new digital business model. It is change – a operates, its activities, processes, change that in reality will be different for every services and internal organisation and will not only effect technological competencies. capabilities but the culture of an organisation. The delivery of services becomes Digital Transformation is about fundamentally aligning centred on how the customer operations and technologies, often in new and innovative wants to interact with the ways, to deliver products and services focussed on the organisation. customer, either internal or external. Gemserv 3

  4. Digital Transformation Themes Embed Provide omni- Make services Put an iterative Design services Be collaborative channel access safe to use, and the customer at release cycle with data that between parties that is consistent ensure the the heart of the promoting reuse can be used to to improve across channels privacy of transformation, and ensuring objectively efficiency and and reflects personal at every stage systems are agile measure success transparency customer needs information and responsive … but we will focus on data and safety Privacy and ethics have a part to play in each of these… Gemserv 4

  5. Privacy and Ethics by Design Privacy by Design – GDPR Art 25 requirement Ethics by Design – ethical requirement aiming to implement principles – such as data aiming to integrate corporate and social values in the minimisation and purpose limitation – through design of technology whilst putting the user at the technological methods and processes. centre. Gemserv 5

  6. A Typical Digital Journey The customer experience Digital solutions are should be as consistent as vulnerable to a wide possible in terms of services array of cybersecurity provided, the look and feel, risks, and customers and the data presented. need to feel services are safe to use. A single view of the \\\ customer, held in a CRM Digital Identity – know your customer Accurate and high quality data must sit at the heart Sharing data between of digital services. systems A single view of the internal Digital design needs to \\\ customer, held in HR systems ensure that privacy controls are in place, and that they are correctly Protect personal data and be monitored and governed. transparent about how it is Using AI and collected and used. Machine Learning Gemserv 6

  7. Privacy and Ethics by Design in Your Systems Compliance requirements for the system Business requirements for a system  Which personal data the system will retain?  Will the de-identification of data be used?  What the system is intended for?  What are requirements for data retention?  How the system will be used?  Specific business needs and expected  Who will be accessing the data? achievements  Will other organisations be granted access to the system?  Requirements for data quality and system usage  Which data security measures will be put in place?  Is the data easy to extract from the system?  Are the achievements expected to match  Which policies and procedures need to be in corporate and social place/amended? values?  How the system providers will be onboarded and their commitment to contractual obligations? Gemserv 7

  8. What do You Need to Do to Stay Compliant?  Data mapping  Corporate values  Records of processing  Policies and  Processing risks procedures  Policies and procedures  Accountability  Accountability  Data Protection  Information to Impact Assessments customers  Algorithmic Impact  Data ownership Assessments  Customer preferences  PETs Gemserv 8

  9. Any Questions?

  10. Thank you for listening Raminta Šulskutė - Data Protection Consultant Edward Williams - Head of Digital Transformation

Recommend


More recommend