How much data is enough data for your IoT application?
First, it is crucial to make the following distinction, when talking about privacy: There is a distinction between the condition of privacy and the right to privacy. When companies or states collect data about Smith, his condition of privacy changes. That is to say, he loses privacy to some degree.
However, that does not necessarily mean that the companies or states have violated Smith’s right to privacy. If Smith gave informed consent beforehand, his privacy right has not been violated. But his condition of privacy has still changed, since his privacy has been diminished. The Privacy Principle is only concerned with the right to privacy.
What does it mean to say that Smith has a right to privacy? It means, among other things, that he should be able to control whether Jones has access to data about him. But it also means that Smith has the right to control access to certain private ‘domains’ of his, even when no data about Smith is located within this domain. Such domains can both be digital or physical. Let’s look at two examples:
Imagine that Jones is a very good hacker. Without Smith’s permission, Jones gains access to Smith’s Google Drive. On the drive, Smith only stores – with his grandmother’s consent - a copy of the data from her SmartMeter, in order to see if her daily routines change. A change in routines can be a sign of developing dementia. Jones´s intention was to find unflattering pictures of Smith on the drive, in order to blackmail him.
According to the Privacy Principle, Jones has violated Smith’s right to privacy, and arguably also the grandmother´s (the grandmother owns the data), even though Smith does not own the drive, nor the data stored on it. This shows that Smith has certain privacy rights over domains that he does not own, even if none of his data is located in the domain. Therefore, the Principle of Data Ownership is not enough. We also need the Privacy Principle.
Let us consider another example. Jones wiretaps Smith’s phone, in order to learn compromising facts about Smith, which he will use to blackmail Smith. As it happens, Smith does not use his phone during the time in which Jones is wiretapping it.
According to the Privacy Principle, Jones has violated Smith’s right to privacy, even though Jones does not obtain any data about Smith. Again, this shows that the Principle of Data Ownership is not enough. We also need the Privacy Principle.
Having read the examples above, one might raise the following objection: The Privacy Principle is in fact not necessary, as long as the Principle of Data Ownership applies. That is, we can explain Jones’ wrongdoing in the examples above (and any other case normally described in terms of privacy) as attempts of violating Smith’s property rights over his data: Jones is wrongfully trying to get access to information about Smith without Smith’s consent, but fails.
Our reply to this objection is the following: Imagine that in example #1, Jones’ intention was to gain access to the grandmother’s data, not Smith’s. He might not even know that it was Smith’s drive, he was hacking. In that case, Jones would not have attempted to gain access to data about Smith, and yet Jones clearly seems to have wronged Smith. Jones’ wrongdoing seems best explained as a violation of Smiths’ right to privacy.
When Seluxit collects and processes data, we respect both the Data Ownership Principle, and the Privacy Principle: We only collect or process the data, which users have given us access to voluntarily and we do not collect data in users’ private domains without their consent. All data is anonymized, so that no individual user is identifiable, and users´ private domains are respected."You have a right to privacy over data about you, but you also have a right to control access to your private domains."
So what exactly is Seluxit doing about data ethics? Seluxit has taken the initiative to employ a PhD student in the field of philosophy with a specialization in ethics, and is writing a collection of principles of data ethics.
These principles have general application but stem from questions that arise in our daily work. The principles will serve to guide the decisions we make in our work. The principles, which can be browsed here on our website, are being published in a series.