KA
Uploaded byKamal Acharya
PPTX, PDF860 views

Information Privacy and Data Mining

Information privacy and data mining The document discusses information privacy and data mining. It defines information privacy as an individual's ability to control how information about them is shared. It outlines the basic OECD principles for protecting information privacy, including collection limitation, purpose specification, use limitation, security safeguards, and accountability. It describes common uses of data mining like fraud prevention but also potential misuses that can violate privacy. The document also discusses the primary aims of data mining applications and five pitfalls like unintentional mistakes, intentional abuse, and mission creep.

Education
Related topics:
Kamal AcharyaData Mining Insights
In this document
Powered by AI

Introduces information privacy definitions, focusing on individual control over personal information.

Details the OECD principles for protecting information privacy, including data collection, quality, use limitations, and individual participation.

Explains data mining, its uses in various sectors, and potential misuses, including privacy violations during data analysis.Identifies five pitfalls of data mining related to personal information, such as mistaken identity and unintentional inferences.

Final slide reviews key concepts about information privacy, OECD principles, and data mining, with homework questions.

Embed presentation

Downloaded 17 times
Information privacy and data mining 7/2/2019 Compiled by: Kamal Acharya 1
7/2/2019 Compiled by: Kamal Acharya 2 Introduction • What is information privacy? A number of definitions: – Definition1: Information privacy is the individual’s ability to control the circulation of information relating to him/her. – Definition2: it is the claim of individuals, groups or institutions to determine for themselves when how and to what extent information about them is communicated to others.
7/2/2019 Compiled by: Kamal Acharya 3 Basic principles to protect information privacy • The OECD principles are given below: – Collection limitation – Data quality – Purpose specification – Use limitation – Security safeguards – Openness – Individual participation – Accountability – International application
7/2/2019 Compiled by: Kamal Acharya 4 Contd.. • Collection limitation: – Principle: There should be limits to the collection of personal data and any such data should be obtained by lawful and fair means and, where appropriate, with the knowledge or consent of the data subject. – Description: This principle deals with two issues. Firstly it limits the collection of personal data that puts an end to indiscriminate collection of personal data. Secondly, deals with practices used in data collection. The knowledge or consent of the data subject is essential although the principle accepts that consent of the data subject may not always be possible.
7/2/2019 Compiled by: Kamal Acharya 5 Contd.. • Data Quality: – Principle: Personal data should be relevant to the purposes for which they are to be used, and, to the extent necessary for those purposes, should be accurate, complete and kept up-to-date. – Description: This principle in essence states that data should be related to the purpose for which it is to be used. For example, data including opinions may not always be useful to collect since it may not be relevant for the purposes for which the data is to be used.
7/2/2019 Compiled by: Kamal Acharya 6 Contd.. • Purpose specification: – Principle: The purposes for which personal data are collected should be specified not later than at the time of data collection and the subsequent use limited to the fulfillment of those purposes or such others as are not incompatible with those purposes and as are specified on each occasion of change of purpose. – Description: The purpose of data collection should be identified before data collection and any changes afterwards must be specified. Also, when data no longer serves a purpose, it may be necessary to destroy the data if practicable.
7/2/2019 Compiled by: Kamal Acharya 7 Contd.. • Use limitation: – Principle: Personal data should not be disclosed, made available or otherwise used for purposes other than those specified in accordance with principle 3 except with the consent of the data subject or by the authority of law. – Description: the earlier principles were more dealing with data collection. This principle deals with data use and data disclosure. data
7/2/2019 Compiled by: Kamal Acharya 8 Contd.. • Security safeguards: – Principle: Personal data should be protected by reasonable security safeguards against such risks as loss or unauthorized access, destruction, use, modification or disclosure of data. – Description: To enforce the principle of use limitations, it is required that there be appropriate safeguards. The safeguards should include physical safeguards as well as safeguards for the computer systems.
7/2/2019 Compiled by: Kamal Acharya 9 Contd.. • Openness: – Principle: There should be a general policy of openness about developments, practices and policies with respect to personal data. Means should be readily available of establishing the existence and nature of personal data, and the main purposes of their use, as well as the identity and usual residence of the data controller.
7/2/2019 Compiled by: Kamal Acharya 10 Contd.. • Individual participation: An individual should have the right: – To obtain data from a data controller, or otherwise, confirmation or not, the data controller has data relating to him; – To have communicated to him, data relating to him • Within a reasonable time; • At a charge, if any, that is not excessive; • In a reasonable manner; and • In a form that is readily intelligible to him;
7/2/2019 Compiled by: Kamal Acharya 11 Contd.. • To be given reasons if a request made under first two scenarios is denied, and to be able to challenge such denial; and • To challenge data relating to him and, if the challenge is successful, to have the data erased, rectified, completed or amended. This is perhaps the most important principle. It involves the rights of the individuals to acquire information about the collection, storage and use of personal data. The right of access should be simple to exercise.
7/2/2019 Compiled by: Kamal Acharya 12 Contd.. • Accountability: – The data controller should be accountable for complying with measures which give effect to the principles stated above. – This principle requires that the data collector comply with the privacy protection principles. Accountability should be supported by legal sanctions and perhaps a code of conduct.
7/2/2019 Compiled by: Kamal Acharya 13 Uses and misuses of data mining • Data mining involves the extraction of implicit, previously unknown and potentially useful knowledge form large databases. • Data mining is a very challenging task since it involves building and using software that will manage, explore, summarize, model, analyze and interpret large datasets in order to identify patterns and abnormalities.
7/2/2019 Compiled by: Kamal Acharya 14 Contd.. • Uses: – Data mining techniques are being used increasingly in a wide variety of applications. – The applications include: • Fraud prevention • Catching tax avoidance • Catching drug smugglers • Reducing customer churn and learning more about customers behavior.
7/2/2019 Compiled by: Kamal Acharya 15 Contd.. • Misuses of data mining:
7/2/2019 Compiled by: Kamal Acharya 16 Primary aims of data mining • Some aims of data mining are: – The primary aim of data mining applications is to better understand the customer and improve customer services. – Some applications aim to discover anomalous patterns in order to help identify, for example, fraud , abuse, waste, terrorist suspects or drug smugglers.
7/2/2019 Compiled by: Kamal Acharya 17 Contd.. • In many applications in private enterprises, the primary aim is to improve the profitability of an enterprise. • In many applications the primary purpose is to improve human judgment, for example, in marketing diagnoses, in resolving crime, in sorting out manufacturing problems, in predicting share prices or currency movements or commodity prices.
7/2/2019 Compiled by: Kamal Acharya 18 Contd.. • In some government applications, one of the aims of data mining is to identify criminal activities. • In some situations, data mining is used to find patterns that are simply not possible without help of data mining, given the huge amounts of data that must be processed. Many data mining systems designed to achieve one or more of these aims do not lead to personal privacy violations, but some do. In particular, applications that aim to discover anomalous behavior can lead to significantly violations of individual privacy.
7/2/2019 Compiled by: Kamal Acharya 19 Pitfalls of data mining • Dempsey and Rosenzweig identify five pitfalls of data mining when personally identifiable information is used in data mining applications like identifying terrorist suspects. • These five categories are: – Unintentional Mistake-Mistaken identity – Unintentional Mistake- Faulty Inference – Intentional abuse – Security Breach – Mission Creep
7/2/2019 Compiled by: Kamal Acharya 20 Contd.. • Unintentional Mistake- Mistaken Identity: – This kind problem arises when an innocent person shares some identifier information with one or more persons that have been identified as having a profile of interest in a data mining application.
7/2/2019 Compiled by: Kamal Acharya 21 Contd.. • Unintentional Mistake- Faulty inference: – This kind of problem arises when profiles are matched and the data mining user misinterpret the result of the match. – Faulty inferences then may be derived resulting, for example, in an innocent person becoming a suspect and leading to further investigation about the person
7/2/2019 Compiled by: Kamal Acharya 22 Contd.. • Intentional abuse: – People employed in running a data mining system and security organizations have access to sensitive personal information and not all of them are trustworthy. – This sensitive information may be used for unauthorized purposes for personal financial gain.
7/2/2019 Compiled by: Kamal Acharya 23 Contd.. • Security Breach: – Given that data mining system using personal information have sensitive information may be stolen or carelessly disclosed without strict security measures.
7/2/2019 Compiled by: Kamal Acharya 24 Contd.. • Mission Creep: – Once a data mining system, for example for a national security application, has been established and personal information from a variety of source collected, there is likely to be a temptation to use the information for other applications. Such mission creep has been reported in data mining applications.
7/2/2019 Compiled by: Kamal Acharya 25 Homework • What is information privacy? • What are the basic OECD information privacy protection principles? • List two important uses of data mining? • List two important misuses of data mining? • What are the primary aims of data mining? • List the five pitfalls of data mining? • What is privacy preserving data mining?
Thank You ! Compiled by: Kamal Acharya 267/2/2019

More Related Content

PDF
BIM Data Mining Unit1 by Tekendra Nath Yogi
byTekendra Nath Yogi
 
PPTX
Introduction to Data Mining and Data Warehousing
byKamal Acharya
 
PPTX
Legal Privacy and Ethical Issues in Computer Security.pptx
byKRITARTHBANSAL1
 
PPTX
DATA WAREHOUSING
byKing Julian
 
PPTX
OLAP & DATA WAREHOUSE
byZalpa Rathod
 
PPTX
Introduction to Web Mining and Spatial Data Mining
byAarshDhokai
 
PDF
Big Data Visualization
byRaffael Marty
 
PPT
DATA WAREHOUSING AND DATA MINING
byLovely Professional University
 
BIM Data Mining Unit1 by Tekendra Nath Yogi
byTekendra Nath Yogi
 
Introduction to Data Mining and Data Warehousing
byKamal Acharya
 
Legal Privacy and Ethical Issues in Computer Security.pptx
byKRITARTHBANSAL1
 
DATA WAREHOUSING
byKing Julian
 
OLAP & DATA WAREHOUSE
byZalpa Rathod
 
Introduction to Web Mining and Spatial Data Mining
byAarshDhokai
 
Big Data Visualization
byRaffael Marty
 
DATA WAREHOUSING AND DATA MINING
byLovely Professional University
 

What's hot

PPTX
Big Data Analytics
byRohithND
 
PPT
Personal privacy and computer technologies
bysidra batool
 
PPTX
An introduction to Business intelligence
byHadi Fadlallah
 
PPT
Data Mining:Concepts and Techniques, Chapter 8. Classification: Basic Concepts
bySalah Amean
 
PPT
Data protection
byLewis Silkin
 
PPTX
Information Management unit: 2 System Analysis and Design
byGanesha Pandian
 
PPTX
Big Data - The 5 Vs Everyone Must Know
byBernard Marr
 
PPTX
Multidimensional schema of data warehouse
bykunjan shah
 
PPT
4.3 multimedia datamining
byKrish_ver2
 
PPTX
Unit 1 - ML - Introduction to Machine Learning.pptx
byjawad184956
 
PDF
Data mining & data warehousing (ppt)
byHarish Chand
 
PDF
Business Analytics and Optimization Introduction (part 2)
byRaul Chong
 
PPT
Web data mining
byInstitute of Technology Telkom
 
PPT
Data Mining: Concepts and Techniques (3rd ed.) - Chapter 3 preprocessing
bySalah Amean
 
PPTX
Dss vs expert system
byAnita Johri
 
PPTX
Dm from databases perspective u 1
bysakthyvel3
 
PPT
2. visualization in data mining
byAzad public school
 
PPTX
Data cube computation
byRashmi Sheikh
 
PPTX
Data warehouse architecture
byjanani thirupathi
 
PDF
Data Warehouses & Deployment By Ankita dubey
byAnkita Dubey
 
Big Data Analytics
byRohithND
 
Personal privacy and computer technologies
bysidra batool
 
An introduction to Business intelligence
byHadi Fadlallah
 
Data Mining:Concepts and Techniques, Chapter 8. Classification: Basic Concepts
bySalah Amean
 
Data protection
byLewis Silkin
 
Information Management unit: 2 System Analysis and Design
byGanesha Pandian
 
Big Data - The 5 Vs Everyone Must Know
byBernard Marr
 
Multidimensional schema of data warehouse
bykunjan shah
 
4.3 multimedia datamining
byKrish_ver2
 
Unit 1 - ML - Introduction to Machine Learning.pptx
byjawad184956
 
Data mining & data warehousing (ppt)
byHarish Chand
 
Business Analytics and Optimization Introduction (part 2)
byRaul Chong
 
Web data mining
byInstitute of Technology Telkom
 
Data Mining: Concepts and Techniques (3rd ed.) - Chapter 3 preprocessing
bySalah Amean
 
Dss vs expert system
byAnita Johri
 
Dm from databases perspective u 1
bysakthyvel3
 
2. visualization in data mining
byAzad public school
 
Data cube computation
byRashmi Sheikh
 
Data warehouse architecture
byjanani thirupathi
 
Data Warehouses & Deployment By Ankita dubey
byAnkita Dubey
 

Similar to Information Privacy and Data Mining

PPTX
Chapter 08 – Data Protection, Privacy and Freedom of Information - BIT IT5104
byUpekha Vandebona
 
PPT
A Practical Approach To Data Mining Presentation
bymillerca2
 
PPTX
Basic principles to information privacy in data mining & data warehouse
byPuja Dhakal
 
PPTX
Privacy Secrets Your Systems May Be Telling
bySecurity Innovation
 
PPT
Data Protection Act
bymrbennett2009
 
PPTX
unit-4-data privacy.pptxunit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
PPTX
unit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
PPTX
unit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
PDF
417_AI_Handbook_Class9-74-106 .pdf
bypescbse9it1
 
PPTX
IT-TRENDS-FINALTERM understanding the self.pptx
byPaulJohnMadrigal
 
PDF
Data Privacy: A runbook for engineers 1st Edition Nishant Bhajaria
bycaxajdoisehm
 
PDF
[AIIM18] GDPR: whose job is it now? - Paul Lanois
byAIIM International
 
PDF
Big Data Expo 2015 - Data Science Innovation Privacy Considerations
byBigDataExpo
 
PPTX
Data science and pending EU privacy laws - a storm on the horizon
byDavid Stephenson, Ph.D.
 
PPTX
week 7.pptx
byStephenGwadi
 
PPTX
Privacy Secrets Your Systems May Be Telling
byRebecca Leitch
 
PDF
NIST Privacy Engineering Working Group - Risk Model
byDavid Sweigert
 
PPT
Ecommerce Chap 10
byPimsat University
 
PPTX
SRU_RK_Lecturer1 about datamining cocepts
bycoolscools1231
 
PPTX
Incubeta Ignite: Am I a Bad Person?
byIncubeta NMPi
 
Chapter 08 – Data Protection, Privacy and Freedom of Information - BIT IT5104
byUpekha Vandebona
 
A Practical Approach To Data Mining Presentation
bymillerca2
 
Basic principles to information privacy in data mining & data warehouse
byPuja Dhakal
 
Privacy Secrets Your Systems May Be Telling
bySecurity Innovation
 
Data Protection Act
bymrbennett2009
 
unit-4-data privacy.pptxunit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
unit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
unit-4-data privacy.pptxunit-4-data privacy.pptx
byveyetas395
 
417_AI_Handbook_Class9-74-106 .pdf
bypescbse9it1
 
IT-TRENDS-FINALTERM understanding the self.pptx
byPaulJohnMadrigal
 
Data Privacy: A runbook for engineers 1st Edition Nishant Bhajaria
bycaxajdoisehm
 
[AIIM18] GDPR: whose job is it now? - Paul Lanois
byAIIM International
 
Big Data Expo 2015 - Data Science Innovation Privacy Considerations
byBigDataExpo
 
Data science and pending EU privacy laws - a storm on the horizon
byDavid Stephenson, Ph.D.
 
week 7.pptx
byStephenGwadi
 
Privacy Secrets Your Systems May Be Telling
byRebecca Leitch
 
NIST Privacy Engineering Working Group - Risk Model
byDavid Sweigert
 
Ecommerce Chap 10
byPimsat University
 
SRU_RK_Lecturer1 about datamining cocepts
bycoolscools1231
 
Incubeta Ignite: Am I a Bad Person?
byIncubeta NMPi
 

More from Kamal Acharya

PPTX
Web Mining
byKamal Acharya
 
PPTX
Cluster Analysis
byKamal Acharya
 
PPTX
Data Warehousing
byKamal Acharya
 
PPTX
Data Preprocessing
byKamal Acharya
 
PPTX
Search Engines
byKamal Acharya
 
PPTX
Introduction to Computer Security
byKamal Acharya
 
PPTX
Capacity Planning of Data Warehousing
byKamal Acharya
 
PPTX
Classification techniques in data mining
byKamal Acharya
 
PPTX
Association Analysis in Data Mining
byKamal Acharya
 
PPTX
Session and Cookies
byKamal Acharya
 
PPTX
Working with arrays in php
byKamal Acharya
 
PPTX
Programming the basic computer
byKamal Acharya
 
PPTX
Functions in Python
byKamal Acharya
 
PPTX
Computer Arithmetic
byKamal Acharya
 
PPTX
Making decision and repeating in PHP
byKamal Acharya
 
PPTX
Python Flow Control
byKamal Acharya
 
PPTX
Functions in php
byKamal Acharya
 
PPTX
Text and Numbers (Data Types)in PHP
byKamal Acharya
 
PPTX
Web forms in php
byKamal Acharya
 
PPTX
Introduction to PHP
byKamal Acharya
 
Web Mining
byKamal Acharya
 
Cluster Analysis
byKamal Acharya
 
Data Warehousing
byKamal Acharya
 
Data Preprocessing
byKamal Acharya
 
Search Engines
byKamal Acharya
 
Introduction to Computer Security
byKamal Acharya
 
Capacity Planning of Data Warehousing
byKamal Acharya
 
Classification techniques in data mining
byKamal Acharya
 
Association Analysis in Data Mining
byKamal Acharya
 
Session and Cookies
byKamal Acharya
 
Working with arrays in php
byKamal Acharya
 
Programming the basic computer
byKamal Acharya
 
Functions in Python
byKamal Acharya
 
Computer Arithmetic
byKamal Acharya
 
Making decision and repeating in PHP
byKamal Acharya
 
Python Flow Control
byKamal Acharya
 
Functions in php
byKamal Acharya
 
Text and Numbers (Data Types)in PHP
byKamal Acharya
 
Web forms in php
byKamal Acharya
 
Introduction to PHP
byKamal Acharya
 

Recently uploaded

PPTX
How to Manage Performance in Odoo 18 e-Commerce
byCeline George
 
PPTX
How to Plan & Organize Events in Odoo 18 Calendar
byCeline George
 
PDF
Quiz.exe (Coding Quiz) 2025- 09th October 2025, Quiz Club NITW
byQuiz Club NITW
 
PPTX
Health Care Agencies & Hospital .pptx.Slideshare
byPompi Begum
 
PDF
Introductions Introductions Introductions
byaidanattema
 
PPTX
Quotation description in Odoo 19 Website
byCeline George
 
PDF
Statement-by-UK-PhD-cohort-to-the-Ghana-High-Commission-and-the-media.docx1_.pdf
bynservice241
 
PPTX
How to Create Certifications in Odoo 18 Employees
byCeline George
 
PPTX
How to Setup Manual Milestone in Odoo 18 Project
byCeline George
 
PDF
Advanced Microbiology, Microbial Physiology and Biostatistics-Comprehensive H...
byinsighteduwithme
 
PPTX
TEACHING OF POETRY.pptx. The PPT helps and provides guidance on Lesson Planni...
byDr. Meeta Agrawal
 
PDF
Herniation Syndromes - Neuro Imaging Master Series
bySean M. Fox
 
PPTX
Morphology of Eukaryotic Chromosome Genetics.pptx
byLayba Saifi
 
PPTX
(2) Physiology (Cell Structure). pptx
byaryanhaniarshi
 
PPTX
Historical Background of Pharmacy .pptx
bySneha Gaurkar
 
PPTX
Correlation Analysis (Biostatistics)ppt.
byKajal Kashyap
 
PDF
Encoder and Decoder Circuits in Digital Electronics – Concepts, Design and Ap...
byGS Virdi
 
PPTX
Unit 8- Immunochemistry.pptx............
byAkanksha Kotangale
 
PPTX
MOOD DISORDER PPT 5TH SEMESTER 2025.pptx
byPoojaSen20
 
PPTX
PLAY-IMPORTANCE OF PLAY,FUNCTIONS OF PLAY AND TYPES
byBHUVANESHWARI BADIGER
 
How to Manage Performance in Odoo 18 e-Commerce
byCeline George
 
How to Plan & Organize Events in Odoo 18 Calendar
byCeline George
 
Quiz.exe (Coding Quiz) 2025- 09th October 2025, Quiz Club NITW
byQuiz Club NITW
 
Health Care Agencies & Hospital .pptx.Slideshare
byPompi Begum
 
Introductions Introductions Introductions
byaidanattema
 
Quotation description in Odoo 19 Website
byCeline George
 
Statement-by-UK-PhD-cohort-to-the-Ghana-High-Commission-and-the-media.docx1_.pdf
bynservice241
 
How to Create Certifications in Odoo 18 Employees
byCeline George
 
How to Setup Manual Milestone in Odoo 18 Project
byCeline George
 
Advanced Microbiology, Microbial Physiology and Biostatistics-Comprehensive H...
byinsighteduwithme
 
TEACHING OF POETRY.pptx. The PPT helps and provides guidance on Lesson Planni...
byDr. Meeta Agrawal
 
Herniation Syndromes - Neuro Imaging Master Series
bySean M. Fox
 
Morphology of Eukaryotic Chromosome Genetics.pptx
byLayba Saifi
 
(2) Physiology (Cell Structure). pptx
byaryanhaniarshi
 
Historical Background of Pharmacy .pptx
bySneha Gaurkar
 
Correlation Analysis (Biostatistics)ppt.
byKajal Kashyap
 
Encoder and Decoder Circuits in Digital Electronics – Concepts, Design and Ap...
byGS Virdi
 
Unit 8- Immunochemistry.pptx............
byAkanksha Kotangale
 
MOOD DISORDER PPT 5TH SEMESTER 2025.pptx
byPoojaSen20
 
PLAY-IMPORTANCE OF PLAY,FUNCTIONS OF PLAY AND TYPES
byBHUVANESHWARI BADIGER
 

Information Privacy and Data Mining

  • 1.
    Information privacy anddata mining 7/2/2019 Compiled by: Kamal Acharya 1
  • 2.
    7/2/2019 Compiled by:Kamal Acharya 2 Introduction • What is information privacy? A number of definitions: – Definition1: Information privacy is the individual’s ability to control the circulation of information relating to him/her. – Definition2: it is the claim of individuals, groups or institutions to determine for themselves when how and to what extent information about them is communicated to others.
  • 3.
    7/2/2019 Compiled by:Kamal Acharya 3 Basic principles to protect information privacy • The OECD principles are given below: – Collection limitation – Data quality – Purpose specification – Use limitation – Security safeguards – Openness – Individual participation – Accountability – International application
  • 4.
    7/2/2019 Compiled by:Kamal Acharya 4 Contd.. • Collection limitation: – Principle: There should be limits to the collection of personal data and any such data should be obtained by lawful and fair means and, where appropriate, with the knowledge or consent of the data subject. – Description: This principle deals with two issues. Firstly it limits the collection of personal data that puts an end to indiscriminate collection of personal data. Secondly, deals with practices used in data collection. The knowledge or consent of the data subject is essential although the principle accepts that consent of the data subject may not always be possible.
  • 5.
    7/2/2019 Compiled by:Kamal Acharya 5 Contd.. • Data Quality: – Principle: Personal data should be relevant to the purposes for which they are to be used, and, to the extent necessary for those purposes, should be accurate, complete and kept up-to-date. – Description: This principle in essence states that data should be related to the purpose for which it is to be used. For example, data including opinions may not always be useful to collect since it may not be relevant for the purposes for which the data is to be used.
  • 6.
    7/2/2019 Compiled by:Kamal Acharya 6 Contd.. • Purpose specification: – Principle: The purposes for which personal data are collected should be specified not later than at the time of data collection and the subsequent use limited to the fulfillment of those purposes or such others as are not incompatible with those purposes and as are specified on each occasion of change of purpose. – Description: The purpose of data collection should be identified before data collection and any changes afterwards must be specified. Also, when data no longer serves a purpose, it may be necessary to destroy the data if practicable.
  • 7.
    7/2/2019 Compiled by:Kamal Acharya 7 Contd.. • Use limitation: – Principle: Personal data should not be disclosed, made available or otherwise used for purposes other than those specified in accordance with principle 3 except with the consent of the data subject or by the authority of law. – Description: the earlier principles were more dealing with data collection. This principle deals with data use and data disclosure. data
  • 8.
    7/2/2019 Compiled by:Kamal Acharya 8 Contd.. • Security safeguards: – Principle: Personal data should be protected by reasonable security safeguards against such risks as loss or unauthorized access, destruction, use, modification or disclosure of data. – Description: To enforce the principle of use limitations, it is required that there be appropriate safeguards. The safeguards should include physical safeguards as well as safeguards for the computer systems.
  • 9.
    7/2/2019 Compiled by:Kamal Acharya 9 Contd.. • Openness: – Principle: There should be a general policy of openness about developments, practices and policies with respect to personal data. Means should be readily available of establishing the existence and nature of personal data, and the main purposes of their use, as well as the identity and usual residence of the data controller.
  • 10.
    7/2/2019 Compiled by:Kamal Acharya 10 Contd.. • Individual participation: An individual should have the right: – To obtain data from a data controller, or otherwise, confirmation or not, the data controller has data relating to him; – To have communicated to him, data relating to him • Within a reasonable time; • At a charge, if any, that is not excessive; • In a reasonable manner; and • In a form that is readily intelligible to him;
  • 11.
    7/2/2019 Compiled by:Kamal Acharya 11 Contd.. • To be given reasons if a request made under first two scenarios is denied, and to be able to challenge such denial; and • To challenge data relating to him and, if the challenge is successful, to have the data erased, rectified, completed or amended. This is perhaps the most important principle. It involves the rights of the individuals to acquire information about the collection, storage and use of personal data. The right of access should be simple to exercise.
  • 12.
    7/2/2019 Compiled by:Kamal Acharya 12 Contd.. • Accountability: – The data controller should be accountable for complying with measures which give effect to the principles stated above. – This principle requires that the data collector comply with the privacy protection principles. Accountability should be supported by legal sanctions and perhaps a code of conduct.
  • 13.
    7/2/2019 Compiled by:Kamal Acharya 13 Uses and misuses of data mining • Data mining involves the extraction of implicit, previously unknown and potentially useful knowledge form large databases. • Data mining is a very challenging task since it involves building and using software that will manage, explore, summarize, model, analyze and interpret large datasets in order to identify patterns and abnormalities.
  • 14.
    7/2/2019 Compiled by:Kamal Acharya 14 Contd.. • Uses: – Data mining techniques are being used increasingly in a wide variety of applications. – The applications include: • Fraud prevention • Catching tax avoidance • Catching drug smugglers • Reducing customer churn and learning more about customers behavior.
  • 15.
    7/2/2019 Compiled by:Kamal Acharya 15 Contd.. • Misuses of data mining:
  • 16.
    7/2/2019 Compiled by:Kamal Acharya 16 Primary aims of data mining • Some aims of data mining are: – The primary aim of data mining applications is to better understand the customer and improve customer services. – Some applications aim to discover anomalous patterns in order to help identify, for example, fraud , abuse, waste, terrorist suspects or drug smugglers.
  • 17.
    7/2/2019 Compiled by:Kamal Acharya 17 Contd.. • In many applications in private enterprises, the primary aim is to improve the profitability of an enterprise. • In many applications the primary purpose is to improve human judgment, for example, in marketing diagnoses, in resolving crime, in sorting out manufacturing problems, in predicting share prices or currency movements or commodity prices.
  • 18.
    7/2/2019 Compiled by:Kamal Acharya 18 Contd.. • In some government applications, one of the aims of data mining is to identify criminal activities. • In some situations, data mining is used to find patterns that are simply not possible without help of data mining, given the huge amounts of data that must be processed. Many data mining systems designed to achieve one or more of these aims do not lead to personal privacy violations, but some do. In particular, applications that aim to discover anomalous behavior can lead to significantly violations of individual privacy.
  • 19.
    7/2/2019 Compiled by:Kamal Acharya 19 Pitfalls of data mining • Dempsey and Rosenzweig identify five pitfalls of data mining when personally identifiable information is used in data mining applications like identifying terrorist suspects. • These five categories are: – Unintentional Mistake-Mistaken identity – Unintentional Mistake- Faulty Inference – Intentional abuse – Security Breach – Mission Creep
  • 20.
    7/2/2019 Compiled by:Kamal Acharya 20 Contd.. • Unintentional Mistake- Mistaken Identity: – This kind problem arises when an innocent person shares some identifier information with one or more persons that have been identified as having a profile of interest in a data mining application.
  • 21.
    7/2/2019 Compiled by:Kamal Acharya 21 Contd.. • Unintentional Mistake- Faulty inference: – This kind of problem arises when profiles are matched and the data mining user misinterpret the result of the match. – Faulty inferences then may be derived resulting, for example, in an innocent person becoming a suspect and leading to further investigation about the person
  • 22.
    7/2/2019 Compiled by:Kamal Acharya 22 Contd.. • Intentional abuse: – People employed in running a data mining system and security organizations have access to sensitive personal information and not all of them are trustworthy. – This sensitive information may be used for unauthorized purposes for personal financial gain.
  • 23.
    7/2/2019 Compiled by:Kamal Acharya 23 Contd.. • Security Breach: – Given that data mining system using personal information have sensitive information may be stolen or carelessly disclosed without strict security measures.
  • 24.
    7/2/2019 Compiled by:Kamal Acharya 24 Contd.. • Mission Creep: – Once a data mining system, for example for a national security application, has been established and personal information from a variety of source collected, there is likely to be a temptation to use the information for other applications. Such mission creep has been reported in data mining applications.
  • 25.
    7/2/2019 Compiled by:Kamal Acharya 25 Homework • What is information privacy? • What are the basic OECD information privacy protection principles? • List two important uses of data mining? • List two important misuses of data mining? • What are the primary aims of data mining? • List the five pitfalls of data mining? • What is privacy preserving data mining?
  • 26.
    Thank You ! Compiledby: Kamal Acharya 267/2/2019

Editor's Notes

  • #4 OECD => Organization for Economic Cooperation and Development