1 / 14

Management of Personal Data

Management of Personal Data. Pat Tyrrell Vale Atlantic Associates. The Plethora of Personal Data . Government: ID Cards Health Records Tax Records Immigration records Car records Commercial World: Loyalty Cards Credit Card records. How is it managed? . Mostly legacy systems

pisces
Télécharger la présentation

Management of Personal Data

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Management of Personal Data Pat Tyrrell Vale Atlantic Associates AFCEA TechNet

  2. The Plethora of Personal Data • Government: • ID Cards • Health Records • Tax Records • Immigration records • Car records • Commercial World: • Loyalty Cards • Credit Card records AFCEA TechNet

  3. How is it managed? • Mostly legacy systems • Information Silos • Poor integration of Data across silos • Where data is integrated – considerable scope for information chaos. • Global issue AFCEA TechNet

  4. Databases..... Integrated database with users at a different level Extract, Transform and Load Separate databases with recognised, individual functions AFCEA TechNet

  5. Setting the Requirement.... • Looking for a “Date Centric” approach. “It’s the data, dummy!” • What do you want the data for? • Where is this necessary data stored? • How is its accuracy and relevance tracked? • Who has a need to access this data? • Do we need to have the data integrated? AFCEA TechNet

  6. Data Centric Systems Existing Sources •  Police  Government •  Local Govt. New Systems Imported Data Identified by “Gap Analysis”  Partners  Commercial  Shared Personnel Database Intelligence Cycle Other National and International Databases Mission Data Standards Large DatabasesMulti-formats Multi-level security Information Knowledge Data Handling Limitations Defines Data Requirement Intelligence • Analysts • Networks • Computing • Storage • Search Tools Intelligence Requirement Update Requirement Decision Maker

  7. Failure of Information Privacy • Police National Computer (before audit systems introduced): • Sale of sensitive data on car number plates to private companies. • Release of data relating to criminal investigations. • National Health Database (when available!): • Hacking to see if Leo Blair had MMR jab. • Discovering celebrity medical secrets. • House of Commons: • Data on MP’s expenses. AFCEA TechNet

  8. Who is Responsible? • Data Owner? • The Government? • Data System Designer? • The Public? • All of the Above? • It is a societal issue rather than a technical one! AFCEA TechNet

  9. Available Technology? • Technology can integrate data rapidly and accurately. • Recent advances in XML technology have shown ability to link heterogeneous datasets • Research, involving 6 major, disparate, complex data bases , such as that found within large police forces, allowed cross searching for in excess of 5 million complex records (~ 1.5 Tbytes in RDBMS) • Pressure on technology to deliver across the board. AFCEA TechNet

  10. Privacy Requirements • Strategic Policy agreed at international level • Public acceptability • What assurance levels are required? • Who can see what? • What is the “need to know”? • How do you police the system? • Authentication and authorisation of system users. • Reliable audit processes in real time. AFCEA TechNet

  11. Technical Solutions • Integration of data requires single representation of data. • Some users may have the right to see all of the data, others will have the right to see only partial sets of the data. • XML tagging may provide the flexibility of approach in providing adequate and enforceable privacy indicators. • Systems need to be accreditable. AFCEA TechNet

  12. AFCEA Role in International Identity Management • Provide the technological understanding of ID management: • What is feasible? • What new technologies are emerging? • What are the implications from a social perspective? • Provide “thought leadership” on what, where, how and when: • Privacy safeguards • Public acceptability • Work as a mentor and guide to policy makers. AFCEA TechNet

  13. Summary • Effective management of personal data leaves much to be desired • It is primarily a policy issue rather than a technical one • A strategy needs to evolve to ensure privacy means Private! • Traditional data systems are ineffective and innovative technologies need to be utilised. “If you always do what you’ve always done, You’ll always get what you’ve always got”! AFCEA TechNet

  14. Management of Personal Data PatrickJTyrrell@aol.com +44 7711 322541 AFCEA TechNet

More Related