free, specific, informed and unambiguous 'opt-in' consent
So that'll be a "By use of this service, you consent to..." line in the EULA small-print then.
Organisations "almost always" require individuals' "free, specific, informed and unambiguous 'opt-in' consent" in order to make use of personal data they have previously collected in Big Data projects that involve analysing or predicting the "personal preferences, behaviour and attitudes of individual customers", an EU privacy …
Still haven't stopped laughing. A watchdog with no teeth barking at a lorry driving past the gate.
At least I'm more cheerful than before reading the article. The only downer is we pay for these morons to waste time making up pointless reports that will never be relevant.
There's at least one fundamental flaw in these recommendations:
.....underlying "logic of the decision-making (algorithm) that led to the development of the profile".....
Is fine if the logic= Salary >50000 give loan.
However if you have an evolutionary (or density based, or almost any other form of intelligent mining post dating the 1980's) algorithm, then the algorithm itself is effectively changing based on the other data received. In order to tell you why you are considered not worthy of a loan I need to tell you all the personal details of all the other loan candidates with their credit history, locational information and everything else that factored into the decision because that's what makes the algorithm work. There's also quite possibly a randomness element which means that somebody else with the same history as you might actually be granted the loan, because the system is risking a bad loan to effectively test it's internal assumptions.
I don't blame the EU - It's just typical of lawyers/politicians/civil servants who assume that because it only takes a few seconds on a website, the underlying technology is as simple as their assumptions.
I agree that strong enforcement is critical. I like the the statements that "those firms would still require to insure that the information is kept confidential and secure", and "EU's Charter of Fundamental Rights indicates a hardening of attitude,". I also like the statement "Expect to spend time looking at your purposes and consents much more closely before you embark on your next big data project,", since I believe that the big data security crisis is just around the corner:
1. I think a big data security crisis is likely to occur very soon and few organizations have the ability to deal with it.
2. We have little knowledge about data loss or theft in big data environments.
3. I imagine it is happening today but has not been disclosed to the public.
What do you think?
Ulf Mattsson, CTO Protegrity