Shutterstock.com

Featured eBooks
Open Season Guide 2024
The Changing Transportation Landscape
Army Trends
Management

How Government Gets it Right on Privacy

We need to take additional steps to protect privacy and data security, while also allowing data to be used as a strategic asset.

Nick Hart and Jane Fountain

|
By Nick Hart and Jane Fountain

The American public rightfully expects government and businesses alike to be responsible stewards of information. Emerging trends to use more data for enhancing decisions face reasonable tensions with what is ethical, practical, and necessary in modern society. This is why data privacy now affects every household, family, business, and person in the country.

While the National Academy of Public Administration identified the need to ensure data security and individual privacy as a “Grand Challenge” facing public administrators, this is not a new issue. In fact, the dialogue about data protections and rights has been ongoing for half a century.

In the 1970s, the United States passed a major legal reform—the Privacy Act of 1974—to establish new expectations for how the federal government responsibly collected and managed information on behalf of the American public. But the reforms didn’t stop there. The Privacy Act was strengthened over time and other broad laws with privacy benefits were added with restrictions on what data can be collected, what data can be used and for what purpose, to require privacy impact assessments and to establish Chief Privacy Officers in agencies.

Then, in 2018, Congress quietly reauthorized and expanded the monumental Confidential Information Protection and Statistical Efficiency Act, one of the strongest privacy laws in the world. Built on unanimous recommendations from the U.S. Commission on Evidence-Based Policymaking, this bipartisan law guarantees that information collected by the U.S. government under a pledge of confidentiality is kept, well, confidential. Violations of this law are paired with major criminal and civil penalties.

Collectively, this body of federal privacy law embodies democratic principles for the Information Age and separates democracies from authoritarian systems, where privacy and confidentiality are not well-protected. As the race to advance artificial intelligence (AI) applications continues, as articulated in the National AI R&D Strategic Plan, the federal laws that ensure privacy will provide meaningful guardrails for our democracy.

Both the public and private sectors continue to struggle with managing information and ensuring that no more information than necessary is collected. Our entire society will need to take additional steps to protect privacy and data security, while also allowing data to be used as a strategic asset. In doing so, it is important to incorporate lessons learned from government’s experience to date:

  1. Establishing clear rules will help data managers apply ethical practices. A widely accepted and understood legal framework ensures that employees operate within a consistent system and that violations of expectations can be publicly acknowledged to hold organizations accountable.
  2. Allowing individuals to request data held about themselves promotes accountability. The Privacy Act, the European Union’s General Data Protection Regulation, and the California Consumer Protection Act all enable individuals to access the information collected about them—allowing concerned individuals to challenge the application of existing rules for data management and use. In some instances, this may even encourage organizations to improve practices for data minimization by choosing not to collect certain data elements.
  3. Setting expectations for limited data use supports ethical practice. When information is collected from the public, collectors should only allow data to be used for a specific purpose, articulated at the point of collection.  By more clearly explaining the potential benefits for individuals and society at the start, it will be easier to get public buy-in and trust.
  4. Applying cutting edge data protection approaches and strong enforcement can sustain public trust. Hallmarks of data protection should include removing personally identifiable information from data, limiting access to sensitive data from only secure centers, and exploring new technologies. With strong enforcement mechanisms establishing penalties for violations, data managers and users have real obligations to ensure intentional and inadvertent violations are avoided. 

Managers too often view privacy as a roadblock or a burden, applied to prevent using data. But when strong protections and responsible policies are in place, privacy is a meaningful benefit in addition to an expectation in democracies.

The U.S. Census Bureau is a great model of each of these four lessons. It has operated under a strong model for decades—protecting private information about the entire American population and simply disclosing aggregate information necessary for key insights about the economy and the country’s people. With the decennial count this year, these protections encourage full participation from the American public. With clear rules about data collection and privacy, the Census will be able to collect the information necessary to provide insights that help policymakers develop solutions to problems, enable our democracy to function, and encourage private firms to provide needed services.

Government is by no means perfect, but the existing bipartisan privacy laws offer critical lessons for how data can be both protected and utilized to benefit American society. 

Nick Hart, PhD, is the Chief Executive Officer of the Data Coalition and Jane Fountain, PhD, is Co-Founder and Director of the National Center for Digital Government at the University of Massachusetts-Amherst. Both are Fellows of the National Academy of Public Administration.

NEXT STORY: Labor Department Set to Streamline Procurement Services

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.