The global race to collect and use more data, while fuelling the digital economy, is also challenging organisations’ current risk management frameworks. Today, data is both a risk in itself, and a cause of current business risks. To mitigate the ethical, regulatory and societal risks that accompany the collection, sharing, augmentation, and movement of data, organisations need to integrate their data governance with their risk management.
As organisations increasingly look for efficiency gains through the use of automation, the ethical risks of automating complex decision making that requires human judgment and oversight are coming into sharper focus.
Are your RR&D schedules up to date? Consumers are demanding increased transparency around how organisations collect, use and share their data and also how they dispose of it. Legislation around data management is changing and organisations need to ensure their data and asset retention, retrieval and disposal schedules are up-to-date, consistent and compliant with national and jurisdictional demands.
How much do you know about your organisation’s RR&D? With the exponential growth in data collection, use and sharing, organisations have unprecedented amounts of data. Leaders need to understand their organisation’s obligations on how long to retain data, whether the data can be recalled, and how and when it should be disposed by. Retaining data longer than is necessary is costly and inefficient.
While organisations understand the power of data, its ubiquitous collection and use comes with increased regulatory and legal constraints and changing customer expectations. In a 2020 survey, the Australia Information Privacy Commission noted that “Australians have strong views about being asked for information that doesn’t seem relevant or having information about the websites they visit recorded without their knowledge.”
Smart organisations need to abandon a “save all,” approach and embrace data minimisation principles and practices.
At the heart of TDI’s purpose is generation of content and collaboration on data ethics. Data ethics feel like an enigma that is associated with deep knowledge of how to wrestle artificial intelligence systems, however the foundations of data ethics reside with the corporate culture. TDI will be exploring how member organisations should be approaching data ethics, by referencing their corporate values and existing artifacts of corporate governance in our multi part Infographic series under the Data Ethics theme.
Could you comfortably explain to your customers how you use the data you collect about them? Do you know if you are using your data in alignment with your organisation’s ethical business practices?
Listen to Michelle Pinheiro, ANZ Head of Group Data Governance, discuss how organisations should be approaching the issue of ethical use of data. Michelle advises that data ethics ought to be an extension an organisation’s ethical code of conduct and values. Referencing the example of organisations repurposing individuals’ locational data for other purposes, Michelle discusses the importance of transparency, consent and the difference between primary and secondary use.
The world of marketing consent is evolving across the globe. Under our statutory Privacy requirements, Australia continues to operate under an Opt Out Consent model, which means that it is acceptable to market to a consumer, provided that you are transparent in providing them with the ability to unsubscribe. However, in other parts of the globe, the model in Opt In, which means that you must obtain explicit affirmative consent before you can directly market to them. How would your organisation be impacted if Australia changed from an Opt Out to an Opt In model?
Hidden gems are always discovered in the mix of discussion. CDAO A/NZ 2021 will feature engaging content through conversation. We’re throwing out the slide decks to enrich understanding, deepen the capacity to absorb and apply insights to your business context.