AI and Big Data: A Blueprint for a Human Rights, Social and Ethical Impact Assessment

Abstract The use of algorithms in modern data processing techniques, as well as data-intensive technological trends, suggests the adoption of a broader view of the data protection impact assessment. This will force data controllers to go beyond the traditional focus on data quality and security, and consider the impact of data processing on fundamental rights and collective social and ethical values. Building on studies of the collective dimension of data protection, this article sets out to embed this new perspective in an assessment model centred on human rights (Human Rights, Ethical and Social Impact Assessment-HRESIA). This self-assessment model intends to overcome the limitations of the existing assessment models, which are either too closely focused on data processing or have an extent and granularity that make them too complicated to evaluate the consequences of a given use of data. In terms of architecture, the HRESIA has two main elements: a self-assessment questionnaire and an ad hoc expert committee. As a blueprint, this contribution focuses mainly on the nature of the proposed model, its architecture and its challenges; a more detailed description of the model and the content of the questionnaire will be discussed in a future publication drawing on the ongoing research.

[1]  G. Loewenstein,et al.  Privacy and human behavior in the age of information , 2015, Science.

[2]  Raja Chatila,et al.  The IEEE Global Initiative for Ethical Considerations in Artificial Intelligence and Autonomous Systems [Standards] , 2017, IEEE Robotics Autom. Mag..

[3]  Stuart E. Schechter,et al.  Using Ethical-Response Surveys to Identify Sources of Disapproval and Concern with Facebook's Emotional Contagion Experiment and Other Controversial Studies , 2014 .

[4]  Aart Hendriks,et al.  Convention for the Protection of Human Rights and Dignity of the Human Being with Regard to the Application of Biology and Medicine: Convention on Human Rights and Biomedicine. , 2000, The Journal of medicine and philosophy.

[5]  Daniel J. Solove,et al.  Introduction: Privacy Self-Management and the Consent Dilemma , 2013 .

[6]  Omer Tene,et al.  Beyond the Common Rule: Ethical Structures for Data Research in Non-Academic Settings , 2015 .

[7]  F. Korthals Altes,et al.  A HUMAN RIGHTS BASED APPROACH TO DEVELOPMENT COOPERATION , 2003 .

[8]  Donald F. Norris,et al.  Regulating Privacy: Data Protection and Public Policy in Europe and the United States. By Colin J. Bennett. Ithaca: Cornell University Press, 1992. 263p. $39.95 cloth, $16.95 paper. , 1993, American Political Science Review.

[9]  Denis Regaud Commission Nationale de l'Informatique et des Libertés , 2016 .

[10]  Rossella Bottoni,et al.  Garante per la protezione dei dati personali. Relazione 2004 L'attuazione del Codice nel quadro della Costituzione per l'Europa, 9 febbraio 2005 (estratto) , 2005 .

[11]  L. Bygrave Data Protection Law, Approaching Its Rationale, Logic and Limits , 2002 .

[12]  Alessandro Acquisti,et al.  Misplaced Confidences , 2013, WEIS.

[13]  Jeffrey T. Hancock,et al.  Experimental evidence of massive-scale emotional contagion through social networks , 2014, Proceedings of the National Academy of Sciences.

[14]  Deirdre K. Mulligan,et al.  The Federal Trade Commission and Consumer Privacy in the Coming Decade , 2007 .

[15]  Viktor Mayer-Schönberger,et al.  Generational development of data protection in Europe , 1997 .

[16]  Peter Cullen,et al.  Artificial Intelligence, Ethics, and Enhanced Data Stewardship , 2019, IEEE Security & Privacy.

[17]  Records, Computers and the Rights of Citizens , 1973 .

[18]  Sven Ove Hansson,et al.  The case for ethical technology assessment (eTA) , 2006 .

[19]  Ryan Calo,et al.  Consumer Subject Review Boards: A Thought Experiment , 2013 .