Discerning Data

Partnership for Public Service Releases White Paper on Using Artificial Intelligence to Transform Government

The Partnership for Public Service has issued a report that examines how artificial intelligence (AI) is being used by federal and state authorities in a variety of areas.

The research for the report, “The Future Has Begun: Using Artificial Intelligence to Transform Government,” was performed in collaboration with the IBM Center for The Business of Government and includes four case studies. The first case study involved using AI techniques originally created at the University of South Carolina to fight crime more effectively. The software was originally used to fight domestic terrorism by helping federal and state officials determine potential targets and make recommendations on randomizing patrol routes, security schedules for police officers, boat patrol routes, and assigning air marshals to flights. In a later application of the same software, the same system was given to wildlife rangers in Africa to assist in making decisions on which wildlife areas to patrol on any given day to protect both animals and plants. This was in response to presidential Executive Order 13648 issued in 2013 to have the Agriculture, Treasury and State Departments assist in combating wildlife crime.

Continue reading “Partnership for Public Service Releases White Paper on Using Artificial Intelligence to Transform Government”

Connected Cars in 2018 – Ready for the Fast Lane?

One of the most frequent predictions for significant growth in 2018 is the development of the connected car ecosystem. During the second half of 2017, there were workshops, proposed legislation and other guidance from the Department of Transportation and the National Highway Traffic Safety Administration (NHTSA).

In June 2017, the FTC and the NHTSA hosted a workshop in Washington, D.C. to discuss the enormous amounts of data collected and used in the connected car ecosystem. The workshop included representatives from consumer groups, industry, government and academia, and explored the benefits and challenges in this fast-growing market. After reviewing the materials submitted in connection with the workshop, the FTC released its Key Takeaways earlier this month.

In addition, the U.S. House of Representatives passed H.R. 3388, the SELF DRIVE (Safely Ensuring Lives Future Development and Research in Vehicle Evolution) Act to encourage testing, development and deployment of highly automated vehicles. Finally, the U.S. Department of Transportation and the NHTSA released new federal guidance for automated vehicles titled Automated Driving Systems 2.0: A Vision for Safety.

Continue reading “Connected Cars in 2018 – Ready for the Fast Lane?”

Recap of Our General Data Protection Regulation Webinar Series

In preparation for the General Data Protection Regulation (GDPR), set to take effect in the EU on May 25, 2018, we have hosted a series of webinars to help attendees navigate the changing data protection landscape. The GDPR is the EU’s most important change in data privacy regulation in 20 years, replacing the 1995 Data Protection Directive, and will affect any company that processes data pertaining to individuals in the EU. Please find more information on the presentations below:

Overview of Preparing for the General Data Protection Regulation (GDPR): A high-level plan for preparing for GDPR implementation.
Conducting a Data Inventory and Mapping: The process of conducting a data inventory and mapping.
Establishing a Data Protection Officer: The requirements and considerations concerning the appointment of a Data Protection Officer.
Conducting Data Protection Impact Assessments: The requirements and considerations for conducting a data protection impact assessment.
Determining Your Lead Data Protection Authority: Determining a lead data protection authority and options for companies whose existing structures do not allow them to take advantage of this mechanism.
Right to Data Portability: Determining the scope of the new data subject right to data portability, when it applies and what it means in practice.
Legal Bases for Processing: The provisions of legal bases for the processing of personal data.
Transparency: The provisions of the GDPR transparency requirement and its effects on data subject rights.
Automated Processing and Profiling: Understanding the automated processing and profiling rights of data subjects under the new GDPR.
Data Breach Notification: Circumstances in which notification is required and how to implement effective incident response plans.
International Data Transfers: The key requirements for international data transfers, including actual and potential changes to existing transfer mechanisms.

United States Is First Country to Join APEC Privacy Recognition for Processors Program

The United States recently became the first country to participate in the new Asia-Pacific Economic Cooperation (“APEC”) Privacy Recognition for Processors (“PRP”) program. Finalized in 2016 and designed to certify privacy compliance for personal information processors within the Asia-Pacific region, the PRP program offers a trustmark certification to processors that demonstrate their capacity to assist data controllers in complying with relevant privacy obligations. According to APEC, the PRP program was created so that (1) data controllers are able to identify qualified data processors to implement data controllers’ data processing obligations, (2) data processors are able to demonstrate their ability to provide effective implementation of a controller’s privacy requirements, and (3) small and medium-sized institutions are able to gain exposure and visibility into a global data processing network. Continue reading “United States Is First Country to Join APEC Privacy Recognition for Processors Program”

Singapore Addresses Confidentiality of Electronic Patient Records in New Healthcare Services Bill

Singapore’s Ministry of Health (MOH) recently drafted a new Healthcare Services (HCS) Bill aimed to bridge the gap between the country’s changing healthcare needs and technological advances. According to the MOH, the healthcare landscape in Singapore is undergoing significant changes, including an ageing population, increased chronic disease prevalence, and advancements in medicine and health technologies. The HCS Bill will “better safeguard the safety and well-being of patients, while enabling new and innovative services that benefit patients to be developed, in the changing healthcare environment.”

Currently, healthcare providers in Singapore are licensed and regulated under the Private Hospitals and Medical Clinics Act (PHMCA), which was designed to protect patient safety through the licensing of physical healthcare premises. But, brick and mortar locations are quickly becoming a thing of the past as more and more healthcare services are delivered through mobile and online channels. MOH intends to respond to this shift by repealing the PHMCA and replacing it with this new HCS Bill.

Continue reading “Singapore Addresses Confidentiality of Electronic Patient Records in New Healthcare Services Bill”

Battling Botnets – Evolving U.S. Government Policies and Frameworks to Address Security and Resiliency Challenges

The Secretaries of the Department of Commerce and the Department of Homeland Security, through the National Telecommunications and Information Administration (NTIA), in early January 2018 issued a draft report to further public discussion about enhancing the resilience of the Internet and communications ecosystem against botnets and other automated distributed threats. This report continues work initiated under Presidential Executive Order 13800, “Strengthening the Cyber Security of Federal Networks and Critical Infrastructure.” The report seeks additional public comment on known and evolving risks within and to the ecosystem and aims to forge consensus on what approaches warrant consideration for the government either to adopt or to encourage. Commenters are asked to evaluate a range of proposed goals and actions to achieve a more resilient ecosystem as well as to address the roles various stakeholders play in achieving and maintaining resiliency of the ecosystem nationally and globally. Comments are due on the draft report by February 12, 2018 and the final report is due the president by May 11, 2018.

Six principal themes emerged from the government’s analysis of prior comments on identifying and mitigating botnet and other cyber threats, namely that:

Automated distributed attacks are a global problem;
While effective tools exist, they are not widely used
Products should be secured during all stages of their life cycle.;
Improved education and awareness are necessary;
Current market incentives are misaligned; and
Automated distributed attacks are an ecosystem-wide challenge.

Continue reading “Battling Botnets – Evolving U.S. Government Policies and Frameworks to Address Security and Resiliency Challenges”