Privacy and human rights in an AI world

Issue 3 2022 Security Services & Risk Management

Technology is a force for positive change in our lives. But the more we depend on it, the more we generate data, a lot of data. That’s why data privacy has become such a critical issue. Increasingly, customers demand it, governments enforce it, and smart organisations build it into their strategies, processes and products.

But to find out just where we stand on data privacy, Cisco conducted its 2022 Data Privacy Benchmark Study. Based on an anonymous survey of 4900 security and IT professionals from 27 geographies, the report highlights some of the key trends and concerns that are emerging in the privacy space, including the impact of AI.

Among the key findings: A full 90% of respondents now see data privacy as a business imperative. Another 90% would not buy from an organisation that does not protect data. And these concerns remained consistent across regions and cultures.

“Over the past few years, we’ve seen privacy mature and expand,” said Robert Waitman, Cisco’s director of data privacy and an author of the report. “It’s now critical for businesses because customers are driving a lot of the imperative. We’ve seen budgets expand, along with the benefits of those investments.”

These changes also reflect a shift in awareness. Data privacy is viewed as a fundamental human right by the UN, many governments, and companies like Cisco. So, the growing business imperative is increasingly infused with a higher purpose.

“When I started in privacy almost 20 years ago, it was really a brand exercise,” said Harvey Jang, Cisco’s vice president and chief privacy officer. “You had marketing teams leading privacy. And then with GDPR (Europe’s General Data Protection Regulation), things shifted to the compliance side because companies feared getting fined 4% of revenue. Now, we’re seeing the pendulum swinging again, with privacy driven by business need and brand.”

Attitudes towards legislation also illustrate the mainstream embrace of data privacy. Fully 83% of respondents believe that data-privacy laws have a positive impact, with only 3% negative. “That’s an unbelievably strong endorsement of the many privacy laws that have been enacted around the world,” said Waitman.

However, he was quick to add that compliance with such laws, which exist in about two-thirds of countries around the world, are increasingly viewed as table stakes. “Customers are saying, ‘we expect that your company specifies a clear privacy policy that aligns with ours,’” Waitman continued. “Customers often demand that organisations set higher standards than those specified in regulatory requirements.”

Privacy in an era of emergent technologies

Despite progress in data privacy awareness, concerns persist. “People we surveyed don’t feel they can adequately protect their data,” said Waitman. “They feel like they do not understand, control, or manage what is happening with their data.”

Increasingly, that translates into a hesitance around new technologies. 46% of respondents do not understand what organisations are collecting and doing with their data, and this may limit their interest in new technologies like AI. “People are reticent to engage with new technologies,” Jang stressed.

Another 56% of respondents expressed concerns about how businesses are using AI today. “Respondents are concerned about how businesses may be using AI to make automated decisions that may materially impact their lives,” said Waitman.

As new technologies emerge, Cisco is considering its approach to data privacy in a way that ensures a continuous engagement with customers and their feedback. “The applications of AI are wide-ranging and increasingly important to our customers,” said Anurag Dhingra, Cisco vice president and CTO for Collaboration. “We need to be sure that we are building systems that are fair and equitable and serve Cisco’s mission to power a secure and inclusive future for all.”

In the technology industry, several companies are considering governance of AI in a way that is ethical and responsible. This has been in response to several technological and operational challenges, particularly around bias and diversity. “We need to ensure that explicit and implicit human biases do not become ingrained or amplified in AI systems that we are building,” Dhingra warned. “It’s a big challenge, but it’s all about fairness and privacy and security.”

“We’ve established six foundational principles to guide our decision making and development around AI,” Dhingra said. The guiding principles are transparency, fairness, accountability, privacy, security and reliability, all of which are relevant to AI’s impact on ethics and human rights.

“Our recommendation is that firms think hard about any use of AI where decision making may be somewhat hidden from the customer,” he concluded.

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Employee screening trends
iFacts Security Services & Risk Management
Criminal record checks still the most popular background check conducted around the world, but global employee screening trends are changing according to iFacts.

South African business readies for a journey to the cloud
Security Services & Risk Management
There is an increasing demand for cloud services in the country, driven by the need to use advanced technologies such as AI while also providing hybrid workers access to data, regardless of their location.

What to do in the face of growing ransomware attacks
Technews Publishing Cyber Security Security Services & Risk Management
Ransomware attacks are proliferating, with attackers becoming more sophisticated and aggressive, and often hitting the same victims more than once, in more than one way.

South Africa can accelerate its move to smart cities
Security Services & Risk Management
What global smart city leaders have in common is that they have built on, and developed existing infrastructure, transforming it iteratively; South Africa is well positioned to adopt this approach.

Where does SA logistics stand as far as cybersecurity is concerned?
Logistics (Industry) Security Services & Risk Management
Lesiba Sebola, director of information technology at Bidvest International Logistics, says it is paramount to safeguard IT infrastructure given how central it has become to operations.

The Deposita Protector 3000 d-s1
Deposita Security Services & Risk Management
The Protector 3000 d-s1, designed for medium-sized enterprises, improves the level of security at the business and helps optimise resources by streamlining cash-handling processes.

Top fraud trends to watch in 2023
News Security Services & Risk Management
Even though financial concerns remain a significant obstacle for companies in implementing new anti-fraud technologies, 60% of businesses expect an increase in their anti-fraud technology budgets in the next two years.

Be cautious when receiving deliveries at home
News Perimeter Security, Alarms & Intruder Detection Security Services & Risk Management
Community reports of residents being held up at their gate when collecting fast food deliveries at home are once again surfacing.

Sasol ensures Zero Trust for SAP financials with bioLock
Technews Publishing Editor's Choice Cyber Security Security Services & Risk Management
Multi-factor authentication, including biometrics, for SAP Financials from realtime North America prevents financial compliance avoidance for Sasol.

Protecting yourself from DDoS attacks
Cyber Security Security Services & Risk Management
A DDoS attack, when an attacker floods a server or network with Internet traffic to prevent users from accessing connected online services, can be costly in both earnings and reputation.