• 10th APB Forum, 2021

    Responsible Use and Effective Protection of Data during

    the COVID-19 Pandemic

  • ● The UK experience of data protection during the COVID-19 pandemic Watch

    Steve Wood (UK)

    Information Commissioner's Office

    Deputy Commissioner - Policy

    UK ICO

    Chair of the WPDGP

  • ● The Importance of `Smooth` Data Usage and the Protection of Privacy in the Age of AI, the IoT and Autonomous Robots

    Fumio Shimpo (Japan)

    Keio University

    The emerging technologies of AI and autonomous robots are forcing us to consider not only improvements in the development of their industrial use but also further urgent research into the ethical and legal issues. In the future, autonomous robots equipped with AI will become more widespread in our society and such robot acquisition of data may lead to data confidentiality issues which we are not able to solve just by focusing solely on AI-data acquisition issues. This presentation focuses on the possibilities of privacy violation and the issues which should be considered related to handling personal data and focuses on an introduction to the Japanese Personal Information Protection Act, the mutual adequacy findings between Japan and the EU, the Data Free-Flow with Trust (DFFT) initiative and future legal discussions about the increasing use of AI. Finally, I will point out the need to both clarify and streamline any related future regulations.

    ● Using Image Processing as Security Feature in Information Retrieval

    Mohd Afizi bin Mohd Shukran (Malaysia)

    Universiti Pertahanan Nasional Malaysia

    Until recently, IR was an area of interest restricted mainly to librarians and information experts. A single fact changed these perceptions—the introduction of the Web, which has become the largest repository of knowledge in human history. Due to its enormous size, finding useful information on the Web usually requires running a search. And searching on the Web is all about IR and its technologies. Thus, almost overnight, IR has gained a place with other technologies at the center of the stage.

  • ● Contact tracing apps for self-quarantine in South Korea: Rethinking datafication and dataveillance in the COVID-19 age

    Claire Seungeun Lee (USA)

    Professor, School of Criminology & Justice Studies, University of Massachusetts Lowell

    This study examines contact tracing mobile applications (hereafter, contact tracing apps) for those who were subject to self-quarantine through the lenses of dataveillance and datafication. Using an Internet ethnography approach, self-quarantined Korean individuals’ blog entries were analyzed. The research argues that the application functions as a datafication tool that collects the self-quarantined people’s information and performs dataveillance on the self-quarantined people. This research further offers insights for various agreements/disagreements at different actors (i.e. the self-quarantined, their families, contact tracers/government officials) in the process of contact tracing for COVID-19. This study also provides insights into the implications of information and technology as they affect datafication and dataveillance conducted on the public.

    ● Data Privacy in the Philippines & COVID-19 response

    Atty. Ivin Ronald D.M. Alzona (Philippines)

    National Privacy Commission

    The National Privacy Commission (NPC) has been an active participant in the COVID-19 response of the Philippines as the data privacy authority of the country. The Commission believes that the fundamental right to privacy must always be upheld amid the pandemic, and data protection must not be sacrificed.
    The discussion will present the initiatives of the Commission, such as but not limited to NPC Public Health Bulletins, FAQs, policies, in ensuring data privacy and protection during COVID-19 response.

    ● Accountable and Trusted Transborder Data Flows by Building Convergence

    Zee Kin Yeong (Singapore)

    Data Innovation and Protection Group of the Infocomm Media Development Authority of Singapore/Personal Data Protection Commission

    Singapore released a Model AI Governance Framework, a companion Implementation and Self-Assessment Guide for Organisations, and two volumes of Compendium of Use Cases to help industry implement trustworthy AI systems. As a logical next step, PDPC Singapore is developing a Minimum Viable Product (MVP) for AI governance testing. This MVP is a practical way forward to operationalise AI ethics principles, and it allows companies to be more transparent about their AI systems in order to build trust with their stakeholders.

    ● Introduction of Korea Internet & Security Agency (KISA)'s Global Personal Data Protection Regulatory Support Service

    Jiyun Kim (Korea)

    Deputy General Researcher, Korea Internet & Security Agency

    Introduce KISA's Global Personal Data Regulatory Support Services that provide beneficial information and analyses concerning global personal data protection-related issues, laws, and systems for helping Korean companies enter into overseas markets.

    ● Promoting comparability in personal data breach notification reporting

    Suguru Iwaya

    Policy Analyst, Science, Technology and Innovation Directorate at the OECD

    The OECD project on “Promoting Comparability in Personal Data Breach Notification Reporting” aims at improving the evidence base for security and privacy policy making through the comparable data collection by Privacy Enforcement Authorities (PEAs). The presentation will show some of the project’s findings about the trends of personal data breach notification regulations and data collection by PEAs in light of the trends of breaches during the COVID-19 pandemics.

    ● Does a Data Breach Harm Industry Peers? Evidence From the U.S. Retail Industry

    Jaeyoung Park (Korea)

    Graduate School of Information, Yonsei University

    This study demonstrates that a data breach that occurs due to an industry-wide problem is likely to decrease the shareholder value of industry peers. Additionally, it has been shown that the data breach risk contagion effect is stronger for industry peers that have visibly disclosed data breach risk in their 10-K report before the data breach.