Title: Assessing the Privacy Risks of Synthetic Data and Other PETs
Principal Technology Adviser, Information Commissioner’s Office, UK
Abstract: Paul will discuss the recent ICO guidance on PETs, focusing on the data protection compliance benefits of using synthetic data and factors to consider when using synthetic data. The talk will also discuss the concept of anonymization in relation to synthetic data and synthetic data case studies we are developing as part of the ICO PETs guidance.
Title: Intersections and disjunctions between synthetic and anonymized data
Abstract: While synthetic data have the potential to address some privacy concerns associated with real data in many scenarios, ranging from health applications to machine learning, organizations must proceed carefully to ensure they don’t inadvertently violate GDPR or other data protection laws. The boundaries between personal and anonymized data are sometimes overlooked and this creates potential risks for individuals’ rights and freedoms. The talk will address the conditions set out in the EU in order to consider a set of data as properly anonymized, as well as the phases of synthetic data generation and use where personal data might still be processed, proposing some route for compliance.