Mag Dipl Ing Dr Michael Sonntag Privacy and

Content Motivation l Federalism and One-Stop-Portals l Official help between administrative branches l Data

Motivation Public administration should be model of excellence l Changing status of portals Information

Federalism and One-Stop-Portals (1) l Federalism = » Loose definition; only used here èDifferent

Federalism and One-Stop-Portals (2) l Different roles: Controller Processor èPortal operator - own proceedings:

Official help between administrative branches l Usually no threat for privacy èFormal procedure èIn

Data exchange between authorities (1) l If exchange is allowed, how will it be

Data exchange between authorities (2) l Probably best solution: XML-based language èShould be a

Automated decisions (1) l Simple procedure & everything available online » (El. Signed or

Conclusions l Integrated one-stop portals are VERY helpful èThey pose legal problems: Privacy èComplicated

? Mag. Dipl. -Ing. Dr. Michael Sonntag ? Questions? ? ? Thank you for

Slides: 11

Download presentation

Mag. Dipl. -Ing. Dr. Michael Sonntag Privacy (and other) issues of e-Government in one-stop portals Wroclaw Summer School on a Legal Framework for Information Society Wroclaw, 19. 9. -21. 9. 2002 E-Mail: sonntag@fim. uni-linz. ac. at WWW: http: //www. fim. uni-linz. ac. at/staff/sonntag. htm Copyright, 2002 © Michael Sonntag

Content Motivation l Federalism and One-Stop-Portals l Official help between administrative branches l Data exchange between authorities l Automated decisions l Conclusions l Michael Sonntag Privacy issues of e-Government 2

Motivation Public administration should be model of excellence l Changing status of portals Information Few personal data Transactions Lots of personal data l Largest advantage AND largest risks by integrating data from many sources l èDifferent ministries, health data, tax information, … l Reason for interest: e. GOV project Michael Sonntag Privacy issues of e-Government 3

Federalism and One-Stop-Portals (1) l Federalism = » Loose definition; only used here èDifferent entities » Federal / state / municipal / autonomous level èDifferent rules of procedure (possibly) èNo super-/subordination AND no common supervisor l One-stop portal = èSimple for citizens: Fully integrated / details hidden èCentralized: management / administration / backup / … èData from many entities used (also for parts of others!) Michael Sonntag Privacy issues of e-Government 4

Federalism and One-Stop-Portals (2) l Different roles: Controller Processor èPortal operator - own proceedings: No problem èPortal operator - proceedings of other entities » Serves as a processor - Contract on each process required » Data access: How, when, for what? l Example: Filling in forms with external data èUser asks for own data and transmits it to another entity èPortal is here processor for the user l DIFFERENT: Portal uses data to decide what to present the user (personalization)! Michael Sonntag Privacy issues of e-Government 5

Official help between administrative branches l Usually no threat for privacy èFormal procedure èIn writing: Each instance leaves traces behind èIndividual reason needed » „Official“ ones: Needed for decision or other „content“ èChecking, whether this information may be passed on l One-stop portals: èNo formal procedure: Done automatically èOnly general reason: „In such cases it‘s allowed“ » Typical case only; individual circumstance NOT verified! èUsed for other („non-official“) reasons too: » Personalization, advice, filling in forms, . . . Michael Sonntag Privacy issues of e-Government 6

Data exchange between authorities (1) l If exchange is allowed, how will it be done? èVerification: Who requests, which data, for what? » Definition required which data may be sent for which reasons, who might send requests with certain reasons èSending: Data must be masked » » Only the authorized data may be sent, not the whole file/record Therefore huge number of different data sets Identification of data set per transaction, not unique Encryption, partner server identification, … èStorage: Bound to single purpose » May be stored/used only for the purpose it was acquired for » Problem: Personalization requires relating it to other data Michael Sonntag Privacy issues of e-Government 7

Data exchange between authorities (2) l Probably best solution: XML-based language èShould be a large solution: Not confined to small area l Organizational issues also important èHow to place requests èIdentification of users / Logging l Processes must be adapted èInterfaces in electronic record handling systems èRetirement of old / definition of new requests / responses èPerson responsible for privacy èUser education Michael Sonntag Privacy issues of e-Government 8

Automated decisions (1) l Simple procedure & everything available online » (El. Signed or from secure sources) documents, databases, … èAutomated decisions are possible » Examples: Dog tax, prolongations, etc. » Example: Register of residency (see e. g. Swiss project) l Problems: èIdentification of the citizen: Easy in portal! èGathering of evidence needed: Which sources? èPayment should be anonymous èOfficial decisions/notifications possible without any human intervention? èState/Local/… proceedings done by a federal system Michael Sonntag Privacy issues of e-Government 9

Conclusions l Integrated one-stop portals are VERY helpful èThey pose legal problems: Privacy èComplicated and difficult to explain èUse implied consent where possible l Data exchange between authorities necessary in such portals to bring advantages èPrinciple of minimalism èMany (legally) different roles of the operator l Automated decisions usually possible èOnly for severely restricted areas èSource data and resulting data: Special care needed! Michael Sonntag Privacy issues of e-Government 11

? Mag. Dipl. -Ing. Dr. Michael Sonntag ? Questions? ? ? Thank you for your attention! ? E-Mail: sonntag@fim. uni-linz. ac. at WWW: http: //www. fim. uni-linz. ac. at/staff/sonntag. htm Copyright, 2002 © Michael Sonntag ?