Data Sovereignty and Trusted Online Identity – COVID-19 Vaccination Data – WS 03 2021

From EuroDIG Wiki
Jump to navigation Jump to search

29 June 2021 | 12:15-13:15 CEST | Studio C
Consolidated programme 2021 overview / Day 1

To follow the current discussion on this topic, see the discussion tab on the upper left side of this page


Final title of the session: Please send the final title as early as possible, latest until to wiki@eurodig.org. Do not edit the title of the page at the wiki on your own. The link to your session may otherwise disappear.

Working title: Data Sovereignty and Trusted Online Identity
Proposals: #10 #21 #92

You are invited to become a member of the session Org Team! By joining an Org Team, you agree to your name and affiliation being published on the respective wiki page of the session for transparency. Please subscribe to the mailing list to join the Org Team and answer the email that will be sent to you requesting your subscription confirmation.

Session teaser

Online identities are the key for many digital services. From identifying with health or government services to managing a bank account or just participating in social media, from paying taxes to buying goods, end-users and consumers, identification is essential. But who should control those IDs and how can we minimize the personal data exchanged to a minimum that is needed for the services? The recent discussions about vaccination passports have highlighted that this discussion is at the center of the current debate. There are 3 approaches that we would like to discuss here:

Scenario 1: Private companies lead the effort. Private tech companies provide us with secure electronic identification including two factor security and biometric verification. However, this raises many privacy and data-sovereignty concerns. For example, the Swiss people recently voted against an eID-law that wanted to allow private companies to control the access to government services.

Scenario 2: Government leads the way with a centralized public key infrastructure (e.g., EU-eIDAS). EU-eIDAS regulation (as well as the Swiss ZertES law) have long ago established electronic identification based on a centralized public key infrastructure PKI that has reached very high adoption rates in some countries (e.g., Estonia) and low adoption rates in other countries (e.g., Germany).

Scenario 3: Hand some control to citizens (e.g., European Self Sovereign Identity Framework [ESSIF]). The EU-Commission has developed the European Self Sovereign Identity Framework ESSIF, that is handing some of the control back to the citizens and neither to centralized government service nor to private tech companies.

Session description

Until .

Always use your own words to describe the session. If you decide to quote the words of an external source, give them the due respect and acknowledgement by specifying the source.

Format

Until .

The session will have three discussants who will have 4-5 minutes each to speak, followed by a discussion of the topic among discussants and attendees. Discussants represent a variety of actors (European Institutions, Academia, Companies, Users) with crossover experience in many cases, in the hopes of creating a rich discussion that takes into account the different views and circumstances of each stakeholder.

Further reading

Ethically Aligned Design Ethically Aligned Design, First Edition is a comprehensive report that combines a conceptual framework addressing universal human values, data agency, and technical dependability with a set of principles to guide A/IS creators and users through a comprehensive set of recommendations.

The following chapter on Personal Data and Individual Agency would be of particular interest.

People

Until .

Please provide name and institution for all people you list here.

Focal Point Focal Points take over the responsibility and lead of the session organisation. They work in close cooperation with the respective Subject Matter Expert (SME) and the EuroDIG Secretariat and are kindly requested to follow EuroDIG’s session principles

  • Kristin Little
  • Miguel Pérez Subías

Organising Team (Org Team) List Org Team members here as they sign up.

Subject Matter Experts (SMEs)

  • Polina Malaja
  • Jörn Erbguth

The Org Team is a group of people shaping the session. Org Teams are open and every interested individual can become a member by subscribing to the mailing list.

  • Kristin Little
  • Vittorio Bertola
  • Concettina Cassa
  • Constance Weise
  • Amali De Silva-Mitchell
  • Miguel Pérez Subías
  • Lucien Castex

Key Participants

Key Participants are experts willing to provide their knowledge during a session – not necessarily on stage. Key Participants should contribute to the session planning process and keep statements short and punchy during the session. They will be selected and assigned by the Org Team, ensuring a stakeholder balanced dialogue also considering gender and geographical balance. Please provide short CV’s of the Key Participants involved in your session at the Wiki or link to another source.

Moderator

Clara Neppel - IEEE (Confirmed) Senior Director European Operations

Dr. Clara Neppel is responsible for the growth of IEEE’s operations and presence in Europe, focusing on the needs of industry, academia, and government. She serves as a point of contact for initiatives with regard to technology, engineering, and related public policy issues that help to implement IEEE’s continued global commitment to fostering technological innovation for the benefit of humanity. She contributes to issues regarding the technology policy of several international organizations, such as the OECD, European Commission, and Parliament or the Council of Europe. Dr. Neppel holds a Ph.D. in Computer Science from the Technical University of Munich and a Master in Intellectual Property Law and Management from the University of Strasbourg.

Cecilia Alvarez - Facebook (Confirmed) Facebook´s EMEA Privacy Policy Director

Cecilia served as Pfizer's European Privacy Officer Lead from 2015 to 2019. She was also Pfizer Spain Legal Lead for an interim period. She formerly worked 18 years in the Spanish law firm Uría Menéndez, leading the data protection, IT and ecommerce areas of practice as well as the LATAM Data Protection Working Group.

Cecilia is the Chairwoman of APEP (Spanish Privacy Professional Association), the Spanish member of CEDPO (Confederation of European Data Protection Organisations) and a member of the Leadership Counsel of The Sedona Conference (W-6).

Jaana Sinapuro - SITRA (confirmed) Project Director, IHAN

Jaana Sinipuro is an experienced ICT professional who works as Project Director responsible for the IHAN® – Human-driven data economy focus area and also sees to the final stages of the Digital Health HUB projects. The aim of Isaacus – the Digital Health HUB is to put Finland’s poorly managed and forgotten data reserves to better use to serve the needs of research, product development and leadership. The new IHAN® project expands the opportunities of data economy to develop a sector-neutral standard for consent-based exchange of information between various operators.

Jaana has more than 17 years’ experience in analytics, big data and business intelligence. If you have questions about the challenges business intelligence faces in the field of social welfare and healthcare, matters related to ICT or networks, give Jaana a call. The development of the dialogue between ICT professionals and substance specialists is the top priority for Jaana – she is happy to talk about this topic in both domestic and international events. She is an accountancy professional and has worked in consulting, sales and sales support in an international company in the software industry. She has condensed her professional expertise in enterprise architecture and business intelligence in her book Tiedolla johtaminen toimialan murroksessa (Business intelligence in a transforming industry), published in 2013.


Remote Moderator

Trained remote moderators will be assigned on the spot by the EuroDIG secretariat to each session.

Reporter

Reporters will be assigned by the EuroDIG secretariat in cooperation with the Geneva Internet Platform. The Reporter takes notes during the session and formulates 3 (max. 5) bullet points at the end of each session that:

  • are summarised on a slide and presented to the audience at the end of each session
  • relate to the particular session and to European Internet governance policy
  • are forward looking and propose goals and activities that can be initiated after EuroDIG (recommendations)
  • are in (rough) consensus with the audience

Current discussion, conference calls, schedules and minutes

See the discussion tab on the upper left side of this page. Please use this page to publish:

  • dates for virtual meetings or coordination calls
  • short summary of calls or email exchange

Please be as open and transparent as possible in order to allow others to get involved and contact you. Use the wiki not only as the place to publish results but also to summarize the discussion process.

Next meeting of the working group on Friday 23 April at 18:00 CEST Items we will be taking care of leading up to the meeting: -Confirm speakers -Confirm 100% online -Add information to wiki on our invited speakers as we find out who is confirmed.

Messages

A short summary of the session will be provided by the Reporter.

Video record

Will be provided here after the event.

Transcript

Will be provided here after the event.