Law & ethics
Using & Disclosing Data
Clear guidance on when and how to use or disclose data safely
Who this is for
Data analysts, data stewards, researchers and others who want to use or share data; and the privacy, legal, risk and compliance teams responsible for compliance.
What is included
- Template: Data Governance Protocol
- Template: Data Use Protocol
- eBook: Untangling the APPs
- eBook: Untangling the IPPs and HPPs
- eBook: Big Data
How to use these resources
The value of Big Data cannot be realised without customer trust; and privacy rules about secondary use and disclosure must be complied with. Start with our eBook about Big Data for a framework to balance business objectives with legal and ethical concerns about Big Data.
Then follow the decision trees in the two ‘Untangling’ guides to understand your legal obligations when seeking to use or disclose personal information for new data projects.
Next, follow the instructions in the template Data Governance Protocol, for each major dataset held by your organisation. The objective of a Data Governance Protocol is to provide a structured approach to managing the various regulatory and operational demands on customers’ data, in a way that reflects your organisation’s day-to-day decision-making needs. The process of negotiating and documenting various matters in a Data Governance Protocol should assist both your organisation, and any partner organisations with which you share data, ensure compliance with your respective privacy obligations.
Finally, use the template Data Use Protocol to create clear assessment processes and approval pathways for all data use proposals and projects within your organisation. Privacy risks are contextual, so our template Data Use Protocol offers a risk management approach which flexes to the circumstances of each data use request. A set of clear risk indicators is used to channel data use requests into tiered approval pathways: ‘red flags’ suggest higher level risks or possible reasons not to proceed, while ‘amber flags’ suggest the need for caution, ethical consideration, and/or additional risk mitigation controls.
We have proposed Minimum, Enhanced and Comprehensive approval pathways, to reflect the degree of risk posed by different data use proposals, and offer clarity around who must be involved in the approval process, the criteria involved in granting approval, the conditions placed upon data access and use, and the degree of on-going oversight needed, for any particular data use proposal.
If you want further advice, you can add our Privacy Helpdesk service to your purchase; see more about that below.
Buy Now $1000 +GST
Keeping your resources up-to-date
Privacy compliance considerations are changing all the time. We update our resources whenever there is a change in the legislation, a fresh interpretation of the law, new regulatory guidance or a significant new policy which should be reflected in our materials. So you can buy a Compliance Kit with confidence that the resources included reflect the current state of play.
Then if things change in the future? You can update to the latest version of the same Kit at a quarter of the price. Past customers should contact us to receive their 75% discount code before purchasing a new version of their Kit.
Quick, expert privacy advice, when you need it.
Privacy Helpdesk is our informal advisory service, in which we can review your draft privacy-related documents, or provide ad-hoc advice on privacy questions as they arise. Choose from 3, 6 or 10 hours of advice time over a 6 month period.
Privacy Helpdesk hours can be added when you purchase a Compliance Kit.
3 hours Privacy Helpdesk $1,650
6 hours Privacy Helpdesk $3,000
10 hours Privacy Helpdesk $4,500
See our Terms of Service for more.