Data Governance Notes – Class 12 Data Science (844)
Data Governance Notes for Class 12 DS (CBSE) covering Ethical Guidelines, Data Privacy, GDPR, HIPAA, CCPA, COPPA, and PDP with Easy-to-understand and pointwise insights.
What is Data Governance?
- Data governance is a collection of people, technologies, processes, and policies that help protect data and manage its efficient use.
- It ensures that the quality and security of data are maintained throughout its use.
- Data governance defines who can access or act on specific data and the methods they are allowed to use.
- Data governance focuses on maintaining:
- Data Integrity
- Data Availability
- Data Usability
- Data Consistency
Ethical Guidelines
- Ethics are the moral principles that govern the behavior and actions of an individual or a group.
- These moral principles help us distinguish between what is right and what is wrong.
- Software products and data are not always used for the benefit of society, so it is important to follow ethical guidelines while developing and using them.
- While dealing with data, the following ethical practices should be followed:
- Keep the data secure.
- Create machine learning models that are impartial and robust.
- Be as open and accountable as possible.
- Use technologies and data architecture that involve the minimum necessary intrusion.
Data Privacy
- Data privacy is the right of every individual to control how their personal information is collected and used.
- Data privacy is not limited to secure data storage; it also requires that personal data is collected with the user’s permission.
- Even if personal information is stored securely in an encrypted format, collecting it without the user’s consent is a violation of data privacy rules.
Important Data Privacy Legislations
GDPR (General Data Protection Regulation)
- GDPR is a data privacy law introduced by the European Union and became effective on 25 May 2018 to protect the personal data of EU consumers.
- It gives consumers greater control over their personal data and provides more transparency about how their data is collected and used.
- GDPR is based on the following principles:
- Obtaining Consent
- Timely breach notification
- Right to access data
- Right to be forgotten
- Privacy by design
HIPAA (Health Insurance Portability and Accountability Act)
- HIPAA is a law passed in the United States to protect healthcare information from fraud and theft.
- HIPAA gives individuals the right to view their data, request corrections, and report suspected privacy violations.
- HIPAA protects personal information such as:
- Names or parts of names.
- Phone numbers and email addresses.
- Geographical identifiers.
- Fingerprints and retinal prints.
- Social Security numbers.
- Medical records.
CCPA (California Consumer Privacy Act)
- CCPA is a data privacy law passed in California on 28 June 2018 and came into effect on 1 January 2020 to protect consumer data.
- It gives California residents the following rights:
- To know what personal information businesses have collected and how it will be used.
- To request businesses to delete their personal information.
- To request businesses not to sell their personal information.
COPPA (Children’s Online Privacy Protection Act)
- COPPA is a law that regulates how websites and online companies collect data from children below 13 years of age.
- It was passed in the United States in 1998 and came into effect on 21 April 2000.
- It specifies what should be included in a children’s privacy policy and when parental or guardian consent must be obtained.
PDP (Personal Data Protection Bill)
- The Personal Data Protection (PDP) Bill, 2019 was introduced in the Indian Parliament by the Ministry of Electronics and Information Technology on 11 December 2019.
- The Bill proposes mechanisms to protect personal data and establish a Data Protection Authority of India.
- As of March 2020, the Bill was under review by a Joint Parliamentary Committee (JPC) in consultation with experts and stakeholders.