Private

Personal privacy

The National Web Privacy Forum released a white paper and action handbook for achieving privacy in the age of analytics. The principles are adapted from these recommendations.

Collect only the data needed for the use case

Analytics must allow retention and downloading of the data in open formats

Implement data retention strategies with capacity to completely remove data

De-identification, pseudonymization, and removal of personally identifiable information (PII)

Support international privacy standards including the General Data Protection Regulation (GDPR)

Data security

People have the right to determine what is collected and have the peace of mind that it will be stored safely and only used for its intended purpose detailed through transparent data collection statements.

These are adapted from the Open Web Application Security Project.

Confidentiality

Only allow access to data for which the person or system is permitted

Integrity

Ensure data is not tampered or altered by unauthorized persons or systems

Availability

Ensure systems and data are available to authorized persons and systems when it is needed

Read the complete list of security principles.

Further reading

All people, regardless of origin, age, background, or views, possess a right to privacy and confidentiality in their library use. Libraries should advocate for, educate about, and protect people’s privacy, safeguarding all library use data, including personally identifiable information.

Design ethics concerns moral behavior and responsible choices in the practice of design. It guides how designers work with clients, colleagues, and the end users of products, how they conduct the design process, how they determine the features of products, and how they assess the ethical significance or moral worth of the products that result from the activity of designing.