Engineers and Lawyers in Privacy Protection

advertisement
“Engineers and Lawyers
in Privacy Protection”
Peter Swire
Professor, Moritz College of Law
Visiting Professor, Georgia Institute of Technology
IAPP Summit
Panel: “Re-engineering Privacy Law”
March 8, 2013
Overview
• How lawyers make simple things
complicated
• How engineers make simple things
complicated
• Why it is reasonable to use the term
“reasonable” in privacy rules
• How to achieve happiness when both
lawyers and engineers are in the room
HOW LAWYERS MAKE
SIMPLE THINGS
COMPLICATED
First Year Torts
• Law: did defendant show “reasonable
care”?
• Is defendant liable?
• What counts as an answer?
• Statute
• Custom
• Jury’s view of a “reasonable person” in the
community
Palsgraf Case
• Exam answer for the famous Palsgraf case
• Man climbs on a train pulling out of the
station
• Railroad conductor assists man
• Man drops package tucked under arm
• Oops, firecrackers
• Knocks over scales at other end of
platform
• Scales hit woman, causing injury
• Is the railroad liable?
Good Law Student Answer
• Exam answer for the famous Palsgraf case
• Man climbs on a train pulling out of the
station (man negligent, moving train)
• Railroad conductor assists man
(employee violates law)
• Man drops package tucked under arm
• Oops, firecrackers (foreseeable?)
• Knocks over scales at other end of
platform (proximate cause)
• Scales hit woman, causing injury
• Is the railroad liable? (Close call)
Slightly Exaggerated Engineer
Answer
• Exam answer for the famous Palsgraf case
• Man climbs on a train pulling out of the
station
• Railroad conductor assists man
• Man drops package tucked under arm
• Oops, firecrackers
• Knocks over scales at other end of
platform
• Scales hit woman, causing injury
• Is the railroad liable? (No)
What I Say to the Engineer (I)
• It’s the journey, not the destination
• I can’t give you credit unless you write it
down
• Show your reasoning
• Persuade me, don’t tell me the answer
What I Say to the Engineer (II)
•
•
•
•
•
•
•
•
Your job is on the line
You are the lawyer for the railroad
Will cost railroad $$$ if liable
You have to find every scenario or fact
where we may be able to make an
argument
Spot every issue
Delay if it helps our case – more discovery
Argue for the client, not the “right” answer
Did I say your job is on the line?
“Right Answer” & The Adversary
System
• “Beyond a reasonable doubt” for criminal
cases
• Defense lawyer just needs one gap in
prosecutor’s argument
• The jury decides, so lawyer can try many
arguments to make the weaker case appear
the stronger
• The defendant wins if prosecutor is only
probably correct
HOW ENGINEERS MAKE
SIMPLE THINGS
COMPLICATED
With Thanks to Stuart Shapiro
• Assignment: our company has to comply
with new privacy rule
• Lawyers:
• We will apply the Fair Information Privacy
Principles
• We know the rules: notice, choice,
access, security, accountability
• Engineers:
• How do you write that in C++?
From Legal Rule to Getting it Built
• Privacy principles (legal rules)
• General privacy requirements
• Contextual privacy requirements
• Business process
• System development
• Operations
• System
• Detailed system requirements
• System tests
Data Minimization Example
• FIPP: “data minimization”
• “Data minimization” is in Do Not Track for
how long keep data for a permitted use
• Security
• Anti-fraud
• Debugging
• Financial auditing
Data Minimization
• Lawyer: “data minimization”
• Shapiro as engineer:
• System requirements:
• 50 requirements
• 100 associated tests
• Input to our system is permitted only for
pre-determined data elements
• When query an external database, only
queries to the approved data fields
• Executable test – apply to test data and
confirm under various scenarios
Why it is reasonable to use the
term “reasonable” in privacy
rules
“Reasonable” HIPAA Measures
• Security: “reasonable and appropriate
security measures”
• Documentation: “reasonable and
appropriate polices and procedures”
• Minimum necessary: “reasonable efforts to
limit … to the minimum necessary”
• Domestic violence: “reasonable belief” and
can disclose
• Business associate: “reasonable steps to
cure the breach”
• And 30 more
The Lawyer & the Engineer
• Software engineer: how write in C++?
• Lawyer:
• The HIPAA rule lasts decade or more
• Hard to update and amend
• Technology neutrality
• Many use cases & business models
• FAQs and guidance over time
• If are more specific, then will be wrong, a
lot
• No better alternative to saying
“reasonable”
HOW TO ACHIEVE
HAPPINESS WHEN BOTH
LAWYERS AND ENGINEERS
ARE IN THE ROOM
HOW TO ACHIEVE HAPPINESS
WHEN BOTH LAWYERS AND
ENGINEERS ARE IN THE
ROOM
WHAT DO LAWYERS KNOW
ABOUT HOW TO ACHIEVE
HAPPINESS?
Lawyers and Engineers
• Similarities of lawyers & engineers
• Very analytic
• Can drill down and get very detailed
• (And each is glad when the other gets
to do those details)
Lawyers & Engineers
• Differences in output
• Engineers build things
• Systems that work and can be tested
• The right answer
• Testable
• It works if it runs
• Lawyers build arguments
• A lot of words: “brief”
• Adversary system
• It “works” if it meets the client’s goals
Conclusion
• In practice:
• Need a team
• To comply, need lawyers AND engineers
• Become aware of how create answers
that count for both
• An optimistic note
• In privacy, legal and engineering systems
come together
• Your own work improves if you become
bilingual
• A challenge and reward if you can work
together
Download