Laws and Regulations
5.1. Laws and Regulations#
Learning Outcome
Students will be able to consider the local legislation, and identify the relevant laws, rules, and regulations pertaining to protection of personal data.
Sample Tasks
Describe the European General Data Protection Regulation (GDPR) and explain how this regulation affects data science projects.
Summarize Section 230 of the 1996 US Communication Decency Act and explain the consequences of how this act shields online publishers from liability of generated content.
Compare and contrast the GDPR with the California Privacy Act of 2018 and similar legislation.
We have two readings on the European General Data Protection Regulation (GDPR):
The overview What is GDPR, the EU’s new data protection law? from the Complete guide to GDPR compliance.
Wikipedia’s entry on General Data Protection Regulation.
Reading Questions
Under GDPR:
How long can a business save personally identifying information in an archive?
Can a business collect and process personal data in order to save someone’s life?
What is the right to erasure?
On the California Privacy Rights Act of 2020, our reading is an Executive Summary.
Reading Questions
Under the California Privacy Rights Act:
How long can a business save personally identifying information in an archive?
Do people have the right to stop businesses from using their race?
Do people have the right to erasure?
Section 230 of the Communications Decency Act summary and interpretation.
Reading Question
Under the CDA:
Can you host a website on which other people post lies, post threats, or try to defraud others without you getting in trouble?
Further Resources
General Data Protection Regulation (GDPR), an extended definition post.
How GDPR Affects Data Science, a 2017 blog post.
California Privacy Rights Act of 2020 Summary by Section