The Dark Side of Data (Organizations)

In Viewpoints by Angela Daly23 Comments

Non-profits and philanthropy organizations need to embrace the digital age and start engaging more with digital and data in their activities. However, they must also be careful to avoid the ‘dark side’ of data and digitization, and ensure they uphold respect for the privacy and security of individuals’ data.

These threats are not merely theoretical. There are plenty of real-life examples that non-profits and philanthropists should be aware of. Below I highlight three aspects of the dark side of data for civil society organizations to consider and plan for.

The first aspect of the dark side is data breaches, situations in which data is accessed or disclosed in an unauthorized fashion. These breaches can happen for a number of reasons: as a result of external hacking, insider threats, or incompetent data handling. There have been a number of prominent data breaches with an international scope, including the notorious Ashley Madison hack. Many have involved non-profit organizations. For example, in 2016, what was described as ‘Australia’s largest security breach’ involved the NGO Australian Red Cross inadvertently publishing the personal data of 550,000 blood donors, including information about ‘at-risk sexual behavior’ to a public website.

The second ‘dark’ issue is that of data use and sharing. Organizations should make sure they are clear to individuals about why they are collecting their data and what they are using it for, at the time when that data is collected. In the UK, a recent controversy has concerned the relationship between Google’s DeepMind and the British public National Health Service Royal Free Foundation Trust. The Trust provided details of 1.6 million patients to Google’s DeepMind division for the early testing stages of an app which was designed to help doctors identify patients at risk of acute kidney injury. However, the patients were not properly informed that their data would be used in this way, and the UK Information Commissioner found that the deal breached the Data Protection Act. In both the UK and Australia, there is concern that charities are not handling donors’ personal information properly, including passing on personal details to other organizations without explicit permission.

Thirdly, non-profits need to be aware of government surveillance of their data – including in liberal democracies. Right now, a group of NGOs including the ACLU, Liberty and Amnesty International, have initiated proceedings against the UK and US governments in the European Court of Human Rights for conducting surveillance on Amnesty International’s activities, and for other illegitimate surveillance practices as revealed by whistleblower Edward Snowden in 2013. International charity Save the Children, which provided services to Australia’s offshore detention centre in the Pacific Island nation of Nauru, had its offices there raided in 2015 and computer equipment seized by police, in what appeared to be an attempt to identify a whistleblower in the organization leaking details about conditions in the detention centre to The Guardian.

To minimize the risk of the dark side of data, non-profits must exercise good data practices which comply with relevant laws and ethical requirements. Many countries have privacy and data protection laws which govern how organizations can collect and handle individuals’ data. There are also mandatory data breach notification laws in a growing number of countries, which occasionally, as in Australia, are intertwined with privacy and data protection laws. In some countries, non-profits can benefit from constitutional and human rights protections against surveillance to enable them to carry out their work free from illegitimate government interference.

An important legal development for civil society organizations around the world is the introduction of the EU’s new General Data Protection Regulation, whose provisions aim to represent global best practice standards in data protection and data security. The GDPR has an extra-territorial reach, so organizations handling EU citizens’ data, even if they are not based geographically within the EU, may technically be bound by its provisions.

In any event, for many privacy scholars and advocates, existing laws – including the GDPR – and their enforcement do not go far enough in securing data privacy and security. Legal compliance should not be the only objective of data organizations. Aside from legal penalties, organizations may suffer much more serious reputational damage if they mismanage the data they hold and collect. In addition, non-profits may be held by the public to higher standards – with respect to data governance as in other realms – than public or private for-profit organizations, because of the broad perception that non-profits should be more ethical in their activities and actions than other kinds of organizations.

This may well entail that non-profits in the process of becoming ‘data organizations’ will need to go beyond the minimum privacy and data security requirements to ensure they don’t stray into the dark side of the digital environment. One way they can start to do this is by partnering with privacy advocates and digital rights organizations to design exemplary legal and ethical data practices.

Dr. Angela Daly was a speaker at the Digital Impact World Tour event on July 29th, 2017 in Brisbane, Australia. You can follow her on Twitter.


  1. Hey there! Someone in my Myspace group shared this website with us
    so I came to give it a look. I’m definitely loving the information. I’m
    book-marking and will be tweeting this to my followers! Outstanding blog and outstanding design. 0mniartist asmr

  2. Attractive section of content. I just stumbled upon your
    site and in accession capital to assert that I acquire in fact enjoyed account your blog posts.
    Any way I will be subscribing to your augment or even I achievement you
    get entry to constantly quickly. 0mniartist asmr

  3. What a stuff of un-ambiguity and preserveness of valuable know-how on the topic of unpredicted feelings.
    asmr 0mniartist

  4. Wow, this article is nice, my younger sister is analyzing these things, so I am going to convey her.
    0mniartist asmr

  5. Good day! I just wish to give you a huge thumbs up for your great information you’ve got
    right here on this post. I will be coming back to your blog for more
    soon. 0mniartist asmr

  6. What’s up to every body, it’s my first visit of this webpage;
    this webpage consists of awesome and truly excellent stuff in favor of
    readers. asmr 0mniartist

  7. First of all I would like to say excellent blog!
    I had a quick question in which I’d like to ask if you don’t mind.

    I was curious to know how you center yourself and clear your mind before writing.
    I’ve had a tough time clearing my thoughts in getting my ideas
    out. I truly do enjoy writing but it just seems like the first 10 to 15
    minutes are usually wasted simply just trying to figure out
    how to begin. Any recommendations or tips? Many thanks!

  8. Heya i am for the primary time here. I came across this board
    and I in finding It really helpful & it helped me out a lot.
    I’m hoping to offer one thing again and help others such as you helped me.

  9. I do not know if it’s just me or if perhaps everyone else
    encountering issues with your website. It looks like some of the text on your
    posts are running off the screen. Can someone else please comment and
    let me know if this is happening to them as well?
    This could be a issue with my internet browser because I’ve had this
    happen previously. Appreciate it

  10. I’m truly enjoying the design and layout of your site. It’s a very easy on the eyes which makes it much more pleasant for me to come here and visit more often. Did you hire out a designer to create your theme? Exceptional work!

  11. Hello There. I discovered your blog the use of msn.
    This is an extremely neatly written article. I will make sure to bookmark it
    and return to learn extra of your useful info. Thanks for the post.
    I’ll certainly return.

  12. Thank you for sharing your thoughts. I really appreciate
    your efforts and I will be waiting for your next post thank you once again.

  13. Thanks for another excellent post. Where else could anyone get that
    kind of info in such a perfect way of writing? I’ve a presentation next week, and I am at the search for such information.

  14. Hi, I do believe this is a great blog. I stumbledupon it 😉 I may
    revisit yet again since i have saved as a favorite it.

    Money and freedom is the greatest way to change, may you
    be rich and continue to guide others.

  15. I just couldn’t go away your website prior to
    suggesting that I actually enjoyed the usual info a person supply to your visitors?
    Is gonna be back steadily to check up on new posts

  16. Hmm it looks like your website ate my first comment (it was extremely long) so I guess I’ll just sum it up what I wrote and say, I’m thoroughly enjoying your blog. I as well am an aspiring blog writer but I’m still new to everything. Do you have any tips for beginner blog writers? I’d certainly appreciate it.

  17. With havin so much content and articles do you ever run into any problems of plagorism or copyright infringement? My site has a lot of exclusive content I’ve either created myself or outsourced but it seems a lot of it is popping it up all over the web without my authorization. Do you know any solutions to help reduce content from being ripped off? I’d genuinely appreciate it.

Leave a Comment