This text has been written by Renata Radocz (MI), Adrian Quesada Rodriguez (MI), Ekaterina Kasyanova-Kühl (ECCP), and Cédric Crettaz (IoT Lab)
Recently, the AD4GD project took part in the Privacy Symposium 2024, a top conference aimed at addressing and advancing privacy and data protection in many spheres. The Symposium brought together experts, policymakers, and stakeholders to explore the latest trends, challenges, and solutions in privacy and data security. AD4GD made significant contributions in two key sessions: “Making Data Spaces Regulatory Compliant” and “Privacy in Earth Observation“.
Making Data Spaces Regulatory Compliant
The session “Making Data Spaces Regulatory Compliant” focused on the privacy and data protection implications within Common European Data Spaces. AD4GD presented insights on enhancing the regulatory compliance of data spaces, particularly the Green Deal Data Space (GDDS). Although privacy and data protection concerns for GDDS might not be immediately obvious, understanding and considering the evolving capabilities of EO satellites (and associated AI-enhanced data processing solutions) is crucial for ensuring compliance with regulations like the GDPR.
For instance, Earth Observation (EO) tools used to collect environmental data may inadvertently capture personal data due to advancements in EO technologies, which now allow high-resolution imaging. This creates a need for strategies that protect individual privacy while leveraging the full potential of EO technologies. It’s essential to clearly identify and monitor datasets to ensure compliance is an ongoing process, not a one-time task. AD4GD partners, including Mandat International, ECCP, and IoT Lab, shared their insights on this topic. They highlighted the importance of developing robust privacy measures as EO technologies evolve and become more capable of capturing detailed data.
Key takeaways from this session included the need for continuous monitoring of data collection processes and the implementation of privacy-preserving techniques in EO applications. The discussion emphasised that as EO technologies advance, the potential for collecting personal data increases, necessitating stringent privacy measures to protect individuals’ data.
Privacy in Earth Observation
IoT Lab has presented the different best practices and Privacy Enhancing Technologies (PETs) which can be applied to data collected and used in the context of Earth Observation. The EO broadness and the heterogeneity of EO data, coupled to the other sources of data, such as IoT data and socio-economic data, increase the possible problems associated with privacy. To reduce the risks, AD4GD has applied the FAIR principles and limited the access to data to authenticated and authorised users. DevOps tools such as GitLab and Docker permit the fast deployment and testing of the building blocks elaborated in the AD4GD project, including the aspects linked to the security and the privacy. For instance, encryption is enforced between the building blocks. Furthermore, the mandatory definition of data owners and licences allows the restriction of data access through tokens exchanged between the AD4GD building blocks. Other potential PETs could be added in the development phase during the project.
This session generated high interest amongst its attendees, particularly due to its connections with the session on dataspaces while focusing on the technical capabilities of commercially available EO solutions. Due to the elements raised, it was agreed that the topic warrants additional consideration and alignment with multiple stakeholders, and in this context it is planned to involve international space-related organisations, bodies and authorities in upcoming instances of the symposium.
Conclusion
The Privacy Symposium 2024 gave AD4GD a great stage on which to present its work and insights on privacy in Earth Observation and regulatory compliance in data environments. As technology develops, the sessions underlined the need of ongoing compliance initiatives and the need of creative privacy solutions. AD4GD is still dedicated to furthering privacy and data protection in these important spheres so that technological developments respect individual privacy and line up with legal criteria.
It gives us great pleasure to keep attending the Privacy Symposium and to be back next year. The 2025 conference looks to be even more of a chance to exchange knowledge, work with professionals, and investigate innovative ideas in privacy and data security. To further the conversation and forward the agenda of safeguarding privacy in the digital age, we invite all interested parties, partners, and stakeholders to join us at the Privacy Symposium on 12-16 May 2025. As we keep helping to participate in these important dialogues, stay tuned for more updates and analysis from AD4GD.