The ubiquity of smartphones, the intense development of apps that localise users, and the desire to harness these technologies to track and trace people infected by the Coronavirus, have together highlighted the urgent need to decide and explain how principles of privacy for citizens can be protected while addressing urgent challenges.
This article suggests that blockchain technology can be used to reconcile these apparently conflicting requirements.
23 May 2020
Blockchain Principles Launched To Preserve And Protect User Rights
COVID-19 has accelerated the development and use of emerging technology across industries. For blockchain technology to scale in its next phase, global alignment between the public and private sectors is needed.
To help individuals and companies build trust and preserve the fundamental values of blockchain technology, the World Economic Forum’s Global Blockchain Council developed the “Presidio Principles: Foundational Values for a Decentralized Future.” Co-designed at the World Economic Forum’s offices in the Presidio of San Francisco, sixteen principles aim to protect users and preserve the values of the technology so that all can benefit.
“The blockchain ecosystem needed a baseline for designing applications that preserve the rights of users,” said Sheila Warren, Head of Blockchain and Data Policy, World Economic Forum. “During our council meeting, we realized we could help curb many of the mistakes and missteps seen so far if we were able to provide developers, governments and executives with a ‘Bill of Rights’ style document.”
Rights are grouped into four broad pillars: Transparency & Accessibility – the right to information about the system; Privacy & Security – the right to data protection; Agency & Interoperability – the right for individuals to own and manage their data; and Accountability & Governance – the right for system users to understand available recourse.
The Presidio Principles
Applications built on top of blockchain-based systems should preserve the following participant rights.
A participant should have access to information that would enable them to:
- Understand how a service is operated, including potential risks of the service, availability of source code, and the rules and standards upon which it is based.
- Understand the potential risks and benefits of a service’s use of blockchain technology.
- Understand system performance expectations and where the responsibility for service delivery lies.
- Understand the rights and obligations of different participants in the system.
A participant should be able to:
- Create, manage, and independently store cryptographic keys.
- Manage consent of data stored in third-party systems.
- Port data between interoperable systems or parts of a system.
- Revoke consent for future data collection.
- Have access to information sufficient to facilitate system interoperability.
- Assess if their data is at risk through appropriate disclosure procedures, which may include, but are not limited to, an examination of audit results, certifications, or source code.
- Have their data protected in accordance with internationally recognized technical security standards.
- Limit data collection to that which is necessary and data use to the purpose for which it was provided.
- Verify – through third-party or self-created tools – that operations have been completed and confirmed in accordance with the system’s rules.
- Access information needed to: (a) understand the system’s governance and rules and (b) pursue effective recourse mechanisms.
- Opt-out of using applications that don’t treat data in accordance with internationally recognized governance and data protection standards.
- Rectify demonstrably false, inaccurate, or incomplete data when necessary.
The Principles include a menu of options for how organizations or individuals can take action. A list of signatories is available to view and self-regulate/hold others accountable.
The genesis for this idea came during the first meeting of the Forum’s Global Blockchain Council in 2019. The content was developed and workshopped in sessions around the world, including at the Annual Meeting in Davos 2020 with a variety of members of the blockchain community, government officials, civil society members and business leaders.
“Our Global Blockchain Council membership reflects varying ideological perspectives on what blockchain technology is appropriate for and where it is going, ranging from bitcoin maximalists to enterprise service providers,” Warren said. “This highly opinionated group came together and agreed that the blockchain community needed the foundational principles we are presenting today. Agreement from across Council members, despite their divergent perspectives, indicates the critical need for a values-based document like this in order to ensure that the technology remains true to its roots as the application layer starts to scale.”
The Forum is partnering with ecosystem leaders from Hyperledger and Ethereum, as well as the consulting and investor communities to issue specific “Guidance Documents” around how the principles can be implemented on a more tactical level. These will further help developers, governments, executives, corporate boards, international organizations and others implement the principles and take action now.
Additionally, Global Blockchain Council members will be partnering with individual organizations, associations and membership-based entities and investors for virtual sessions on how companies can meaningfully implement the Principles in their operations.