5. Leveraging Technologies
Integration of Core Sub-
Systems of City Services
Deeper Analysis to provide Real Time Data
In Simple Terms…
• Connecting citizens with city
services
• Structuring dialog between
Government and Citizens
• Employment Opportunities
• Social & Economic Development
• Quality of Life
CitizensCitizens
15. Applicable Laws and Regulations
• Information Technology Act, 2000
• Information Technology (Reasonable security practices and procedures and sensitive
personal data or information) Rules, 2011 – applicable to Private Sectors
• Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits and Services)
Act, 2016
• National Telecom Policy 2012
• National Data Sharing and Accessibility Policy 2012
• National Cyber Security Policy 2013
• IoT Policy (Draft)
16. Privacy Practices
16
Taxanomy IT Act 2000 Aadhar Act 2016 GDPR
Information collection
Surveillance
Interrogation
Information processing
Aggregation
Identification
Insecurity
Secondary use
Exclusion
Information dissemination
Breach of confidentiality
Disclosure
Exposure
Increased accessibility
Appropriation
Distortion
Invasion
Intrusion
Decisional interference
StrongStrong
WeakWeak
NoneNone
21. Individual Rights
• Whether the data collected are used for the right
purpose?
• Who are the other stakeholders using the data?
• Whether data usage is beyond the subscription
needs?
• Where any procedures in place to allow citizens
access to their data?
• Are there sufficient safeguards to protect the data
during transmit?
• Who owns accountability for any breaches?
• Are the practices “user (i.e. citizen) centric?”
22. Intrusion in to one’s personal life
Identity Fraud
Financial Theft
Identity Fraud
Financial Theft
Marketing
calls &
Mails
Marketing
calls &
Mails
Embarrassment
Discrimination
Embarrassment
Discrimination
Profiling
Commercial Tracking
Profiling
Commercial Tracking
23. Data Sharing
• How are data shared between Government agencies
and privacy players?
• What sort of policies and guidelines are build for data
flow between the stakeholders?
• Rights to re-use the data
• Who owns when new personal data is created in the
process of collection and use?
• What steps are taken by the Government to prevent
loss of control over the data?
• What agreements are in place to prevent misuse of
data?
24. Data Profiling
•Automatic Processing or
computer techniques (such
as data mining)
•Analytics
•Algorithms
AggregateAggregate
• Data Attributes
• Online data
• Offline records (such
as Tax Info,
Purchases)
• Demographic
Information
• Data Attributes
• Online data
• Offline records (such
as Tax Info,
Purchases)
• Demographic
Information
• Predictive
Profiling
• Individual
Behaviors
• Likes
• Dislikes
• Preferences
• Attitudes
• Predictive
Profiling
• Individual
Behaviors
• Likes
• Dislikes
• Preferences
• Attitudes
DiscoverDiscover
•Online Advertisers
•Data Brokers
•Online Advertisers
•Data Brokers
26. Surveillance
• Chilling effect on the Society at
Large
– Being free from observation or
disturbance
– Freedom of expression (Fear of Isolation)
– Safeguards against discrimination
– Unlawful arrests
29. Identification & Authentication
SensorsSensors SensorsSensors SensorsSensors SensorsSensors
GatewayGateway
Applications
[Mobile/Web]
Applications
[Mobile/Web]UserUser
City Systems &
Services
City Systems &
Services
Identity ManagementIdentity Management
Access Mgmt/
Authentication
[OpenID, OAuth, SAML]
Access Mgmt/
Authentication
[OpenID, OAuth, SAML]
DevicesDevices
GovernmentGovernment
Identifiers
contain
Attributes
Identifiers
contain
Attributes PIIPII
• Information Tracking
• Unauthorized Access
• Data Loss
• Lack of In-depth controls
C
y
b
e
r
C
r
i
m
i
n
al
s
C
y
b
e
r
C
r
i
m
i
n
al
s
36. Privacy Enhancing Technologies
• Encryption Tools
• Policy Tools
• Filtering Tools
• Anonymity Tools
To uniquely identify devices along with
responsibility of the stakeholders
37. Inter-operability Standards
• National Institute of Standards and Technology Big
Data Interoperability Framework
• IEEE Standard for an Architectural Framework for the
Internet of Things (IoT)
• ISO/TC 268, which is focused on sustainable
development in communities
• ISO 37120:2014
• ISO/TS 37151 and ISO/TR 37152 Smart community
infrastructures
• ISO/IEC JTC 1 Working group on Smart Cities (WG 11)
• 7001 - PRIPARE Smart City Strategy
• Smart city framework standard (PAS 181)
• Data concept model for smart cities (PAS 182)