Skill 11: Identifying Privacy Issues in Problem Formulation

1. Privacy Analysis Framework

What to Teach

Students should learn to systematically analyze computational problems for privacy implications using a structured contextual integrity analysis.

Privacy Analysis Chart Format

The privacy analysis chart examines information flow using these key questions:

Question	Answer
What type of information is shared?	(describe the data being collected/transmitted)
Who is/are the subject of the information?	(identify whose data this is)
Who is the sender of the information?	(identify who collects/transmits the data)
Who are the potential recipients of the information?	Intended: (list legitimate recipients) Unintended: (list potential unauthorized recipients)
What principles govern the collection and transmission of this information?	(describe consent, legal frameworks, policies)

Example Analysis: University Course Registration System

Question	Answer
What type of information is shared?	Student academic information, including name, student ID, course enrollment history, grades, major/minor declarations, contact information, emergency contacts, financial aid status
Who is/are the subject of the information?	• The enrolled student • Parents/guardians listed as emergency contacts • Financial aid recipients in the student's household
Who is the sender of the information?	University registrar's office, academic departments, financial aid office
Who are the potential recipients of the information?	Intended: Academic advisors, professors for enrolled courses, financial aid counselors, student themselves Unintended: Other students, university staff without legitimate need, third-party vendors, data brokers
What principles govern the collection and transmission of this information?	Students consent to data collection as part of enrollment, but may have limited understanding of all uses. FERPA governs educational records, but students may not be aware of all disclosure exceptions.