Loading...
To know more about this phase of the DPI life cycle, click here
Click on any process listed below to learn about illustrative practices that can be implemented.
To know more about this phase of the DPI life cycle, click
SV 1 Digital distrust,
SV4 Technical shortcomings
F2.1 Implement alternative enrollment measures
F2 Do not discriminate
RI3 Exclusion
F3.3 Assess the interoperability system
F3 Do not exclude
SV3 Weak institutions,
F3.4 Develop alternative processes to allow access to services without requiring subscription to a DPI system
RI2 Unequal access
F3.5 Implement affirmative design measures
SV2 Weak rule of law
RI3 Exclusio
F4.5 Establish comprehensive auditing mechanisms
F4 Reinforce transparency and accountability
F4.6 Create stakeholder participation systems
F4.7 Ensure an auditable data trail for dispute redressal
RS2 Digital insecurity
RS4 Lack of recourse
F4.8 Provide clear definitions for key human rights terms so basic understanding of harms is inter-operable and can be benchmarked across systems.
RI4 Disempowerment
F6.3 Incorporate user choice mechanisms to participate
F6 Promote autonomy and agency
F6.4 Design user interfaces that empower data subjects with clear and continuous control over their data.
F7.3 Forward relevant stakeholder inputs to the DPI implementors.
F7 Foster community engagement
SV3 Weak institutions
F7.4 Sustain the participation of affected communities in the process by providing funding for the total cost of community engagment
RI2 Unequal access RI3 Exclusion
F8.3 Ensure that the DPI interface indicates the responsible public authority and their contact information for complaints and inquiries.
F8 Ensure effective remedy and redress
SV1 Digital distrust
F9.4 Adopt common standards, conduct regular system integration tests, and ensure that redundant system operations are removed
F9 Focus on future sustainability
SV5 Unsustainability
F9.5 Conduct stringent security checks and vendor assessments
SV3 Weak institutions SV5 Unsustainability
F9.6 Encourage modular system design and support for multiple technologies.
F9.7 Adopt comprehensive procurement processes that prevent vendor lock in
SV4 Technical shortcomingsSV2 Weak rule of law
O1.4 Provide tools and support to enable integration and scalability
O1 Leverage market dynamics
O1.5 Develop an open access system with APIs, accountability, and fraud protections
RI3 ExclusionRS2 Digital insecurity
O2.2 Implement regular public consultations and review mechanisms.
O2 Evolve with evidence
RI3 Exclusion RI4 Disempowerment
O2.3 Design mechanisms to generate relevant data
SV3 Weak institutions SV4 Technical shortcomings
O2.4 Design feedback loops to address data inaccuracies and enable community reporting
RS2 Digital insecuritySV4 Technical shortcomingsSV 1 Digital distrust
O3.5 Integrate strict data minimization protocols into design
O3 Ensure data privacy by design
SV 1 Digital distrust
RS1 Privacy Vulnerability
O3.6 Establish multi-layered security controls to protect data throughout its lifecycle
RS1 Privacy Vulnerability SV4 Technical shortcomingsRI4 Disempowerment
O3.7 Undertake a Data Protection Impact assessments and legislative reforms prior to DPI roll out
RS1 Privacy Vulnerability SV2 Weak rule of law
O3.8 Enable third party audits
O3.9 Establish Robust Data Delinking Mechanisms once the purpose of the processing of personal information has been served
RS1 Privacy Vulnerability RS2 Digital insecurity
O3.10 Enable different levels of privacy between payer and payee, where appropriate.
RS2 Digital insecurityRS1 Privacy Vulnerability
O3.11 Implement symmetrical identification so users know the identity of the other party in a transaction.
O3.12 Implement and protect the right to pseudonymity within DPI systems, when applicable.
O3.13 Ensure that biometric authentication is not mandatory
RS1 Privacy Vulnerability SV4 Technical shortcomingsRI3 Exclusion
O4.8 Design specific security features to protect against unauthorized access and data breaches
O4 Assure data security by design
y
O9 Build and share open assets
F1.4 Establish monitoring and mitigation teams
F1 Do no harm
SV1 Digital distrust,
F4.11 Publish reports on inclusion and user complaints.
O6.8 Use a participatory approach to foster inclusive, responsive, and empowering DPI for marginalized communities.
O6 Respond to gender, ability or age
R1.4 Disempowerment,
R1.3 Exclusion
O7.2 Invite all stakeholders for regular discussions
O7 Practice inclusive governance
F7.8 Implement a capacity-building strategy using a Whole-of-Government approach to ensure all relevant functional groups can effectively support safeguards.
RS1 Privacy vulnerability
F5.2 Underpin identification systems (and other DPI systems) by legitimate, comprehensive, and enforceable legal and regulatory frameworks
F5 Uphold the rule of law
F6.2 Design and deploy mechanisms that provide individuals and communities with control over their personal and collective data
F7.1 Forward relevant stakeholder inputs to the DPI implementors.
F9.2 Ensure adequate resourcing for continuous development.
O1.2 Establish policies that promote fair competition and require multiple participants in the ecosystem
O1.3 Mitigate the risk of market distortion and monopolies
O2.1 Assess DPI against alternative policy options
RI1 Discrimination
O3.1 Verify the existence and enforcement of regulations, policies and procedures that mandate purpose limitation.
O3.2 Undertake a Data Protection Impact assessments and legislative reforms prior to DPI roll out
O3.3 Analyze stakeholder interests and implement approprate safeguards
O3.4 Provide features to protect users from tracking and profiling while allowing responsible data use
O4.1 Establish a framework for safe data storage and processing
O4.2 Establish a cybersecurity framework for DPI
O5.1 Implement privacy and data protection impact assessments prior roll-out
O5 Ensure data protection during use
O5.2 Require relying parties to register their DPI use cases in a public registry, detailing the specific functionalities and data attributes they intend to use.
O6.2 Understand the needs of affected communities and test the impact of DPI on these groups.
O6.3 Ensure equitable access to DPI
O6.4 Include networks of human agents to help users utilize and engage with DPI systems
O8.1 Estimate the costs of deployment, operational costs, and estimate payback period
O8 Sustain financial viability
O8.2 Design the sustainable financing model for the DPI
F1 .4 Establish monitoring and mitigation teams
F2.2 Provide accessible in-person options for identity proofing and authentication
overall governance: from policymaking to public service delivery
creating policies to set development goals
guiding inclusive digitalization
providing budgetary support for development purposes and DPI development
providing proof of progress to constituents
listening to feedback and improving legislative, executive and judicial administration