Data Privacy
Definition
Protection of individuals’ personal information from unauthorized access, use, or disclosure. Government collects massive amounts of sensitive data (health records, tax information, criminal records, addresses) that must be secured and used only for legitimate purposes with appropriate consent. Data privacy includes both cybersecurity (preventing hacks) and policies limiting how government shares or sells resident data to third parties.
Louisville Context
Louisville Metro Government collects extensive resident data through tax collection, police records, health services, 311 requests, and other interactions. Metro has experienced data breaches including a 2018 incident where police body camera footage was improperly accessed. Metro’s data privacy policies are scattered across departments with no comprehensive framework. Unlike some cities, Louisville lacks strong policies limiting data sharing with federal immigration enforcement.
Why It Matters
Government data breaches can expose your social security numbers, health information, addresses, and other sensitive data to identity thieves or other harms. Beyond security, government must have clear policies about what data is collected, how it’s used, who it’s shared with, and how long it’s retained. Weak privacy protections disproportionately harm vulnerable communities including immigrants, domestic violence survivors, and others.
Dave’s Proposal
Dave will establish comprehensive Data Privacy and Protection Policy within his first 100 days, including encryption requirements, breach notification procedures, limits on data retention, and strict controls on data sharing (especially with federal immigration enforcement). He’ll create a Chief Privacy Officer position within IT (funded within $1.025 billion budget) to enforce privacy protections.