What if we weren’t total bastards? What if we committed – at our core – to never switch over to a for-profit company?

If there was a utopian data collection company dedicated to safeguarding the data of impoverished people in Africa, especially in a context as sensitive as refugee stories, I would establish a set of strict ethical and operational rules to protect their data and honor their trust. Here’s how I’d structure it:

1. Transparency and Informed Consent

• Clear Agreements: Every contributor would receive, in their language, a straightforward explanation of how their data will be used, stored, and protected. They would be able to agree or withdraw consent at any time.
• Purpose Statement: Explicitly state that data is solely for humanitarian purposes, and people are paid immediately and content is considered anonymous, and initially only used internally. However, if the contributor or subject wishes to make the content more widely available, a royalty agreement can be considered (see CFDOM) in which the contributor receives royalty payments if, and any time, the asset is sold.

2. Anonymization and Data Protection

• Automated Anonymization: Option of anyomized content for social media. Use advanced machine learning to anonymize faces, names, and identifying information in all videos. Ensure no personal information is stored or accessible in raw or metadata formats.
• Scrubbing Sensitive Information: Set up automated processes to flag and scrub highly personal or sensitive information (e.g., locations, identifiable family references) before data storage.
• Regular Audits: Perform quarterly audits by independent third-party privacy experts to confirm compliance with anonymization and data safety standards.

3. Data Use and Access Restrictions

• Single Use Agreement: Data is to be accessed only by one pre-designated humanitarian organization, used solely for the agreed purpose of developing resources and compensating contributors.
• No Sharing Policy: Implement a strict no-sharing rule; data cannot be shared with government bodies, corporate partners, or external researchers. This would be legally binding and monitored continuously.
• Controlled Access: Limit access to only essential staff using multi-level authentication, VPNs, and encryption. All access to data is logged, monitored, and restricted to key personnel.

4. Commitment to No Monetization

• No Sale or Licensing of Data: Make it a policy and legal commitment that data will never be sold, licensed, or otherwise monetized. This would be transparently documented in public company guidelines.
• Non-Commercialization Clause: Include a clause prohibiting future use of data for commercial purposes, even if ownership or management changes, safeguarding it in perpetuity.

5. Ongoing Contributor Rights

• Access and Erasure Rights: Provide contributors with access to their submitted data upon request, and ensure they have the right to request deletion of their contributions.
• Regular Updates: Give contributors regular updates on how their data is being used and its impact, ensuring they are kept informed about the ongoing project and results.

6. Financial Compensation and Ethical Practices

• Fair Compensation: Guarantee fair payment for all contributions, ensuring that participants benefit directly. Payments are transparent, prompt, and managed by trusted intermediaries to ensure security.
• Local and Cultural Sensitivity: Ensure that all project practices align with local customs and respect cultural norms. This would include adapting data practices based on feedback from the community.

7. Third-Party Accountability

• External Oversight Board: Establish an independent oversight board that includes representatives from local communities, data privacy experts, and humanitarian ethics professionals.
• Annual Public Report: Publish an annual report on data use, anonymization processes, and security, with an independent audit summary available to the public.
• Immediate Redress Mechanism: Provide a straightforward way for participants to report any concerns, with a team dedicated to addressing issues promptly.

By committing to these principles, the organization would foster a high level of trust, provide full transparency, and put mechanisms in place to protect contributors, ensuring their data serves their best interests and respects their privacy.