What Are “Data Clean Rooms”?

Privacy & Data Security Group Chair, /people/daniel-m-goldberg/Daniel M. Goldberg is quoted in the article, “What Are 'Data Clean Rooms'?” published by The Markup. The article discusses the use of “data clean rooms” including proper implementation, privacy concerns, and their effectiveness in privacy regulation. Daniel is quoted saying, “So there is no silver bullet. Every clean room operates somewhat differently. It’s all subject to what the vendor is actually doing. So just like anything, it’s a marketing buzzword in a lot of ways, and the devil is in the details.” 

Daniel notes that the use of clean rooms is a positive thing and believes a lot of good work has been done to integrate their use in the industry. However, he cautions that simply using a clean room does not relieve companies of their regulatory responsibilities. He adds, “While the use of clean rooms may reduce their risks, “it can’t just be like, ‘Oh, we use it, therefore we don’t have to comply with anything because we’re no longer subject to privacy law.'”

Daniel recommends the use of data clean rooms be disclosed in a company’s privacy policy. “I would say the number one concern is the lack of knowledge from consumers that this is actually happening. There’s an issue where these clean rooms don’t have a direct relationship for the most part with consumers.… How could a consumer ever figure this out?”

In conclusion, he says, “If you’re going to engage in data clean room activities, you need to make sure that you’re giving users [a] choice about this. And if they want to be able to opt out, you should allow them to opt out.”

Read the full article here.