How to publish a summary of your trustworthiness

This section presents a fictional example of an organisation publishing a summary of its work with the guidebook, following the process of assess, build, demonstrate and reassess.

Publishing a summary of your organisation's work with the guidebook is only one of a range of ways that organisations can demonstrate their trustworthiness. For those interested in the summary approach, we have outlined a fictional example of an organisation publishing its summary. This could be as a blog post or a single article on its website. We have also produced a mock version of a trustworthiness mapping worksheet for this fictional organisation.

Fictional example: Twenty2 Cellular, a telecoms company which provides mobile plans and also wants to sell mobility data services

As a telecommunications company, we at Twenty2 Cellular want to help analysts and strategists use transportation data to improve and make transportation more accessible. This involves us working with mobility data, and we want to make sure we’re sharing this data within a trustworthy data sharing environment. The steps detailed in the ODI’s Trustworthy Data Stewardship Guidebook have helped us to define the requirements of trustworthiness in our context, and to take specific actions to reach our goal. Here’s an overview of the process we followed:

Assess

• How do our stakeholders perceive us? – After mapping out our stakeholders using the Data Ecosystem Mapping tool, we sent out an external assessment questionnaire to our stakeholders to understand how our trustworthiness was perceived. This helped us assess our trustworthiness against the 10 elements of trustworthy data stewardship.

• Given the type of data we are aiming to share, we also used the Data Ethics Canvas to review and manage ethical issues.

Build

• We complemented the external assessment with interviews with potential partners. We discussed the points of the 10 elements of trustworthy data stewardship, and agreed on key actions to build the trust we need to share mobility data in a trustworthy way.

• Convened a number of workshops with customer focus groups, understanding the hopes and concerns around personal data across a broad range of the public.

  • The ODI facilitated this workshop, adapting their Trustworthiness mapping worksheet - co-design process.

  • A summary of the main findings and artefacts from this workshop can be found [here].

• A full-documented agreement can be found [here], but these are the highlights of the actions we agreed to take in order to build trust:

  • Cyber essentials certificate will be renewed every year to ensure the security aspect.

  • All staff must undergo data protection training

  • We are creating a term of service for our mobility data products. This includes agreements that this data cannot be used to re-identify individuals.

  • High excellence of data and services by adopting standards for data – eg the ODI’s Open Standards for Data Guidebook to ensure quality of the mobility data used.

  • Implementation and oversight of data practices and process – defining how data is acquired, the frequency in which the processes are reviewed and who is involved. This will ensure we maintain good governance.

  • Data ethics will be at the core of the organisation to ensure that our reputation stays high. We’ll be monitoring them constantly and measure based on our agreement.

  • We will publish white papers documenting how we generate mobility data insights. Helping data scientists in partner organisations trust the quality of our data.

  • We will set up regular, independent checks by anonymisation experts. Ensuring that mobility data we offer does not contain personal data.

A fictional example of an organisation filling out the trustworthiness mapping worksheet (internal assessment) from Activity 2

Demonstrate

• The evidence of our process will be reflected in the certification mark. Please [see here] for more.

• We will reflect on the process in our annual review, following this guidance.

• Our design and software teams will trial different explanatory guides for customers on how we use personal data. Making sure they feel confident they understand and feel in control of data we hold about them.

• We published an overview of our Data Ethics Canvas exercise and how it fits within our ethical values [here].

• The anonymisation expert’s reports will be published on our website.

Reassess

• We’ll evaluate the level of trustworthiness through annual reviews to see whether any trust relationships have changed or agreements need to be updated.