Resource Collection

Open Data Release Toolkit

This Toolkit contains two methods to manage risk in publishing open data.

Method 1: Privacy Edition

This is a step-by-step process to assess the release of de-identified sensitive or protected datasets on the SF Open Data portal. Sensitive or protected data is generally data that is protected by privacy law or regulation, identifies individuals, could be misused to target individuals and/or poses other concerns.

We seek to publish data responsibly. This requires a balancing of competing factors, such as:

  • the value of publishing the data,
  • an individual’s expectation of privacy,
  • repercussions to an individual or the organization from re-identification, and
  • the likelihood of re-identification.

The Toolkit is used in conjunction with the Open Data Release Form for the Privacy Edition when going through the open data publishing process.

Method 2: Security Edition

The security edition is for datasets that pose security (versus privacy) risks. Your data may not contain any data about individuals, but it may contain data with the following kinds of risks:

  • Life / safety
  • Operational
  • Property
  • Rights / Intellectual Property
  • Reputation
  • Financial

The Security Edition follows a 4 step process to manage security risks. Includes an appendix with a worksheet.

Toolkit

Open Data Release Toolkit: Privacy Edition

Toolkit to assess the release of de-identified sensitive or protected datasets on the open data portal.

Template

Open Data Release Form: Privacy Edition

Form that accompanies the Open Data Release Toolkit: Privacy Edition

Toolkit

Open Data Release Toolkit: Security Edition

Toolkit provides a consistent and repeatable 4 step process to assess security risks and select controls. Appendix includes a worksheet.