AI ethics scenarios
Privacy, consent, and data boundaries
Responsible data use asks not only whether information can be collected, but whether people reasonably understand the use, have meaningful choices, and remain protected afterward.
Before you start
Why this matters
A workplace assistant can summarize meetings and produce action items. To do that, it records voices, identifies speakers, sends audio to a service, stores a transcript, and may retain feedback to improve future results. The feature saves time. It also changes a temporary conversation into searchable data that managers, vendors, or attackers might later access.
The privacy question is not simply “Did someone click agree?” It is whether collection is necessary, expectations are clear, choices are meaningful, and the full data journey is controlled.
1Learn the idea
Read
Follow the data from start to finish
Privacy becomes easier to reason about when you draw the data flow. Start before the model receives anything and continue after it responds:
- What is collected directly, inferred, or imported?
- Where is it processed, and by which providers?
- What appears in prompts, logs, caches, analytics, and backups?
- Who can access each copy?
- Is it used for the immediate service, evaluation, model improvement, or another purpose?
- When is it deleted, and can deletion reach derived records?
AI features can create information that was never explicitly provided. A system may infer interests, emotion, health concerns, or work patterns from ordinary text. Those inferences can be wrong yet still affect how a person is treated. Include inferred data in the map rather than treating it as harmless output.
Pay attention to indirect participants. A user may paste an email that contains another person’s address, performance feedback, or medical detail. The person described did not choose the tool. Meeting transcription affects everyone in the room, not only the host who enabled it. Data boundaries must account for people who are present in the source material but absent from the consent screen.
Read
Consent must be meaningful
Consent is strongest when it is informed, specific, freely given, and easy to withdraw. A long policy accepted during onboarding may be a weak basis for a surprising new use. Bundling an optional AI feature into access to an essential service makes refusal costly. A preselected checkbox or confusing button can produce a click without producing understanding.
Ask what a reasonable person would expect in the moment. A meeting notice should state that AI transcription is active, what will be produced, who can view it, and how to object or use an alternative. A writing assistant should not quietly reuse private drafts to improve a general model if users expect their documents to remain within their account.
Consent is not the only possible basis for data handling, and requirements vary by context and location. Teams should follow organizational policy and seek qualified privacy or legal review when appropriate. The ethical lesson is broader: do not use the word “consent” to end discussion. Examine power differences, necessity, alternatives, and whether the choice remains real in practice.
Children, employees, patients, and people seeking essential services may have limited bargaining power. Extra care is warranted when refusal could affect grades, work, care, or access. In such cases, a non-AI path, representative involvement, and stricter limits may matter more than a polished permission dialog.
Read
Minimize before you secure
Security protects data you hold; minimization reduces what can be exposed or misused in the first place. Collect only what the feature needs. If a meeting assistant only needs temporary audio to generate a transcript, permanent audio storage requires a separate justification. If rough region is sufficient, precise location adds risk without useful benefit.
Minimization can happen at several points:
- Input: remove unnecessary fields or redact personal identifiers before processing.
- Purpose: prohibit reuse for unrelated advertising, evaluation, or training.
- Access: give people and services only the records required for their role.
- Retention: delete raw inputs and detailed logs on a defined schedule.
- Output: avoid revealing sensitive source details in summaries or recommendations.
“We may need it later” is not a purpose. Name the decision the data supports and the period during which it remains useful. Longer retention increases the chance that information outlives its context, becomes inaccurate, or is used by people who were never part of the original decision.
De-identification helps but is not magic. Detailed records can sometimes be reconnected to people through combinations of dates, places, or behavior. Treat de-identified data according to realistic re-identification risk and the sensitivity of the source.
Read
Control secondary use and vendors
An AI feature often depends on multiple services. A product may send prompts to a model provider, store traces in an observability platform, and send examples to a labeling team. Each transfer creates another purpose, permission boundary, retention policy, and failure path.
Before sharing data, confirm contract and technical settings: whether inputs are used for provider training, where processing occurs, how long logs persist, who supports the service, and how deletion or incidents are handled. Do not assume an “enterprise” label answers these questions. Verify the configuration actually used by the application.
Secondary use deserves its own review. Data collected to answer a support question should not automatically become material for employee evaluation or personalized marketing. Combining datasets can reveal more than either source alone. If a new use changes reasonable expectations or consequences, reconsider notice, choice, minimization, and safeguards instead of relying on the original collection.
Create a safe path for product learning. Use synthetic or carefully selected examples when possible. Restrict access to real conversations, remove identifiers, record why examples were selected, and expire evaluation datasets. Teams need evidence to improve systems, but improvement does not justify unlimited reuse.
Read
Plan for correction, deletion, and incidents
Privacy controls must work after launch. People need a practical way to inspect relevant records, correct errors, withdraw optional participation, or request deletion where policy provides it. The organization needs to know which systems contain copies and which derived artifacts cannot be fully removed.
Prepare for accidental exposure. A model might repeat private text to the wrong user because account context was mixed, a retrieval filter failed, or a prompt included hidden data. Logs might capture secrets. A generated summary might turn an uncertain inference into a permanent personnel record. Prevention, monitoring, access reviews, and incident response all belong in privacy design.
Be honest about limits. If backup deletion takes time, say so. If a generated aggregate cannot be traced back to one person, document that. Trust grows from clear boundaries and reliable handling, not from broad promises that data is “completely private.”