ABOUT THIS BOOK

Libraries are not exempt from the financial costs of data breaches or leaks, no matter the size. Whether from a library worker unwittingly sharing a patron’s address with a perpetrator of domestic violence to leaving sensitive patron data unprotected, patrons can also pay a hefty price when libraries fail to manage patron data securely and ethically. In this guide, readers will learn concrete action steps for putting the ethical management of data into practice, following two common public and academic library cumulative case studies. The authors explore such key topics as

succinct summaries of major U.S. laws and other regulations and standards governing patron data management;

information security practices to protect patrons and libraries from common threats;

how to navigate barriers in organizational culture when implementing data privacy measures;

sources for publicly available, customizable privacy training material for library workers;

the data life cycle from planning and collecting to disposal;

how to conduct a data inventory;

understanding the associated privacy risks of different types of library data;

why the current popular model of library assessment can become a huge privacy invasion;

addressing key topics while keeping your privacy policy clear and understandable to patrons; and

data privacy and security provisions to look for in vendor contracts.

AUTHOR BIOGRAPHY

Kristin Briney is the Biology & Biological Engineering Librarian at the California Institute of Technology. She has a PhD in Physical Chemistry and an MLIS, both from the University of Wisconsin-Madison. In addition to being a liaison librarian, Kristin teaches and consults on research data management for both researchers and librarians. She is the author of the book Data Management for Researchers: Organize, Maintain and Share Your Data for Research Success and conducts research on student privacy in academic libraries.

Becky Yoose is the founder of and Library Data Privacy Consultant for LDH Consulting Services. She received her MA-LIS from the University of Wisconsin-Madison and is a certified privacy professional by the International Association of Privacy Professionals. With well over a decade of experience in wrangling library data in academic and public libraries, Becky helps libraries and library vendors navigate the intersection of library data and privacy.

REVIEWS

"Rooted in their work in consultancy for research data management and extensive experience in library data in various library settings, Briney and Yoose signal to readers not only a sense of urgency but passion for discussing this critical topic ... If you seek a book that challenges your idea of patron data and your position in managing it while offering real-world, applicable examples as a guide, Managing Data for Patron Privacy: Comprehensive Strategies for Libraries is a must read."
— College & Research Libraries

"This resource lives up to its title, as it offers a comprehensive approach to this very touchy subject ... [It's] a must buy for every library facing this climate of endless data used in the functioning of the organization. The case studies are real life, useable examples and the notes at the end of each chapter support and give much needed information to support the claims made by the authors."
— Journal of Hospital Librarianship

"This is a solid, nuts-and-bolts guide ... a clear, forcefully written book that should find its audience among library technologists looking to take next steps in improving patron privacy. It describes in detail ways in which patron data can be deliberately mined or inadvertently leaked, by our systems and vendors, and by our own employees and programs."
— Technical Services Quarterly

TABLE OF CONTENTS

Acknowledgments

Chapter 1   The Value of Data and Privacy
Chapter 2   The Data Landscape
Chapter 3   Data Inventory
Chapter 4   Risk Assessment
Chapter 5   Library Data Privacy Policy and Operations
Chapter 6   Security 101
Chapter 7   Vendor Relations
Chapter 8   Library Assessment
Chapter 9   Library Worker Privacy Training
Chapter 10   Developing and Sustaining a Culture of Privacy

Index