Software Systems Atlas

English

中文

English

中文

Theme

Metadata Card

  • Prerequisites: No specific technical prerequisites
  • Estimated time: 35 minutes
  • Core difficulty: Beginner
  • Reading mode: Casual stroll
  • Completion: Able to identify ethical risks in data projects and know how to address them

Your Progress

You've spent a long time in the Data Prophecy Hall, learning to extract insights from data, build models, and deploy pipelines.

But you stumbled upon a problem: the sentry performance model you trained earlier consistently underestimated predictions for a particular outpost. You investigated—half the training data for that outpost was old data. The model wasn't evaluating performance; it was amplifying historical bias.

Data isn't just a technical issue. It carries ethical weight.

Your Task

You found interesting patterns in the data, built a prediction model, and got good results. But wait—80% of your training data comes from one population group. Your model performs poorly on another group. If this model is used to allocate resources, whose responsibility is the unfair outcome? Data ethics isn't an "add-on" outside of technical work—it's embedded in every stage of data collection, processing, modeling, and deployment.

Three Levels of Data Ethics

Level One: Ethics in Data Collection

Data doesn't "naturally" exist—it's collected under specific social and technological conditions.

  • Informed consent: Do the people whose data was recorded know how it will be used? If not, there's an ethical problem with your analysis.
  • Representation: Can your collected data represent the population it's meant to describe? If a group is missing from the training data, the model won't be accurate for that group.
  • Privacy boundaries: Some fields seem harmless ("zip code"), but when combined with other data, they can identify individuals. Individual columns may not be sensitive, but together they become so.

Every record in the Data Prophecy Hall represents real people. A simple column name scan tells you which fields need cautious handling—they must be flagged at the data collection stage.

python
# Check data collection sources — a simple self-check
columns = ["age", "region", "income", "ip_address", "device_id"]

# Which columns can indirectly or personally identify
print("Columns with personal identifying information:", [c for c in columns if c in ["ip_address", "device_id"]])

If you find IP addresses or device IDs in the data, these are personally identifiable information. Even if you haven't directly asked "who are you," these fields can be used to re-identify individuals.

Level Two: Bias in Modeling

Four common sources of bias:

  1. Historical bias: Training data reflects past prejudices. If you train a "candidate recommender" model on the past five years' hiring data, it will learn the historical discrimination as well.
  2. Label bias: The labels themselves have issues. "Mission difficulty" is manually annotated—annotators' judgment criteria may be inconsistent. Inconsistent labels mean the model learns the annotators' bias.
  3. Sample bias: Training data and deployment data come from different distributions. The model performs well on training data but collapses in real-world scenarios.
  4. Proxy variables: The features used by the model are proxies for sensitive attributes. Zip code can proxy for race, consumption records can proxy for income level.
python
# Check model performance differences across population groups
from sklearn.metrics import accuracy_score

# Assuming you have a group label column: population_group
for group in df["population_group"].unique():
    subset = df[df["population_group"] == group]
    acc = accuracy_score(subset["true_label"], model.predict(subset[features]))
    print(f"Group {group}: accuracy = {acc:.3f}")

If accuracy varies by more than 5% across groups, investigate the cause—is the training data unevenly distributed?

These checks are not optional. As the founders of the Prophecy Hall said, data insights should not come at the cost of harming groups. 5% is a common threshold, but specific scenarios may require stricter standards.

Level Three: Transparency in Deployment

Ethical risks after model deployment:

  • Explainability: Can people understand the model's decision process? If you only have "this task was marked as high-risk" without rationale, decision-makers can't judge whether the model is making mistakes.
  • Feedback loops: The model's output affects its future input. A crime prediction model marks certain areas as high-risk—more police patrol—more arrests—more data—model becomes more convinced the area is high-risk. This is a vicious feedback loop.
  • Accountability: When the model makes a wrong decision, who is responsible? "The model did it" is not an acceptable answer.

Practical Framework: Data Ethics Checklist

Pause and check at key nodes in every data project:

Before data collection:
  [ ] Is informed consent needed for this data?
  [ ] Does the data contain personally identifiable information?
  [ ] Is the collection scope necessary (minimization principle)?

During data preprocessing:
  [ ] Is the group distribution in training data similar to the deployment scenario?
  [ ] Are there "proxy variables" that implicitly carry sensitive information?
  [ ] Does the distribution of missing values differ across groups?

After model training:
  [ ] Does the model perform consistently across different groups?
  [ ] Is the distribution of predictions reasonable?
  [ ] Can the model's logic be explained?

Before model deployment:
  [ ] Is there a human intervention mechanism?
  [ ] Is there a response mechanism for monitoring feedback loops?
  [ ] If the model makes errors, who is responsible?

Common Pitfalls

  • Assuming "the dataset is public" equals "can be used in any context." Public datasets may have usage restrictions or contain unpublicized sensitive information.
  • Thinking "data de-identification" is safe enough. Research has repeatedly shown that with enough auxiliary information (age + zip code + gender), the vast majority of de-identified records can be re-identified.
  • Believing ethical issues are "someone else's mistakes." If your model makes errors and you knew about it without intervening, that's your problem.

Pass Challenges

  • Warm-up: Identify three data products you've used or contributed to, and evaluate whether they have issues in one of the ethical dimensions mentioned above.
  • Challenge: Conduct a "fairness audit" on a model—calculate its performance differences across different groups. Write a findings report documenting risks and recommendations.
  • Troubleshooting: Your model performs poorly on minority groups in production. List possible causes and their handling priorities.

Acceptance Criteria

  • Can identify ethical risks at the data collection, modeling, and deployment stages
  • Can identify implicit bias introduced by proxy variables
  • Knows why de-identification is insufficient for privacy protection
  • Can run an ethics self-check list before starting a project

Traveler's Notes

You can build an accurate model. But accuracy doesn't mean correctness—you need to ensure your model doesn't harm the people it's meant to serve.

Next Chapter Preview

Data usage needs norms. Next chapter, Data Governance Fundamentals—ensuring your data is trustworthy, usable, and manageable.

Built with VitePress | Software Systems Atlas

Copyright 2026 Steven Yang