Systematization of Knowledge: Data Minimization in Machine Learning
Modern systems based on Machine Learning (ML) are ubiquitous, from credit scoring to fraud detection. The conventional wisdom is that more data leads to better models. However, this data-centric approach directly conflicts with a fundamental legal principle: data minimization (DM). This principle, enshrined in key regulations like the GDPR in Europe and the CPRA in California, mandates that personal data collection and processing must be “adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed”. ...