ACM is a global organization impacting literally millions of computing scholars and professionals all over the world each year (see sidebar 1). Given this, it is not surprising that, every now and then, ACM is faced with cases of alleged wrongdoing, where somebody is said to have violated one of the ACM's policies. ACM takes these allegations very seriously, spending significant sums of money each year to support enforcement of its policies. Some of these cases are very serious, to the degree of affecting the careers, safety, or, indeed, the lives of members of the computing community. These concerns have raised calls for ACM to more publicly disclose more information surrounding cases of wrongdoing. Doing so can allow community leaders and those who face threats to make more informed decisions about the threats and increase safety.
While it is unusual for professional societies to disclose such information, ACM's pivotal role in the field of computing leads some to argue that ACM bears a responsibility to be more forthcoming about its findings of violations of its policies. In June 2021, the ACM Council formed the Committee on Disclosure and charged it with evaluating whether, under what circumstances, and to what degree the ACM should disclose information about people who have been found in violation of its policies. The committee has developed a draft policy (called Draft 2) for consideration and comment by ACM membership (see sidebars 2 and 3). Draft 2 represents a level of information disclosure that is beyond current ACM practice and also beyond standard practices for other professional societies. This article aims to explain Draft 2 (see the full draft on page 10) and the context in which it applies. Note that many of the terms used here are defined in the policy.
ACM's pivotal role in the field of computing leads some to argue that ACM bears a responsibility to be more forthcoming about its findings of violations of its policies.
Policies and Enforcement Today
Broadly speaking, ACM has three sets of policies that may lead to sanctions against a member of the computing community. These are
Complaints alleging violations of the Publications Policies are handled by the Publications Board and complaints alleging violations of the Anti-Harassment Policy and the Code are handled by the ACM Committee on Professional Ethics.
Each type of complaint is handled according to its own enforcement procedure, each of which has different guidance regarding what information about a complaint can be released to whom at which point in the process. Generally, the policies currently tend toward disclosing information on a "need to know" basis, however there are some exceptions. Draft 2 offers more disclosure than "need to know." The biggest change is that in more serious cases there is a more extensive sharing of information about the case (cf. Clauses 2.4.2, 2.5.2, 2.6.3, and particularly 2.6.6 of Draft 2). Such sharing increases the risk of reputational harm for violators of our policies and the legal risk of lawsuits for ACM. We are seeking input from all ACM members so that the final policy reflects the values of the membership, upholds the integrity of ACM, and holds the broader computing community to high professional standards (see sidebar 3).
While the numbers vary from year to year, the Ethics and Plagiarism Committee of the Publications Board receives approximately 100 complaints each year and of those, approximately 35 are actionable. The Policy Against Harassment was adopted in 2018 and the Code of Ethics and Professional Conduct was updated in 2018. Since that time there have been approximately 10–15 harassment complaints each year with 5–10 of them falling within the scope of the policy and having enough information to pursue an investigation. Code complaints come in at 5–10 each year, with 2–5 being within scope and with enough evidence to pursue an investigation (see the accompanying table). Complaint submissions are dismissed without an investigation if they fall outside the scope of the policy, are spurious, do not contain enough information to initiate an investigation, or appear to be using the complaint process to settle a disagreement among people. As a matter of principle, ACM cannot redress harm against individuals, but only violations of ACM policies. Individuals are always free to seek private resolution of their disputes.
Table. Average annual complaint submissions.
The Case for Disclosure of Information
In our analysis of the complaint processes used by ACM and input we have received from ACM and SIG members, there are three main reasons why information might be disclosed. The first is a matter of procedural equity. Disclosures to respondents, claimants, witnesses, and victims are important to allow individuals to decide how to best navigate our processes given their individual circumstances. The second is a matter of harm prevention. Certainly, limited disclosure of information is necessary to implement sanctions. For example, an editor must learn whether an individual has been barred from publishing in ACM journals. More extensive disclosure of information allows individuals and communities to take steps to reduce the chances of some forms of harm. Additional disclosure might include disclosure of information to other professional societies or even public disclosure by ACM. The third type of disclosure is as part of a sanction. For example, the papers that have been found to have been plagiarized are marked as such in the ACM Digital Library.
We know that more extensive disclosure also has a significant risk for harm to individuals. Except in the most severe cases, ACM's goal for policy violators is that they learn their lesson and return to being positive contributors to the community. Public disclosure can interfere with this return to good status. As we have seen in many sectors of society, public records of offenses are brought up long after the offender has made amends and changed behavior. Our experience with even limited disclosure has this effect. In some cases, limited disclosure is permitted by current policy (for example, to inform those with a direct connection to the incident or investigation), and even though such disclosure is always communicated confidentially, we have seen that word can spread. In some cases, we understand that mere suspicion of an investigation taking place has caused professional harm to the accused. In other cases, communities have informally enacted social penalties through isolating or shunning offenders in a way that was beyond the scope of ACM's official penalties.
More extensive disclosure also increases risk for ACM. We address this concern in the section "Potential Implicatons of the Draft Policy."
Draft 2 only addresses the first two types of disclosure of information (procedural equity and harm prevention) and does not impact the third type (as part of a sanction). Draft 2 is clear in that disclosures of these two types should not be more burdensome for the respondent than the sanction.
Disclosure for Procedural Equity
Each complaint and its investigation is unique. Evidence differs, witness testimony differs, witness credibility differs. Importantly, underlying context and external impacts of a case may make the disclosure of information about that case helpful in mitigating harm. Therefore, Draft 2 allows for deviation from it in order to accommodate these types of situations. The policy has safeguards in place:
We recognize that, like most ethical decisions, there will be trade-offs and that occasionally people will make suboptimal decisions.
Many investigations do not result in evidence that leads to finding a policy violation. To prevent reputational harm to respondents, Draft 2 does not allow ACM to disclose any information to anyone making an inquiry about a claim. For example, should someone inquire whether a particular person is under investigation, disclosing that the person was under investigation might bring unwarranted harm to that person. Thus, the draft policy only allows for information disclosure outside of procedural equity after a case has been closed.
Often there is a power imbalance between the complainant and the respondent or between the respondent and witnesses. Because investigators may not be aware of these relationships, Draft 2 works to keep the identity of the complainant confidential. Often, the identity of the complainant doesn't matter: it is ACM determining whether the respondent has engaged in activities that are inconsistent with ACM policies.
In processing some complaints, it is clear the harm has been minimal. Further, some respondents are sorry for their policy breach and are interested in becoming better members of the computing community. In these cases, Draft 2 limits the disclosure of information to a manner consistent with current policies and practice in order to facilitate that professional growth.
Disclosure for Harm Prevention
In more serious cases, sanctions are intended to prevent additional harm. Examples include preventing someone who has been found to have violated harassment policies at a conference from attending future conferences and preventing someone who violated reviewer confidentiality from reviewing or serving as an editor or program committee member.
But sometimes merely pre-screening volunteers or attendees to exclude a sanctioned offender is not enough (see sidebar 4). Some violations do structural harm to our communities and activities. For instance, this may happen when an individual makes others feel threatened through harassment, abuse of power, and intimidation, or when an individual undermines confidence in a conference through unethical manipulation of the review process. In cases such as these, the community and venue are threatened, and greater disclosure of the findings and consequences can help reassure the community and strengthen it against future misconduct. Draft 2 takes steps to address these concerns.
While sanctioning bad actors and possibly excluding them from future participation is important, when the affected community is not informed of those sanctions, individuals may make assumptions about what has or has not happened. When ACM discloses that bad actions have taken place and the steps ACM has taken, people can be more confident that within venues with the ACM imprimatur, standards of the community are upheld, respectful dialog is promoted, and there are fewer opportunities for harassment and abuses of power. Such disclosure is a sign that ACM is living up to its stated values and puts other potential bad actors on notice that ACM will act when policies are violated. This creates a feedback loop where community members know that ACM takes these matters seriously. In turn, people are more willing to come forward to report bad actions. Over time the frequency of bad acts should go down.
We have commissioned additional analysis that identifies legal and ethical concerns this policy would raise outside the U.S.
Potential Implications of the Draft Policy
Should ACM adopt a policy that is more disclosive than current policy, ACM will break with the practice of other professional societies. Doing so is a statement to the community of what to expect from ACM, is an example of its leadership and its commitment to advance ACM's mission of "promoting the highest professional and ethical standards." Recognizing this as a step outside the norm for professional societies, Draft 2 includes a requirement for an evaluation of the policy after four years.
ACM has had Draft 2 reviewed by a top U.S. law firm that specializes in ethics and compliance from a legal perspective. Their analysis has concluded that "the risk of a defamation claim is significant" should Draft 2 be implemented. They have determined that it is also possible that individuals may "seek to challenge the very procedures put in place by ACM to guard against harassment and plagiarism." They also pointed out that "there is no duty to disclose the names and identities of known harassers." The legal team also concluded that "ACM's current practices and policies include disclosure options in the case of serious harm without the increased legal and reputational risk inherent in the currently contemplated draft Disclosure Policy" (that is, Draft 2). While Draft 2 does not require public disclosure of people's identities, their analysis pointed out that if enough information is revealed about a case so that those who are familiar with, but not part of, the case can reasonably determine who the respondent is, then the possibility of a lawsuit against ACM is increased.
We are also aware that norms, practices, and legal requirements vary throughout the world. We have commissioned additional analysis that identifies legal and ethical concerns this policy would raise outside of the U.S. We will make that analysis available on the Discourse site when it is completed. There are clearly new risks that ACM faces should certain provisions of Draft 2 be adopted.
Your Opinion Is Important
We want your input! Adopting this policy may have a substantial impact on ACM and many members of the computing community. Your thoughtful critique of Draft 2 will help illuminate potential advantages and potential pitfalls. You can leave your thoughts and analysis on the Discourse sited from now until April 9, 2023. After that the committee will determine the level of support for provisions in the policy that is present in the comments, distill the comments and other input, and modify the policy to best reflect a consensus. Should there be unresolved issues, we will bring those issues to the ACM Council at the June 2023 meeting so that they can decide on the direction to take with the Disclosure Policy. So, now it's on you: let us know what you think!
As you consider the policy, we invite you to consider two cases in sidebars 5 and 6. One hypothetical, yet reflective of typical cases, and the other is the case that initiated this project. These cases are among the most egregious cases that ACM has dealt with. They are not representative of typical cases ACM receives. For more cases, please see the Discourse site.
This policy governs the disclosure of information in the context of complaints filed alleging violation of one of ACM's policies. Examples of applicable policies are the Code of Ethics,e the Policy Against Harassment at ACM Events,f and various Publication Policies.g While each policy has different enforcement procedures, there are generally three different types of disclosures of information that are part of complaint processes:
This policy addresses the first two types of disclosures. Generally speaking, disclosure decisions are to be made on a case-by-case basis with close adherence to the policy. Regardless of whether the disclosure is consistent with or deviates from the policy, the disclosure must be guided by words from the Preamble to ACM's Code of Ethics and Professional Conduct:
Questions related to these kinds of issues can best be answered by thoughtful consideration of the fundamental ethical principles, understanding that the public good is the paramount consideration. The entire computing profession benefits when the ethical decision-making process is accountable to and transparent to all stakeholders. Open discussions about ethical issues promote this accountability and transparency.
Principles from the Code that ask us to avoid harm, be honest and trustworthy, be fair, and respect privacy are also important to bear in mind. When complaints are filed, we presume that the complaint is legitimate, and we value the reputations of all parties. From the time of the filing of a complaint to when all appeals processes have been exhausted, those involved in handling the complaint must strive to limit information releases to a need-to-know basis always bearing in mind the need to minimize harm, maintain spaces that actively support the exchange of scientific ideas, and support strong science.
2 Rules for Disclosure in Particular Situations
Below are descriptions of how ACM will generally treat disclosure of information pertaining to complaints at various stages. Some general rules apply:
2.1 No complaint filed
No information is disclosed to those making inquiries about an accusation when no formal complaint has been filed.
2.2 Complaint dismissed prior to investigation
When complaints are filed without any evidence or anonymously such that no investigation is reasonably possible, the complaint will be dismissed without investigation and information disclosure will be treated as if no complaint has been filed (2.1).
2.3 Complaints under investigation
2.4 Complaints where no violation is found
2.5 Complaints resolved with a finding of a minor violation
2.6 Complaints resolved with a finding more serious than a minor violation
3 Reporting and Reflecting
The Digital Library is published by the Association for Computing Machinery. Copyright © 2023 ACM, Inc.
No entries found