Peter Swire: Why Tech Companies and the NSA Diverge on Snowden

FPF Senior Fellow Peter Swire has an op-ed in today’s Washington Post that discusses how tech companies and the intelligence community are grappling with the traitor-or-whistleblower debate when it comes to Edward Snowden.  His conclusion suggests the debate provokes a much broader set of issues:

Fundamentally, the traitor-or-whistleblower debate comes down to different views of what values should be paramount in governing the Internet we all use. The Internet is where surveillance happens to keep our nation safe. It is also where we engage in e-commerce and express ourselves in infinite ways. The goal is to create one communications structure that safeguards diverse, important values.

Essays on Big Data and Privacy

Solutions to many pressing economic and societal challenges lie in better understanding data. New tools for analyzing disparate information sets, called Big Data, have revolutionized our ability to find signals amongst the noise. Big Data techniques hold promise for breakthroughs ranging from better health care, a cleaner environment, safer cities, and more effective marketing. Yet, privacy advocates are concerned that the same advances will upend the power relationships between government, business and individuals, and lead to prosecutorial abuse, racial or other profiling, discrimination, redlining, overcriminalization, and other restricted freedoms.

On Tuesday, September 10th, 2013, the Future of Privacy Forum joined with the Center for Internet and Society at Stanford Law School to present a full-day workshop on questions surrounding Big Data and privacy.  The event was preceded by a call for papers discussing the legal, technological, social, and policy implications of Big Data. A selection of papers was published in a special issue of the Stanford Law Review Online and others were presented at the workshop. This volume collects these papers and others in a single collection.

These essays address the following questions: Does Big Data present new challenges or is it simply the latest incarnation of the data regulation debate? Does Big Data create fundamentally novel opportunities that civil liberties concerns need to accommodate? Can de-identification sufficiently minimize privacy risks? What roles should fundamental data privacy concepts such as consent, context, and data minimization play in a Big Data world? What lessons can be applied from other fields?

We hope the following papers will foster more discussion about the benefits and challenges presented by Big Data—and help bring together the value of data and privacy, as well.

Download the complete PDF.

PBS NewsHour: Jules Polonetsky Talks Big Data and Privacy

Last night, Jules Polonetsky was featured on a segment on PBS NewsHour discussing, “What’s the future of privacy in a big data world?” He was joined by Adam Thierer, senior research fellow at the Mercatus Center at George Mason University. The video and the transcript can be found here.

Comments to the FCC About "Anonymized" and "Deidentification"

Yesterday, the Federal Communications Commission posted FPF’s comments about “anonymization” and “deidentification.”  The comments come in response to a request from Public Knowledge that the FCC clarify whether “anonymized” or “deidentified” but non-aggregate call records constitute individually identifiable “customer proprietary network information” under Section 222 of the Communications Act.

FPF submitted  comments to address the argument that all anonymized records must be considered “personally identifiable” records because there have been instances in which some publicly available, anonymized records have been reidentified.  Public Knowledge argues that because researchers have been able to reidentify some publicly disclosed data sets that were purged of personally identifying information, all datasets that have been purged of personally identifying information must necessarily be considered individually identifiable.  FPF responded:

Logically, this argument is flawed. It is analogous to the argument that because some locks have been broken, there is no such thing as a reasonably secure door.

Although reidentification may be possible in some specific circumstances, when proper anonymization practices are used, anonymization is a valuable and effective way to advance the goal of protecting individual privacy while allowing for beneficial uses of data.  The full set of comments is available to read.

Study Weighs Privacy Concerns Against Relevant Offers for Mobile Shoppers, Reports MediaPost

Yesterday, MediaPost reported a study by IDC that provided an interesting insight on how smartphone users value their privacy in retail environments. According to MediaPost:

“Smartphone owners were asked which was more important: retailers respecting their privacy or retailers presenting them with relevant offers.

The results were essentially split, with slightly more than half (53%) saying retailers respecting their privacy was more important and almost half (47%) saying presenting relevant offers matters more.”

This almost even split demonstrates the importance of transparency and choice when it comes to retailers using their customer’s smartphone data. We’ve been testing our mobile location analytics opt-out mechanism for precisely this reason: so that customers can decide for themselves whether they wish to opt out of tracking, or avail themselves of the valuable offers and discounts that individual shopper targeting allows.

Privacy a Big Priority for Mobile Location Analytics Companies at "Retail's BIG Show"

This week, over 30,000 attendees and 500 companies swarmed the Javits Center in New York City for the 2014 National Retail Federation Big Show. The massive expo showcased the latest in retail technology, with mobile location analytics companies making a particularly strong showing. Ten of these companies (Aislelabs, Brickstream, Euclid, iInside, Measurence, Mexia Interactive, Radius Networks, ReadMe Systems, SOLOMO Technology, and Turnstyle Solutions) have already made a significant commitment to protecting privacy by signing on to our Code of Conduct. However, as companies continue to find exciting new ways to improve the retail experience using consumer data, privacy and security are hardly foregone conclusions. [link] Square CEO Jack Dorsey put it nicely in his keynote on Wednesday morning, when he remarked:

“Privacy and security is not an end point. There’s no one solution. It’s always changing. You have to constantly be refreshing your technology. You have to give simple, intuitive tools to people so they can control their own privacy and make their own decisions. Otherwise, they will feel like there is all this big data out there and then ‘there’s me.’ If you give them simple controls, tools to glean insights from their own data, then you have something really powerful.”

Here at FPF — particularly as we work hard on building a central site for opting out of mobile location analytics — we continue to look for ways to give consumers choices and control in how they share their data in the retail space.

A “Cutting-Edge” Guide to Privacy For Not-So-“Cutting-Edge” Phones

Now that the New Year is upon us, California’s Do Not Track transparency bill AB 370 is officially in effect.  As websites start to disclose in their privacy policies how they respond to Do Not Track signals, it’s helpful to explain a little more about Do Not Track, as well as other options consumers can use to limit how they are tracked online.  FPF’s site AllAboutDNT is designed to serve as a tool for educating consumers about what DNT does and how to turn it on for a variety of devices.

In previous posts, we have reviewed the new privacy features for the most up-to-date versions of both Apple’s iPhone (running iOS 7) and Android (link Expired) (running 4.4 KitKat).  But what if you’re using a slightly older phone that doesn’t run the new operating systems?  In that case, this guide is for you.

iPhone (or iPad)

Check which version of the iOS you’re running by tapping Settings > General > About.  Under “Version” you can see your version of iOS. The most up-to-date version of iOS is  iOS 3.1.3 for the first generation iPhone, iOS 4.2.1 for the iPhone 3G, and iOS 6.1.3 for the iPhone 3GS.  If your phone’s OS is out of date, connect it to your computer and follow the prompts to update it through iTunes.

ios check

The now-unsupported iPhone 3GS running iOS 6 has many of the same privacy controls as its newer counterparts, but some of the controls are located in unusual and hard-to-find places.

                Private Browsing/Do Not Track

iOS 5.1 and newer have a feature called “Private Browsing.”  When Private Browsing is on, webpages you visited are not added to the history list, the names of downloads are removed from the Downloads window, AutoFill information isn’t saved, and searches are not added to the search field’s pop-up menu. Enabling Private Browsing also sets Safari to include a “Do Not Track” signal with all web traffic, which communicates to websites that you do not wish to be tracked.

To turn it on, go to Settings > Safari > Private Browsing. 

private browsing

Note that while Private Browsing is on, websites can’t modify information stored on your computer, so services normally available at such sites may work differently until you turn off Private Browsing.  Any changes made to cookies are discarded when you turn off Private Browsing.  While older versions of the iOS cannot activate this feature, they can still navigate to the Safari Settings menu to clear their history and cookies.

                Limit Ad Tracking (iOS 6 and newer)

In iOS 6, you can turn on “Limit Ad Tracking” by navigating to Settings > General > About > Advertising > Limit Ad Tracking and turning the feature on. (On iOS 7, the control is located at Settings > Privacy > Advertising.)

limit ad tracking

If you choose to limit ad tracking, advertising networks using Apple’s unique Advertising Identifier are prohibited from serving you targeted ads. You will still get ads, but they should not be based on tracking your activity across the different apps you use.

Permissions For Apps (Sorted By Data Type)

You might want to have more control over which apps can access your location,* contacts, calendars, reminders, photos, Bluetooth connection, or Twitter and Facebook accounts.  To adjust these permissions go to Settings > Privacy – make sure that no unwanted or unfamiliar apps have access to your sensitive data.

*In iOS 4 and 5, Location Services is found in the General Settings menu, below “Notifications.”

permissions for apps

 Permissions For “System Services” With Access To Location

At the bottom of the menu within Settings > Privacy > Location Services, you’ll see another box labeled “System Services.”  In this menu, you’ll see a number of options for “Cell Network Search, Compass Calibration, Diagnostics & Usage,” etc.  While each option corresponds to a different service, they only affect whether this data is sent to Apple – they do not affect the device’s functionality.  In other words, you can disable every single feature in that section and your iPhone or iPad will continue to function exactly the same way it always has.

system services

The only exception is “Setting Time Zone” – if you turn this function off, then you won’t be able to set your time zone automatically when no cell tower is within range.  If you frequently travel places where there are no cell towers, then consider leaving this on.

Android Phones

Google sends updates through its Google Play Store without the need for a full update of the phone’s operating system.  As a result, you don’t need to run 4.4 KitKat to control many of your Android phone’s new privacy features.

                Ad Tracking Controls

We discussed in our previous Android blog how ad networks used to track users through the device’s “Android ID.”  The Android ID could only be reset by wiping the entire device, and opting out required the user to visit the third-party ad network’s site and enter in his or her device’s (lengthy) ID.  Now, Users running Android 2.3 or later can use the new “Advertising ID” controls.  In Google Settings (not to be confused with the regular Settings menu), select “Ads” and you will see your Advertising ID.  On this screen you can select the option to “Reset Advertising ID.”  Tap the box labeled “Opt Out of interest-based ads” to opt out.  On the opt-out page, you can also reset your Advertising ID or follow the “Ads settings” link to a page that allows you to adjust your Ads Settings more granularly.

ad id

According to Google, when a user activates the Opt-Out feature, app developers are required to no longer use the advertising identifier for creating user profiles for advertising purposes or for targeting users with interest-based advertising.  They may only use your Advertising ID for contextual advertising (i.e., advertisements that relate to the content on the page on which the ad is displayed), frequency capping, conversion tracking, reporting and security and fraud detection.  (Enforcement of this policy will begin in August.)

App Permissions For Location Data

On older versions of Android (including 4.3 JellyBean), you can control whether apps can use your location information by going to the general Settings menu and selecting Location Services.  Note that disabling this option makes apps such as Google Maps unable to detect your location for the purpose of finding directions.

location data

Google Search Privacy Options

You can also adjust a myriad of other privacy settings within the Google Settings menu, found within the app list.  On Google Settings, select Search > Accounts & Privacy.  On this menu are a number of privacy options:

 

google settings

CONCLUSION

Just because you haven’t paid for the newest phone doesn’t mean you can’t protect your privacy.  Newer phones (sometimes) have more accessible privacy controls and options, but even your old phones can be made more private and more secure with a little knowledge of their inner workings.  If you know of other privacy tips for old phones, share them in the comments!

Commerce Privacy Specialist Josh Harris Joins Future of Privacy Forum as Policy Director

Commerce Privacy Specialist Josh Harris Joins Future of Privacy Forum as Policy Director

Washington, DC, January 14, 2014 —  The Future of Privacy Forum (FPF), a  Washington, DC-based think tank advancing responsible data use and consumer privacy, today announced that former Department of Commerce staffer Josh Harris has joined FPF as its Policy Director.  In this role, Mr. Harris will be coordinating FPF’s focus on cutting-edge privacy issues.  Mr. Harris will report to FPF Executive Director Jules Polonetsky.

Mr. Harris brings to FPF his seven years of experience in the International Trade Administration’s Office of Technology and Electronic Commerce.  In this capacity, Mr. Harris worked to develop and implement the Asia Pacific Economic Cooperation’s (APEC) Cross Border Privacy Rules (CBPR) System.  In 2012, Mr. Harris received the United States Department of Commerce Gold Medal – the highest award offered by the Department – for his work in this area.  In 2004, he was selected to the White House’s Presidential Management Fellowship program.  Previously, Mr. Harris served as the Vice-Chair of the American Bar Association’s Privacy and Information Security Committee.

FPF Founder and Co-Chair Christopher Wolf commented on Mr. Harris’s new role as Policy Director by saying “Josh’s experience developing and implementing privacy-based codes of conduct is an extremely valuable asset to FPF’s mission to develop best practices for the responsible use of data.”

FPF’s Executive Director and Co-Chair, Jules Polonetsky said, “Josh has the kind of practical, hands-on experience in the privacy field that will make a great addition to our FPF Team.  We’re very glad to have him onboard.”

Commenting on his new appointment, Josh Harris said: “I am honored to have the opportunity to help advance FPF’s important privacy work, along with Jules and Chris, Senior Fellows Mary Culnan, Peter Swire, Omer Tene, and the Junior Fellows.”

If you are interested in learning more about Future of Privacy Forum, please email [email protected] or call 202-642-9142.

The Future of Privacy Forum (FPF) is a Washington, DC based think tank that seeks to advance responsible data practices. The forum is led by Internet privacy experts Jules Polonetsky and Christopher Wolf and includes an advisory board comprised of leading figures from industry, academia, law and advocacy groups.

Additional Comments to the FTC about the Internet of Things

On Friday, the Future of Privacy Forum provided an additional set of comments to the FTC in the wake of the Commission’s workshop on the Internet of Things (IoT) last November.   The comments expand on FPF’s recent white paper, An Updated Privacy Paradigm for the “Internet of Things”, and address two important themes from the FTC’s workshop: (1) the importance of data security and (2) the privacy issues raised by the comprehensive collection of information.

FPF’s whitepaper explores why IoT is not well-suited to a one-size-fits all approach to consumer privacy.  The myriad types of connected devices and the varied contexts in which those devices will operate will require the implementation of flexible frameworks designed to address evolving privacy issues and consumer preferences.  The imposition of rigid or universal standards to promote privacy within IoT may harm innovation and, moreover, be ill-suited to the privacy risks and consumer preferences that ultimately emerge.

Our comments note that data security may have been the most frequently raised concern at the FTC’s workshop.  Inadequate security presents the biggest risk of actual consumer harm within IoT.  With it, bad actors will have access to all manner of connected devices, and will be able to pry into intimate spaces or perpetrate fraud or identity theft.  Company must devote adequate resources to security before and after their products reach the market.  Fortunately, companies large and small are aware of this concern and are taking steps to address it.

Another concern posed by the IoT is the ubiquitous data collection of “deeply personal” information.  Still, it must be recognized that not all connected devices will facilitate the large-scale collection of personally identifiable information.  And this issue is neither new nor unique to IoT.

FPF’s comments urge the FTC to continue its advocacy of the high-level principles of privacy by design, simplified consumer choice, and transparency while being mindful of the need for flexibility described above. High-level principles are particularly well-suited for the Internet of Things as they allow policies and procedures to be tailored to the nature of connected devices, the environments in which they are used, the purposes for which the information is used, and the evolution of consumer preferences.  Simplified consumer choice and increased transparency by industry should also be encouraged.  Industry must ensure that consumers understand how they will benefit from IoT and see that measures are in place to promote consumer privacy and security.

Again, our complete set of comments are available to read here.  Our whitepaper, An Updated Privacy Paradigm for the “Internet of Things”, is also available, as are our initial set of comments regarding the Internet of Things from May 2013.

Jules Polonetsky to Discuss the State of the World on Data Privacy

Tomorrow at 2 PM ET, Jules Polonetsky will be joining Christina Peters, IBM’s Chief Privacy Officer, for a live videochat to discuss data privacy.  Specifically, the two will address challenges managing cross-border data issues as different countries pursue different approaches and regulations for emerging technologies, mobile, and the Internet of Things.

The conversation will be streaming for IBM’s Big Data and Analytics Hub, and you can following the conversation on Twitter at #BigDataBytes.