Category Archives: Privacy Issues

ACTA – Why is the Government not informing MPs about this Agreement?

Posted on by
Reply

TopSecretHave you heard of ACTA?  How about the Anti-Counterfeiting Trade Agreement?  No?  Well, you’re probably not alone.  After all, here in the UK the Government won’t even put documents regarding the Agreement in to the House of Commons Library.   Of course, our New Labour defenders of freedom have lots of reasons for not doing this, most of them playing the ‘National Interest’ card, but one has to wonder whether that’s all there is to it.

To give you a little background, take a look at this brief outline of the provisions and process of ACTA.  Like most things that trans-national bodies come up with, they sound bland and almost useful to start with but the Devil is, as always, buried in the details.  And not buried deeply here.  The Horns and the tip of Old Nick’s tail are definitely visible!  Nominally, ACTA was put together to prevent counterfeiting and piracy of branded goods; immediately you can see that it’s beneficiaries are likely to be big corporations.  Whilst you might immediately think of dodgy Guffi handbags on the flea-market, or pirated DVDs, it also extends to less obvious things like machine parts, electronic components, drugs, etc.  In fact any copyrighted goods.  So far, sort of so good – but it also throws in sections dealing with piracy across the Internet and other aspects related to what might loosely be described as ‘means of piracy’, which is where the fun starts.

This BBC item from last yearindicates some of the concerns.  Some of the aggressive policies put forward last year against Internet pirates (or suspected pirates) here in the UK were almost certainly a product of ACTA, and the current Deep Packet Inspection trial by Virgin (whilst hitting a few legal issues) would no doubt warm the cockles of ACTA’s stony heart.  ACTA will allow for a great deal more intrusive observation by ISPs, Governmental bodies and other interested parties of our Internet traffic, will support fairly swinging penalties and because it’s a very broad-based, international agreement will have the stench of globalisation about it.  And it’s not just your Internet connection that’s of interest.  If you take your computer across international borders – in principle, ANY form of digital storage – then ACTA would permit it to be searched.  And this might easily include the SD cards in your camera, your Blackberry, your iPod.

Concerned yet?  Lots of fuss has been made about the ‘three strikes and you’re off the Net’ laws being developed in a number of countries that are likely to be signatory to ACTA when it’s finally agreed and ratified.  But that’s just the end of the process.  ACTA is the issue of concern as it legalises nothing more than wholesale invasion of privacy by private companies in to our personal lives.

It’s not just the UK Government keeping this business sub-rosa.  Here’s a Canadian take.  Fortunately, some British MPs (bless ’em) are attempting to get an Early Day motion in place to raise the issue

Perhaps we shouldn’t be too surprised; ACTA will benefit global business first and foremost – the acolytes of massive globalisation will love it.  And such agreements are often used to bring in laws that individual Governments would probably lose power over if they tried to do it themselves.  National sovereignty and local governance once more yields to the faceless centre.

Perhaps it’s time to act up on ACTA?

Blippy – how do you feel about sharing your purchases?

Posted on by
Reply

credit-cardI recently commented on whether Web 2.0 had ‘jumped the shark’ in terms of strange applications, and also remarked on whether the biggest threat to online privacy was ourselves.  However, I don’t think I was prepared for Blippy – a web site that allows you to share details of products and services that you’ve bought via different routes– Amazon, iTunes, Mastercard, Visa, etc.  Now this I find very weird and, dare I say it, slightly compelling viewing.  The system was on an invite only basis until late last year, but now seems to be open to all comers.

It’s sort of like the online version of being in the check out at the local Morrisons Supermarket and peering in to the basket of the person next in the queue.  I took a look on the site and randomly selected a user.  From 5 minutes looking at their recent transactions I was able to work out that they either lived in San Francisco and had recently traveled to New York (or vice versa), that they had a baby / toddler, that they’d done some DiY recently and various other aspects of their lives based on the purchasing records that they were willing to share.

Now, there’s nothing here that falls in to the ‘blackmail’ category, and I’m quite sure that people using Blippy would keep their ‘special’ purchases off of the system, but to be honest I do find it a rather strange thing for someone to want to do.  Maybe I’m just old.  It wasn’t long ago that people were protesting about the use of RFID tags in goods to track our shopping behaviour in shopping malls; now we seem to be falling over ourselves to give the information away for free, along with the amounts spent!

The Blippy owners said last December that they weren’t yet sure how to monetise the project.  Well, I think they were being rather disingenuous because it appears that Blippy have joined forces with the people who bought you the (now scrubbed) Facebook Beacon project.  And then there’s the very direct link between the data that Blippy collects and what has been called the ‘database of intentions’ – data that allows the prediction of buying activity based on past behaviours.  You have a large collection of data on buying habits; you have an individual with a recent history of purchases; it’s a relatively trivial software process to take the individual’s list and use the collection of data to predict what other items might be of interest.  You can then contact businesses in those market sectors with what is at least a warm prospect for a sale.

Blippy is again an interesting example of how people are willing to put lots of information in to this ‘database of intentions’.  Their lack of concern about their own privacy impacts upon us all by making it easier to predict our behaviour even if we only ‘leak’ small amounts of data. 

Over-reaction or Appropriate Response?

Posted on by
Reply

The recent arrest of 2 men on an Emirates Airlines flight for making a verbal bomb threat and for being drunk and disorderly is really nothing new; it’s happened a few times since 9/11.  Up until about 1999, I was one of those smart alecs who would make the witty comment about being careful with my bag because I had an atom-bomb in it, but around the end of the last century (even before 9/11) everyone was getting jumpy so I just started being sensible.

Obviously, after the Christmas Day bomb attempt people are naturally ‘twitchy’, but is it really that difficult to tell the difference between a bunch of drunks and a genuine bomber?  Bombers tend not to joke about their bombs.  Bombers tend to wait until the plane is in the air.  Bombers do not tend to be middle aged white men in Western clothes – especially DRUNKEN middle aged white men.  This doesn’t detract from the absolute feckin’ stupidity of the individuals concerned – after all, they could have easily been shot by the security services.  However, it did set me thinking as to whether this case, and our whole reaction to the threat of suicide bombers on our air routes, has been met by over-reaction or appropriate response by the authorities.

I think in this particular case, given the proximity of the Christmas Day attack, I’d go on the side of slightly hysterical appropriate response.  Over-reaction would have involved the men being shot and killed on the spot rather than arrested.  However, the wider picture is much more worrying.  Let’s take a step back and look at the situation.

Profiling – we’re told that our intelligence service profile travellers and put bombers on watch lists.  The Christmas Day bomber got on to such a list and still managed to get on the place.  these fellows would never have been on such a list.  So…profiling is ignored in the Heathrow case – these men didn’t fit the profile but were still treated as bombers – and the result of accurate intelligence profiling and listing was ignored due to error on Christmas Day.  Perhaps we need to be told just how many bombers profiling / no flight lists have prevented boarding with explosives?

Acceptable Risk – if you want to avoid any risk of bombers downing an aircraft, easy.  Don’t fly.  If you want to fly, then everybody goes on board in paper pyjamas and is strapped in to their seat – or maybe anaesthetised for the fight?  And your baggage is either flown in unmanned drones or separate cargo aircraft.  Daft, isn’t it?  But by introducing new measures all the time whilst existing measures are either not being followed through or are being ignored, this sort of daftness is becoming more likely. 

Privacy – forget it if you wish to fly.  You will now be scanned at a level of intrusion that have raised fears of images of children being regarded as child pornography by some legislation.  Your travelling history is already reviewed.  You may be interviewed based on your race, creed, religious beliefs, the book you’re reading.

Basically, the reaction to the authorities to the threats of terrorist bombers on civilian airliners increasingly seems to lack common sense and ‘follow through’ of existing policies and procedures, with repeated attempts to improve security after any incident by a combination of technological fix (Gigahertz Scanners, for example) and sociological / procedural changes (no hand baggage, profiling, etc.)  Whilst any deaths from terrorism are unacceptable, just what price do we intend to pay within our society to try and meet the unreachable target of zero risk?

Because it’s unlikely that there will ever be zero risk when you fly on a plane that it won’t be downed by terrorism.  It’s a dangerous world, and we need to realise that, and ascertain what are reasonable risks that we can deal with against increasingly intrusive and authoritarian powers invoked by the State to try and meet the nonsensical target of ‘zero risk’.

In his ‘Art of War’, Sun Tzu states : “Hence to fight and conquer in all your battles is not supreme excellence; supreme excellence consists in breaking the enemy’s resistance without fighting.”  Our Governments spend a lot of time, effort and money and very little judgement and common sense on trying to win every battle, and are effectively doing the work of the terrorists for them by reducing the freedom of citizens inch by inch.

Online Exhibitionists affect privacy for us all…

Posted on by
Reply

bigbrotherI came up with the title for this piece after reading this article on the BBC Website about people who the authors of a paper called ‘online exhibitionists.  The idea is that much privacy legislation is based around the idea of what levels of privacy someone can reasonably expect to have when out and about in public.  So, if we live in a world where people are relatively circumspect, photography and publication in public places is rare, then we can expect to have some right to privacy based on a reasonable expectation that you won’t be photographed.  If you’re a celebrity, then your expectation can be less because you might reasonably expect to have people taking pictures and hassling you because the nature of your work has put you in the public eye.  Right or wrong, that’s the way it’s tended to run over recent years.

Of course, with the rise of Facebook, Twitter and other social networking sites, everyone has effectively become a ZZ List Celebrity within their own group of friends or the town in which they live in.  In fact, it might be said that by the very act of registering an account with something like Facebook, we’re actually turning our backs on our right to privacy – and that’s wrong.  I recently covered this sort of ground in my post ‘What happens in Vegas, stays in Vegas’

In my original plan for this piece, I was going to elaborate on this issue – but then a Tweet made me aware of a quote from Mark Zuckerberg, founder of Facebook – “The Age of Privacy is Over”.  Here it is. He states that were Facebook being set up now he’d default all our privacy settings to Public.  Now, I quite like Facebook and have taken my privacy settings to a level with which I’m happy – but I can see Facebook losing users if they start regarding our lives as ‘entertainment feed’ for the real time Web.

Well, given that Zukerberg’s company rely on us letting go of a bit of privacy to communicate with each other, I can see that, in the words of Christine Keeler, ‘He would say that, wouldn’t he?’

But what has scared the bejabers out of me this morning is to see comments from some digital media folks along the lines that they feel it might be rewarding for us to ‘hide less’.  I’m sorry?  I can only imagine that those who say such things have never been on the receiving end of online stalking, have never been harassed for their sexuality expressed online, have never suffered a rock through their window from thugs because of their politics or race. 

It may appear to be ‘hiding less’ for people in the business but it can be a matter of staying alive for some.  Even when these people do not have online profiles, their privacy can be breached accidentally or deliberately by others who do.

Maybe the world of Big Brother has come 25 years late and is being self-inflicted.  Just how many people out there right now are echoing in their attitudes the final chilling words of ‘1984’:

“But it was all right, everything was all right, the struggle was finished. He had won the victory over himself. He loved Big Brother.”