Focusing public attention on emerging privacy and civil liberties issues

EPIC Alert 19.11

======================================================================= E P I C A l e r t ======================================================================= Volume 19.11 June 19, 2012 ----------------------------------------------------------------------- Published by the Electronic Privacy Information Center (EPIC) Washington, D.C. http://www.epic.org/alert/epic_alert_19.11.html "Defend Privacy. Support EPIC." http://epic.org/donate ======================================================================= Table of Contents ======================================================================= [1] EPIC Argues for Strict Liability Under Driver Privacy Law [2] House Considers Surveillance Law Reauthorization; EPIC Testifies [3] EPIC Awards Dinner Honors Franken, Kozinski, Priest, Diffie, Ware [4] Congress Set to Expand US Drone Use as Privacy Questions Linger [5] EPIC Urges FTC to Protect Privacy of Myspace Users [7] EPIC in the News [8] Book Review: 'Talking Back to Facebook' [9] Upcoming Conferences and Events ======================================================================= [1] EPIC Argues for Strict Liability Under Driver Privacy Law ======================================================================= EPIC has filed a "friend of the court" brief in Gordon v. Softech Int'l. Inc., a case before the US Appeals Court for the Second Circuit that involves liability for resellers of driver information under the Driver's Privacy Protection Act of 1994, or DPPA. A lower court ruled that resellers were not "strictly liable" under the DPPA when a downstream purchaser of driver information misused the data in violation of the statue. EPIC's brief argues that strict reseller liability is necessary to satisfy the statutory purposes of the DPPA. The DPPA prohibits knowingly obtaining, using, or disclosing personal information from a motor vehicle record, except for special "permitted uses" described in the statute. The plaintiff in Gordon argued that a drivers' record reseller who sold information to a buyer who later used it impermissibly should be liable under the DPPA. Resellers contended that no such liability exists because the buyer "represented" permissible use at the time the information was disclosed. EPIC's brief maintains that resellers should be strictly liable whenever buyers use driver information impermissibly. Such strict liability, EPIC argues, "is necessary to satisfy the statutory purposes of the DPPA." EPIC similarly contends that without strict liability resellers will not have an incentive to adequately control the circumstances under which they sell driver information obtained from a state DMV. The Gordon v. Softech decision is particularly important in light of the upcoming US Supreme Court decision in First American Financial Corp. v. Edwards, another case regarding statutory rights granted by Congress and whether plaintiffs must prove that they have been financially injured by a statutory violation. While First American v. Edwards does not directly involve a privacy statute, it has broad implications for privacy and other consumer-protection laws, like the DPPA, that provide for civil liability and liquidated damages. EPIC: Driver Privacy http://epic.org/privacy/drivers/ EPIC: "Friend of the Court" Brief in Gordon v. Softech (June 15, 2012) http://epic.org/amicus/dppa/softech/EPIC-Amicus-Brief.pdf EPIC: Gordon v. Softech International, Inc. http://epic.org/amicus/dppa/softech/ Access Reports: Text of DPPA http://www.accessreports.com/statutes/DPPA1.htm EPIC: First American Financial Corp. v. Edwards http://epic.org/amicus/first-american/ ======================================================================= [2] House Considers Surveillance Law Reauthorization; EPIC Testifies ======================================================================= The US House Committee on the Judiciary will markup the FISA Amendments Act Reauthorization Act of 2012 (FAA) on June 19. The Act authorizes US government surveillance of international communications, including the private communications of US citizens. Currently, the law provides little information to Congress or the public about these surveillance activities. EPIC Executive Director Marc Rotenberg testified May 31 before the House Judiciary Subcommittee on Crime, Terrorism, and Homeland Security about the extension of the FISA Amendments Act of 2008. Some FAA provisions will sunset at the end of December 2012, and the Obama Administration has made clear that extending the FAA is a "top priority." EPIC's Rotenberg called for increased transparency and reporting of the government's FISA activity and recommended that the decisions of the Foreign Intelligence Surveillance Court be made public. In particular, Rotenberg suggested the publication of an annual FISA report, similar to the comprehensive Wiretap Reports provided each year by the Administrative Office of the US Courts. Currently the FAA authorizes the US Attorney General to issue an annual public letter to Congress, but this letter only provides the aggregate number of applications made to the Surveillance Court and the number accepted. EPIC argued that more detailed information is necessary to ensure effective public oversight of FISA authority. As part of the 2008 amendments, the FAA changed the nature of FISA authority by providing for Surveillance Court-authorized "programmatic surveillance" orders. Programmatic surveillance orders allow surveillance of foreign communications for up to a year without the need for particular evidence showing that a target is an agent of a foreign power. These programs must include "targeting" and "data minimization" procedures approved by the FISC and are subject to semiannual compliance reviews, but the final reports typically are not made available to the public or to Congress at large. Even the Court's legal decisions regarding government FISA authority remain largely undisclosed. The Senate Intelligence Committee has also issued a report on the FAA Sunsets Extension Act, which would renew the FAA provisions through 2017. In the report, Senators Ron Wyden (D-OR) and Mark Udall (D-CO) conclude "that section 702 [of the Act] currently contains a loophole that could be used to circumvent traditional warrant protections and search for the communications of a potentially large number of American citizens." However, committee Chair Dianne Feinstein (D-CA) denied the existence of such a loophole. The first three semi-annual reports of compliance by the DNI were recently released, but their contents were heavily redacted. US House Judiciary: Markup of FISA Amendments Reauth. (June 19, 2012) http://epic.org/redirect/061912-ushouse-fisa-amend-markup.html EPIC: Statement before House on FISA Amendments (May 31, 2012) http://epic.org/redirect/061912-epic-fisa-amdt-statement.html Senate Intelligence Cmte.: FAA Sunsets Extension Act (June 7, 2012) http://www.fas.org/irp/congress/2012_rpt/faa-extend.pdf US AG and DIA: Letter to Congressional Leaders re: FISA (Feb. 8, 2012) http://www.fas.org/irp/news/2012/02/dni020812.pdf US Asst. AG: Annual Letter on FISA Surveillance (Apr. 30, 2012) http://www.fas.org/irp/agency/doj/fisa/2011rept.pdf Secrecy News: Article on FISA Amendment Loopholes (Jun. 11, 2012) http://www.fas.org/blog/secrecy/2012/06/faa_loophole.html EPIC: Clapper v. Amnesty International http://epic.org/amicus/fisa/clapper/ ======================================================================== [3] EPIC Awards Dinner Honors Franken, Kozinski, Priest, Diffie, Ware ======================================================================== At the 2012 EPIC Champion of Freedom Dinner in Washington, DC, Senator Al Franken (D-MN), Chief Judge Alex Kozinski of the Ninth Circuit Court of Appeals, and Washington Post reporter Dana Priest received awards for the defense of civil liberties and human rights, and for raising public awareness of new challenges to privacy. Senator Franken's award was based on his pursuit of meaningful legislation on emerging privacy issues, including a bill to protect location privacy. Chief Judge Kozinski has striven to defend liberty in an era of rapidly changing technology. Dana Priest's investigative series "Top Secret America" with William Arkin exposed the exponential post-9/11 growth of the US intelligence community. Whitfield Diffie and Willis Ware were also presented with EPIC Lifetime Achievement Awards. Slate Magazine's Dahlia Lithwick hosted the event, and technologists Bruce Schneier and Paul Wolfson made guest appearances. For International Privacy Day in January 2012, EPIC presented technologist Christopher Soghoian with the US Privacy Champion of Freedom award and Canadian Privacy Commissioner Jennifer Stoddart with the International Champion of Freedom Award. EPIC established the Champion of Freedom Awards in 2004 to recognize individuals and organizations that have helped safeguard the right of privacy with courage and integrity. Previous recipients include Senator Patrick Leahy (D-VT) (2004), Representative Ed Markey (D-MA) (2009), Rep. Joe Barton (R-TX) and former FTC Chair Pamela Jones Harbour (2010), the Wall Street Journal (2011), and former Miss USA Susie Castillo (2011). EPIC: Champion of Freedom 2012 http://www.epic.org/june11 United States Senate: Al Franken http://www.alfranken.com/ Ninth Circuit Court of Appeals: Chief Judge Alex Kozinski http://www.ce9.uscourts.gov/chief_judge_bio.html Washington Post: Dana Priest http://www.washingtonpost.com/dana-priest/2011/03/02/ABkXIIQ_page.html US Senate: Location Privacy Protection Act of 2011 http://thomas.loc.gov/cgi-bin/bdquery/z?d112:s.1223: The Washington Post: Top Secret America http://projects.washingtonpost.com/top-secret-america/ Stanford University: Whitfield Diffie http://cisac.stanford.edu/people/Whitfield_Diffie Rand Corporation: Willis H. Ware http://www.rand.org/about/people/w/ware_willis_h.html Slate: Dahlia Lithwick http://www.slate.com/authors.dahlia_lithwick.html Bruce Schneier Blog: Biography http://www.schneier.com/about.html Wilmer Hale: Paul Wolfson http://www.wilmerhale.com/paul_wolfson/ ======================================================================= [4] Congress Set to Expand US Drone Use as Privacy Questions Linger ======================================================================= A June 2012 report published by the Senate Armed Services Committee recommends the accelerated development and deployment of drones inside the US. The report calls for increased collaboration between key government agencies, including the Federal Aviation Administration and Department of Defense, in order to create an environment where drones operate "freely and routinely" in US national airspace. A 2012 re-authorization bill for the Federal Aviation Administration requires the agency to develop rules governing the operation of unmanned drones within US borders. The FAA's official duties include requirements to promulgate regulations that will ensure a safe and efficient US airspace. Earlier in 2012, EPIC, joined by over 100 other organizations, technical experts, and members of the public, petitioned the FAA to include a rulemaking on the privacy implications of domestic drone use as part of the process by which drones are increasingly licensed to operate in the US. Domestic drone use has increased dramatically in recent years; the cities of Miami, FL, and Conroe, TX, outside of Houston, have acquired drones for use by law enforcement. The US Bureau of Customs and Border Protection owns 10 Predator drones to operate along US borders at a cost of approximately $18 million each, with an additional $55.3 million total for maintenance and operations. A new Report highlights problems with the Bureau's drone program. A recent report by the DHS Office of the Inspector General concluded that Customs and Border Protection "needs to improve planning of its unmanned aircraft systems program to address its level of operation, program funding, and resource requirements, along with stakeholder needs." Despite the CPB's limited mission to safeguard the borders, the report demonstrated that CPB often flies missions for the FBI, the Defense Department, local law enforcement, and other agencies. This practice made headlines in 2011 when police in North Dakota used a CPB drone to arrest a US citizen. Senator Rand Paul (R-KY) and Rep. Austin Scott (R-TX) have introduced identical bills in the Senate and the House designed to limit the use of drones for surveillance within the US. The bills would require law enforcement to receive a warrant before conducting any criminal surveillance of individuals. EPIC: Unmanned Aerial Vehicles (UAVs) and Drones http://epic.org/privacy/drones/ Senate Armed Services Committee: NDAA 2013 Report (June 4, 2012) http://www.fas.org/irp/congress/2012_cr/sasc-uas.html FAA: 2012 Air Transportation Modernization and Safety Improvement Act http://thomas.loc.gov/cgi-bin/bdquery/z?d112:h.r.658: EPIC: APA Petition to the FAA (Feb. 24, 2012) http://epic.org/privacy/drones/FAA-553e-Petition-03-08-12.pdf DHS Office of Inspector General: Drone Report (May 30, 2012) http://www.oig.dhs.gov/assets/Mgmt/2012/OIG_12-85_May12.pdf LA Times: Article on Drones in US (Dec. 10, 2011) http://epic.org/redirect/061912-latimes-drones.html FAA: Fact Sheet on Unmanned Aircraft Systems (UAS) http://www.faa.gov/news/fact_sheets/news_story.cfm?newsId=6287 HR 5925: Preserving Freedom from Unwarranted Surveillance Act of 2012 http://thomas.loc.gov/cgi-bin/query/z?c112:H.R.5925: ======================================================================== [5] EPIC Urges FTC to Protect Privacy of Myspace Users ======================================================================== EPIC has submitted comments to the Federal Trade Commission on a proposed settlement with social network and music site Myspace. The settlement follows from allegations that Myspace allowed advertisers to access users' personally identifying information after promising to keep such information private. In the comments, EPIC expressed support for the settlement in general, but recommended several improvements that would better protect the privacy of Myspace users. According to the FTC, Myspace made personal information available to third parties via a unique user identifier called a "Friend ID," which directly accessed personal information from a user's profile. Advertisers could also link a Friend ID with a partial history of a user's browsing activity gathered from advertising cookies. Myspace allowed these practices despite promising users that "Myspace will not share your [personally identifiable information] with third parties unless you have given Myspace permission to do so." The FTC settlement prohibits Myspace from misrepresenting the privacy or security of users' personal information, mandates Myspace to implement a comprehensive privacy program, and requires the site to obtain biennial assessments from a "qualified, objective, independent third-party professional" for the next 20 years. While EPIC expressed support for the FTC's settlement, it also recommended two improvements. EPIC's first recommendation is for the FTC to make the terms of the Myspace settlement at least as protective as the terms of the FTC-Facebook settlement, under which Facebook must obtain the users' affirmative consent before sharing data with third parties. EPIC's second recommendation is for the FTC to require Myspace to implement practices consistent with the White House's Consumer Privacy Bill of Rights. The CPBR contains seven privacy principles - Individual Control, Transparency, Respect for Context, Security, Access and Accuracy, Focused Collection, and Accountability - that could be adapted to social networking sites like Myspace; for example, Myspace should give users access to all information that it keeps about them. EPIC also recommends that Myspace's privacy audits be "publicly available to the greatest extent possible." EPIC: Comments on FTC-Myspace Settlement (Jun. 8, 2012) http://epic.org/privacy/socialnet/EPIC-Myspace-comments-FINAL.pdf FTC: Settlement with Myspace (May 8, 2012) http://ftc.gov/os/caselist/1023058/120508myspaceorder.pdf FTC: Press Release on Myspace Settlement (May 8, 2012) http://ftc.gov/opa/2012/05/myspace.shtm FTC: Settlement with Facebook (Nov. 29, 2011) http://ftc.gov/os/caselist/0923184/111129facebookagree.pdf FTC: Press Release on Facebook Settlement (Nov. 29, 2011) http://ftc.gov/opa/2011/11/privacysettlement.shtm White House: Consumer Privacy Bill of Rights (Feb. 2012) http://www.whitehouse.gov/sites/default/files/privacy-final.pdf EPIC: Federal Trade Commission http://epic.org/privacy/internet/ftc/ EPIC: Social Networking Privacy http://epic.org/privacy/socialnet/ ======================================================================== [6] News in Brief ======================================================================== EPIC Asks Ombudsman to Investigate DHS FOIA Practices EPIC has submitted a letter to the Office of Government Information Services, asking for an investigation into FOIA practices at the Department of Homeland Security. EPIC's letter explained that the DHS, a federal agency that also includes the TSA and the Bureau of Customs and Border Protection, routinely denies fee waivers in circumstances where the agency knows that the requester properly qualifies. By way of example, EPIC cited a recent FOIA appeal in which DHS wrongly denied EPIC a fee waiver request. The letter further stated that the practice creates additional work for sophisticated FOIA requesters and may, as a practical matter, prevent other requesters from pursuing important FOIA requests. EPIC: Letter to OGIS Director re: DHS FOIA Practices (Jun. 1, 2012) http://epic.org/foia/dhs/EPIC-DHS-FOIA-OGIS-Ltr-06-01-12.pdf OGIS: Office of the Ombudsman https://ogis.archives.gov/?p=//ogis/index.html EPIC: FOIA Appeal to OGIS (June 1, 2012) http://epic.org/foia/dhs/EPIC-DHS-FOIA-Appeal-06-01-12.pdf EPIC: DHS Privacy Office http://epic.org/privacy/dhs-cpo.html EPIC: "Litigation Under the Federal Open Government Laws" http://epic.org/bookstore/foia2010/default.html IPv6, New Internet Protocol, Launches with Privacy Questions The Internet Society has announced the world launch of IPv6, which will dramatically expand the number of Internet, or IP, addresses. IPv6 creates fixed IP addresses, allowing routine tracking of Internet- connected devices, such as laptops, cellphones, and soon many consumer appliances. This will make it easier for law enforcement agencies and advertisers to track users of Internet-based services. A Privacy Extension allows the use of IPv6 without persistent identifiers, though it is unclear how widely it will be adopted. In 2008, EPIC testified before the European Parliament on IP addresses and privacy, and said that companies that use IPv6 linked to identifiable users should be subject to data privacy requirements. The EU classifies IP addresses as personal information. The Internet Society (ISOC): IPv6 http://www.internetsociety.org/ipv6 ISOC: IPv6 World Launch Page http://www.worldipv6launch.org/ IETF: RFC on Privacy Extension for IPv6 (Jan. 2001) http://www.ietf.org/rfc/rfc3041.txt EPIC: Testimony Before EU on IP Addresses and Privacy (Jan. 2008) http://epic.org/privacy/ftc/google/EPIC_LIBE_Submission.pdf EU: Position Paper on IPv6 and Privacy (May 2002) http://www.eu.ipv6tf.org/PublicDocuments/wp58_en.pdf EPIC: Search Engine Privacy http://epic.org/privacy/search_engine/ FCC Issues Stronger Telemarketing Rules to Protect Consumers The Federal Communications Commission's final rule amending the Telephone Consumer Protection Act of 1991 regulations is now in effect. The rule requires "(1) prior express written consent for all autodialed or prerecorded telemarketing calls to wireless numbers and residential lines; (2) allow[s] consumers to opt out of future robocalls during a robocall; (3) limit[s] permissible abandoned calls on a per-calling campaign basis, in order to discourage intrusive calling campaigns; and (4) exempts prerecorded calls to residential lines made by health care-related entities governed by the Health Insurance Portability and Accountability Act of 1996." EPIC has previously urged the Commission to require express consumer consent for telemarketing calls and to protect wireless subscribers from telemarketing. Federal Register: FCC Final Ruling on TCPA Amendment (Jun. 11, 2012) http://www.gpo.gov/fdsys/pkg/FR-2012-06-11/pdf/2012-13862.pdf FCC: Initial Ruling on TCPA Amendment (Feb. 15, 2012) http://hraunfoss.fcc.gov/edocs_public/attachmatch/FCC-12-21A1.pdf FCC: Telephone Consumer Protection Act of 1991 http://epic.org/redirect/061912-text-tcpa1991.html FCC: Rules and Regulations Implementing TCPA (Sept. 2003) http://www.ftc.gov/os/2003/09/dnciareportappendb.pdf EPIC: Testimony Before FCC on TCPA (Dec. 2002) http://epic.org/privacy/telemarketing/tcpacomments.html EPIC: Testimony Before FCC on TCPA Wireless Amendments (May 11, 2006) http://epic.org/privacy/telemarketing/fcc_aca_05-11-06.html EPIC: Telemarketing and the Telephone Consumer Protection Act (TCPA) http://epic.org/privacy/telemarketing/default.html Spokeo to Pay FTC $800,000 for Privacy Violations Data broker Spokeo has agreed to pay $800,000 to settle a complaint filed by the Federal Trade Commission, in which the FTC found that Spokeo had marketed data profiles to employers in violation of ederal privacy law. The complaint alleges that Spokeo violated the Fair Credit Reporting Act (FRCA) by failing to ensure that collected consumer information was accurate; failing to ensure that such information would be used only for legally permissible purposes, and failing to tell users if adverse decisions were made based on the information. The FTC also alleged that Spokeo created its own endorsements on news and technology websites and represented them as independent endorsements. The FTC's settlement bans Spokeo from future FCRA violations and misrepresentations. In 2004, EPIC successfully urged the FTC to investigate the compilation and sale of personal dossiers by data broker ChoicePoint. That investigation produced a $10M settlement, the largest in the FTC's history for a violation of federal privacy law. FTC: Press Release on Spokeo Settlement (June 12, 2012) http://ftc.gov/opa/2012/06/spokeo.shtm FTC: Settlement and Consent Order Against Spokeo (June 7, 2012) http://ftc.gov/os/caselist/1023163/120612spokeoorder.pdf EPIC: Fair Credit Reporting Act (FCRA) http://epic.org/privacy/fcra/ EPIC: Federal Trade Commission http://epic.org/privacy/internet/ftc/ EPIC: Choicepoint http://epic.org/privacy/choicepoint/ ======================================================================= [7] EPIC in the News ======================================================================= "Upcoming Supreme Court Decision Could Boost Hulu In Privacy Lawsuit." MediaPost, June 12, 2012. http://epic.org/redirect/061912-mediapost-epic-hulu.html "Swiss Court Orders Modifications to Google Street View." The New York Times, June 8, 2012. http://epic.org/redirect/061912-nytimes-swiss-streetview.html "Privacy group says DHS stonewalling on 'electronic frisk' technology records." Government Security News, June 5, 2012. http://www.gsnmagazine.com/node/26487?c=federal_agencies_legislative "The Words That Scare America-- and China." The Atlantic, June 4, 2012. http://epic.org/redirect/061412-atlantic-dhs-keywords.html "Legal battle over Twitter subpoena heats up." Chicago Tribune, May 31, 2012. http://epic.org/redirect/061412-chitrib-twitter.html "Congress Looking Happy to Reauthorize Broad, Secret Spying Powers." Wired, May 31, 2012. http://www.wired.com/threatlevel/2012/05/congress-mulls-spy-powers/ "House Judiciary Subcmte. Debates FISA Amendments Reauthorization" [Video]. C-SPAN, May 31, 2012. http://www.c-span.org/Events/C-SPAN-Event/10737431128/ "States fight for drone biz." Salon, May 30, 2012. http://epic.org/redirect/061412-salon-drones.html "10 weird words on DHS watch list." Politico, May 30, 2012. http://www.politico.com/news/stories/0512/76882.html For More EPIC in the News: http://epic.org/news/epic_in_news.html ======================================================================= [8] Book Review: 'Talking Back to Facebook' ======================================================================= "Talking Back to Facebook: The Common Sense Guide to Raising Kids in the Digital Age," James P. Steyer http://epic.org/redirect/061912-talking-back-to-facebook-steyer.html It's almost too easy to go on the defensive after reading "Talking Back to Facebook," the latest parenting book-cum-tech-diatribe by Common Sense Media founder and CEO James P. Steyer. Your kids aren't the ones with bedroom game consoles, are they? Using mobile phones to send naked photos? Developing ADHD from too much screen time? Sharing secrets to be preserved on some remote server in perpetuity? Because when your kids are guilty, you're the parental enabler, and Steyer doesn't have much patience for you. It's also too easy to feel smug if you've achieved all or even most of the "common sense" technology-use principles Steyer lays out for your child from birth to age 15, the fundamental tenet of which is "prevent when you can, monitor when you can't." "Talking Back to Facebook," which includes an enthusiastic foreward by Common Sense Media board member Chelsea Clinton, is a book that's a few years overdue, now that seemingly every child protected by COPPA has demanded a Facebook account and a smartphone. Steyer has distilled parental digital-media conundrums into a neat, memorable set of problems and solutions. According to Steyer, the core of digital media's negative effect on children and adolescents is contained in the acronym "RAP": Relationships, Attention/Addiction, and Privacy. Part I of "Talking Back to Facebook" explores the risks and consequences of children's unlimited and unmonitored digital media use, from bullying and promiscuity to obesity and poor grades. Steyer also explores the less tangible effects of kids' lives online, including young children being used as vehicles for new forms advertising and data collection and the loss of privacy caused by indefinite data retention. Part II, or "Parenting 2.0," attempts to provide solutions to Steyer's bleak set of observations and study results. His recommendations are a succinct and easy read, and it's worth looking at all of them, not just those most relevant to you. Because they're all probably relevant to you. The best way to teach your child to turn away from the computer, Steyer says, is to do it yourself: "[W]hen you tune into digital media, use your Blackberry compulsively, you're sending clear messages to your [child] that you may not realize: that she needs to compete with digital devices for your attention, and that being constantly connected, and often disconnected from the people you're physically with, is model behavior." "Talking Back to Facebook" is a necessary, if discomfiting, read whether you find Steyer a doomsayer or pragmatist. "Tuning in" to the physical world around you rather than being "out there" constantly is a valuable lesson, even if you have to stop reading this - right this instant - in order to do it. -- EC Rosenberg ================================ EPIC Publications: "Litigation Under the Federal Open Government Laws 2010," edited by Harry A. Hammitt, Marc Rotenberg, John A. Verdi, Ginger McCall, and Mark S. Zaid (EPIC 2010). Price: $75 http://epic.org/bookstore/foia2010/ Litigation Under the Federal Open Government Laws is the most comprehensive, authoritative discussion of the federal open access laws. This updated version includes new material regarding President Obama's 2009 memo on Open Government, Attorney General Holder's March 2009 memo on FOIA Guidance, and the new executive order on declassification. The standard reference work includes in-depth analysis of litigation under: the Freedom of Information Act, the Privacy Act, the Federal Advisory Committee Act, and the Government in the Sunshine Act. The fully updated 2010 volume is the 25th edition of the manual that lawyers, journalists and researchers have relied on for more than 25 years. ================================ "Information Privacy Law: Cases and Materials, Second Edition" Daniel J. Solove, Marc Rotenberg, and Paul Schwartz. (Aspen 2005). Price: $98. http://www.epic.org/redirect/aspen_ipl_casebook.html This clear, comprehensive introduction to the field of information privacy law allows instructors to enliven their teaching of fundamental concepts by addressing both enduring and emerging controversies. The Second Edition addresses numerous rapidly developing areas of privacy law, including: identity theft, government data mining and electronic surveillance law, the Foreign Intelligence Surveillance Act, intelligence sharing, RFID tags, GPS, spyware, web bugs, and more. Information Privacy Law, Second Edition, builds a cohesive foundation for an exciting course in this rapidly evolving area of law. ================================ "Privacy & Human Rights 2006: An International Survey of Privacy Laws and Developments" (EPIC 2007). Price: $75. http://www.epic.org/phr06/ This annual report by EPIC and Privacy International provides an overview of key privacy topics and reviews the state of privacy in over 75 countries around the world. The report outlines legal protections, new challenges, and important issues and events relating to privacy. Privacy & Human Rights 2006 is the most comprehensive report on privacy and data protection ever published. ================================ "The Public Voice WSIS Sourcebook: Perspectives on the World Summit on the Information Society" (EPIC 2004). Price: $40. http://www.epic.org/bookstore/pvsourcebook This resource promotes a dialogue on the issues, the outcomes, and the process of the World Summit on the Information Society (WSIS). This reference guide provides the official UN documents, regional and issue-oriented perspectives, and recommendations and proposals for future action, as well as a useful list of resources and contacts for individuals and organizations that wish to become more involved in the WSIS process. ================================ "The Privacy Law Sourcebook 2004: United States Law, International Law, and Recent Developments," Marc Rotenberg, editor (EPIC 2005). Price: $40. http://www.epic.org/bookstore/pls2004/ The Privacy Law Sourcebook, which has been called the "Physician's Desk Reference" of the privacy world, is the leading resource for students, attorneys, researchers, and journalists interested in pursuing privacy law in the United States and around the world. It includes the full texts of major privacy laws and directives such as the Fair Credit Reporting Act, the Privacy Act, and the OECD Privacy Guidelines, as well as an up-to-date section on recent developments. New materials include the APEC Privacy Framework, the Video Voyeurism Prevention Act, and the CAN-SPAM Act. ================================ "Filters and Freedom 2.0: Free Speech Perspectives on Internet Content Controls" (EPIC 2001). Price: $20. http://www.epic.org/bookstore/filters2.0 A collection of essays, studies, and critiques of Internet content filtering. These papers are instrumental in explaining why filtering threatens free expression. ================================ EPIC publications and other books on privacy, open government, free expression, and constitutional values can be ordered at: EPIC Bookstore http://www.epic.org/bookstore ================================ EPIC also publishes EPIC FOIA Notes, which provides brief summaries of interesting documents obtained from government agencies under the Freedom of Information Act. Subscribe to EPIC FOIA Notes at: http://mailman.epic.org/mailman/listinfo/foia_notes ======================================================================= [9] Upcoming Conferences and Events ======================================================================= The 12th Privacy Enhancing Technologies Symposium (PETS 2012). 11-13 July 2012, Vigo, Spain. For More Information: http://petsymposium.org/2012/. CONSENT policy conference: "Perceptions, Privacy and Permissions: the role of consent in on-lineservices." 6-7 September 2012, Cluj-Napoca, Romania. Call for papers by 7 June 2012. For More Information: http://conference.ubbcluj.ro/consent/. Amsterdam Privacy Conference. 7-10 October 2012, Amsterdam. For More Information: http://www.ivir.nl/news/CallforPapersAPC2012.pdf. 34th International Conference of Data Protection and Privacy. 23-25 October 2012, Punta del Este, Uruguay. For more information: http://www.privacyconference2012.org/english/sobre-la-conferencia/ noticias/noticia-destacada. The Public Voice Conference. 22 October 2012, Punta del Este, Uruguay. For more information: http://www.thepublicvoice.org/. PIPA Conference 2012: "Privacy on the Go." 1-2 November 2012, Calgary, Alberta. For More Information: http://privacyconference2012.ca. "Computers, Privacy and Data Protection: Reloading Data Protection." 23-25 January 2013, Brussels. For More information: http://www.cpdpconferences.org/. ======================================================================= Join EPIC on Facebook and Twitter ======================================================================= Join the Electronic Privacy Information Center on Facebook and Twitter: http://facebook.com/epicprivacy http://epic.org/facebook http://twitter.com/epicprivacy Join us on Twitter for #privchat, Tuesdays, 11:00am ET. Start a discussion on privacy. Let us know your thoughts. Stay up to date with EPIC's events. Support EPIC. ======================================================================= Privacy Policy ======================================================================= The EPIC Alert mailing list is used only to mail the EPIC Alert and to send notices about EPIC activities. We do not sell, rent or share our mailing list. We also intend to challenge any subpoena or other legal process seeking access to our mailing list. We do not enhance (link to other databases) our mailing list or require your actual name. In the event you wish to subscribe or unsubscribe your e-mail address from this list, please follow the above instructions under "subscription information." ======================================================================= About EPIC ======================================================================= The Electronic Privacy Information Center is a public interest research center in Washington, DC. It was established in 1994 to focus public attention on emerging privacy issues such as the Clipper Chip, the Digital Telephony proposal, national ID cards, medical record privacy, and the collection and sale of personal information. EPIC publishes the EPIC Alert, pursues Freedom of Information Act litigation, and conducts policy research. For more information, see http://www.epic.org or write EPIC, 1718 Connecticut Ave. NW, Suite 200, Washington, DC 20009. +1 202 483 1140 (tel), +1 202 483 1248 (fax). ======================================================================= Donate to EPIC ======================================================================= If you'd like to support the work of the Electronic Privacy Information Center, contributions are welcome and fully tax-deductible. Checks should be made out to "EPIC" and sent to 1718 Connecticut Ave. NW, Suite 200, Washington, DC 20009. Or you can contribute online at: http://www.epic.org/donate Your contributions will help support Freedom of Information Act and First Amendment litigation, strong and effective advocacy for the right of privacy and efforts to oppose government regulation of encryption and expanding wiretapping powers. Thank you for your support. ======================================================================= Subscription Information ======================================================================= Subscribe/unsubscribe via web interface: http://mailman.epic.org/mailman/listinfo/epic_news Back issues are available at: http://www.epic.org/alert The EPIC Alert displays best in a fixed-width font, such as Courier. ------------------------- END EPIC Alert 19.11 ------------------------_______________________________________________