#PrivChat 2012
Back to PrivChatMay 22, 2012
Featured Guests: Jim Adler, Chief Privacy Officer, Intelius and Brendan Charles, Community Manager, Hibe.com - Joining #PrivChat for a #PII2012 Recap- Q1: Just because we can, should we? Location tracking and the retail experience. (background available at Euclid: Home and Point Inside: Home)
- Q2: Is Personally Identifiable Information (PII) Dead? (background available at The Hill: FTC explains standard for online protecting privacy)
- Q3: The 'creepy' factor: How do you define it? what lines don't you cross? (background available at Twitter: #Pii2012, Creepy)
- Q4: How can the the non-technie and non-lawyer (e.g., philosopher, economist, sociologist) have a larger voice in the privacy debate?
May 15, 2012
Featured Guest: Aaron Titus, Chief Privacy Officer, Identity Finder, (biography).- Q1: LinkedIn automatically accesses and uploads all of Outlook contacts, with no way to opt out, if the user has installed Outlook's Social Connector (a default in some installations). LinkedIn's help desk confirms that the only way to stop LinkedIn from automatically uploading a user's entire contact list is to uninstall Social Connector, which may have unintended consequences. LinkedIn's privacy policy makes no mention of this issue. What other companies have an express agreement to share users' contact databases, and does it matter that Microsoft shares user information stored on a local hard drive vs. its cloud?
- Q2: Identity Finder recently published a study of 3 million public tax returns filed by non-profit organizations, and found nearly 475,000 social security numbers of accountants, scholarship recipients, directors, employees and donors. In response to our report, the IRS claims that they do not have the legal authority to redact the information. To what extent is PII on public government documents a problem? Who, if anybody, should be responsible to clean it up? What rights should individuals have to redact public documents to protect identity and privacy? (background available at Identity Finder: Tax Returns Expose SSNs to Public: Study and Accounting Today: IRS Warns Nonprofits Not to Disclose SSNs)
- Q3: Do Electronic Health Records and federated identities make us safer? Is technology privacy agnostic? Does the inefficiency imposed by paper records actually improve health information privacy?
- Q4: Over the past few years, I have come to the unhappy conclusion that aside from a few niche exceptions, the free market generally disfavors privacy and privacy innovation. I have been searching for fundamental market forces that favor privacy, or evidence that such forces exist. What market forces favor privacy? What (if any) major moneyed/corporate interests favor privacy? Are there any examples of privacy-enhancing technologies that have found widespread, viral (read: NOT niche) acceptance?
May 8, 2012
- Q1: Will More Companies Follow Mozilla Down the Path Away from CISPA? (background available at Forbes: Mozilla Slams CISPA, Breaking Silicon Valley's Silence On Cybersecurity Bill)
- Q2: What Makes Facebook Worth it? (background available at Washington Post: Facebook IPO: How could privacy concerns affect revenue? and Forbes: Why Facebook Stock Makes The Best Graduation Present Possible)
- Q3: Privacy Bill of Rights: What Will Happen in the Senate? (background available at The Hill: Senate to examine Obama plan for online privacy ‘bill of rights’)
- Q4: Should the Government get a Back Door? Can It Be Stopped? (background available at CNET: FBI: We need wiretap-ready Web sites - now)
May 1, 2012
- Q1: CISPA Moves to the Senate: Privacy? (background available at CNET: House approves CISPA despite last-minute push by opponents and Time Techland: 5 Reasons the CISPA Cybersecurity Bill Should be Tossed)
- Q2: Vehicle Tracking: Black Boxes (background available at Wall Street Journal: A Black Box in Your Car?)
- Q3: Drones are Coming: What Can we Do? (background available at MyFoxDC: Could drones be a regular presence in DC area in near future? and EPIC: Unmanned Aerial Vehicles (UAVs) and Drones)
- Q4: Should Google Suffer Consequences for Misleading the Public on Street View? (background available at Wired: Congress Should Grill the FCC Over Redacted Google Wi-Fi Snooping Report)
April 24, 2012 (Transcript)
- Q1: U.S. Cybersecurity: How Far is Too Far? (background available at IT World: How CISPA threatens our First Amendment rights and CNET: Opposition grows to CISPA 'Big Brother' cybersecurity bill)
- Q2: What Should be the Threshold for Location Tracking? (background available at CNET: Wireless providers side with cops over users on location privacy)
- Q3: Logging in Facebook: is it Worth it? (background available at Jodi Wilkinson: What sites see when you login with Facebook and EPIC: Facebook Asks for Feedback after Policy Changes)
- Q4: What is the Right Approach to Drone Regulation? (background available at Washington Post: Regulating domestic drones on a deadline and EPIC: Petition to the FAA for Privacy Regulations for Drones)
April 17, 2012
Featured Guest: Jim Brock, CEO and Founder, Privacy Choice (biography).- Q1: Will the ad-icon program be necessary after Do Not Track is generally adopted?
- Q2: Will the availability of Do Not Track loosen restrictions on aggressive tracking methods, like device fingerprinting?
- Q3: Should tracking companies submit to audits and what would those look like?
- Q4: Does Facebook have a responsibility to police its app universe?
April 10, 2012 (Transcript)
Featured Guest: Evidon (website) and Ghostery (website).- Q1: EU ePrivacy Directive: Is the May 25th deadline going to be Y2K for EU publishers?
- Q2: Wall Street Journal Data Transparency Weekend: What are some transparency tools you'd like to see come out of it? (background available at Wall Street Journal: Data Transparency Weekend and Hacker League: WSJ Data Transparency Code-a-Thon)
- Q3: As a privacy/industry professional, how do you define tracking? (background available at South by Southwest: Sex, Lies and Cookies: Web Privacy EXPOSED!)
- Q4: Will we see a consumer privacy law? If so, what will it look like? (background available at PCWorld: Could New Online Privacy Laws Lead to Unnecessary Regulation?)
April 3, 2012 (Transcript)
Featured Guest: J. Trevor Hughes, President and CEO, International Association of Privacy Professionals (IAPP) (biography).- Q1: The Changing Policy Environment (What to Expect from the Multiple Issues in Play) (background available at IAPP: European Commission Publishes New Framework on Data Protection, IAPP: Legal analysis of the new proposed EU regulation on data protection, IAPP: Obama administration and Congress step up efforts to protect against cyber threats, IAPP: Elevating data privacy within governments, IAPP: Perspective: What DPAs need to know, and IAPP: The 2012 privacy forecast)
- Q2: The Rise of Privacy as a Business Management Practice (background available at IAPP: Practical strategies for creating a privacy culture in your organization, IAPP: What makes a model privacy program?, and IAPP: Demonstrating privacy accountability)
- Q3: The Emerging Role of the DPO, CPO & Privacy Pro (background available at FT.com: Public Role for Privacy Officers, IAPP: People in Privacy: New privacy pros, IAPP: 2012 Privacy Professionals Role, Function, and Salary Survey, IAPP: Privacy pro garners all five CIPP certifications, IAPP: Forging a path into the privacy profession—one expert’s journey, and IAPP: DoubleClick: The privacy profession's incubator)
- Q4: Big Data, Big Jobs (background available at New York Times: Just the Facts. Yes, All of Them, New York Times: The Age of Big Data, IAPP: White House Announces Big Data R&D Investment, and IAPP: Opinion: "Big Data" Brings About Greater Good)
March 27, 2012
- Q1: Is Legislation Needed to Stop Employers From Asking to Access Your Social Media Account? What Should it Look Like? (background available at ACLU: Your Facebook Password Should Be None of Your Boss’ Business and Boston.com: Job seekers getting asked for Facebook passwords)
- Q2: The Morning After: Thoughts and Reflections on the FTC's Report on Consumer Privacy (background available at FTC: FTC Issues Final Commission Report on Protecting Consumer Privacy)
- Q3: Does More Data Make Us Safer? (background available at EPIC: Director of National Intelligence Gains New Powers, Expands Datamining of US Citizens and EmptyWheel: The “Oversight” over NCTC’s Not-Terrorist-Terrorist Database)
- Q4: Technology and the Fourth Amendment: What is "Dragnet Surveillance" and How do We Prevent it? (background available at New York Times: Disruptions: At Amazon, the Robot World Comes a Little Closer and Wired: Drones, Dogs and the Future of Privacy)
March 20, 2012 (Transcript)
Featured Guest: Shane Green, President and CEO, Personal (biography).- Q1: A Digital Bill of Rights "By the People, For the People." Is it Necessary? What Set of Rights Should it Include? (background available at OurDigitalRights: Digital Bill of Rights)
- Q2: $24 to Google, $4 to Facebook: What is Your Personal Data Worth to You? (background available at Personal: What is Your Personal Data Really Worth? and The Atlantic: How Much Is Your Data Worth? Mmm, Somewhere Between Half a Cent and $1,200)
- Q3: An Increasing Number of Apps Leverage "Big Data". What Could New Apps Accomplish with Access to "Small Data"? (background available at Personal: The Era of Small Data Begins and McKinsey Global Institute: Big data: The Next Frontier for Innovation, Competition, and Productivity)
- Q4: Do Companies Built on Principles of Privacy, Security & Trust have a Competitive Advantage? (background available at Personal: Security & Privacy First and Forrester: Personal Identity Management (pdf))
March 13, 2012
- Q1: When, if Ever, is it OK to Regulate the Internet? (background available at Government Technology: Senators Clash Over Cybersecurity Legislation, ABC News: On Capitol Hill, Nick Cannon talks Online Privacy for Children, and Forbes: What Are SOPA and PIPA And Why All The Fuss?)
- Q2: Social Media: Can You Keep People Out? (background available at MSNBC: Govt. agencies, colleges demand applicants' Facebook passwords)
- Q3: Drones Coming to the United States: What are the Next Steps? (background available at Wired: Drones, Dogs and the Future of Privacy and EPIC: Unmanned Aerial Vehicles (UAVs) and Drones)
- Q4: South by Southwest: Highlights and Review (background available at South by Southwest)
March 6, 2012 (Transcript)
- Q1: What have you done in reaction to the Google Privacy Changes March 1st? (background available at Huffington Post: Google Privacy Policy Changing For Everyone: So What's Really Going To Happen?)
- Q2: Will We Ever Get Strong Internet Privacy Rules? (background available at Time: Will We Ever Get Strong Internet Privacy Rules? and EFF: EFF publishes mobile user privacy bill of rights)
- Q3: Is My Credit Card the Next App Platform? (background available at Reconsidering Digital: Tattle Money)
- Q4: Do Not Track v. Do Not Target: What is the Difference? (background available at CNET: Firms embrace Do Not Track for targeted ads only)
February 28, 2012 (Transcript)
Featured Guest: Justin Brookman, Director, CDT Project on Consumer Privacy (biography).- Q1: Will the White House's "Consumer Privacy Bill of Rights" actually do anything for privacy? (background available at CDT: Two Steps Forward for Privacy)
- Q2: Last week's "Do Not Track" announcement --- victory or cop-out? (background available at New York Times: Opt-Out Provision Would Halt Some, but Not All, Web Tracking)
- Q3: With facial recognition tech and pervasive CCTV, do we have an expectation of privacy in public anymore? (background available at CBS Boston: Businesses Test Facial Recognition Software To Learn About Customers)
- Q4: Should Political Campaigns Have to Follow Data Privacy Rules? (background available at Slate: Obama's White Whale)
February 21, 2012 (Transcript)
Featured Guest: Nic Bicanic, CEO, EchoEcho (biography).- Q1: Why do mobile apps/cloud services need a users address book? Is the solution to warn users - or just to build better services? (background available at TechCrunch: Dear Apple, Address Book-Gate Is Sort Of Your Fault)
- Q2: Push vs. Pull: Should we be pushing (broadcasting our location to others) or Pulling (asking others for their location)? What are the implications of this on consumer services (privacy, UX, battery life)? Privacy settings for sharing - should they be on the device or in the cloud?
February 14, 2012 (Transcript)
- Q1: What is Big Data? (background available at O'Reilly Radar: What is big data? An introduction to the big data landscape and Symbiotic Web Blog: What Muad’Dib can teach us about personal data)
- Q2: The Monetization of Data (background available at New York Times: Start-Ups Seek to Help Users Put a Price on Their Personal Data)
- Q3: Unfair and Deceptive: What Can We Learn from Path? (background available at Gizmodo: Path’s Big Mistake, Wired: Path CEO: ‘We Thought We Were Doing This Right’, and PEHub: For Path, the Nightmare May Not Be Over)
- Q4: Data Consolidation: Let's Talk About Google (background available at Gizmodo: Google’s Getting Sued for Consolidating Its Privacy Policies, CNN: Google knows too much about you, and EPIC: EPIC v. FTC (Google Consent Order))
February 7, 2012 (Transcript)
Featured Guest: Brendon Lynch, Chief Privacy Officer, Microsoft (biography (.doc)).- Q1: How do you strike the right balance between innovation and data protection when it comes to leveraging consumer information online? (background available at YouTube: Churchill Club Panel Discussion, Collection of Online Consumer Data (1.24.12))
- Q2: What should companies be doing to help safeguard data and reduce risk? (background available at Microsoft: Privacy at Microsoft)
- Q3: How can consumers effectively control the use of their online information, when it is often hard to know what is being collected and how widely it is shared? (background available at Microsoft: Collecting online consumer data: the good, the bad, and the unknown, The Official Microsoft Blog: Microsoft & Data Privacy Day: Put Your Best Digital Foot Forward, and Microsoft: Personal Data Dashboard Beta)
- Q4: As cloud adoption accelerates and data privacy becomes a focus, what are the different roles and responsibilities that should be adopted by cloud providers, consumers and policymakers? (background available at Microsoft: Talking Cloud Privacy in Washington, D.C. and Microsoft: Privacy in the Cloud)
January 31, 2012 (Transcript)
Featured Guest: Jim Adler, Chief Privacy Officer, Intelius (biography).- Q1: Is awareness and control of personal, public information sufficient to satisfying consumer concerns? (background available at National Journal: FTC Official Calls On Data Brokers to Provide More Info)
- Q2: Is there still room for anonymity in browsing, sharing and searching online? (background available at Washington Post: Google’s no-opt-out privacy changes and the end of the anonymous Internet)
- Q3: What frameworks exist for designers to build more privacy-aware products? (background available at Privacy by Design 7 Foundational Principles, Future of Privacy Forum: Design for Trust, and Jim Adler: Creepy is as Creepy Does: A Privacy Design Framework)
- Q4: Does the use of social media as a primary source of intelligence by government agencies interfere with American's civil liberties? (background available at The Guardian: FBI to step up monitoring of social media sites amid privacy concerns and Washington Post: Privacy advocates worry about government efforts to expand computer security protections)
January 24, 2012 (Transcript)
Featured Guest: David Jacobs, Consumer Protection Fellow, EPIC (biography).- Q1: US v. Jones: what are the implications for future government surveillance? (background available at Forbes: Supreme Court Deals Blow To Government Surveillance, Saying Warrant Needed For GPS Tracking)
- Q2: Does US v. Jones show that the Court is equipped to issue informed rulings on cases involving technology? (background available at Forbes: Supreme Court Deals Blow To Government Surveillance, Saying Warrant Needed For GPS Tracking)
- Q3: Should web users be able to manage their personal data like money in a bank? (background available at Bloomberg Business Week: Who Do You Trust More with Your Data: Facebook or a Bank?)
- Q4: Should the US match tougher EU data protection laws? (background available at Bloomberg Business Week: EU Privacy Rules to Include Leak Disclosure Within 24 Hours
January 17, 2012
- Q1: Data Privacy Day, a conversation with Jolynn Dellinger (@DataPrivacyDay, biography), Michael Kaiser (@MKaiserNCSA, biography, and Emily Eckland (@staysafeonline) (background available at Stay Safe Online: Data Privacy Day and Stay Safe Online: Data Privacy Day History)
- Q2: Privacy in the Courtroom: Are we Losing to Win? (background available at The Secure Times: Massachusetts Court Holds that Zip Codes are PII)
- Q3: A Conversation About Facebook and Personal Use (background available at Beta Beat: In Which Eben Moglen Like, Legit Yells at Me for Having Facebook)
- Q4: Is there a Limit to Government Data Collection? (background available at AlterNet: 5 Things You Should Know About the FBI's Massive New Biometric Database)
January 10, 2012 (Transcript)
Featured Guest: Scott Meyer, CEO, Evidon (biography).- Q1: EU ePrivacy Directive - what is the situation there, and what should companies do?
- Q2: How do you define “informed consent”
- Q3: Do consumers have the tools they need to effectively manage their privacy?
- Q4: Where do you see mobile privacy heading in 2012?
January 3, 2012 (Transcript)
- Q1: How Would You Sum up 2011? (background available at Privacy Camp: Final Wrap Up of the Top #Privacy Stories of 2011)
- Q2: Sharing with Friends or Personal Endoresment? The "Like" Divide (background available at Forbes: Judge "Likes" Plaintiffs' Arguments, Online Privacy Class Action Proceeds)
- Q3: Subpoenas and Social Media: Proper Protocol and Procedures? (background available at PogoWasRight: Occupy blogger fighting subpoena - but is Twitter?)
- Q4: What Are Your Privacy Predictions for 2012? (background available at Gawker: How Your Privacy Will Be Invaded in 2012)
