Thoughts on Privacy: The right way forward

Many of these discussions happened in the 1970s as people first became aware that large databases (then often called &quot;databanks&quot;) were being built to store lots of personal information, and that information from one database could be combined with information from another via a database join. That raised the specter that information originally collected for one purpose could come to be used for a very different purpose.<p>An important result of those discussions at the time was the Fair Information Practices<p><a href="https://en.wikipedia.org/wiki/FTC_Fair_Information_Practice#History_and_development" rel="nofollow">https:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;FTC_Fair_Information_Practice#...</a><p>which came out of two U.S. government studies on privacy during the 1970s.<p>These principles include things that are quite similar to what this article proposes, including notice (of what&#x27;s being collected), choice (about whether it should be collected), and access (to know what others know about you).<p>The Fair Information Practices formed the basis for European data protection legislation, which has now been implemented in some form everywhere in Europe as a result of the EU Data Protection Directive and other legal instruments. (Of course the Europeans reformulated it and did not directly enact the original U.S. Fair Information Practices into law.) An interesting consequence of that is that most Europeans, at least in theory, have quite extensive rights against information collection that violates these rules (at least by the private sector).<p>Many Europeans have been able to exercise these rights in practice to challenge data collection and retention by private companies, to see what the companies know about them, or to demand that companies delete information about them. Some of those examples have been mentioned here on Hacker News; the one that I found the most interesting was when Malte Spitz got his cell phone location records from Deutsche Telekom by exercising his right of access under German data protection law.<p><a href="http://zeit.de/digital/datenschutz/2011-03/data-protection-malte-spitz" rel="nofollow">http:&#x2F;&#x2F;zeit.de&#x2F;digital&#x2F;datenschutz&#x2F;2011-03&#x2F;data-protection-m...</a><p>Anyway, I think these rights are quite similar to what this article is proposing, so I wanted to point out that there is a long history of similar proposals, and that the idea that technology was taking away people&#x27;s practical right to control over data about them is something that&#x27;s been a concern for some decades.<p>By the way, the United States never enacted a comprehensive data protection law, despite being where the Fair Information Practices were first cooked up. They were never given the force of law in a general way, as they were in Europe; here in the U.S. companies can, in general, collect and use data in ways that would be considered &quot;unfair&quot; elsewhere. The main consideration in the U.S. is that the companies can&#x27;t lie in their privacy policies, but there are few substantive restrictions on the private use and disclosure of data, outside of particular regulated sectors (like credit cards with FCRA, health care with HIPPA, and education with FERPA). There is extremely strong industry opposition to a generally-applicable data protection law here.<p>Some sore points about data protection where it did get implemented into law:<p>① European data protection law is leading to some weird and counterintuitive results, recently including the Google v. AEPD&#x2F;González case where Google was ordered to remove links to old disparaging (but accurate) information about individuals when users search for their names, based on the idea that Google was &quot;processing&quot; personal data about those individuals in an inappropriate way.<p>② Data protection often has major loopholes for government collection of information. (Government agencies, including police and spy agencies, very often <i>are</i> subject to privacy and data protection laws, but the application of those laws often means just that those agencies are supposed to deliberate about whether they think what they are doing is OK; if so, they can carry on.)<p>③ As this article and this discussion seem to suggest, notice and consent have become more difficult where companies expect to use large amounts of personal data routinely. The amount of consenting that users would be asked to do and the frequency with which they are asked to do it could become quite annoying and also decrease the likelihood that users will take the time to understand what they are being asked to consent to. (We can see this to some extent with the cookie notices on European web sites, asking users to consent to being tracked by cookies. Contrary to the mainstream view of web developers, I think cookie tracking is a serious privacy risk that users should still worry about in 2014 and that addressing this risk is pretty important. But we can see that the warnings haven&#x27;t necessarily made most users better-informed or more cautious about cookie tracking, and many users are probably kind of annoyed that every site they use is warning them about cookies.)<p>As a result of the last point, I heard a Microsoft executive in a speech say that he thought notice and consent were now <i>obsolete</i> and ought to be rethought. (This statement isn&#x27;t super-shocking to Americans, who might not even have heard about Fair Information Practices in the first place, but it could have been something of a scandal if he had said it in Europe.)<p>The executive gave the example of the number of different entities that are receiving user information when a user interacts with a major web site, and the number of different privacy policies that would be applicable to these interactions. He suggested that few users would even read the policy of the site that they&#x27;re trying to visit, let alone the policies of third parties (that might receive user data as a result of embeds or as a result of business partnerships).<p>I thought that preventing and discouraging some of those data flows was actually a <i>goal</i> of privacy protection. In fact, a lot of privacy software, including software recently developed by my colleagues, is actively trying to stop them, based on the idea that users don&#x27;t know about them and that they aren&#x27;t in the user&#x27;s interest.<p><a href="https://www.eff.org/privacybadger" rel="nofollow">https:&#x2F;&#x2F;www.eff.org&#x2F;privacybadger</a>

What if they don&#x27;t care? Not because it&#x27;s &quot;designed&quot; or &quot;rigged&quot; but because privacy is not something they value?<p>Humans lived in small groups, then villages pretty much until yesterday, easily for most of our species&#x27; history (99%+ of ~200k years). People knew everything about each other. And then gossiped to make sure nothing went unnoticed.<p>Contrary to the article, we probably still reveal less than we used to. People would bathe in semi-public places. That&#x27;s not common outside of vacation spots any more.<p>Yes, advertisers bank on our nature. Gossip blogs bank on it. But they didn&#x27;t make us that way.<p>OK, so the nature of information collection changed but we don&#x27;t feel it. Some people can rationally appreciate it but not casual Internet users. And most nightmare scenarios are still hypothetical.<p><i>Imagine being subject of public hate because you expressed a unpopular view when you were young.</i><p>Many people, even here, are fine with that. On Twitter it&#x27;s practically a part of regular programming.

I believe Windows Vista tried to do exactly that: annoy user with security related screens all the time. This didn&#x27;t go well because people were just clicking &quot;yes&quot; without reading and in the same time everyone was absolutely frustrated with these crappy alerts.

&quot;Imagine being subject of public hate because you expressed a unpopular view when you were young.&quot;<p>Rather than being able&#x2F;forced to hide all of my unpopular opinions, I would prefer to live in a society that didn&#x27;t hate me for having different ideas.<p>Privacy is important, but often the need is rooted in disfunction elsewhere.

Privacy is simply not sustainable.<p>Imagine all the lost opportunities, all the worry, all the steps some people take to conceal the truth. It can&#x27;t go forever, and it will become increasingly more expensive to keep the privacy you had in the past, simply because technology makes transparency cheap and ubiquitous.<p>Designing a society that relies on the secrecy of certain information is a recipe for disaster. Passwords, credit cards, etc. It won&#x27;t be long before we simply can&#x27;t keep any of these secrets, and we will have to switch to a better identification system.<p>I&#x27;ve had enough to worry about what people might think if they encounter the truth. I don&#x27;t want to lie anymore. I don&#x27;t want to keep and remember secrets anymore. I don&#x27;t want to watch each of my steps and hide behind 7 proxies when I surf the web.<p>We&#x27;re due for a paradigm change toward transparency, and the earlier the better. Privacy and secrecy only leads to deception and inefficiencies.

But how can it be done every translation? Lots if time the service wants to keep info about you to be used later. So if you say &quot;no&quot; 99 times but &quot;yes&quot; once ... they have you.