230 likes | 416 Views
Internet privacy concerns confirm the case for intervention. OUTLINE. Introduction Privacy Protection and the Crisis in Public Confidence Should We Abandon Privacy as a Social Value? Is Ubiquitous Transparency A Better Form of Protection? Can Corporate Innovation Solve the Problem?
E N D
OUTLINE • Introduction • Privacy Protection and the Crisis in Public Confidence • Should We Abandon Privacy as a Social Value? • Is Ubiquitous Transparency A Better Form of Protection? • Can Corporate Innovation Solve the Problem? • The Necessary Regulatory Framework • Beyond Fair Information Practices • Conclusions
Introduction(1/3) • Public confidence in matters of online privacy seemingly lessens as the Internet grows. • Indeed, there is mounting evidence the necessary remedy may be a protective framework that includes (gulp) legislative provisions.
Introduction(2/3) • It’s small wonder that lack of public confidence is a serious impediment to the take-up rate of consumer e-commerce. • The concerns are not merely about security of value, but about something much more significant: trust in the information society.
Introduction(3/3) • Information privacy refers to the claims of individuals that data about themselves should generally not be available to other individuals and organizations. • To facilitate data consolidation, governments and corporations make spasmodic attempts to impose multipurpose human identifiers.
Privacy Protection and the Crisis in Public Confidence(1/2) • Against the ravages of technology-driven privacy invasion, natural defenses have proven inadequate. • Data is increasingly collected and personalized. Storage technology ensures that it remains available. Database technologies make it discoverable. And telecommunications enables its rapid reticulation.
Privacy Protection and the Crisis in Public Confidence(2/2) • Business and governments in most advanced countries have attributed the slow adoption of e-commerce to a severe lack of trustby consumers and small business in corporations and governments. • Trust in e-commerce is dependent on multiple, interacting complex factors including consumer rights, freedom of expression ,and social equity.
Should We Abandon Privacy as a Social Value?(1/2) • Meanwhile, corporations are disintegrating (in accordance with various fashions including outsourcing, downsizing, telecommuting, and virtualization), in order to take advantage of the economies of small-organization flexibility and adaptability, and owner-manager tendencies to underquote and overwork. • Corporations that seek to sustain collusive arrangements may be increasingly capable of withstanding government pressure, but less able to hold off consumer groups increasingly well organized through constructive use of the Internet.
Should We Abandon Privacy as a Social Value?(2/2) • If a powerful populace of the mid-21st century demands privacy, it might be quite capable of getting it. • There is no irresistible force toward dehumanization. We can choose.
Is Ubiquitous Transparency A Better Form of Protection?(1/2) • uncontrolled growth in visual surveillance as on the Internet, Brinargues the technological imperative is irresistible; and that privacy protections are futile. • He contends that privacy can only be sustained by focusing instead on freedom of information for everyone: to achieve privacy, rely on freedom, not secrecy.
Can Corporate Innovation Solve the Problem? • An even more substantial standard has been developed by the business-funded World-Wide Web Consortium (W3C). • The Platform for Privacy Preferences(P3P)is an especially important architectural innovation. • What these various initiatives add up to is an emergent movement to recognize a form of intellectual property (IP) rights in personal data
Can Corporate Innovation Solve the Problem?(2/2) • Public confidence in governments is under serious challenge because of their increasing capability and capacity to submit their populations to data surveillance. • Much of the developed world has progressively legislated broad Fair Information Practices (FIPs).
The Necessary Regulatory Framework(1/2) • Although the Internet creates the prospect of coordinated consumer and citizen action, it would be premature to anticipate the present imbalance of power between organizations and individuals will be overturned soon. • it is unrealistic to expect privacy to be adequately protected in the absence of intervention into government agency and marketplace behaviors.
The Necessary Regulatory Framework(2/2) • In the information society and economy, law, like location, will still matter. • Privacy protections demand a multitier approach, involving individuals, organizations, industry associations, and governments, operating within a legislative framework.
Beyond Fair Information Practices(1/2) • Organizations must provide publicly available justification for privacy-invasive information systems, purposes and uses of data. • Choice must be offered among anonymous services, pseudonymous services, and identified services. • Multiple usage of identifiers must be precluded
Beyond Fair Information Practices(2/2) • Control over identification and authentication tokens must be exercised by individuals, and choice must be available as to which organization issues them. • The scope of privacy protections must be broadened to include all dimensions of privacy, because personal space as a whole is threatened by visual and data surveillance
Conclusions(1/3) • Privacy is one of several interests in information that are greatly affected by the Internet. • These interests need to be reconsidered in the context of the now well-established notions of information economics, and the emergent concept of information law.
Conclusions(2/3) • A form of intellectual property rights in data about oneself needs the opportunity to mature very quickly. • Privacy is both sustainable and a necessary focal point of the information society
Conclusions(3/3) • Industry self-regulation and the development and application of privacy enhancing technologies are necessary. • accepting that legislation and a publicly funded watchdog are essential elements within a privacy-protective framework for the information society and economy.
補充:W3C • 全球資訊網聯盟(W3C)為一國際共同認可的非營利組織,成立於1994年10月,其宗旨為盡力提昇與維護全球資訊網(World Wide Web, WWW)之發展。 • W3C之成員涵蓋世界各國,目前已擁有超過400個不同單位組織之會員,藉由參與會員之努力,W3C擬定了諸多全球資訊網的公共標準(例如:HTML、XML、CSS等),因而大幅提昇全球資訊網之互通性(Interoperability),帶動WWW世界之迅速發展。 BACK
補充:P3P • 全球資訊網聯盟(W3C)所發展出的隱私權限平台的專案 (Platform for Privacy Preferences Project, P3P),P3P是一個新興的工業標準,它將使在使用網路的 使用者取得更簡便使用隱私權策略能力,強化隱私權策略 能力的建議規格。 • P3P意味著使網路使用者更了解他們個人資料被網站使用的狀況,P3P將網站如何呈現其資料收集的形式給予標準化,並協助使用者了解網站如何管理這些具隱私性的資訊。 BACK
補充:FIP • 一九七三年聯邦政府諮詢委員會所頒佈的「公平資訊慣例」(FIP;Fair Information Practices),這是一套管理個人對資訊的蒐集與使用的原則,慣例中的五大原則,包括: 一、如果某人的存在是秘密的(如秘密證人、線民),則資訊 系統不得留有此人的記錄。 二、個人對於儲存其資料的系統有檢索、檢查、檢討及修正的權利。 三、所蒐集的個人資訊如果不用於原來的目的,則必須得到當事人的同意。 四、資訊管理者要對系統的可靠性及安全性肩負完全的責任。 五、政府有權干預兩造之間的資訊關係(例如政府可強迫某甲向某乙提供或不提供資訊)。 BACK