New Concerns Over Online Privacy
http://thedianerehmshow.org/shows/2012-02-20/new-concerns-over-online-privacy
Technology companies collect vast amounts of information about you and your habits. In return, you get free content, play games and connect with friends. But recent findings are raising concerns over security and privacy. A Stanford researcher discovered Google and other companies bypassing the privacy settings on Apple's Safari web browser. An app company called Path was collecting and storing personal address book information without permission. And an FTC report on children’s app privacy showed parents are not getting information on what data is being collected, how it is being shared, or who will have access. Diane and her guests discuss privacy and transparency in our rapidly changing computer world
Guests
Marc Rotenberg
executive director of the Electronic Privacy Information Center and teaches Information Privacy Law at Georgetown University Law Center.
Edward Markey
Democratic Congressman from Massachusetts, co-chair of the Bipartisan Congressional Privacy Caucus.
Cecilia Kang
technology reporter for the Washington Post.
Jonathan Mayer
a graduate student in computer science and law at Stanford University.
Morgan Reed
executive director of the Association for Competitive Technology.
Comments
Please familiarize yourself with our Code of Conduct and Terms of Use before posting your comments.
Is this only on the computer? I have vision problems, but have sister who sends photos from her iphone. I already can't handle my PTSD with the email note saying a Verizon phone is calling. I remember how impossible it was to communicate with this 'communication company' call center. I won't have anything to do with anything that says Verizon. It means hell to me.
Can someone update the Friday Intl news roundup podcast? I don't have access to the show and like to throw it on my ipod to listen when it becomes available. TOTN never seems to have the problems with this that the Rehm show always has.
xoxo
Loyal fan
Thank you for addressing the issue of online privacy. I'm wasting a great deal of time trying to protect my privacy and would like to see effective legislation to make it easier for me to ensure that my data is MY DATA and not being harvested without my permission for purposes that are not readily evident to me. Could your guests comment on the Carrier IQ issue?
There is no such thing as a free lunch. Just assume that if it free to download/use, there will be payment somewhere else.
Remember if you aren't paying for the service YOU are the commodity.
If well to do or comfortable individuals would be considered imprudent not to have staff check their privacy settings on the computer and iphone, how can someone such as myself with compromised vision, seek help to prevent my being bothered, when I already have trouble seeing and reading on line? I used to have my grandmother tell phone callers that her granddaughter handled all phone inquiries. That kept her kind heart from being abused. Now, I have my own issues, vision, limited energy, etc., and have no one to act in my interest when these trackers bleed off my time and energy with things blinking at the side of the screen, etc. I feel invaded and unable to respond. I have to almost give up, a sense of hopelessness and shame overcomes me because I can't figure this stuff out. I feel like I am being flim-flammed and manipulated and I feel like I just can't go out and mix without being bothered. I am isolated enough with my handicap.
Plus I let car mechanic use my computer at my house to look up something, and then had a lot of porno ads showing up on my computer. I don't know how to get this stuff off.
RE: story on Google invading privacy of Safari/iOs/iPhone users...
Although not responsible corporate behavior, I think that it is important to note 3 items regarding this incident: i) there were only 4 firms involved in this behavior (Google, Vibrant Media Inc., Media Innovation Group LLC, and PointRoll Inc.), ii) most responsible online publishers and advertising technologies did NOT engage in this behavior (because, as noted on the show, advertising does provide for a lot of free/near-free internet content/services and don't want to kill the proverbial goose that laid the golden egg), and iii) the information that was transmitted was non-PII (personally identifiable information) so even though users browsing habits were tracked, none of their private data was revealed/exposed.
So, problematic, but not a disaster...nevertheless "caveat emptor" to web users and thanks to people like Jonathan Mayer.
Thank you very much for airing this show. It's an extremely important issue in this new-technology age.
Regarding Google collecting information about kids.... this is frightening to me as a mother. Really? Google tried to collect (& did) children's SS #'s, DOB, address, place of birth, parent's names? ....
http://www.huffingtonpost.com/bob-bowdon/why-has-google-been-colle_b_825...
Very nice show!
The usual answer to someone trying to limit speech (sharing info in this case) is more speech. Is one possible solution simply making bots who surf an enormous amount of random material so the real material is simply swamped out?
If Any company has a recored of you searching for a million different things, most of which are random, isn't your info hidden by obscurity then?
I find it interesting that anyone can say it is technically difficult to maintain privacy, when they have to write the code for tracking which breaks privacy in the first place.
Why is Google the bad guy? ISPs have every packet of data I send and even redirect bad DNS lookups to ad pages. Why aren't they being targeted?
Do you mean that what I pay for Cox Cable internet service is all theirs? If this extra stuff is blocked, wouldn't I have less of a band to pay for. Our local civic league has individuals that pop up at meetings saying, "Do you own a house here?" If you don't own property you are not expected to speak out and be heard when they have city council at their beck and call. So I don't return to all their foolishiness. Can I not also stay with a narrow band and not worry about letting all this other stuff into my personal cave. Why should I support the 'civic league' when they never support me. How do I get away from this, not answer the phone if certain family members with iphones call me when I am out and about? Do I block their numbers? Tell them text message only? I literally feel like I am being strangled when I see the word 'Verizon.'
Why should ONLY children be entitled to online privacy? We should ALL have the right to have our personal information protected. We are not commoddoties. Bad people use this loophole to get info on their victims (stalkers), and even people who never even use the internet are subject to having their personal info contained in these online bdatabases because everyone from your bank to your county clerk of records sells it! This is wrong and violates us personally.
Considering all I have heard so far on the show, especially about Google, I would like to know how concerned parents should be that many school systems that are requiring students to use google mail accounts to participate in online communication while in school and with teachers and their classmates. I am a high school teacher and this is the plan for next year when our school adopts a 1:1 ipad initiative and moves toward more use of technology in teaching and learning.
Sorry, but you folks have got it BACKWARDS.
Under Google, Facebook, and the others, we are PRODUCTS being delivered to advertisers and corporations. That's how they make the money and that's how it has to be talked about - advertisers pay to keep the systems online and Google, Facebook, and the others deliver the goods. It's that simple.
Forget about the user experience and your hand-wringing abut privacy. "Educating the consumer" is just another part of that smokescreen. This problem - for you, not for them - will not be solved until you address it from the business-process end of things. Nothing will change until you (finally!) start a meaningful dialogue about the value of any one individual's personal information.
A space alien landing on earth and looking at the social media giants would first see simple and profitable system of gathering user information and selling it to advertisers for product placement and links. And the aliens would highly admire the cleverness of the system (and marvel at the inaction of our elected officials). Jack
The comment that "You have to sign into Google on an Android, but you don't have to sign into an iPhone" IS NOT TRUE AT ALL. You cannot download any apps, or use most of the services on an iPhone, without signing into an Apple account.
I'm not saying that either one is better or worse, but that statement isn't factually correct.
We need a system for privacy policies similar to the system for homeowners insurance policies. All HO-3 or HO-5 policies have the same standard set of features. To understand and compare policies you just have to understand the standard feature set.
If you did this with privacy policies a consumer could opt in at a particular policy level, or could opt out of a service that only offered a too-open privacy policy.
Sites could even charge consumers based on their privacy policy choice. If you chose a restrictive policy that precludes advertising revenue, then you the site might choose to charge you for the service.
I wouldn't mind paying for my privacy. Any chance google will make that an option?
the guest stated that you do not need to be logged in to Apple to install apps when, in fact, you absolutely need to be logged in on an iPhone to install apps. You also have tracking going on in the iPhone as was witnessed when we discovered that all of our location data was being stored and possibly collected on iPhones. Consider that the phone is actually just a consumption device and they ALL want the data to market to you - feed the consumption!
Google is fast becoming simply a distributor of personally identifiable info and much less a "search" company. Has anyone else noticed how bad search results from Google have become over the years? Boolean operators don't even work as they used to to weed out irrelevant results. They are abandoning search and moving to trying to become an exclusive distributor of peoples' personal info (think exclusive data mining).
Companies like the one that makes "DeleteMe" will make a lot of money making us all pay to have our personal info monitored and removed from databases the same way some pay agencies to monitor their credit.
Is the only alternative for maintaining privacy to go completely off-grid?
This situation falls into the same category of 'don't ask don't tell' of sex education in school. Parents who have the skill, and the time to be available to their children can educate them as appropriate in timely manner. But, the computer and phone are like being in a strange territory with no friends and family to tell you where the speed bumps are, where the speed traps are, and who are the vendors of spoiled milk. Who are the 'bad priests.' Now, the Google people are asking us to 'trust the priest'? If you don't have the time to accompany your children everywhere, you can't take advantage of all the 'entertainment and social opportunities' offered by the Church. This is a private religion, this being a knowledge collector, information, 'benevolent' lurkers on street corners.
With Android, those with the technical know how should be encouraged to root their phone and remove unwanted apps.
In general, consumers have no idea what information is being collected about them and consequently what is done with it. It is difficult to get any action from the general public when starting from a foggy idea of privacy. We all profess to dislike "invasion of privacy" but what does that really mean? Perhaps a better way to start is to require any companies who collect data, to provide to individuals who ask, the complete dataset of what has been collected so far, in a form understandable to the individual. I imagine the fight against data collection would be easier to fight.
Cecilia from WaPo is SOOO mistaken. You don't have to even be an online user or give out ANY info for your personal info to be shared! Everyone sells it: mortgage co's, banks, credit co's cable & satellite providers, retailers. Unless you live in a cave, your info is being bought and sold!
The show missed an important point. Supposedly the government requires a warrant to acquire some of this information or to turn your phone into a listening device. At what point do we worry about the connection between law enforcement and the cell phone companies?
Yes! And turn off data sync when you don't need it, as well as location services
I find is laughable to hear how the speakers are all contorting their words to try to make this sound bad. Can Google share information between parts of the company today? Yes, it just takes more effort without the new policies. They are one company, and no privacy law out there says that a single company needs to hide information from themselves. Name one other company that makes it's revenue from advertising that doesn't already allow information sharing between the different entities within that company?
Are you afraid that Google may intermix confidential work information with your personal youtube surfing habits? Then stop sending confidential work data to a free account that makes its money from mining your email messages.
Are you afraid that Google will not be able to show you more relevant ads? Really? You'd prefer a bunch of generic Viagra ads rather than something relevant to you appearing on the side of the screen?
As others have said, when you get the service for free, you are the product, not the customer. The customer is the advertisers. Customer service is making sure the advertisers are happy.
And for the record, Android phones are one of the few that you can use without being locked into the vendor. You can install apps without using the Android Market place. You can setup your phone without assigning it to a GMail account. It would be nice if the speakers could make their point without spreading false rumors.
Re the medical personnel concerns - collection of Protected Health Information (PHI) - by Google (or anyone) without the patient's permission is a HIPAA (Health Insurance Portability and Accountability Act) privacy rule violation.
As one who's studied Google and market for last three years:
This last issue is one I never expect to see settled. Or if it is, the output will be used as clout for the highest-spending PAC, and not for the people using the system.
I am disappointed that opinion trumped historical fact in several comments by your guests today. Nevertheless Ms. Rehm, please accept my thanks for bringing the subject up and I hope you continue to ask the tough questions!
I regret that I didn't get this done while the segment on privacy on the internet was live...
I note that while I am signed onto NPR.org that I am being tracked by:
Dedicated Network
Google Analytics
Doubleclick
Google AdSense
Quantcast
I don't find any notice that using this site exposes the user to tracking by those companies.
Hypocrisy?
Pogo