Project 3a paper due now | |
A review session is being scheduled for Saturday March 15, probably at 1:30 |
No matter how exemplary your life is, there are things you want to keep to yourself |
When you buy a book, the transaction creates information … who owns it? | |||
Is the information yours or the business’s? |
When you buy a book, the transaction creates information … who owns it? | |||
Is the information yours or the business’s? | |||
Four options on how to use it -- | |||
Store can’t use after business purpose over | |||
Store can use it, if you approve | |||
Store can use it, unless you object | |||
Store can use information no matter what | |||
Justices Brandeis & Warren wrote … | |||
The narrower doctrine [of privacy] may have satisfied the demands of society at a time when the abuse to be guarded against could barely have arisen without violating a contract or a special confidence; but modern devices afford abundant opportunities for the perpetration of wrongs without the participation of the injured party |
Brandeis & Warren wrote … | |||
The narrower doctrine [of privacy] may have satisfied the demands of society at a time when the abuse to be guarded against could barely have arisen without violating a contract or a special confidence; but modern devices afford abundant opportunities for the perpetration of wrongs without the participation of the injured party |
Brandeis & Warren wrote … | |||
The narrower doctrine [of privacy] may have satisfied the demands of society at a time when the abuse to be guarded against could barely have arisen without violating a contract or a special confidence; but modern devices afford abundant opportunities for the perpetration of wrongs without the participation of the injured party |
What does “privacy” mean in the modern world? | |||
Privacy, the right of people to choose freely under what circumstances and to what extent they will reveal themselves, their attitude, and their behavior to others | |||
Privacy is a right | |||
You control when & how much is revealed |
To “protect privacy” in IT, HEW created “fair Info practices”; OECD expanded | |||
OECD principles are the “gold standard” | |||
Defined in 1980 | |||
Business & Government are separate cases |
EU, much of non-EU Europe, NZ, Hong Kong, Australia, Canada use OECD | ||||
US privacy law for government is (has been?) strong | ||||
US privacy law for business is “sectoral”, meaning it is limited to sectors and specific business practices | ||||
Very few industries/practices covered | ||||
Almost anything goes, e.g. identity theft | ||||
US has no fed law protecting med info |
EU law says, “Info on EU citizens must comply with OECD on leaving EU” | |||
US privacy is so bad, EU information cannot come here | |||
US-EU negotiations |
EU law says, “Info on EU citizens must comply with OECD on leaving EU” | |||
US privacy is so bad, EU information cannot come here | |||
US-EU negotiations stalled over | |||
- Opt-in/Opt-out | |||
- Enforcement |
How private is your information online? | |||
Reputable online business post Privacy Stmt | |||
The statement should understandable to you and say what info they collect, what they will do with it, how to “opt-out”, etc. | |||
But, there is little policing & few penalties |
Cookie: a record stored by a Web server on a client (your computer) | |||
The cookie is usually a unique ID that allows the server to remember who you are | |||
Well known CS idea that improves Web use |
Cookies are used by many sites and they make Web usage much better | |||
Many sites, e.g. Oxford English Dictionary use cookies | |||
Banking and credit card applications cannot be secure enough without cookies | |||
If there privacy laws met OECD standards, cookies would be all good and no one but computer scientists would know about them |
Cookies can be stored in your computer by sites you have not visited: 3rd party | |||
3rd Party Cookies come from a site in business with the site you visit, e.g. for ads | |||
3rd party cookies allow info to be correlated |
The 3rd party cookie becomes the key (literally, in DB sense) to join (in DB sense) the info held by separate co.s |
You control whether your computer accepts cookies -- look in browser | |||
If you don’t care about privacy, accept all cookies | |||
If you greatly value your privacy, accept no cookies | |||
If you want some privacy AND benefit from the useful stuff on the Web, accept cookies but reject 3rd party cookies |