Your search keyword '"Information privacy law"' showing total 38 results

1. Design of a Compliance Index for Privacy Policies: A Study of Mobile Wallet and Remittance Services

Author

Rohit Valecha, H. Raghav Rao, and Oluwafemi Akanfe

Subjects

Information privacy, business.industry, Strategy and Management, Privacy policy, media_common.quotation_subject, 05 social sciences, Internet privacy, Privacy laws of the United States, Information privacy law, Payment, Latent Dirichlet allocation, symbols.namesake, General Data Protection Regulation, 0502 economics and business, Mobile payment, symbols, Electrical and Electronic Engineering, business, 050203 business & management, media_common

Abstract

Many nations have adopted comprehensive data privacy laws to protect customers’ data. However, privacy policies of mobile wallet digital payment systems (DPS), and particularly the mobile wallet and remittance services that are part of DPS, are often not compliant with privacy laws. There is a lack of measures to assess how adequate the policies are in addressing data privacy issues. To address this problem, this article develops a compliance index to help DPS organizations assess the compliance of their privacy policies with the general data protection regulation (GDPR). The compliance index is created through a natural language process that includes term frequency-inverse document frequency matrix and topic modeling using latent Dirichlet allocation, to compute 1) an emphasis density score that indicates the level of emphasis a privacy policy places on GDPR dimensions, and 2) a privacy score that identifies the level of compliance of a privacy policy with GDPR. The compliance index is validated by assessing its effectiveness at the country level in comparison with an international publicly available data privacy benchmark.

Published

2023

2. Narrative, Design, and Comprehension: Connective Technologies and their Terms of Service Agreements

Author

Ramona Pringle

Subjects

Information privacy, Privacy by Design, Privacy software, business.industry, Privacy policy, 05 social sciences, Internet privacy, General Engineering, General Social Sciences, Information privacy law, 02 engineering and technology, 050105 experimental psychology, Terms of service, Phone, 020204 information systems, 0202 electrical engineering, electronic engineering, information engineering, 0501 psychology and cognitive sciences, Business, Personally identifiable information

Abstract

At present, one of the greatest challenges faced by privacy advocates is public awareness. In an era in which there are almost as many cell phone subscriptions are there are people on earth [1], the security of our personal information is an issue that impacts almost everyone both immediately and in the long-term. Yet the public appears resistant to changing behavior. This reluctance to be more vigilant with personal information is in large part due to the fact that the allure of digital networked devices outweighs the perceived potential risks to privacy and to the sanctity of our identifying data.

Published

2016

3. License Creep

Author

Michael Lesk

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Computer science, business.industry, Privacy software, Privacy policy, Internet privacy, Information privacy law, Computer security, computer.software_genre, Data Protection Act 1998, Electrical and Electronic Engineering, business, Law, computer, License

Abstract

How can we limit the amount of data distribution for both security and privacy? Let's encourage organizations to push for a common privacy policy in licenses. Better privacy terms might gain adherents and become important enough for marketing that most vendors adopt them.

Published

2015

4. The Impact of EU Privacy Legislation on Biometric System Deployment: Protecting citizens but constraining applications

Author

John D. Bustard

Subjects

Information privacy, Privacy by Design, business.industry, Applied Mathematics, Privacy policy, Internet privacy, Information privacy law, Computer security, computer.software_genre, Biometrics in schools, Biometrics, Privacy, Signal Processing, Data Protection Act 1998, media_common.cataloged_instance, Business, Privacy law, Electrical and Electronic Engineering, European union, computer, media_common

Abstract

Biometric systems provide a valuable service in helping to identify individuals from their stored personal details. Unfortunately, with the rapidly increasing use of such systems [1], there is a growing concern about the possible misuse of that information. To counteract the threat, the European Union (EU) has introduced comprehensive legislation [2] that seeks to regulate data collection and help strengthen an individual?s right to privacy. This article looks at the implications of the legislation for biometric system deployment. After an initial consideration of current privacy concerns, the definition of ?personal data? and its protection is examined in legislative terms. Also covered are the issues surrounding the storage of biometric data, including its accuracy, its security, and justification for what is collected. Finally, the privacy issues are illustrated through three biometric use cases: border security, online bank access control, and customer profiling in stores.

Published

2015

5. Vidal-Hall and Risk Management for Privacy Breaches

Author

Katrine Evans

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, business.industry, Computer science, Privacy software, Privacy policy, Internet privacy, Information privacy law, Information security, Tort, Misuse of private information, Data Protection Act 1998, The Internet, Electrical and Electronic Engineering, business, Law, Personally identifiable information

Abstract

The recent English Court of Appeal case of Google v. Vidal-Hall raises three issues for many Internet-based businesses: whether they can be sued in tort for misuse of private information, whether browser-generated information is defined as personal data, and whether compensation for emotional distress without accompanying financial loss can be awarded.

Published

2015

6. The Right to Be Forgotten: The Good, the Bad, and the Ugly

Author

Kieron O'Hara

Subjects

Information privacy, Computer Networks and Communications, business.industry, Right to be forgotten, Privacy policy, Internet privacy, Information privacy law, Computer security, computer.software_genre, Political science, Data Protection Act 1998, media_common.cataloged_instance, European union, Form of the Good, business, computer, media_common

Abstract

Kieron O'Hara considers the right to be forgotten, including its potential ramifications and successes.

Published

2015

7. A Cybermodel for Privacy by Design: Building privacy protection into consumer electronics

Author

Ulrich Lang, Michael H. Davis, and Sid Shetye

Subjects

Information privacy, Privacy by Design, Privacy software, business.industry, Privacy policy, Internet privacy, FTC Fair Information Practice, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Information privacy law, Computer security, computer.software_genre, Computer Science Applications, Human-Computer Interaction, Hardware and Architecture, Data Protection Act 1998, Business, Electrical and Electronic Engineering, Personally identifiable information, computer

Abstract

Does privacy protection matter in consumer electronics (CE)? What is privacy, how is it valued, and where does it sit in your organization today? Chances are, if you do not have a chief privacy officer or data-protection officer, your company is lacking in protecting critical data, let alone observing all the laws and statutory regulations dealing with privacy (e.g., audits, compliance, etc.). Managing privacy is crucial, especially considering the key mandated privacy requirements, such as those concerning personally identifiable information (PII), the Health Insurance Portability and Accountability Act (HIPAA), and the payment card industry (PCI). In addition, the privacy definitions and the policy and enforcement effectiveness are themselves varied and complex, and they change depending on where your data reside-i.e., the state, province, and country. For example, the European Union's (EU's) data-protection directive [1] is much stricter than the weak U.S. privacy laws. (Note that if you plan to market a global CE product, you should know about the Safe Harbor Framework).

Published

2015

8. Security or Privacy? A Matter of Perspective

Author

Keesha Crosby, Irena Bojanova, Ann E. Kelley Sobel, and George Hurlburt

Subjects

Information privacy, General Computer Science, Privacy by Design, business.industry, Privacy software, Computer science, Privacy policy, Internet privacy, Data security, Information privacy law, Computer security, computer.software_genre, The Internet, business, Personally identifiable information, computer, Simple (philosophy)

Abstract

How secure is "secure enough," and how private is "private enough"? At age 25, the Internet offers unprecedented potential for both liberty and protection, but can easily breed lawlessness and oppression--blurring the line between safety and simple prying.

Published

2014

9. Cloud Computing and EU Data Privacy Regulations

Author

Nir Kshetri and San Murugesan

Subjects

Information privacy, Cloud computing security, General Computer Science, Privacy by Design, Privacy software, Computer science, business.industry, Privacy policy, Internet privacy, Authorization, Information privacy law, Legislation, Cloud computing, Computer security, computer.software_genre, Risk analysis (business), media_common.cataloged_instance, European union, business, computer, media_common

Abstract

To leverage the cloud's power, EU authorities must revisit policies related to various types of personal data and their associated privacy risks.

Published

2013

10. Privacy Compliance Risks for Facebook

Author

A. Johnston and S. Wilson

Subjects

education.field_of_study, Information privacy, Social network, business.industry, Internet privacy, Population, General Engineering, General Social Sciences, Information privacy law, Compliance (psychology), Phenomenon, The Internet, business, education, Risk management

Abstract

Facebook is an Internet and societal phenomenon. In just a few years it has claimed a significant proportion of the world's population as regular users, becoming by far the most dominant Online Social Network (OSN). With its success has come a good deal of controversy, especially over privacy. Does Facebook and its kin herald a true shift in privacy values, or despite occasional reckless revelations, are most users actually as reserved as ever? We argue it's too early to draw conclusions about society as a whole from the OSN experience to date. However, Facebook in particular brings a number of compliance risks in jurisdictions that have enacted modern Information Privacy Law.

Published

2012

11. Agreeing on a Definition for Data Protection in a Globalized World

Author

D. Nagel and T. Weimann

Subjects

Information privacy, Privacy by Design, business.industry, Privacy software, Privacy policy, Internet privacy, General Engineering, General Social Sciences, Information privacy law, Political science, Data Protection Act 1998, Privacy law, business, Right to privacy

Abstract

Uniform rules on data protection are not just a pipe-dream of privacy professionals. They are also more than an artificial model of legal practitioners, and more than an ideal that drives politicians who engage in discussions about a right to forget or a fundamental right to privacy. They already exist. There is a scheme for data protection in place that already affects one sixth of the world's population. The odds are that you are either one of them or know one of them. These uniform rules set out a clear picture of how data will be treated. Yet, they have neither been compiled by a congregation of government officials nor by an assembly of famous law professors. On the contrary, they have been assembled by a single player, who might not even have been interested in the freedom and privacy of the people subject to the scheme, but rather in the marketing value of their data. This player is called Facebook. The scheme is called privacy terms.

Published

2012

12. Sticky Policies: An Approach for Managing Privacy across Multiple Parties

Author

Marco Casassa Mont and Siani Pearson

Subjects

Information privacy, General Computer Science, Privacy by Design, Privacy software, business.industry, Computer science, Privacy policy, Internet privacy, Information privacy law, Cryptography, Access control, Computer security, computer.software_genre, business, Personally identifiable information, computer

Abstract

Machine-readable policies can stick to data to define allowed usage and obligations as it travels across multiple parties, enabling users to improve control over their personal information. The EnCoRe project has developed such a technical solution for privacy management that is suitable for use in a broad range of domains.

Published

2011

13. Commercializing public sector information privacy and security concerns

Author

Mark Burdon

Subjects

Information privacy, National security, business.industry, Public sector, General Engineering, General Social Sciences, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Information privacy law, Public relations, Commercialization, Information and Communications Technology, Business, Information society, Personally identifiable information

Abstract

The enhanced development of information and communication technologies in government has created new opportunities for agencies to collect, share and re-use data. At the same time, the commercial worth of governmental data sets and value-added information products/services have increased. Government agencies are finding that data they have routinely collected to fulfil their statutory and business functions can now more easily be re-used for commercial purposes. The prospect of increasing revenue through the commercial re-use of public sector information (PSI) is clearly appealing for governments and their agencies. Examples of PSI that have been re-used commercially include residential property transaction details, land title information, ordanance survey data and street address registers. This article examines those shifting boundaries, particularly in light of information privacy and national security concerns arising from governmental commercialization of PSI that includes personal information. I seek to show that information privacy laws can be subverted in the face of overt commercialization by government agencies; that commercialization can have a negative impact on individuals; and can also give rise to societal concerns relating to privacy, security, and the open governance of the information society.

Published

2009

14. Privacy: A non-existent entity

Author

Jason Borenstein

Subjects

Information privacy, Privacy by Design, business.industry, Privacy software, Privacy policy, Internet privacy, General Engineering, General Social Sciences, FTC Fair Information Practice, Information privacy law, Computer security, computer.software_genre, Data Protection Act 1998, business, computer, Personally identifiable information

Abstract

The development and implementation of new technologies has led to a significant erosion of privacy. In this circumstance, it is an arduous struggle to control one's personal information. Now we need to determine the best ways to protect individuals from abuse when their personal information is collected and distributed.

Published

2008

15. From Home to Home Page: New Challenges to Basic Notions of Privacy and Property

Author

Daniel J. Weitzner

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, business.industry, Privacy software, Home page, Political science, Internet privacy, Legal aspects of computing, Information privacy law, Privacy law, business, Right to privacy

Abstract

The notion of "home" is a critical organizing principle for how we understand the relationship between individuals and society at large. A wide range of cultural and legal practices enshrine the home with various protections that ensure us a degree of privacy, security, solitude, and control over our lives there. As our private papers migrate to the Web, activities that we could previously conduct in "private" have seemingly been thrown open to unfettered public view. Additionally, as increasingly powerful communication technologies reach into our homes, places that were once private become more connected to public life

Published

2007

16. HIPAA's Effect on Web Site Privacy Policies

Author

C.M. Gheen, Annie I. Antón, J.M. Frink, Neha Jain, Julia B. Earp, and M.W. Vail

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, business.industry, Computer science, Privacy software, Privacy policy, Internet privacy, Privacy laws of the United States, Legislation, Information privacy law, Health care, ComputingMilieux_COMPUTERSANDSOCIETY, The Internet, Electrical and Electronic Engineering, business, Law, Content management

Abstract

Healthcare institutions typically post their privacy practices online as privacy policy documents. We conducted a longitudinal study that examines the effects of HIPAA's enactment on a collection of privacy policy documents for a fixed set of organizations over a four-year period. We present our analysis of 24 healthcare privacy policy documents from nine healthcare Web sites, analyzed using goal mining, a content-analysis method that supports extraction of useful information about institutions' privacy practices from documents. We compare our results to our pre-HIPAA study of these same institutions' online privacy practices and evaluate their evolution in the presence of privacy laws

Published

2007

17. Managing information privacy: developing a context for security and privacy standards convergence

Author

J. Robbins and J.T. Sabo

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Computer science, Privacy policy, Internet privacy, Data security, Information privacy law, Computer security, computer.software_genre, Security information and event management, Electrical and Electronic Engineering, Cloud computing security, Certified Information Security Manager, business.industry, Privacy software, Information technology, Information security, Security controls, Information security standards, Security convergence, business, Law, Personally identifiable information, Privacy principles, computer

Abstract

Information privacy is much broader than data security. It's about the collection, processing, use, and protection of personal information. Essentially, business processes, IT systems, and compliance controls must support the full set of requirements embodied in these principles and expressed in relevant laws and policies. Implementation choices, including automation level and security control selection, become business and business-risk decisions. To institute such principles, businesses should understand the critical need for policy-driven security and privacy compliance in developing the right business processes and overall technical architecture

Published

2006

18. Examining Internet Privacy Policies Within the Context of User Privacy Values

Author

Annie I. Antón, William H. Stufflebeam, Lynda Aiman-Smith, and Julia B. Earp

Subjects

Information privacy, Privacy by Design, business.industry, Privacy software, Strategy and Management, Privacy policy, Internet privacy, Consumer privacy, Information privacy law, The Internet, E-commerce, Electrical and Electronic Engineering, business

Abstract

Internet privacy policies describe an organization's practices on data collection, use, and disclosure. These privacy policies both protect the organization and signal integrity commitment to site visitors. Consumers use the stated website policies to guide browsing and transaction decisions. This paper compares the classes of privacy protection goals (which express desired protection of consumer privacy rights) and vulnerabilities (which potentially threaten consumer privacy) with consumer privacy values. For this study, we looked at privacy policies from nearly 50 websites and surveyed over 1000 Internet users. We examined Internet users' major expectations about website privacy and revealed a notable discrepancy between what privacy policies are currently stating and what users deem most significant. Our findings suggest several implications to privacy managers and software project managers. Results from this study can help managers determine the kinds of policies needed to both satisfy user values and ensure privacy-aware website development efforts.

Published

2005

19. Multinational Data-Privacy Laws: An Introductionfor IT Managers

Author

M. Markel and E. Perkins

Subjects

Information privacy, business.industry, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Legislation, Information privacy law, Public administration, Public relations, Data Protection Directive, Industrial relations, media_common.cataloged_instance, Data Protection Act 1998, Privacy law, Electrical and Electronic Engineering, European union, business, Personally identifiable information, media_common

Abstract

Information-technology managers at United States companies are likely to be affected by recent legislation in the European Union and in Canada that restricts the transfer of citizens' personal information to countries that do not protect that information adequately. We argue that, from both ethical and pragmatic perspectives, USA businesses should reject the voluntary, self-certifying approach to data protection currently in favor in the United States. USA businesses should advocate instead for a European approach that mandates stronger data protection and establishes a government agency charged with enforcing it. If the USA adopted a European approach to data privacy, USA businesses would attract more customers and avoid the legal problems that are likely to result when European and Canadian data-privacy authorities begin to enforce their new laws vigorously.

Published

2004

20. Creepiness Is in the Eye of the Beholder [Opinion]

Author

Anna Johnston

Subjects

Information privacy, Privacy by Design, Privacy software, business.industry, Privacy policy, Internet privacy, General Engineering, Privacy laws of the United States, General Social Sciences, 020206 networking & telecommunications, Information privacy law, 02 engineering and technology, Political science, 0202 electrical engineering, electronic engineering, information engineering, Australia Card, 020201 artificial intelligence & image processing, Privacy law, business

Abstract

As a privacy adviser, I am often called upon to determine whether or how a particular initiative can comply with privacy law. But often a more compelling and relevant question is: will this project fly, or will it crash and burn? The answer to both questions is often “it depends.” The principles set down in privacy laws in Australia and around the world are examples of what's known as fuzzy law, meaning they offer plenty of blank space around phrases like “reasonable expectations” and “take reasonable steps,” that the privacy adviser has to fill in. And then even if you do comply with the law, a backlash from your customers or the wider public can bring your project undone faster than you can say “Australia Card” (a national identity card proposed by the Australian Government which sank in 1987 due to massive public opposition to the scheme). So how are we supposed to figure out in advance what will be considered unduly privacy invasive, and what won't?

Published

2016

21. Web technologies - Technological solutions for protecting privacy

Author

R. Srikant and R.J. Bayardo

Subjects

Information privacy, General Computer Science, Privacy by Design, Computer science, business.industry, Privacy software, Privacy policy, Internet privacy, Information access, Information privacy law, Legislation, Computer security, computer.software_genre, Information sensitivity, The Internet, business, Personally identifiable information, computer

Abstract

The Web is commonly viewed as an information access tool for end users. But as much as it simplifies access to stock quotes, medical libraries, or reference manuals, the Web also makes it easier for individuals and organizations to obtain and infer. Emerging technologies can protect privacy without restricting the information flow crucial to efficient organizations. Solutions to privacy concern must combine laws, societal norms, market and technology.

Published

2003

22. Patient privacy in electronic prescription transfer

Author

David W. Chadwick, Darren Mundy, and E. Ball

Subjects

Information privacy, Government, Privacy by Design, Computer Networks and Communications, business.industry, Privacy software, Computer science, Privacy policy, Internet privacy, Information privacy law, National health service, Malpractice, Health care, Electrical and Electronic Engineering, Medical prescription, business, Law, Personally identifiable information, health care economics and organizations

Abstract

In paper-based prescribing in the United Kingdom's National Health Service (NHS), patients are responsible for protecting the privacy of their prescription information while it is in transit from the prescriber to the dispenser. The UK government has introduced a plan for future NHS reform that includes a change from paper-based prescribing to a national electronic transfer of prescriptions (ETP) system. This brings with it concerns for patient data privacy and questions about the burden of trust placed on professionals in the ETP system. As recently seen in the Emilio Calatayud case in the United States, systems that contain an aggregation of identifiable personal information can be abused. A similar case could result from malpractice in an ETP system. We have developed and implemented an ETP system for the UK NHS. We present our system for protecting the privacy of patient data, describe how we implemented it in Java, and discuss how others can use our system for other applications both inside and outside the healthcare sector.

Published

2003

23. Privacy vs. information technology

Author

M. Caloyannides

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Privacy software, business.industry, Computer science, Privacy policy, Internet privacy, FTC Fair Information Practice, Information technology, Legislation, Information privacy law, Computer security, computer.software_genre, Common good, Information sensitivity, Information ethics, ComputingMilieux_COMPUTERSANDSOCIETY, Electrical and Electronic Engineering, business, Law, computer, Personally identifiable information

Abstract

Modern information technology is facilitating the steady disappearance of individual privacy - even under normal circumstances. Add a real or hyped threat to the common good, and the erosion of individual privacy is further accelerated.

Published

2003

24. The Price of Privacy

Author

Michael Lesk

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Electronic voting, business.industry, Computer science, Privacy software, Privacy policy, media_common.quotation_subject, Internet privacy, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Information privacy law, Payment, Electrical and Electronic Engineering, business, Law, Database transaction, media_common

Abstract

Simply declaring privacy to be a legal right doesn't provide any resources to enforce it. If privacy was an economic transaction, meaning that people pay for it, then their payments would provide resources to protect it. Would we have better privacy if people were paying for it directly rather than trying to get it via political campaigns?

Published

2012

25. Maintaining privacy in a online world

Author

A.K. Ghosh

Subjects

Information privacy, Data collection, Privacy by Design, business.industry, Privacy software, Privacy policy, Internet privacy, Information privacy law, Profit (economics), Computer Science Applications, Hardware and Architecture, business, Personally identifiable information, Software

Abstract

As long as the government does not regulate online privacy policies, market forces will largely dictate the practices of most businesses. If the market values data collection highly, then data collection will be here to stay. Businesses that do not monitor their data collection practices or violate privacy policies risk serious repercussions from an unforgiving public. Companies continue to face criticism from the media and on Wall Street for egregious breaches of trust. Given this climate, businesses will seek solutions that show them to be good corporate citizens while delivering maximum value to their customers. For businesses, privacy and profit must go hand-in-hand.

Published

2002

26. Dirty laundry: privacy issues for IT professionals

Author

Julia B. Earp and Fay Cobb Payton

Subjects

Information privacy, ComputingMilieux_THECOMPUTINGPROFESSION, Privacy by Design, business.industry, Laundry, Privacy policy, Public policy, Information privacy law, Public relations, Computer Science Applications, Politics, Hardware and Architecture, Health care, business, Software

Abstract

Individual online privacy, already a hot button in the political landscape, is no less important for IT professionals. In 1999, the authors distributed a survey to 500 data workers in the healthcare and financial fields. The results of the study suggest that privacy concerns are not confined to consumers, but the employees who access and collect the data are concerned as well. The survey posed 15 questions regarding the responders' attitudes about the organizational practices at their organization. The data collected from the survey reveals that healthcare workers are concerned about organizational practices causing errors in patient information, as well as unsanctioned use of patient information. Similarly, the survey research indicates that employees of financial institutions are concerned with organizational practices that allow improper access to customer information. Given the results in these two fields, IT workers and managers in all fields must be prepared to deal with this issue, for it is likely to confront them soon.

Published

2000

27. Developing a Culture of Privacy: A Case Study

Author

E.M. Power

Subjects

Smart system, Information privacy, Privacy by Design, Health professionals, Computer Networks and Communications, Computer science, Privacy software, business.industry, Privacy policy, Internet privacy, FTC Fair Information Practice, Information privacy law, Information security, Information sensitivity, Health care, ComputingMilieux_COMPUTERSANDSOCIETY, Electrical and Electronic Engineering, business, Law, Personally identifiable information

Abstract

In building a culture of privacy, an organization must clearly articulate privacy as an organizational priority; communicate key privacy and security messages; educate across the organization; raise awareness of the importance of registering privacy incidents and breaches; build privacy into the fabric of the organization's activities; and make privacy information and guidance readily accessible. Accomplishing these objectives provides a framework to create or reinforce a privacy culture. In 2003, the province of Ontario, Canada, created the smart systems for health agency (SSHA) to connect healthcare professionals across the province.

Published

2007

28. International participation. The continuing march toward security and privacy

Author

J. Hearn

Subjects

Information privacy, Cloud computing security, Privacy by Design, Computer Networks and Communications, Computer science, Privacy software, business.industry, Privacy policy, Vulnerability, Privacy laws of the United States, Public policy, Legislation, Information privacy law, Intellectual property, Computer security, computer.software_genre, Health care, Privacy law, Electrical and Electronic Engineering, business, Law, Personally identifiable information, computer, Financial services

Abstract

To create a future with improved prospects for dealing with security and privacy, nations will have to reach agreement on many issues, including Banking and financial services; privacy laws related to sensitive data such as healthcare information; intellectual property (IP) rights, their reasonable protection, and the significant challenge of achieving international agreement on an enforceable set of common standards; cybercrime laws and penalties for breaking them and new networking technologies that adversely impact privacy, the subtleties of which might not be fully appreciated until a product is well entrenched. Many of these issues have been around since the onset of literacy, but the challenge of dealing with them has grown enormously in the information age owing to the speed, storage capacity, intelligence, and ubiquity of modern IT (and its inherent vulnerabilities).

Published

2003

29. Cyberprivacy in the new Millennium

Author

H. Berghel

Subjects

Information privacy, General Computer Science, Privacy software, Computer science, business.industry, Privacy policy, Internet privacy, Privacy laws of the United States, Public policy, Legislation, Information privacy law, Electronic mail, Supreme court, Law, The Right to Privacy, Privacy law, business, Right to privacy

Abstract

Because the (US) Constitution does not clearly and explicitly articulate a right to privacy, a legal standard of what constitutes privacy remains elusive in the United States. In 1965, Supreme Court Justice William O. Douglas declared that a penumbra within the wording of the First, Fourth, and Fifth amendments entitles each of us to a "zone of privacy". The extent of this zone, however, is unclear. Public officials and celebrities alike can testify that the penumbra shades some more than others. US courts have generally operated under the principle that the right to privacy is tantamount to the right to be left alone, but everyday experience confirms that this right isn't absolute, even when we are in the comfort of our homes or offices. Mass marketers invade our privacy by calling us during meal-time, filling our mailboxes with junk mail, and spamming our personal computing space. Many employers read our e-mail and check the Web sites that we visit.

Published

2001

30. Database nation; the death of privacy in the 21st century [Books]

Author

L.E. Harris

Subjects

Information privacy, business.industry, Privacy software, Internet privacy, Information privacy law, The Internet, Telephony, Electrical and Electronic Engineering, Intellectual property, business, Computer security, computer.software_genre, computer

Published

2000

31. The Right to Be Unobserved

Author

Daniel E. Geer

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Privacy software, business.industry, Computer science, Privacy policy, Human life, Internet privacy, Face (sociological concept), Information privacy law, Privacy rights, Computer security, computer.software_genre, Electrical and Electronic Engineering, business, Law, computer

Abstract

In the face of the snowballing bigness of the institutions of globalized human life, we must reserve privacy rights explicitly so that we can misrepresent ourselves to those against whom we have no other defense.

Published

2015

32. Giving notice: why privacy policies and security breach notifications aren't enough

Author

Lorrie Faith Cranor

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, Computer science, Privacy policy, Internet privacy, FTC Fair Information Practice, Data security, Information privacy law, Data breach, Computer security, computer.software_genre, Security information and event management, Data Protection Act 1998, Electrical and Electronic Engineering, Cloud computing security, Notice, business.industry, Privacy software, Information security, Computer Science Applications, Information sensitivity, ComputingMilieux_COMPUTERSANDSOCIETY, Network security policy, The Internet, business, computer, Personally identifiable information

Abstract

Anecdotal evidence suggests that although consumers say they want companies to post privacy policies and make security breach disclosures, these notices are not actually having much of an effect on consumers. A number of further steps may be needed to realize the potential of transparency to improve the privacy and security of personal information. Companies are urged to go beyond notices and actually improve their privacy and security practices so that consumers have meaningful privacy choices and personal information is adequately protected.

Published

2005

33. The delicate balance: security and privacy

Author

A. Stone

Subjects

Government, Information privacy, Patriot Act, Computer Networks and Communications, Computer science, business.industry, Privacy policy, Internet privacy, Law enforcement, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Information privacy law, Legislation, Civil liberties, Computer security, computer.software_genre, Civil rights, Privacy law, Electrical and Electronic Engineering, business, Law, Personally identifiable information, computer

Abstract

The article examines the USA Patriot Act; a new push by law enforcement to wiretap voice-over-IP (VoIP) communications; and the need to prevent abuses of technology at the international level. Although the Patriot Act might be good for overall security, it raises serious privacy concerns. It is very one-sided in favoring law enforcement's ability to get information about people, without giving them the opportunity to attempt to protect that information. The act permits using wiretaps without requiring authorities to specify who is being tapped or where the tapping occurs. The Patriot Act likewise opens the door to potential technology abuses, such as providing funding for government database improvements, while offering no protections in terms of how those databases will be used. The article also examines the worldwide state of security by looking at concerns about the dumping and testing of surveillance technologies in countries where civil rights and civil liberties are not an issue.

Published

2004

34. Beyond Secrecy: New Privacy Protection Strategies for Open Information Spaces

Author

Daniel J. Weitzner

Subjects

Information privacy, Privacy by Design, Computer Networks and Communications, business.industry, Privacy software, Privacy policy, Internet privacy, Information privacy law, Computer security, computer.software_genre, Information sensitivity, Data Protection Act 1998, business, Personally identifiable information, computer

Abstract

When the US government erected export-control barriers against the cryptographic technology used to ensure data confidentiality, a coalition of privacy advocates joined IT companies to get those barriers removed and enable widespread adoption of encryption for privacy protection. The most fundamental challenge to 20th century privacy laws is more social than technical - adding to the stream of personal data is a new wave of user-generated content in the form of blogs. Access control and security techniques will remain vital to privacy protection - access control is important for protecting sensitive information and, above all, preserving anonymity.

Published

2007

35. A private matter [privacy in society]

Author

K. Chassie

Subjects

Information privacy, Strategy and Management, Privacy policy, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Legislation, Information privacy law, Education, Bill of rights, Law, ComputingMilieux_COMPUTERSANDSOCIETY, Constitutional right, Business, Privacy law, Electrical and Electronic Engineering, Right to privacy

Abstract

Discusses the gradual erosion of privacy in society and the ways in which individuals are being monitored. The constitutional right to privacy is mentioned based on provisions within the Bill of Rights and amendments. The relationship between globalization and privacy is finally considered.

Published

2001

36. Personal privacy and secondary-use dilemma (social aspects of automation)

Author

G.B. Trubow

Subjects

Information privacy, business.industry, Privacy policy, Internet privacy, Privacy laws of the United States, Directive on Privacy and Electronic Communications, Data Protection Act 1998, Information privacy law, Business, Public relations, Directive, Personally identifiable information, Software

Abstract

A draft EC directive that threatens an embargo on personal information to any nation that does not satisfy its privacy requirements is discussed. The directive seeks to harmonize privacy laws to allow the free flow of personal data because many different approaches might impede economic ventures among members. A historical outline of the proscription of secondary use of personal information in the US is presented. The interpretation of the secondary use principle and two recent cases that demonstrate the wide range of disagreement on secondary use are also discussed. >

Published

1992

37. Computers: Data privacy: The European community grapples with protecting individual rights in the midst of rampant computer progress

Author

F. W. Hondius

Subjects

Information privacy, Human rights, European community, Computer science, business.industry, media_common.quotation_subject, Privacy policy, Internet privacy, Privacy laws of the United States, Information privacy law, Legislation, Law, Data Protection Act 1998, Electrical and Electronic Engineering, business, media_common

Abstract

The matter of invasion of privacy has become a touchy issue in the computer age, and Europe is moving to resolve questions of human rights with uniform legal guarantees. The emerging branch of law is called data protection. Already, some people are questioning whether the law will ever be able to catch up with reality. For example, the notion of `data bank', which appears in some laws, is already becoming inadequate; it is now possible to manipulate data instantaneously without a permanent record. As a result, French law now uses the term `data treatment'. A further example: with networks and intelligent terminals for data processing, rules intended originally for specialists now must address the public at large. For this very reason, an ongoing dialogue between lawyers and data-processing experts is essential.

Published

1980

38. The UK data protection act 1984 and International writers

Author

M. D. Worsley

Subjects

Information privacy, Scope (project management), Computer science, Control (management), Legislation, Information privacy law, Computer security, computer.software_genre, Technical Presentation, Law, Industrial relations, Data Protection Act 1998, Electrical and Electronic Engineering, computer, Register of data controllers

Abstract

The UK Data Protection Act 1984 covers the collection, holding, manipulation and distribution of data concerning living individuals by computerized systems from within the United Kingdom. Individuals who visit the UK fall within the bounds of the Act as soon as they arrive. Although they may be exempt from the Act in relation to the data that they personally control within the UK, they could immediately be liable in connection with data held overseas-perhaps by their employer, client, or any other entity for whom they could be construed to be an agent. The author covers the basic elements of the Act: the definition of data, personal data, data subject, data user, computer bureau, processing, preparing the text of documents, transfer of data, and the territorial scope of the Act. He covers who might have to register and why, how to register, and other implications of the Act.

Published

1987