blogzilla, profile picture
Uploaded byblogzilla
PPTX, PDF3,147 views

Keeping our secrets? Shaping Internet technologies for the public good

This document discusses challenges to privacy from technological development, market failures, and authorized access. It then discusses approaches to designing for privacy, including data minimization, user consent, and privacy by design. Finally, it examines shaping technologies for the public good through defining privacy as a public good, limiting government surveillance, new privacy regulations like GDPR, and encouraging competition.

Downloaded 20 times
Overview 1. Challenges to privacy 1. Technological development 2. Market failure 3. Authorised access 2. Designing for privacy 3. Shaping technologies for the public good
Kelvinsong/Wikimedia
Loic Le Meur
Moore’s law Gordon Moore (1964) Image courtesy of Computer History Museum Google Research (2011)
Market failures  Information asymmetry – data gathered ubiquitously and invisibly in a way few understand  Privacy policies unreadable and difficult to verify/enforce  Most individuals bad at immediate benefit v deferred, uncertain cost decisions  Privacy risks are highly probabilistic, cumulative, and difficult to calculate  Information industries highly concentrated Brown (2014)
Insider threats Information required Price paid to ‘blagger’ Price charged Occupant search not known £17.50 Telephone reverse trace £40 £75 Friends and Family £60 – £80 not known Vehicle check at DVLA £70 £150 – £200 Criminal records check not known £500 Locating a named person not known £60 Ex-directory search £40 £65 – £75 Mobile phone account not known £750 Licence check not known £250 “What price privacy?”, Information Commissioner’s Office (2006)
Overview 1. Challenges to privacy 2. Designing for privacy 1. Principles 2. Targeted advertising 3. Smart meters 4. Congestion charging 5. Privacy-protective robots 3. Shaping technologies for the public good
Designing for privacy  Data minimisation key: is your personal data really necessary? Limit & decentralise personal data collection, storage, access and usage – enforced using cryptography  Protects against hackers, corrupt insiders, and function creep  Users should also be notified and consent to the processing of data – easy-to-use interfaces are critical. What are defaults? Jedrzejczyk et al. (2010)
Location-based services  Can we use features of mobile phone networks to supply anonymous, targeted adverts? Haddadi, Hui, Henderson and Brown (2011)
Privacy-friendly smart meters Rial and Danezis (2011)
Source: Balasch et al. (2010) p.3 Congestion pricing
Privacy-protective robots  Video http://youtu.be/nNbj2G3G mAo
Overview 1. Challenges to privacy 2. Designing for privacy 3. Shaping technologies for the public good 1. Defining the public good 2. Limits on government surveillance 3. The General Data Protection Regulation 4. Encouraging competition
EU data privacy concerns Source: Eurobarometer #225 Data Protection in the EU, Feb. 2008 p.8
Constitutional protections ECHR, 1950 Reaffirming their profound belief in those fundamental freedoms which are the foundation of justice and peace in the world… §8 Everyone has the right to respect for his private and family life, his home and his correspondence §9 Everyone has the right to freedom of thought, conscience and religion §10 Everyone has the right to freedom of expression §11 Everyone has the right to freedom of peaceful assembly and to freedom of association with others US Bill of Rights, ratified 1791 …extending the ground of public confidence in the Government, will best insure the beneficent ends of its institution… I: Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble IV: The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated
Bulk vs. targeted surveillance  President Obama’s NSA Review Panel : "Although we might be safer if the government had ready access to a massive storehouse of information about every detail of our lives, the impact of such a program on the quality of life and on individual freedom would simply be too great… We recommend that the US Government should examine the feasibility of creating software that would allow the National Security Agency and other intelligence agencies more easily to conduct targeted information acquisition rather than bulk-data collection.”  Deputy Prime Minister, 4 Mar 2014 : “[O]ur current framework assumes that the collection of bulk data is uncontroversial as long as arrangements for accessing it are suitably stringent. I don‟t accept that... [S]trong access controls are vital to prevent employees from going on „fishing expeditions‟ once a store of data exists. But the case for collection itself has to be made, not assumed.”
GDPR Art. 23 Data protection by design and by default 1. …the controller… shall…implement appropriate and proportionate technical and organisational measures and procedures in such a way that the processing will meet the requirements of this Regulation and ensure the protection of the rights of the data subject… data protection by design shall be a prerequisite for public procurement tenders… [and] procurement by entities operating in the water, energy, transport and postal services sector 2. The controller shall ensure that, by default, only those personal data are processed which are necessary for each specific purpose of the processing and are especially not collected, retained or disseminated beyond the minimum necessary for those purposes, both in terms of the amount of the data and the time of their storage. In particular, those mechanisms shall ensure that by default personal data are not made accessible to an indefinite number of individuals and that data subjects are able to control the distribution of their personal data. See Korff & Brown (2010)
Interoperability requirements  Data portability may reduce switching costs, but network effects will still act as a barrier to entry  Vertical integration could limit consumer choice  To minimise network barriers, competition authorities could impose ex ante interoperability requirements:  upon dominant social utilities  between vertically integrated value chains
Conclusion  Technology developments can have a significant social impact – societies can shape the values technologies embed if they wish (Brown, Clark & Trossen 2010)  Privacy-protective technologies have been developed for a range of applications – how do we persuade companies and governments to use them?  These are questions not just for computer scientists, but also lawyers, economists, sociologists – and citizens and their representatives
References J. Balasch, A. Rial, C. Troncoso, C. Geuens, B. Preneel, and I. Verbauwhede (2010) PrETP: Privacy-Preserving Electronic Toll Pricing, In Proceedings of the 19th Usenix Security Symposium, pp. 63-78 I. Brown (2014) The economics of privacy, data protection and surveillance. In J.M. Bauer and M. Latzer (eds.) Research Handbook on the Economics of the Internet. Cheltenham: Edward Elgar I. Brown, D. Clark and D. Trossen (2010) Should Specific Values Be Embedded In The Internet Architecture? Re-Architecting the Internet I. Brown and C. Marsden (2013) Regulating Code: Good Governance and Better Regulation in the Information Age. Cambridge, MA: MIT Press. I. Brown, C. Buckley and D. Harris (2014) Data Protection: Redress mechanisms and their use in the UK. EU Fundamental Rights Agency L. Jedrzejczyk, B. A. Price, A. K. Bandara and B. Nuseibeh (2010) On The Impact of Real-Time Feedback on Users’ Behaviour in Mobile Location-Sharing Applications, Symposium on Usable Privacy and Security, Redmond H. Haddadi, P. Hui and I. Brown (2010) MobiAd: Private and Scalable Mobile Advertising, ACM International Workshop on Mobility in the Evolving Internet Architecture, Chicago) D. Korff and I. Brown (2010) New Challenges to Data Protection. European Commission DG Freedom, Security and Justice. A. McDonald and L.F. Cranor (2008) The Cost of Reading Privacy Policies. I/S 4 p.543

More Related Content

PPT
The Data Retention Directive: recent developments
byblogzilla
 
PPTX
Cybercrime convention
bymoldovaictsummit2016
 
PPTX
Where next for encryption regulation?
byblogzilla
 
PPT
Freedom of expression on the internet
bymoldovaictsummit2016
 
PPTX
Internet user's rights and fundamental freedoms day
bymoldovaictsummit2016
 
PPTX
Where next for the Regulation of Investigatory Powers Act?
byblogzilla
 
PPTX
Privacy post-Snowden
byblogzilla
 
PPT
Copyright and privacy by design - what lessons have we learned?
byblogzilla
 
The Data Retention Directive: recent developments
byblogzilla
 
Cybercrime convention
bymoldovaictsummit2016
 
Where next for encryption regulation?
byblogzilla
 
Freedom of expression on the internet
bymoldovaictsummit2016
 
Internet user's rights and fundamental freedoms day
bymoldovaictsummit2016
 
Where next for the Regulation of Investigatory Powers Act?
byblogzilla
 
Privacy post-Snowden
byblogzilla
 
Copyright and privacy by design - what lessons have we learned?
byblogzilla
 

What's hot

PDF
The Human Right to Privacy in the Digital Age
by- Mark - Fullbright
 
PPTX
Trusted government access to private sector data
byblogzilla
 
PPTX
Introduction to Information Policy
byNiamh Headon
 
PDF
Privacy and data protection in the realm of Internet Governance by Santosh Si...
bySantosh Sigdel
 
PPTX
The Promotion of Access to Information Act for South African Journalists
byGabriella Razzano
 
PPT
An Overview of the Battle for the Control of the Internet
byDibussi Tande
 
PPSX
Internet governance
byGhazala Ajami
 
PDF
Social media impact on freedom of expression and privacy
byYasmin AbdelAziz
 
PDF
ID IGF 2016 - Hukum 3 - Mewujudkan Kedaulatan dan Ketahanan Siber
byIGF Indonesia
 
PPTX
cybercrime landscape for moldova
bymoldovaictsummit2016
 
PPTX
Mobile privacy in Zambia
byFrancesca Kabaso
 
PDF
Contract for the web
byMassa Critica
 
PDF
Finding balance in the age of open data
byCaribbean Open Data Conference & Code Sprint
 
PPTX
Investigating cybercrime at the United Nations
byblogzilla
 
PDF
Hannes astok data protection agency
byE-Government Center Moldova
 
PDF
An Exploratory Study on Mechanisms in Place to Combat Hacking In South Africa...
byAJHSSR Journal
 
PPT
Legal Aspect of the Cloud by Giuseppe Vaciago
byTech and Law Center
 
PPTX
Cyber crime
byDani Ann Eunice Vargas Espelico
 
PPT
Wikileaks freedom of speech on the internet
byVincy
 
The Human Right to Privacy in the Digital Age
by- Mark - Fullbright
 
Trusted government access to private sector data
byblogzilla
 
Introduction to Information Policy
byNiamh Headon
 
Privacy and data protection in the realm of Internet Governance by Santosh Si...
bySantosh Sigdel
 
The Promotion of Access to Information Act for South African Journalists
byGabriella Razzano
 
An Overview of the Battle for the Control of the Internet
byDibussi Tande
 
Internet governance
byGhazala Ajami
 
Social media impact on freedom of expression and privacy
byYasmin AbdelAziz
 
ID IGF 2016 - Hukum 3 - Mewujudkan Kedaulatan dan Ketahanan Siber
byIGF Indonesia
 
cybercrime landscape for moldova
bymoldovaictsummit2016
 
Mobile privacy in Zambia
byFrancesca Kabaso
 
Contract for the web
byMassa Critica
 
Finding balance in the age of open data
byCaribbean Open Data Conference & Code Sprint
 
Investigating cybercrime at the United Nations
byblogzilla
 
Hannes astok data protection agency
byE-Government Center Moldova
 
An Exploratory Study on Mechanisms in Place to Combat Hacking In South Africa...
byAJHSSR Journal
 
Legal Aspect of the Cloud by Giuseppe Vaciago
byTech and Law Center
 
Cyber crime
byDani Ann Eunice Vargas Espelico
 
Wikileaks freedom of speech on the internet
byVincy
 

Similar to Keeping our secrets? Shaping Internet technologies for the public good

PPTX
GCCS-privacy-PP-final presentation-3-1.pptx
byMuhammadAbdullah311866
 
PPTX
Privacy and Data Protection in Research
byMarlon Domingus
 
PPT
Chapter2
byPibi Lu
 
PPTX
Ethics and Big Data
byPew Research Center's Internet & American Life Project
 
PPTX
Privacy by design
byblogzilla
 
PDF
An ethical approach to data privacy protection
byNicha Tatsaneeyapan
 
PPTX
Privacy and data protection primer - City of Portland
byHector Dominguez
 
PDF
Privacy, Accountability and Trust Privacy, Accountability and Trust Privacy, ...
byKarlos Svoboda
 
PPTX
Ethics and Politics of Big Data
byrobkitchin
 
PDF
Data science and privacy regulation
byblogzilla
 
PDF
Privacy and Surveillance
byIrem Gokce Aydin
 
PPT
Ubicomp challenges for privacy law
byblogzilla
 
PPT
Updating the EU Data Protection Directive
byblogzilla
 
PPTX
Overview of privacy and data protection considerations for DEVELOP
byTrilateral Research
 
PPTX
IT law : the middle kingdom between east and West
byLilian Edwards
 
PPTX
Steve Purser
byglobalforum11
 
PDF
HCMUT IMP Computer Science 20 - E-Government from the view of Privacy
byDuc Lai Trung Minh
 
PDF
acatech_STUDY_Internet_Privacy_WEB
byJaina Hirai
 
PPTX
Customers in the cloud pulse final
byFLUZO
 
PPTX
EU Data Protection Regulation 26 June 2012
byChris Marsden
 
GCCS-privacy-PP-final presentation-3-1.pptx
byMuhammadAbdullah311866
 
Privacy and Data Protection in Research
byMarlon Domingus
 
Chapter2
byPibi Lu
 
Ethics and Big Data
byPew Research Center's Internet & American Life Project
 
Privacy by design
byblogzilla
 
An ethical approach to data privacy protection
byNicha Tatsaneeyapan
 
Privacy and data protection primer - City of Portland
byHector Dominguez
 
Privacy, Accountability and Trust Privacy, Accountability and Trust Privacy, ...
byKarlos Svoboda
 
Ethics and Politics of Big Data
byrobkitchin
 
Data science and privacy regulation
byblogzilla
 
Privacy and Surveillance
byIrem Gokce Aydin
 
Ubicomp challenges for privacy law
byblogzilla
 
Updating the EU Data Protection Directive
byblogzilla
 
Overview of privacy and data protection considerations for DEVELOP
byTrilateral Research
 
IT law : the middle kingdom between east and West
byLilian Edwards
 
Steve Purser
byglobalforum11
 
HCMUT IMP Computer Science 20 - E-Government from the view of Privacy
byDuc Lai Trung Minh
 
acatech_STUDY_Internet_Privacy_WEB
byJaina Hirai
 
Customers in the cloud pulse final
byFLUZO
 
EU Data Protection Regulation 26 June 2012
byChris Marsden
 

More from blogzilla

PDF
Privacy and Data Protection in South Africa
byblogzilla
 
PPTX
Regulation and the Internet of Things
byblogzilla
 
PPTX
Trust in the Cloud
byblogzilla
 
PDF
Interoperability in the Digital Services Act
byblogzilla
 
PPTX
Introduction to Cybersecurity for Elections
byblogzilla
 
PDF
Interoperability for SNS competition
byblogzilla
 
PPTX
Can the law control Digital Leviathan?
byblogzilla
 
PPT
Internet freedom: a comparative assessment
byblogzilla
 
PPTX
Human rights and the future of surveillance - Lord Anderson QC
byblogzilla
 
PPTX
Transatlantic data flows following the Schrems II judgment
byblogzilla
 
PPTX
Key issues in data protection policy
byblogzilla
 
PPTX
Regulating code
byblogzilla
 
PPTX
Digital freedoms in international law
byblogzilla
 
PPT
Data protection redress in the UK
byblogzilla
 
PPTX
Global Cyber Security Capacity Centre
byblogzilla
 
PPTX
Making effective policy use of academic expertise
byblogzilla
 
PPT
Exceptions & Limitations in Copyright or Systemic Overhaul?
byblogzilla
 
PPTX
Lessons for interoperability remedies from UK Open Banking
byblogzilla
 
PPTX
Covid exposure apps in England and Wales
byblogzilla
 
PPTX
Cyber Essentials for Managers
byblogzilla
 
Privacy and Data Protection in South Africa
byblogzilla
 
Regulation and the Internet of Things
byblogzilla
 
Trust in the Cloud
byblogzilla
 
Interoperability in the Digital Services Act
byblogzilla
 
Introduction to Cybersecurity for Elections
byblogzilla
 
Interoperability for SNS competition
byblogzilla
 
Can the law control Digital Leviathan?
byblogzilla
 
Internet freedom: a comparative assessment
byblogzilla
 
Human rights and the future of surveillance - Lord Anderson QC
byblogzilla
 
Transatlantic data flows following the Schrems II judgment
byblogzilla
 
Key issues in data protection policy
byblogzilla
 
Regulating code
byblogzilla
 
Digital freedoms in international law
byblogzilla
 
Data protection redress in the UK
byblogzilla
 
Global Cyber Security Capacity Centre
byblogzilla
 
Making effective policy use of academic expertise
byblogzilla
 
Exceptions & Limitations in Copyright or Systemic Overhaul?
byblogzilla
 
Lessons for interoperability remedies from UK Open Banking
byblogzilla
 
Covid exposure apps in England and Wales
byblogzilla
 
Cyber Essentials for Managers
byblogzilla
 

Recently uploaded

PDF
RR B.Ed. educational trust. Ashish Tiwari
byat386834
 
PPTX
2025 - AI terms & Meanings for Marketers
byashishav29
 
PPTX
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
PDF
Q8 DIGITAL IDENTITY HUB - WSO2 Oxygenate Italy 2025
byProfesia Srl, Lynx Group
 
PDF
AWS re:Invent 2025 Event Presentation Slides
byZilliz
 
PDF
The Smol Training Playbook: The Secrets to Building World-Class LLMs
byRazin Mustafiz
 
PDF
The Future-Ready PMO: Unlocking Project Success with Copilot and AI Innovatio...
byWellingtone
 
PPTX
Your First Deep Learning project With CNN (workshop).pptx
byMuhammad Fahad Bashir
 
PDF
How Tridens DevSecOps Ensures Compliance, Security, and Agility
byTridens
 
PDF
WebXR in Android and Linux with OpenXR
byIgalia
 
PDF
Unleash AI power with the Dell Pro 14 Plus - Interactive PDF
byPrincipled Technologies
 
PDF
Transform Your Online Store with AltiusNxt AI Enriched data
byAltiusNxt Technologies
 
PPTX
GenAI GraphTalk - Kuala Lumpur - 4 Nov 2025
bygourisachdeva2
 
PDF
Database Performance at Scale: The TL;DR
byScyllaDB
 
PDF
Cybersecurity in ASEAN and Singapore Columbia SIPA 2025.pdf
byBenjamin Ang
 
PDF
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
Manage Files Using CLI - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
PDF
Analyze and Store Logs - RHCSA (RH124).pdf
byLinuxCert Guru
 
RR B.Ed. educational trust. Ashish Tiwari
byat386834
 
2025 - AI terms & Meanings for Marketers
byashishav29
 
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
Q8 DIGITAL IDENTITY HUB - WSO2 Oxygenate Italy 2025
byProfesia Srl, Lynx Group
 
AWS re:Invent 2025 Event Presentation Slides
byZilliz
 
The Smol Training Playbook: The Secrets to Building World-Class LLMs
byRazin Mustafiz
 
The Future-Ready PMO: Unlocking Project Success with Copilot and AI Innovatio...
byWellingtone
 
Your First Deep Learning project With CNN (workshop).pptx
byMuhammad Fahad Bashir
 
How Tridens DevSecOps Ensures Compliance, Security, and Agility
byTridens
 
WebXR in Android and Linux with OpenXR
byIgalia
 
Unleash AI power with the Dell Pro 14 Plus - Interactive PDF
byPrincipled Technologies
 
Transform Your Online Store with AltiusNxt AI Enriched data
byAltiusNxt Technologies
 
GenAI GraphTalk - Kuala Lumpur - 4 Nov 2025
bygourisachdeva2
 
Database Performance at Scale: The TL;DR
byScyllaDB
 
Cybersecurity in ASEAN and Singapore Columbia SIPA 2025.pdf
byBenjamin Ang
 
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
Manage Files Using CLI - RHCSA (RH124).pdf
byLinuxCert Guru
 
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
Analyze and Store Logs - RHCSA (RH124).pdf
byLinuxCert Guru
 

Keeping our secrets? Shaping Internet technologies for the public good

  • 2.
    Overview 1. Challenges toprivacy 1. Technological development 2. Market failure 3. Authorised access 2. Designing for privacy 3. Shaping technologies for the public good
  • 6.
  • 7.
  • 8.
    Moore’s law Gordon Moore(1964) Image courtesy of Computer History Museum Google Research (2011)
  • 9.
    Market failures  Informationasymmetry – data gathered ubiquitously and invisibly in a way few understand  Privacy policies unreadable and difficult to verify/enforce  Most individuals bad at immediate benefit v deferred, uncertain cost decisions  Privacy risks are highly probabilistic, cumulative, and difficult to calculate  Information industries highly concentrated Brown (2014)
  • 10.
    Insider threats Information requiredPrice paid to ‘blagger’ Price charged Occupant search not known £17.50 Telephone reverse trace £40 £75 Friends and Family £60 – £80 not known Vehicle check at DVLA £70 £150 – £200 Criminal records check not known £500 Locating a named person not known £60 Ex-directory search £40 £65 – £75 Mobile phone account not known £750 Licence check not known £250 “What price privacy?”, Information Commissioner’s Office (2006)
  • 12.
    Overview 1. Challenges toprivacy 2. Designing for privacy 1. Principles 2. Targeted advertising 3. Smart meters 4. Congestion charging 5. Privacy-protective robots 3. Shaping technologies for the public good
  • 13.
    Designing for privacy Data minimisation key: is your personal data really necessary? Limit & decentralise personal data collection, storage, access and usage – enforced using cryptography  Protects against hackers, corrupt insiders, and function creep  Users should also be notified and consent to the processing of data – easy-to-use interfaces are critical. What are defaults? Jedrzejczyk et al. (2010)
  • 14.
    Location-based services  Canwe use features of mobile phone networks to supply anonymous, targeted adverts? Haddadi, Hui, Henderson and Brown (2011)
  • 15.
  • 16.
    Source: Balasch etal. (2010) p.3 Congestion pricing
  • 17.
  • 18.
    Overview 1. Challenges toprivacy 2. Designing for privacy 3. Shaping technologies for the public good 1. Defining the public good 2. Limits on government surveillance 3. The General Data Protection Regulation 4. Encouraging competition
  • 19.
    EU data privacyconcerns Source: Eurobarometer #225 Data Protection in the EU, Feb. 2008 p.8
  • 20.
    Constitutional protections ECHR, 1950 Reaffirmingtheir profound belief in those fundamental freedoms which are the foundation of justice and peace in the world… §8 Everyone has the right to respect for his private and family life, his home and his correspondence §9 Everyone has the right to freedom of thought, conscience and religion §10 Everyone has the right to freedom of expression §11 Everyone has the right to freedom of peaceful assembly and to freedom of association with others US Bill of Rights, ratified 1791 …extending the ground of public confidence in the Government, will best insure the beneficent ends of its institution… I: Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble IV: The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated
  • 21.
    Bulk vs. targetedsurveillance  President Obama’s NSA Review Panel : "Although we might be safer if the government had ready access to a massive storehouse of information about every detail of our lives, the impact of such a program on the quality of life and on individual freedom would simply be too great… We recommend that the US Government should examine the feasibility of creating software that would allow the National Security Agency and other intelligence agencies more easily to conduct targeted information acquisition rather than bulk-data collection.”  Deputy Prime Minister, 4 Mar 2014 : “[O]ur current framework assumes that the collection of bulk data is uncontroversial as long as arrangements for accessing it are suitably stringent. I don‟t accept that... [S]trong access controls are vital to prevent employees from going on „fishing expeditions‟ once a store of data exists. But the case for collection itself has to be made, not assumed.”
  • 22.
    GDPR Art. 23Data protection by design and by default 1. …the controller… shall…implement appropriate and proportionate technical and organisational measures and procedures in such a way that the processing will meet the requirements of this Regulation and ensure the protection of the rights of the data subject… data protection by design shall be a prerequisite for public procurement tenders… [and] procurement by entities operating in the water, energy, transport and postal services sector 2. The controller shall ensure that, by default, only those personal data are processed which are necessary for each specific purpose of the processing and are especially not collected, retained or disseminated beyond the minimum necessary for those purposes, both in terms of the amount of the data and the time of their storage. In particular, those mechanisms shall ensure that by default personal data are not made accessible to an indefinite number of individuals and that data subjects are able to control the distribution of their personal data. See Korff & Brown (2010)
  • 23.
    Interoperability requirements  Dataportability may reduce switching costs, but network effects will still act as a barrier to entry  Vertical integration could limit consumer choice  To minimise network barriers, competition authorities could impose ex ante interoperability requirements:  upon dominant social utilities  between vertically integrated value chains
  • 24.
    Conclusion  Technology developmentscan have a significant social impact – societies can shape the values technologies embed if they wish (Brown, Clark & Trossen 2010)  Privacy-protective technologies have been developed for a range of applications – how do we persuade companies and governments to use them?  These are questions not just for computer scientists, but also lawyers, economists, sociologists – and citizens and their representatives
  • 25.
    References J. Balasch, A.Rial, C. Troncoso, C. Geuens, B. Preneel, and I. Verbauwhede (2010) PrETP: Privacy-Preserving Electronic Toll Pricing, In Proceedings of the 19th Usenix Security Symposium, pp. 63-78 I. Brown (2014) The economics of privacy, data protection and surveillance. In J.M. Bauer and M. Latzer (eds.) Research Handbook on the Economics of the Internet. Cheltenham: Edward Elgar I. Brown, D. Clark and D. Trossen (2010) Should Specific Values Be Embedded In The Internet Architecture? Re-Architecting the Internet I. Brown and C. Marsden (2013) Regulating Code: Good Governance and Better Regulation in the Information Age. Cambridge, MA: MIT Press. I. Brown, C. Buckley and D. Harris (2014) Data Protection: Redress mechanisms and their use in the UK. EU Fundamental Rights Agency L. Jedrzejczyk, B. A. Price, A. K. Bandara and B. Nuseibeh (2010) On The Impact of Real-Time Feedback on Users’ Behaviour in Mobile Location-Sharing Applications, Symposium on Usable Privacy and Security, Redmond H. Haddadi, P. Hui and I. Brown (2010) MobiAd: Private and Scalable Mobile Advertising, ACM International Workshop on Mobility in the Evolving Internet Architecture, Chicago) D. Korff and I. Brown (2010) New Challenges to Data Protection. European Commission DG Freedom, Security and Justice. A. McDonald and L.F. Cranor (2008) The Cost of Reading Privacy Policies. I/S 4 p.543

Editor's Notes

  • #8 “Living with Google Glass – not quite useful enough to overcome the dork-factor” http://www.computerweekly.com/opinion/Living-with-Google-Glass-not-quite-useful-enough-to-overcome-the-dork-factor
  • #9 http://www.computerhistory.org/semiconductor/timeline/1965-Moore.htmlhttp://googleresearch.blogspot.co.uk/2013/11/moores-law-part-1-brief-history-of.html
  • #10 Imposes cost of future invasive advertising
  • #16 http://research.microsoft.com/en-us/projects/privacy_in_metering/mainwpes.pdf
  • #17 http://www.docstoc.com/docs/88760415/PrETP-Privacy-Preserving-Electronic-Toll-Pricing
  • #22 https://www.gov.uk/government/speeches/security-and-privacy-in-the-internet-age
  • #24 http://www.pewinternet.org/2013/12/30/social-media-update-2013/http://gs.statcounter.com/#search_engine-eu-monthly-201301-201401http://www.mvfglobal.com/europe