thoughts and observations of a privacy, security and internet researcher, activist, and policy advisor

Thursday, September 18, 2008

Expect the Sarah Palin E-Mail Privacy Act of 2009

As you probably all have read, U.S. vice-presidential candidate Sarah Palin's private email account has been broken into and some of the contents posted at wikileaks (the server seems to be over capacity at the moment, so I save you the link). I won't get into the content of this personal communication, because I agree with Lauren Weinstein that
"we shouldn't be doing to others that which we wouldn't want done to ourselves. Palin's truly personal e-mail and photos have no bearing on the political situation, yet they've been posted along with everything else. There's simply no justifying this from an ethical standpoint."
Of course, for persons running for an important public office, we have different expectations of privacy than for the everage John Doe, but what is going too far is just going too far.

But apart from these ethical considerations, there will be practical consequences of this event, Here, the opinions are very diverse even among the liberal crowd. Lauren Weinstein fears that "this chain of events plays into the hands of the Palin/McCain campaign". I tend to agree more with Paul Ohm that this event may trigger the preparations of a federal email privacy act in the United States. Ohm argues rightfully:
Congress often enacts privacy protecting legislation only in the wake of salient, sensationalized, harmful privacy breaches. Thus, Judge Bork's video rental records begat the Video Privacy Protection Act and the murder of actress Rebecca Schaeffer by a stalker with DMV records led, eventually, to the Drivers' Privacy Protection Act.
Similar things also happened last year in Canada, when the mobile phone records of the Canadian Privacy Commissioner Jennifer Stoddart were obtained by a reporter through data brokers in the U.S.

Paul Ohm goes on with a prediction I would certainly bet something on:
If I am right about this, expect the E-mail Privacy Act of 2009, and expect it to be a blockbuster. If you're an activist, government lawyer, e-mail provider, or scholar with an interest in information privacy, I advise you to start putting together your statutory wish lists.

Monday, September 15, 2008

Conference "Privacy in Social Network Sites"

Onother interesting conference here at TU Delft which I am looking forward to: "Privacy in Social Network Sites" on 23 and 24 October 2008. Registration and participation is free, and Delft (right between The Hague and Rotterdam) is always worth a visit. The conference is organized by David Riphagen, who is affiliated with the Electronic Privacy Information Center (EPIC) and currently is finishing his M.A. thesis at our department on the same topic. His blog on the same theme is also worth a look.