This week I am writing a letter from America—apologies Alistair Cooke—but know the links can speak for themselves this once. The IAPP Global Privacy Summit 2014, “Changing Times, Engaging Minds” opened Wednesday night and the programme is a “who’s who” of privacy, with topics covering every facet, including a discussion on dystopian futures with authors David Brin and Alex Irvine. The corridors are buzzing with discussion on the future of notice and consent and modifications to Privacy by Design and at least one of our iappANZ directors is in heaven—not often you can discuss these subjects with the likes of Omer Tene, Marty Abrams, Professor Fred Cate and a cast of 70 other privacy stars, including our keynote speakers from 2013, Danny Weitzner and Richard Thomas. The companies represented here include all the usual suspects from software, health, law, advisory, insurance as well as car manufacturing, energy and retail and also a vast array of thought leadership tanks. Organisations like the Information Accountability Foundation, World Privacy Forum and Centre for Democracy and Technology, which celebrated its 20th anniversary last night at the famous CDT #techprom—a great night at Washington Convention Centre where our founding President Malcolm Crompton cut a fine figure on the dance floor with everyone’s favourite commissioner, María Elena Pérez-Jaén Zermeño.
Spoilt for choice and keen to bring back as much fresh and useful information as possible, today my pick will include “Thinking Ahead Vs. Keeping Up: The Challenge To Think Strategically” with chiefs from Panacea and GEC and moderated by Prof. Fred Cate. Like many of the sessions, the focus is past mere compliance and promises advice on how to move beyond reactive firefighting and start thinking strategically about privacy innovations for business. And how to implement them. International perspectives and experience on the issues, which next week’s privacy laws will highlight in Australia, is timely, and Directors Peter Leonard, Julie Inman-Grant, Malcolm Crompton and I look forward to providing you all with a flight through the programme in next month’s Privacy Unbound.
Back to business in Washington.
CHILDREN’S PRIVACY—HONG KONG
The Privacy Commissioner for Personal Data has welcomed a Hospital Authority pilot program aimed at increasing newborns' safety. The program will don newborn babies with smaller and tighter identification tags, the commissioner's office reports. The tags will set off an alarm if an unauthorized person carries a baby out of the hospital ward. The program comes after an incident last year involving the mix-up of two babies' identities. "The Personal Data (Privacy) Ordinance was enacted to protect the personal data of all living individuals no matter how young they are," Commissioner Roderick Woo said.
The Office of the Privacy Commissioner (OPC) was recently shortlisted for PublicAffairsAsia magazine's international Gold Standard Awards. The OPC is one of three finalists in the "Stakeholder Engagement" category for its Australian Privacy Awards and Medal programs. "The Australian Privacy Awards and Medal are a world first," says Australian Privacy Commissioner Karen Curtis. "It is the first time that a country's privacy regulator has hosted such programs to reward good privacy initiatives in the corporate, not-for-profit and public sectors, as well as acknowledging the work of an individual in the privacy sphere." Privacy lawmaker Michael Kirby also received international recognition in recent weeks when he was named the Electronic Privacy Information Center's 2010 International Privacy Champion.
DATA LOSS—NEW ZEALAND
New Zealand's Accident Compensation Corporation (ACC) is looking into a breach involving thousands of private documents related to workplace injuries, TVNZ reports. ACC has formally apologised for the breach, which involved about 2,000 organisations receiving documents in error in January. ACC General Manager Keith McLea says a full investigation has been requested and steps are being taken to ensure such privacy breaches do not happen in the future. ACC has stated the external mail house handling the reports inadvertently sent information intended for other organisations.
The fallout continues from the launch of Google's new social networking feature, Buzz. The Office of the Privacy Commissioner (OPC) of Canada is investigating the feature to see if it complies with Canadian privacy laws, reports the Sydney Morning Herald. "We have seen a storm of protest and outrage over alleged privacy violations and my office also has questions about how Google Buzz has met the requirements of privacy laws in Canada," Commissioner Jennifer Stoddart said in a statement. Released last week, Buzz has garnered criticism from several privacy interests, prompting a Google product manager to promise certain changes. Despite this, a U.S. law firm has filed a class-action suit against the company claiming similar violations.
There should be no discrimination in Australia on genetic grounds, says Civil Liberties Australia (CLA), which is advocating for national legislation to allow Australians to find out what their DNA reveals without being forced to disclose their genetic test results. CLA points to concerns that disclosure could lead to prejudice on the part of potential insurers and employers. "The Australian government should legislate to protect Australians in such cases," says CLA spokesperson Tim Vines, adding, "we all have a right to use new technology to learn about our personal health situation; we don't want people to be afraid of having tests because they might lose their insurance policies if they don't disclose DNA information."
Australia is moving forward with plans to introduce airport body scanners in 2011 as part of a $200 million funding plan to improve airport security, The Australian reports. While the government has not yet announced the specific scanning technology it will adopt, Prime Minister Kevin Rudd says newer technology that transmits "stick figures rather than fleshier images" could allay some privacy concerns about the scans. Transport Minister Anthony Albanese has promised a consultation with Federal Privacy Commissioner Karen Curtis, who said her office welcomes the opportunity, pointing to such potential concerns as whether scanned images are stored with identifying information.
Facebook has introduced more ways for users to control content, reports the Sydney Morning Herald. The company has extended sharing tools to third-party programs, meaning that users will now be able to which friends see content generated from third party programs, the report states. "There are now granular privacy options that enable you to personalize the audience for each piece of content you share through applications," Facebook engineer Ray He wrote in a blog post. He said the new controls give users the ability to share or conceal third-party-generated content to a greater degree.
Two days after receiving threats over the government's plan to filter Internet information, Parliament's Web site was hit by an apparent denial-of-service attack, CIO reports. Hacking group Anonymous issued a press release on February 8 criticising Australian Telecommunications Minister Stephen Conroy's proposal to require ISPs to filter Web content in an effort to protect children from exposure to online gambling and pornography. "The Australian Government will learn that one does not mess with our porn," Anonymous wrote. "No one messes with our access to perfectly legal (or illegal) content for any reason." Early on February 10 the site was hit by 7.5 million requests per second, rendering it inoperable within a matter of hours.
From social networking to biometrics, every indication is that those who wish to keep their personal information private will be facing an uphill battle, privacy analyst Stephen Wilson writes in an op-ed for the Sydney Morning Herald. Citing criticism of Google for its new Buzz social networking feature, Wilson says the company created an "instant circle of followers from e-mail address books" by using information collected for another purpose. Wilson suggests that without safeguards, information gained through social networking, biometrics and consumer tracking will continually be used for unintended purposes, with potentially dire consequences. "The best way to head off these nightmare scenarios is to invoke fundamental privacy protections at every turn," he writes. "Nobody should collect information about me without a clearly defined need. No information about me should be used for unforeseen purposes without my consent."
Two computing pioneers are recording every aspect of their lives digitally, prompting questions about the potential dangers these "lifelogs" pose to personal privacy, The Times reports. Gordon Bell and Jim Gemmell, both Microsoft researchers, suggest the biological ability to retain memories can be augmented with an electronic memory they call "Total Recall." Proponents tout the ability of storing away mundane information and making interesting facts and experiences easily accessible. Others question whether using Total Recall could lead to a "life without privacy," where authorities could demand access to such memory storage banks. Bell, who has spent years compiling an electronic memory that comprises everything from letters and photographs to biometric data, says, "We need to adapt to reap the benefits."
DATA LOSS—NEW ZEALAND
DATA THEFT—SOUTH KOREA
PERSONAL PRIVACY—HONG KONG