Comments on: Thinking About a ‘Privacy Commons’

By: Aaron Titus

Aaron Titus — Mon, 07 Dec 2009 02:41:24 +0000

Christopher,
As usual, thanks for the article. You’ve sparked quite a few thoughts. I took some time to respond to this post on my blog (at http://www.aarontitus.net/blog/2009/12/06/my-thoughts-about-privacy-commons/). Great points.

By: My Thoughts About Privacy Commons « Because I am Here

My Thoughts About Privacy Commons « Because I am Here — Mon, 07 Dec 2009 02:39:00 +0000

[...] spend most of my free time working on Privacy Commons, and so I was excited to see Christopher’s post and critique on the subject. Thanks as usual, Christopher, for your thought-provoking questions and [...]

By: Christopher

Christopher — Fri, 06 Nov 2009 19:05:44 +0000

Thanks for this Ralf – I’d read your post a year or so ago but totally forgot to include it in the links at the top of the post. I do wonder about the effectiveness of very long icon sets for privacy; while they are shorter than privacy policies, they don’t seem immediately accessible to a casual surfer. If there were, say 10 icons for privacy I worry that many people would be uninterested in seeing what they were about.

This isn’t to say that what I’ve begun proposing is necessarily much better, but that if modelled to appear somewhat similar to CC it might have some uptake because of the seemingly similar projects.

Something that I didn’t address in this post, but that is in Mary Rundle’s slides, is the question of international transfers of information. In my mind, I’d like to see this as just built into the broad framework, and then when hovering over the icon maybe reveal information about international transfers. It seems that everytime I think about what could be improved in a PC model additions are required to the model, which runs counter to the KISS principle that I see as necessary for a privacy commons to reach widespread adoption. Has Mehldau’s model continued to circulate through the German blogsphere?

By: Ralf Bendrath

Ralf Bendrath — Fri, 06 Nov 2009 13:04:44 +0000

This debate has been going on for at least two years now, with slow progress. As far as I am aware, the Independent Center for Privacy Protection in Kiel (Germany), which is the state DPA, has been working on it all the time.

By: Christopher

Christopher — Fri, 06 Nov 2009 01:27:02 +0000

This is certainly the idea – establish a few, clear, icons that offer sufficient information to end users about how electronic environments capture and use data. It doesn’t necessarily remove the need for a legalese privacy policy, but such a policy needs to correspond with the privacy commons set. In light of this, corporations could continue to slip in disclaimers, but not without having to declare them in the PC icon set.

This said, there remains a real doubt that large corporations will buy into this. They aren’t 100% needed for the system to work, but for it to be widely acknowledged some kind plan developed to spread the word (such as one putting proponents of the privacy commons into law classes). If young lawyers are aware of the PC, then maybe over a decade or so it could start to seep into corporate culture somewhat.

By: Bhagwad Jal Park

Bhagwad Jal Park — Fri, 06 Nov 2009 00:11:22 +0000

I like the way you think. If we could break down privacy into it’s components in the same way we have say the GPL license, then a company could just maybe have a checklist like table with a tick mark for those aspects that apply.

Of course this will remove the ability of a company to quietly slip in a few disclaimers (which lets face it, most want to do) without informing their user base so I can’t really see it coming into force. It’s no coincidence that both the creative commons and the GPL were not developed by corporations!