Today's Info Policy News
Protecting your children's privacy: The Facts
Parents 4 Privacy
WHO'S WATCHING YOUR CHILDREN?
With the exact phrase
With all of the words
With at least one of the words
Without these words
Within these fields
Date range limit
No limit: Show me all items regardless of date captured.
Limit the search to items added since this date.
Item(s) found: 44
Data Brokers – Is Consumers’ Information Secure
Friday November 13 2015, 9:47 AM
Recorded: Subcommittee on Privacy, Technology and the Law Date: Tuesday, November 3, 2015 Time: 02:30 PM Location: Dirksen Senate Office Building 226 Presiding: Chairman Flake
Data Brokers – Is Consumers’ Information Secure
Friday November 13 2015, 9:27 AM
Ms. Pam Dixon; Executive Director -World Privacy Forum before Subcommittee on Privacy, Technology and the Law, Date: Tuesday, November 3, 2015; Time: 02:30 PM; Location: Dirksen Senate Office Building 226; Presiding: Chairman Flake
FTC's Brill Excludes Google, Facebook From Data Broker Push
Friday April 11 2014, 1:10 PM
March 14, 2014 Keynote address at a symposium on the “Internet of Things” held by the Center on Law and Information Policy at Fordham Law School
Data Broker Accountability and Transparency Act of 2014 (DATA Act)
Thursday February 13 2014, 1:53 PM
12.18.13 Senate Commerce Appendices and Exhibits
Saturday December 21 2013, 1:05 PM
What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Saturday December 21 2013, 10:31 AM
Chairman John D. (Jay) Rockefeller IV today announced the U.S. Senate Committee on Commerce, Science, and Transportation will hold a hearing on Wednesday, December 18, 2013, at 2:30 p.m. to examine the data broker industry and how industry practices may impact consumers. The hearing comes after a yearlong Commerce Committee examination of how data brokers collect, compile, and sell consumer information for marketing purposes. In October 2012, Rockefeller launched an investigation into the data broker industry to give consumers a better understanding of how their personal information is handled, issuing information requests to nine representative data brokers. Rockefeller sent an additional set of inquiries in September 2013 to twelve popular personal finance, health, and family-focused websites to further explore data broker information collection practices, and further expanded the investigation in October 2013 by requesting that Experian provide specific information about the company’s customer vetting practices following news reports alleging that an Experian subsidiary sold data to an identity theft scheme.
Dr. Joseph Turos
Saturday December 21 2013, 10:03 AM
Testimony of Pam Dixon Executive Director, World Privacy Forum Before the Senate Committee on Commerce, Science, and Transportation What Information Do Data Brokers Have on Consumers, and How Do They Use It?
Saturday December 21 2013, 9:13 AM
The data broker industry has not shown restraint. Nothing is out of bounds. No list is too obnoxious to sell. Data brokers sell lists that allow for the use of racial, ethnic and other factors that would be illegal or unacceptable in other circumstances. These lists and scores are used everyday to make decisions about how consumers can participate in the economic marketplace. Their information determines who gets in and who gets shut out. All of this must change. I urge you to take action.
A Review of the Data Broker Industry: Collection, Use, and Sale of Consumer Data for Marketing Purposes
Saturday December 21 2013, 8:45 AM
STAFF REPORT FOR CHAIRMAN ROCKEFELLER; DECEMBER 18, 2013; This Committee inquiry has been conducted at a time when sources of consumer data and technological capabilities for storage and speedy analysis of data continue to expand. As data brokers are creating increasingly detailed dossiers on millions of consumers, it is important for policymakers to continue vigorous oversight to assess the potential harms and benefits of evolving industry practices and to make sure appropriate consumer protections are in place.
INFORMATION RESELLERS Consumer Privacy Framework Needs to Reflect Changes in Technology and the Marketplace
Thursday November 21 2013, 2:23 PM
What GAO Recommends: Congress should consider strengthening the consumer privacy framework to reflect the effects of changes in technology and the increased market for consumer information. Any changes should seek to provide consumers with appropriate privacy protections without unduly inhibiting commerce and innovation. The Department of Commerce agreed that strengthened privacy protections could better protect consumers
PERSONAL INFORMATION: Key Federal Privacy Laws Do Not Require Information Resellers to Safeguard All Sensitive Data
Wednesday June 12 2013, 1:29 PM
GAO-06-674, Jun 26, 2006
FTC to Study Data Broker Industry’s Collection and Use of Consumer Data
Tuesday December 18 2012, 1:44 PM
The nine data brokers receiving orders from the FTC are: 1) Acxiom, 2) Corelogic, 3) Datalogix, 4) eBureau, 5) ID Analytics, 6) Intelius, 7) Peekyou, 8) Rapleaf, and 9) Recorded Future. The FTC is seeking details about: the nature and sources of the consumer information the data brokers collect; how they use, maintain, and disseminate the information; and the extent to which the data brokers allow consumers to access and correct their information or to opt out of having their personal information sold.
Protecting Consumer Privacy in an Era of Rapid Change: A Proposed Framework for Businesses and Policymakers
Monday March 26 2012, 11:16 AM
The final report calls on companies handling consumer data to implement recommendations for protecting privacy, including: Privacy by Design - companies should build in consumers' privacy protections at every stage in developing their products. These include reasonable security for consumer data, limited collection and retention of such data, and reasonable procedures to promote data accuracy; Simplified Choice for Businesses and Consumers - companies should give consumers the option to decide what information is shared about them, and with whom. This should include a Do-Not-Track mechanism that would provide a simple, easy way for consumers to control the tracking of their online activities. Greater Transparency - companies should disclose details about their collection and use of consumers' information, and provide consumers access to the data collected about them. *****Data Brokers - The Commission calls on data brokers to make their operations more transparent by creating a centralized website to identify themselves, and to disclose how they collect and use consumer data. In addition, the website should detail the choices that data brokers provide consumers about their own information.
CA: State colleges, alumni groups reap $6.6M in credit card royalties
Friday September 02 2011, 8:29 PM
Erica Perez; Under the agreements, banks typically get exclusive rights to market credit cards to university students and alumni, and they pay royalties to the universities or related organizations based on the number of new credit card accounts opened.] Excerpt from source linked to entry: [university must give the bank mailing lists for alumni, faculty, staff, fans, ticket holders, donors, undergraduates and graduate students. The lists include postal addresses, telephone numbers and e-mail addresses.]
American Student List (ASL)
Monday March 07 2011, 5:39 PM
Student data for sale ONLINE. College Bound High School Students - Over 3 million high school juniors and seniors who have indicated an interest in higher education. Selectable by class year, age, head of household, income, geography and more; Teenage Lifestyle Interests - 5 million individuals ages 14-19. Selectable by self-reported interests in specific areas including sports, scholastic activities, careers, computers and more; College Students - Approximately 5 million students attending numerous colleges and universities. Home and/or school addresses and phone numbers are available. Selectable by class year, field of study, college attended, tuition level, competitive rank and more; College Grads And Alumni - Approximately 17 million College Grads/Alumni. Selectable by school last attended, household income, home ownership and more; Families With Children - 20 million households with the presence of children, tweens and teens (newborn through age 19). Selectable by head of household, income, gender, ethnicity, geography and more. Ethnic Lists - Over 3 million Ethnic Teens, 4.5 million Ethnic Families and 15 million Ethnic Young Adults. Numerous backgrounds are available including Hispanic/Latino, Asian-American, Native-American, African-American and more. Also available — Foreign-Speaking Teens — first- or second-generation teens who speak the language of their ethnic group.
Directory Information Part 1 (WAV file, no text -- it's audio)
Sunday December 26 2010, 5:36 PM
EDNY comments on Data Quality Campaign webcast with US ED response. See Part 2 for continuation of conversation.
Directory Information Part 2 (This file is an audio 'wav' file)
Sunday December 26 2010, 5:23 PM
Part 2 of EDNY comments on Data Quality Campaign webcast with US ED response.
COMMERCIAL DATA PRIVACY AND INNOVATION IN THE INTERNET ECONOMY: A DYNAMIC POLICY FRAMEWORK
Thursday December 16 2010, 1:16 PM
US DEPT OF COMMERCE REPORT says the principles "should promote increased transparency through simple notices, clearly articulated purposes for data collection, commitments to limit data uses to fulfill these purposes, and expanded use of robust audit systems to bolster accountability." NO RECOMMENDATIONS REGARDING EDUCATION AND FERPA DIRECTORY INFORMATION.
“Protecting Consumer Privacy in an Era of Rapid Change: A Proposed Framework for Businesses and Policymakers.”
Thursday December 09 2010, 4:45 PM
FTC: To reduce the burden on consumers and ensure basic privacy protections, the report first recommends that “companies should adopt a ‘privacy by design’ approach by building privacy protections into their everyday business practices.” Second, the report states, consumers should be presented with choice about collection and sharing of their data at the time and in the context in which they are making decisions – not after having to read long, complicated disclosures that they often cannot find. One method of simplified choice the FTC staff recommends is a “Do Not Track” mechanism governing the collection of information about consumer’s Internet activity to deliver targeted advertisements and for other purposes. The report also recommends other measures to improve the transparency of information practices, including consideration of standardized notices that allow the public to compare information practices of competing companies. The report recommends allowing consumers “reasonable access” to the data that companies maintain about them, particularly for non-consumer facing entities such as data brokers. Finally, FTC staff proposes that stakeholders undertake a broad effort to educate consumers about commercial data practices and the choices available to them.
Online Privacy: What Does It Mean to Parents and Kids?
Friday October 08 2010, 2:07 PM
Zogby International conducted a poll for Common Sense Media, asking both teens and parents about their views of online privacy and how they feel their personal information is being used by websites, social networks, and other online platforms.
Schools Selling Students' Personal Information
Wednesday October 06 2010, 3:17 PM
Link to stories about schools selling student information
Letter to: Chairman Boucher and Ranking Member Stearns
Monday June 07 2010, 6:26 PM
Mike Sachoff -- [In response to a discussion draft of a new privacy bill now under consideration by the House Subcommittee on Communications, Technology and the Internet, ten privacy and consumer groups today called for stronger measures to protect consumer privacy both online and off. The organizations including the Consumer Federation of America, Electronic Frontier Foundation, Consumer Watchdog, World Privacy Forum, Consumer Action, USPIRG, Privacy Rights Clearinghouse, Privacy Times, Privacy Lives, and the Center for Digital Democracy, raised their concerns in a letter to Subcommittee Chairman Rick Boucher and Ranking Member Cliff Stearns. The groups recommended the following: *The bill should incorporate the Fair Information Practice Principles that have long served as the bedrock of consumer privacy protection in the U.S., including the principle of not collecting more data than is necessary for the stated purposes, limits on how long data should be retained, and a right to access and correct one's data. *The bill's definitions of what constitutes "sensitive information" need to be expanded; for instance, to include health-related information beyond just "medical records." *The bill should require strict "opt-in" procedures for the collection and use of covered data and should prohibit the collection and use of any sensitive information except for the transactions for which consumers provided it.]
On the Leakage of Personally Identi?able Information Via Online Social Networks
Wednesday June 02 2010, 10:01 PM
Balachander Krishnamurthy and Craig E. Wills - [Abstract For purposes of this paper, we de?ne “Personally identi?- able information” (PII) as information which can be used to distinguish or trace an individual’s identity either alone or when combined with other information that is linkable to a speci?c individual. The popularity of Online Social Net- works (OSN) has accelerated the appearance of vast amounts of personal information on the Internet. Our research shows that it is possible for third-parties to link PII, which is leaked via OSNs, with user actions both within OSN sites and else- where on non-OSN sites. We refer to this ability to link PII and combine it with other information as “leakage”. We have identi?ed multiple ways by which such leakage occurs and discuss measures to prevent it.]
DRAFT - Boucher bill
Thursday May 06 2010, 8:34 AM
A BILL : To require notice to and consent of an individual prior to the collection and disclosure of certain personal informa- tion relating to that individual.
Proposed Privacy Legislation Wins Few Fans
Thursday May 06 2010, 8:24 AM
WSJ : [ The goal for the legislation is to set a standard for consumer privacy protections and also provide consumers with more transparency and control regarding the collection, use and sharing of their information, said Rep. Rick Boucher (D., Va.). Mr. Boucher released a draft of the bill for discussion on Tuesday along with Rep. Cliff Stearns (R., Fla.). The bill stipulates that as a general rule companies can collect information about consumers unless a person opts out of that data collection — a point of contention among privacy advocates. The regulation also specifies standards for the collection and use of personally identifiable information. Companies must disclose to consumers if they are collecting personally identifiable information and how they are using that data. Consumers must give a company permission to share that personally identifiable information with outside companies. ]
Monday April 26 2010, 8:32 PM
Monday April 26 2010, 8:32 PM
Instructions for using the Privacy Notice Online Form Builder:
Thursday April 15 2010, 4:28 PM
FEDERAL RESERVE: 1. Select your form, based on (1) whether you provide an opt out and (2) whether you include affiliate marketing: If you provide an opt out and you want to include affiliate marketing, use Form 1. If you provide an opt out and you do not want to include affiliate marketing, use Form 2. If you do not provide an opt out and you want to include affiliate marketing, use Form 3. If you do not provide an opt out and you do not want to include affiliate marketing, use Form 4. 2. The PDF forms have fillable areas, indicated by the shaded boxes outlined in red. Place your cursor in the box and fill in the appropriate text.]
FACEBOOK: Another Step in Open Site Governance
Thursday April 01 2010, 4:42 PM
Privacy flags raise concern for graduate students
Thursday March 11 2010, 9:24 PM
by Katie Perkowski -[Undergraduate students are not the only ones concerned with personal information available through UK’s online people search — now, graduate students are voicing their concern, too. Members of UK’s graduate school have recently voiced concern about their information like home address and home telephone number being available on the UK Web site without their knowledge, said English teaching assistant Jesslyn Collins-Frohlich.]
Comments of the World Privacy Forum to FTC, Nov. 6, 2009
Thursday December 17 2009, 10:58 PM
Pam Dixon Executive Director, World Privacy Forum -- Re: Privacy Roundtables – Comment, Project No. P095416 - [The World Privacy Forum understands that businesses have a right to exist and to make money, and that advertising and marketing is part of the marketplace. But we also believe that there is not a reasonable balance right now between what data is being collected and used, and what consumers can do to manage that data and their privacy. There are no perfect solutions, but we think that a rights-based framework based on approaches contained in the Fair Credit Reporting Act and on Fair Information Practices will address many of the problems and help create solutions that are equitable for all stakeholders.]
DOD nixes vendor of online monitoring software over privacy concerns
Monday December 07 2009, 8:53 PM
Jaikumar Vijayan writes [In September, EPIC, a Washington-based privacy advocacy group, filed a complaint against EchoMetrix with the Federal Trade Commission. EPIC claimed that EchoMetrix was violating the provisions of the Children's Online Privacy Protection Act (COPPA) by collecting personally identifiable information about children and their browsing habits and online chats. EPIC claimed that EchoMetrix used the information to deliver targeted advertising to children and also sold that information to third-party marketers. In its complaint, EPIC pointed to a separate service offered by EchoMetrix called Pulse, which analyzes data gathered from multiple sources including instant messages, blogs and chat rooms. The information is sold as market research intelligence to marketing companies, the EPIC complaint said.] [
Ad Industry Works on Ads About Ads
Tuesday November 24 2009, 3:07 PM
Wall Street Journal Emily Steel writes -- [At issue is the practice of tracking consumers’ Web activities — from the searches they make to the sites they visit and the products they buy — for the purpose of targeting ads. The efforts follow calls from the FTC earlier this year for Web advertisers and Internet companies to do a better job explaining how they track and use information about consumers’ Web activities and creating a simple way consumers can opt out of being tracked.]
GOOD STUDENT LIST FOR SALE
Saturday November 21 2009, 1:57 PM
See lists for sale.
Lawmakers probe deeper into privacy
Saturday November 21 2009, 1:16 PM
By Kim Hart - 11/19/09 04:00 PM ET - [Jennifer Barrett, an executive with Acxiom, a marketing company, said the firm could collect 1,500 possible data points about individual consumers, such as age, hobbies, address, occupation and recent purchases. Acxiom typically maintains 20-40 data points on the average person. Acxiom receives that information from public records, surveys consumers fill out voluntarily (such as warranty cards) and information from other companies. In response to questions from Rep. Mike Doyle (D-Penn.), Barrett said consumers can see what data has been stored about them and can change or delete information used for marketing purposes. But consumers cannot find out who else has bought their data from Axciom.]
Federal data breach notification standard must pre-empt state laws
Monday November 16 2009, 8:33 PM
Nextgov Jill R. Aitoro writes -- [The Data Breach Notification Act, introduced in January by Sen. Dianne Feinstein, D-Calif., would authorize the attorney general to bring civil actions against firms that failed to notify people whose personal information had been compromised in a breach and would extend notification requirements to government agencies. The Personal Data Privacy and Security Act, introduced in July by Sen. Patrick Leahy, D-Vt., also would set notification requirements and tighter criminal penalties for identity theft and willful concealment of a breach, and would require businesses to implement preventive security standards to guard against threats to their databases.] [Two states are credited for having breach notification laws with the most teeth, said Peter McLaughlin, senior counsel with Foley & Lardner LLP and a member of the law firm's privacy, security and information management practice. Foley & Lardner released a report on Monday that provides in-depth coverage of all major aspects of U.S. and international security breach laws.]
PUBLIC Law, Chapter 230 LD 1183, item 1, 124th Maine State Legislature
Sunday November 08 2009, 10:35 PM
SP0431, LR 597, item 1, Signed on 2009-06-02 00:00:00.0 - First Regular Session - 124th Maine Legislature, page 1 - 2. Marketing purposes. "Marketing purposes," with respect to the use of health-related information or personal information, means the purposes of marketing or advertising products, goods or services to individuals. 3. Person. "Person" includes an individual, firm, partnership, corporation, association, syndicate, organization, society, business trust, attorney-in-fact and every natural or artificial legal entity. 4. Personal information. "Personal information" means individually identifiable information, including: A. An individual's first name, or first initial, and last name; B. A home or other physical address; C. A social security number; D. A driver's license number or state identification card number; and E. Information concerning a minor that is collected in combination with an identifier described in this subsection. 5. Verifiable parental consent. "Verifiable parental consent" means any reasonable effort, taking into consideration available technology, including a request for authorization for future collection, use and disclosure described in the notice, to ensure that a parent of a minor receives notice of the PUBLIC Law, Chapter 230 LD 1183, item 1, 124th Maine State Legislature An Act To Prevent Predatory Marketing Practices against Minors collection of personal information, use and disclosure practices and authorizes the collection, use and disclosure, as applicable, of personal information and the subsequent use of that information before that information is collected from that minor. § 9552. Unlawful collection and use of data from minors
201 CMR 17.00: STANDARDS FOR THE PROTECTION OF PERSONAL INFORMATION OF RESIDENTS OF THE COMMONWEALTH
Saturday November 07 2009, 4:49 PM
(1) Purpose This regulation implements the provisions of M.G.L. c. 93H relative to the standards to be met by persons who own or license personal information about a resident of the Commonwealth of Massachusetts. This regulation establishes minimum standards to be met in connection with the safeguarding of personal information contained in both paper and electronic records. The objectives of this regulation are to insure the security and confidentiality of customer information in a manner fully consistent with industry standards; protect against anticipated threats or hazards to the security or integrity of such information; and protect against unauthorized access to or use of such information that may result in substantial harm or inconvenience to any consumer.
‘‘Building Effective Strategies To Promote Responsibility Accountability Choice Transparency Innovation Consumer Expectations and Safeguards Act’’ or the ‘‘BEST PRACTICES Act’’
Thursday November 05 2009, 3:19 PM
H. R. 5777 -- To foster transparency about the commercial use of personal information, provide consumers with meaningful choice about the collection, use, and disclosure of such information, and for other purposes. [Requires information brokers to: (1) establish procedures to verify the accuracy of information that identifies individuals; (2) provide to individuals whose personal information it maintains a means to review it; (3) place notice on the Internet instructing individuals how to request access to such information; and (4) correct inaccurate information. Directs the FTC to require information brokers to establish measures which facilitate the auditing or retracing of access to, or transmissions of, electronic data containing personal information. Prohibits information brokers from obtaining or disclosing personal information by false pretenses (pretexting).]
Target-Marketing Becomes More Communal
Thursday November 05 2009, 10:45 AM
WSJ Emily Steel writes [["The data is becoming the most important component for marketers and Web sites. It tells them who their audience is," says Omar Tawakol, chief executive at Blue Kai. Some lawmakers, concerned about Internet privacy, are preparing legislation to make more transparent Web sites' tactics for collecting information on their users. In an effort to fend off legislation, data brokers say, they abide by industry standards and do not collect any personally identifiable information and sensitive data, such as health information. They also tout efforts to make their business practices more transparent to consumers.]
‘‘Personal Data Privacy and Security Act of 2009’’ S. 1490
Wednesday November 04 2009, 2:19 PM
11TH CONGRESS - 1ST SESSION -- S. 1490: To prevent and mitigate identity theft, to ensure privacy, to provide notice of security breaches, and to enhance criminal penalties, law enforcement assistance, and other protections against security breaches, fraudulent access, and misuse of personally identifiable information.
State says Cambridge Public Schools can't charge $14K for public records
Friday February 13 2009, 3:12 PM
David L. Harris -- GateHouse News Service - [On Nov. 30, 2007, the Chronicle sent a letter requesting directory information, but the request was later denied in a three-page letter from the school’s legal department. After appealing to the state’s supervisor of public records, Alan Cote, the school department sent a letter dated July 11, explaining that the work to compile the directory information would cost $14,426.88. The Chronicle’s sister paper, the Newton TAB, requested the same information from Newton Public Schools around the same time. The school department, which sent the data within three weeks of the request, did not charge the TAB for the information.]
Student Information Not For Sale At UW- Marathon County
Wednesday February 11 2009, 7:06 PM
Wsaw.com reporter: Margo Spann -- [Private companies looking to sell or market products to college students are buying information about them directly from their schools. The Assistant Director of Student Services at UW Marathon County Annette Hackbarth-Onson says federal law allows colleges to sell information about their students. She says companies are often looking to buy students names, birth-dates, and email addresses.]
MODEL REGIME OF PRIVACY PROTECTION - Version 2
Monday June 02 2008, 6:25 PM
By Daniel J. Solove & Chris Jay Hoofnagle. "Currently, the collection and use of personal data by businesses and the government is spinning out of control. An entire industry devoted primarily to processing and disseminating personal information has arisen, and this industry is not well-regulated. Many companies brokering in data have found ways to avoid being regulated by the Fair Credit Reporting Act (FCRA), a landmark law passed in 1970 to regulate consumer reporting agencies. Increasingly, the government is relying on data broker companies to supply personal data for intelligence and law enforcement purposes as well as to analyze it. As a result, the government is navigating around the protections of the Privacy Act, a law passed in 1974 to regulate the collection and use of data by government agencies. The FCRA and Privacy Act form the basic framework that regulates a large portion of the flow of personal data, but this framework is riddled with exceptions and shunted with limitations. We propose a Model Regime of Privacy Protection to address these problems."
Back to Top of Page