Archive | Big Data

Sir Tim Berners-Lee: Let’s Unfuck the Internet!

This is exciting…

The web is a little fucked up right now. Governments are spying on civilians, some block specific websites, and companies like Amazon have a stranglehold on the cloud services business. But what if we could create a decentralized web, with more privacy, less government control, and less corporate influence?

Tim Berners-Lee, inventor of the World Wide Web, wants to do exactly that. Sir Tim recently gathered some top computer scientists in a San Francisco church at an event called the Decentralized Web Summit, where attendees brainstormed ways to make the internet more broadly distributed. The smartest technologists on the planet showed up to join the discussions including early internet architect Vint Cerf and Brewster Kahle, founder of the Internet Archive.

Gizmodo: The Web’s Creator Now Wants to Unfuck It »

So, why?

“The temptation to grab control of the internet by the government or by a company is always going to be there. They will wait until we’re sleeping, because if you’re a government or a company and you can control something, you’ll want it,” he said.

The Inquirer: Sir Tim Berners-Lee: Internet has become ‘world’s largest surveillance network’ »

0

EDRi on hate speech, social media, EU and the rule of law

On 31 May, the European Commission, together with Facebook, YouTube (Google), Twitter and Microsoft, agreed a “code of conduct” on fighting hate speech.

In a society based on the rule of law, private companies should not take the lead in law enforcement, theirs should always have only a supporting role – otherwise this leads to arbitrary censorship of our communications. (…)

In practice, as illegal activity will be banned by terms of service, it will never be “necessary” to check a report against the law. (…)

In the code of conduct, there is not a single mention about the essential role of judges in our democratic societies. There is no mention about the enforcement of the law by public authorities. At each crucial point where law should be mentioned, it is not.

EDRi: Guide to the Code of Conduct on Hate Speech »

0

Big Government and Big Data fighting over control of your online activities. Blockchain is the obvious alternative.

For many years, the EU has taken many small steps towards introducing an EU ID card: eIDAS. (Or at least a strict common EU standard for nationally issued ID cards.)

An ID card proving the holders identity is one thing. (However, a mandatory ID card as such is a very controversial concept in some member states.) One interesting point is if there is going to be a common personal EU identification number. Another is what information the cards chip will contain and how it is going to be used. No doubt, an EU ID card can be used as a very effective tool for various forms of Big Brotherism.

It is in the light of the EU slowly trying to introduce a common, mandatory ID card that various EU schemes should be scrutinised.

Last week some sites, e.g. Breitbart London ran this story: The European Commission Wants You To Log Into Social Media Accounts With Govt-Issued ID Cards »

Well, that might be a bit oversimplified. What the EU suggests is that it should be possible to use national (EU harmonised) ID cards to log into various online platforms instead of logging in using e.g. Facebook or Google. Thus giving you the possibility of being controlled by Big Government or Big Data.

Giving people a possibility to choose is a good idea, as such. But I’m not sure that I would like Big Government or Big Data to have the control over my online life.

And you should be very suspicious! The moment there is an established platform for online registration (or signing transactions) with an EU approved ID card – this system can be rolled out all over the place. For example, the EU would love to have a system where you have to use your ID card to be able to log on to the Internet. I have met several people in the EU apparatus promoting that idea.

But how should you go about if you don’t want nor Big Government or Big Data to be in control of your online activities?

Actually, it can be done quite easily – by using Blockchain technology, decentralised solutions, and open source software. Ideal, there should be a couple of different such ID providers, competing with each other over providing competent privacy protection.

(All of this might even be possible to achieve using the already existing Bitnation World Citizen ID.)

This can be one of those forks in the road of history: Do we want our online activities to be controlled by Big Government and Big Brother, by Big Data – or a decentralised system with a high level of security, respecting users right to privacy and controlled by no one?

/ HAX

Links:
• The European Commission Wants You To Log Into Social Media Accounts With Govt-Issued ID Cards »
• EU: Communication on Online Platforms and the Digital Single Market Opportunities and Challenges for Europe »

1

Should the US Patriot Act have precedence over EU data protection?

Today the European Parliament has voted on a resolution concerning the “EU-US Privacy Shield”. This is a mess.

Transfer of personal data from the EU to the US used to be regulated under the so-called Safe Harbour Agreement, aiming at protecting our data when transferred to the US. But actually, this agreement was too vague, rather pointless and possible to circumvent. Finally, the European Court of Justice (ECJ) invalidated it, finding that it violated citizens right to privacy.

So work started to replace Safe Harbour with the EU-US Privacy Shield. In the process, the EU has stated that there is a new agreement, even though we are nowhere close to a final document. The EU and the US are very eager to push for this new agreement, to benefit Big Data in the US. But the concern is that this new agreement will not treat EU citizens personal data in a responsible way, disregard our right to privacy and that it might be Safe Harbour all over again.

One core question is if the US Patriot Act and the new USA Freedom Act should have precedence over EU data protection.

Today the European Parliament had a say, in a non-binding resolution. The press release:

In the resolution, passed by 501 votes to 119 with 31 abstentions, MEPs welcome the efforts of the Commission and the US administration to achieve “substantial improvements” in the Privacy Shield compared to the Safe Harbour decision which it is to replace.

However, they also voice concern about “deficiencies” in the proposed new arrangement negotiated by the Commission, notably:

• the US authorities’ access to data transferred under the Privacy Shield,

• the possibility of collecting bulk data, in some cases, which does not meet the criteria of “necessity” and “proportionality” laid down in the EU Charter of Fundamental Rights,

• the proposed US ombudsperson, a new institution that MEPs accept is a step forward, but believe to be neither “sufficiently independent”, nor “vested with adequate powers to effectively exercise and enforce its duty”, and

• the complexity of the redress mechanism, which the Commission and US administration need to make more “user-friendly and effective”, MEPs say.

Parliament stresses that the Privacy Shield framework gives EU member state’s data protection agencies a prominent role in examining data protection claims and notes their power to suspend data transfers. It also notes the obligation placed upon the US Department of Commerce to resolve such complaints.

Finally, MEPs call on the Commission to conduct periodic “robust reviews” of its decision that Privacy Shield protection is adequate, particularly in the light of experience with the new EU data protection rules which are to take effect in two years.

In other words, the EU and the US are far from a complete and acceptable agreement.

Green home affairs and data protection spokesperson Jan Philipp Albrecht said:

The proposed ‘Privacy Shield’ framework does not seem like a viable long-term solution. It seems highly questionable that this new framework addresses the concerns outlined by the European Court of Justice in ruling the Safe Harbour decision illegal. The European Commission cannot issue a blank check for the transfer of European citizens’ data to the US. Instead, it has to continue to insist on improvements to the level of data protection.

At the same time the centre-right group, EPP, is impatient to have a new agreement in place – seemingly without having the same concerns over privacy and data protection.

The EPP Group’s Spokesman on the issue, Axel Voss MEP, warned against any attempt to torpedo the finalisation of the Privacy Shield, listing benefits to European consumers and SMEs alike: “Free cross-border data flows between the EU and the US are of paramount importance for our economies, trade and investment. Data flows are a key element for the competitiveness of business. Therefore the EPP Group welcomes the conclusion of the negotiations between the EU and the US on this topic.”

Now, we will have to wait to see what the European Commission makes of this.

/ HAX

Links:
• European Parliament: EU-US “Privacy Shield” for data transfers: further improvements needed, MEPs say »
• Greens-EFA: EU-US ‘Privacy Shield’ data exchange »
• EPP: EU-US data flows: urgent implementation of Privacy Shield needed »
• Ars Technica: EU data protection chief: We have serious concerns about Privacy Shield »

Previous posts on The EU-US Privacy Shield: 1 | 2 | 3 | 4 | 5

See an interview with Max Scherms, who took Safe Harbour to the European Court of Justice »

0

Europol, Facebook & Twitter

Will the European Police Office’s (Europol’s) database soon include innocent people reported by Facebook or Twitter? The Europol Regulation, which has been approved on 11 May 2016, not only provides a comprehensive new framework for the police agency, but it also allows Europol to share data with private companies like Facebook and Twitter.

EDRi – Europol: Non-transparent cooperation with IT companies »

0

The Closing of the Net

Monica Hortens new book The Closing of the Net is now available.

In a mail to colleagues, fans and friends she writes…

I am delighted to announce that my new book “The Closing of the Net” has been released.

“The Closing of the Net” discusses how political decisions are influencing the future direction of Internet communication. As the interests of powerful businesses are manipulating governments and policymakers, and become more embedded in the online world, so these corporations seek greater exemption from liability. The book confronts the deepening cooperation between large companies and the state. Political manoeuvrings, it argues, suggest that the original vision of a free and democratic Internet is rapidly being eclipsed by a closed, market-led, heavily monitored online ecosystem. “The Closing of the Net” tackles the controversies surrounding individual rights today, addressing policy agendas such as net neutrality, copyright and privacy. It includes research that I have not previously published on topics including Megaupload, the EU Data Retention Directive, UK copyright lawsuits, and more.

“The Closing of the Net” is published by Polity Press http://tinyurl.com/zhqz5j6 and is available from Amazon http://amzn.to/1S6zxJ7 It has been described as “thriller-esque”! I do hope you enjoy it.

Monica Horten gave us a lot of important input about the Telecoms Package and other net oriented dossiers when I worked with the Pirate Party in the European Parliament.

0

Todays TTIP leak and the Internet

Today a batch of documents concerning the Transatlantic Trade and Investment Partnership (TTIP) has been leaked by Greenpeace.

As suspected there are worrying indications when it comes to the future of a free and open Internet.

• TTIP might result in the EU and US being able to ignore fundamental human rights (such as the right to privacy) when it comes to telecommunications. This is serious, as such issues have been central in previous legislative acts concerning the Internet.

• With the EU-US Privacy Shield still being a pretty open issue, TTIP seems to move the issue of data transfers in favour of Big Data. It is doubtful if there will be any meaningful protection of personal data being transferred from EU to the US.

• When it comes to Intellectual Property (IP), there are signs that TTIP will move to make Internet Service Providers to “voluntary” police the net. In other words, TTIP seems to make another try to re-introduce IP provisions that the European Parliament has already rejected in ACTA.

IP issues in TTIP seems to be open for negotiations and last-minute amendments. EDRi explains…

Concerning so-called “Intellectual Property” (IP), the negotiators seem to take lobbyists’ wish list very seriously. According to the leaked report, “[w]hen confronted with EU warning that bringing sensitive proposals that would require changes in EU law to the table – and doing it at a late stage of the negotiation – may have a negative impact on stakeholders” (which would apparently not include citizens) “and has very limited chances of being accepted”, the US seemed to be prepared to depart from the model of the TPP. Among the proposals the US is thinking of tabling, it includes privatised enforcement measures, that EDRi has been criticising since its inception because they bypass the rule of law and lead to arbitrary corporate decision-making without accountability (cf. “voluntary stakeholder initiatives”). As with ACTA, the US is strongly supportive of “voluntary initiatives” as US-based global giants already impose US copyright law on a global level. The EU (as shown by the recent leak of the Communication on Platforms) supports this approach.

It’s still early days. And there is no lack of warning signals.

So, I guess there will be yet another battle over a free and open Internet. (Frustratingly, in part it seems to be the same battle over IP issues being fought over and over again.)

/ HAX

• Greenpeace: TTIP Leaks »
• EDRi: TTIP leaks confirm dangers for digital rights »
• The Guardian: Leaked TTIP documents cast doubt on EU-US trade deal »
• Europan Commission: EU negotiating texts in TTIP »
• EU Commissioner Cecilia Malmström: Negotiating TTIP »

0

Data protection: EU-US standoff

The EU-US Privacy Shield is to replace the so-called safe harbour agreement about the transfer of personal data between EU and the US — after the European Court of Justice (ECJ) invalidated the latter.

As reported earlier, the privacy shield is a principal agreement that yet has to be filled with substance. Even though the European Commission and Washington claim to have struck a deal, it is far from being finalised.

Actually, things are moving the opposite way. Reuters:

Last week, the EU’s 28 data protection authorities – known as the Article 29 Working Party – published a non-binding opinion on the framework which called for more reassurances over U.S. surveillance practices and the independence of a new U.S. privacy ombudsman.

Leaving some of the regulators’ concerns unaddressed could increase the chances of the Privacy Shield being challenged in court by privacy advocates, much as its predecessor was.

This is a mess. Obviously, the EU is not strong enough to stand up to the US on data protection. And the US is not interested in respecting a strong European legal framework in this field.

Some links:
• EU data enforcers demand privacy shield fixes »
• Privacy panel trips up transatlantic data deal »
• US businesses: Start preparing for the EU’s new privacy regulation »
• U.S. reluctant to change data pact after EU watchdogs’ concerns »

Earlier posts:
• “EU-US Privacy Shield must be sent back to negotiators” »
• The EU-US Privacy Shield: EU presents a pointless proposal »
• The EU-US Privacy Shield Illusion »
• An EU-US Privacy Shield? »

/ HAX

0

EFF vs. DoJ

The Electronic Frontier Foundation (EFF) filed a Freedom of Information (FOIA) lawsuit today against the Justice Department to shed light on whether the government has ever used secret court orders to force technology companies to decrypt their customers’ private communications, a practice that could undermine the safety and security of devices used by millions of people.

EFF Sues for Secret Court Orders Requiring Tech Companies to Decrypt Users’ Communications »

0

“EU-US Privacy Shield must be sent back to negotiators”

A group of leading digital rights organisations on both sides of the Atlantic has called for the Privacy Shield arrangement between the EU and US to be sent back to the negotiators. In a letter to senior EU officials, the group says that without “substantial reforms” to ensure protection for fundamental rights of individuals, the Privacy Shield will “put users at risk, undermine trust in the digital economy, and perpetuate the human rights violations that are already occurring as a result of surveillance programs and other activities.”

ArsTechnica: Privacy Shield deal must be sent back to negotiators, say digital rights warriors »

0