On the London Metal Exchange, copper rose almost 2% at $7,639/tonne on 11th November, its first...
While biggies like Google, Facebook and Twitter are forced to respect privacy rights of individuals, in our country, a government funded agency, which is collecting sensitive information under the Aadhaar number system, has no answers for breach of privacy
Last week social media giant, Facebook settled federal charges on deceiving consumers by divulging their private information and promised that they would not do it again. However, Facebook did not pay any fine or penalty and users' whose privacy was violated will not get any compensation.
According to a proposed settlement, Facebook promised to the Federal Trade Commission (FTC) that from now on, it would give a clear and prominent notice to consumers and obtain their express consent before sharing information beyond their privacy settings. The FTC had already established agreements with Google and Twitter for privacy standards.
All this was possible because it happened in the US. In our country, the union government itself is least bothered about privacy rights and had allowed its pet, the Unique Identification Authority of India (UIDAI), to collect private data like fingerprints and iris scan to enforce a tagging system called Aadhaar. But more about it later.
In a blog posting, Mark Zuckerberg, founder and chief executive of Facebook, said, "I am the first to admit that we've made a bunch of mistakes. In particular, I think that a small number of high profile mistakes, like Beacon four years ago and poor execution as we transitioned our privacy model two years ago, have often overshadowed much of the good work we've done."
"Even before the agreement announced by the FTC, Facebook had already proactively addressed many of the concerns the FTC raised. For example, their complaint to us mentioned our Verified Apps Program, which we cancelled almost two years ago in December 2009. The same complaint also mentions cases where advertisers inadvertently received the ID numbers of some users in referrer URLs. We fixed that problem over a year ago in May 2010," Mr Zuckerberg said in the blog.
He said, "In addition to these product changes, the FTC also recommended improvements to our internal processes. We've embraced these ideas, too, by agreeing to improve and formalize the way we do privacy review as part of our ongoing product development process. As part of this, we will establish a biannual independent audit of our privacy practices to ensure we're living up to the commitments we make."
Facebook has also created two new corporate officer roles and appointed Erin Egan as chief privacy officer for policy and Michael Richter as chief privacy officer for products. "These two positions will further strengthen the processes that ensure that privacy control is built into our products and policies. The announcement also formalises our commitment to providing you with control over your privacy and sharing -- and it also provides protection to ensure that your information is only shared in the way you intend," the Facebook founder said.
Jon Leibowitz, chairman of the FTC, said, "Facebook is obligated to keep the promises about privacy that it makes to its hundreds of millions of users. Facebook's innovation does not have to come at the expense of consumer privacy. The FTC action will ensure it will not."
The FTC complaint lists a number of instances in which Facebook allegedly made promises that it did not keep:
Coming back to India and privacy issues, the Aadhaar with its biometrics and the ability to facilitate convergence of information-bona fide or otherwise-has the potential to compromise privacy and put people in trouble. Vulnerability of securely-stored digital information to theft has been exposed by recent leaks that have surfaced both nationally and internationally.
This ambitious and expensive Aadhaar project uses biometric information like fingerprints, iris scans and face photos to create a UID number. The authority is roping in fat-profit organisations as its partners, which will very likely result in the database being used for targeted marketing. (Read: Fat profit institutions continue to board UID bandwagon ) In addition, many registrars have been roped in by UIDAI to undertake this enrolment. These agents are believed to be adding their own parameters while creating their own databases for business use. (Read: Is the UIDAI database vulnerable? )
Normally this should have rung an alarm bell. However, it seems there has been not reaction, let alone any action from UIDAI or the government. So, what is the control over these databases and what is there to prevent any unauthorised use of this data?
According to some of the diplomatic files published by WikiLeaks, it is now known that some US officials had been trying to collect biometric and such other sensitive identification information about politicians and bureaucrats from the United Nations and some countries like South Korea, China, Egypt, Indonesia, Malaysia, Syria and even India. In case of Aadhaar, we will not even know if someone had sold or procured our private information.