You are here: Home / Archives for bureau of consumer protection

Twitter Settles U.S. Charges Over Hacker Attacks – BusinessWeek

June 24, 2010 By Leave a Comment

Twitter Inc., the microblogging service with about 190 million visitors per month, agreed to settle a U.S. government complaint that security lapses allowed hackers to view private messages and send “tweets” from other people’s accounts.

Failures in the company’s data security allowed hackers to gain administrative control of Twitter, the Federal Trade Commission said in a statement today announcing its complaint and settlement. One hacker sent a bogus tweet in January 2009 from the account of then-President-elect Barack Obama offering his followers a chance to win $500 in free gasoline.

San Francisco-based Twitter, which is closely held, allows users to send tweets, or messages of up to 140 characters. Privacy settings allow users to designate some tweets as private.

“When a company promises consumers that their personal information is secure, it must live up to that promise,” said David Vladeck, director of the FTC’s Bureau of Consumer Protection, in the statement. “Likewise, a company that allows consumers to designate their information as private must use reasonable security to uphold such designations.”

The company said in a blog posting that the attacks on the site resulted in 45 accounts being accessed in January 2009 and 10 in April last year. The company said it moved quickly to address the security issues then.

via Twitter Settles U.S. Charges Over Hacker Attacks – BusinessWeek.

Filed Under: From The News Tagged With: , , , , , , , , ,

Legal confusion on internet privacy: The clash of data civilisations | The Economist

June 17, 2010 By Leave a Comment

Transatlantic friction between companies and regulators has grown as Europe’s data guardians have become more assertive. Francesca Bignami, a professor at George Washington University’s law school, says that the explosion of digital technologies has made it impossible for watchdogs to keep a close eye on every web company operating in their backyard. So instead they are relying more on scapegoating prominent wrongdoers in the hope that this will deter others.

But regulators such as Peter Schaar, who heads Germany’s federal data-protection agency, say the gulf is exaggerated. Some European countries, he points out, now have rules that make companies who suffer big losses of customer data to report these to the authorities. The inspiration for these measures comes from America.

Yet even Mr Schaar admits that the internet’s global scale means that there will need to be changes on both sides of the Atlantic. He hints that Europe might adopt a more flexible regulatory stance if America were to create what amounts to an independent data-protection body along European lines. In Europe, where the flagship Data Protection Directive came into effect in 1995, before firms such as Google and Facebook were even founded, the European Commission is conducting a review of its privacy policies. In America Congress has begun debating a new privacy bill and the Federal Trade Commission is considering an overhaul of its rules. David Vladeck, the head of the FTC’s Bureau of Consumer Protection, has acknowledged that “existing privacy frameworks have limitations”.

Even if America and Europe do narrow their differences, internet firms will still have to grapple with other data watchdogs. In Asia countries that belong to APEC are trying to develop a set of regional guidelines for privacy rules under an initiative known as the Data Privacy Pathfinder. Some countries such as Australia and New Zealand have longstanding privacy laws, but many emerging nations have yet to roll out fully fledged versions of their own. Mr Polonetsky sees Asia as “a new privacy battleground”, with America and Europe both keen to tempt countries towards their own regulatory model.

Privacy laws are somewhat more common in Latin America, where countries such as Argentina and Chile boast relatively strict European-style regimes. Mexico, which last year made data privacy a constitutional right, is also pushing through a new federal data-privacy law. The likely outcome is a mix of European and American privacy frameworks, predicts Katitza Rodriguez of the Electronic Frontier Foundation, a privacy group.

Canada already has something of a hybrid privacy regime, which may explain why its data-protection commissioner, Jennifer Stoddart, has been so influential on the international stage. She marshalled the signatories of the Google Buzz letter and took Facebook to task last year for breaching Canada’s data privacy laws, which led the company to change its policies.

Ms Stoddart argues that American companies often trip up on data-privacy issues because of “their brimming optimism that the whole world wants what they have rolled out in America.” Yet the same optimism has helped to create global companies that have brought huge benefits to consumers, while also presenting privacy regulators with tough choices. Shoehorning such firms into antiquated privacy frameworks will not benefit either them or their users.

via Legal confusion on internet privacy: The clash of data civilisations | The Economist.

Filed Under: From The News Tagged With: , , , , , , , , ,

Consumer Tracking Outstrips Protections – NYTimes.com

May 4, 2010 By Leave a Comment
An EAN-13 barcode. Based on Image:Ean-13-59012...
Image via Wikipedia

It’s called behavioral tracking:

• Cameras that can follow you from the minute you enter a store to the moment you hit the checkout counter, recording every T-shirt you touch, every mannequin you ogle, every time you blow your nose or stop to tie your shoelaces.

• Web coupons embedded with bar codes that can identify, and alert retailers to, the search terms you used to find them and, in some cases, even your Facebook information and your name.

• Mobile marketers that can find you near a store clothing rack, and send ads to your cellphone based on your past preferences and behavior.

To be sure, such retail innovations help companies identify their most profitable client segments, better predict the deals shoppers will pursue, fine-tune customer service down to a person and foster brand loyalty. (My colleagues Stephanie Rosenbloom and Stephanie Clifford have written in detail about the tracking prowess of store cameras and Web coupons.)

But these and other surveillance techniques are also reminders that advances in data collection are far outpacing personal data protection.

Enter the post-privacy society, where we have lost track of how many entities are tracking us. Not to mention what they are doing with our personal information, how they are storing it, whom they might be selling our dossiers to and, yes, how much money they are making from them.

On the way out, consumer advocates say, is that quaint old notion of informed consent, in which a company clearly notifies you of its policies and gives you the choice of whether to opt in (rather than having you opt out once you discover your behavior is being tracked).

“How does notice and choice work when you don’t even interface with the company that has your data?” says Jessica Rich, a deputy director of the bureau of consumer protection at the Federal Trade Commission.

via Slipstream – Consumer Tracking Outstrips Protections – NYTimes.com.

Related articles by Zemanta
Filed Under: From The News Tagged With: , , , , , , , , , , , , , , , , , ,