#consumer data protection | Explore Tumblr Posts and Blogs

mostlysignssomeportents · 1 year

Text

At long last, a meaningful step to protect Americans' privacy

This Saturday (19 Aug), I'm appearing at the San Diego Union-Tribune Festival of Books. I'm on a 2:30PM panel called "Return From Retirement," followed by a signing:

https://www.sandiegouniontribune.com/festivalofbooks

Privacy raises some thorny, subtle and complex issues. It also raises some stupid-simple ones. The American surveillance industry's shell-game is founded on the deliberate confusion of the two, so that the most modest and sensible actions are posed as reductive, simplistic and unworkable.

Two pillars of the American surveillance industry are credit reporting bureaux and data brokers. Both are unbelievably sleazy, reckless and dangerous, and neither faces any real accountability, let alone regulation.

Remember Equifax, the company that doxed every adult in America and was given a mere wrist-slap, and now continues to assemble nonconsensual dossiers on every one of us, without any material oversight improvements?

https://memex.craphound.com/2019/07/20/equifax-settles-with-ftc-cfpb-states-and-consumer-class-actions-for-700m/

Equifax's competitors are no better. Experian doxed the nation again, in 2021:

https://pluralistic.net/2021/04/30/dox-the-world/#experian

It's hard to overstate how fucking scummy the credit reporting world is. Equifax invented the business in 1899, when, as the Retail Credit Company, it used private spies to track queers, political dissidents and "race mixers" so that banks and merchants could discriminate against them:

https://jacobin.com/2017/09/equifax-retail-credit-company-discrimination-loans

As awful as credit reporting is, the data broker industry makes it look like a paragon of virtue. If you want to target an ad to "Rural and Barely Making It" consumers, the brokers have you covered:

https://pluralistic.net/2021/04/13/public-interest-pharma/#axciom

More than 650,000 of these categories exist, allowing advertisers to target substance abusers, depressed teens, and people on the brink of bankruptcy:

https://themarkup.org/privacy/2023/06/08/from-heavy-purchasers-of-pregnancy-tests-to-the-depression-prone-we-found-650000-ways-advertisers-label-you

These companies follow you everywhere, including to abortion clinics, and sell the data to just about anyone:

https://pluralistic.net/2022/05/07/safegraph-spies-and-lies/#theres-no-i-in-uterus

There are zillions of these data brokers, operating in an unregulated wild west industry. Many of them have been rolled up into tech giants (Oracle owns more than 80 brokers), while others merely do business with ad-tech giants like Google and Meta, who are some of their best customers.

As bad as these two sectors are, they're even worse in combination – the harms data brokers (sloppy, invasive) inflict on us when they supply credit bureaux (consequential, secretive, intransigent) are far worse than the sum of the harms of each.

And now for some good news. The Consumer Finance Protection Bureau, under the leadership of Rohit Chopra, has declared war on this alliance:

https://www.techdirt.com/2023/08/16/cfpb-looks-to-restrict-the-sleazy-link-between-credit-reporting-agencies-and-data-brokers/

They've proposed new rules limiting the trade between brokers and bureaux, under the Fair Credit Reporting Act, putting strict restrictions on the transfer of information between the two:

https://www.cnn.com/2023/08/15/tech/privacy-rules-data-brokers/index.html

As Karl Bode writes for Techdirt, this is long overdue and meaningful. Remember all the handwringing and chest-thumping about Tiktok stealing Americans' data to the Chinese military? China doesn't need Tiktok to get that data – it can buy it from data-brokers. For peanuts.

The CFPB action is part of a muscular style of governance that is characteristic of the best Biden appointees, who are some of the most principled and competent in living memory. These regulators have scoured the legislation that gives them the power to act on behalf of the American people and discovered an arsenal of action they can take:

https://pluralistic.net/2022/10/18/administrative-competence/#i-know-stuff

Alas, not all the Biden appointees have the will or the skill to pull this trick off. The corporate Dems' darlings are mired in #LearnedHelplessness, convinced that they can't – or shouldn't – use their prodigious powers to step in to curb corporate power:

https://pluralistic.net/2023/01/10/the-courage-to-govern/#whos-in-charge

And it's true that privacy regulation faces stiff headwinds. Surveillance is a public-private partnership from hell. Cops and spies love to raid the surveillance industries' dossiers, treating them as an off-the-books, warrantless source of unconstitutional personal data on their targets:

https://pluralistic.net/2021/02/16/ring-ring-lapd-calling/#ring

These powerful state actors reliably intervene to hamstring attempts at privacy law, defending the massive profits raked in by data brokers and credit bureaux. These profits, meanwhile, can be mobilized as lobbying dollars that work lawmakers and regulators from the private sector side. Caught in the squeeze between powerful government actors (the true "Deep State") and a cartel of filthy rich private spies, lawmakers and regulators are frozen in place.

Or, at least, they were. The CFPB's discovery that it had the power all along to curb commercial surveillance follows on from the FTC's similar realization last summer:

https://pluralistic.net/2022/08/12/regulatory-uncapture/#conscious-uncoupling

I don't want to pretend that all privacy questions can be resolved with simple, bright-line rules. It's not clear who "owns" many classes of private data – does your mother own the fact that she gave birth to you, or do you? What if you disagree about such a disclosure – say, if you want to identify your mother as an abusive parent and she objects?

But there are so many stupid-simple privacy questions. Credit bureaux and data-brokers don't inhabit any kind of grey area. They simply should not exist. Getting rid of them is a project of years, but it starts with hacking away at their sources of profits, stripping them of defenses so we can finally annihilate them.

I'm kickstarting the audiobook for "The Internet Con: How To Seize the Means of Computation," a Big Tech disassembly manual to disenshittify the web and make a new, good internet to succeed the old, good internet. It's a DRM-free book, which means Audible won't carry it, so this crowdfunder is essential. Back now to get the audio, Verso hardcover and ebook:

http://seizethemeansofcomputation.org

If you'd like an essay-formatted version of this post to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

https://pluralistic.net/2023/08/16/the-second-best-time-is-now/#the-point-of-a-system-is-what-it-does

Image: Cryteria (modified) https://commons.wikimedia.org/wiki/File:HAL9000.svg

CC BY 3.0 https://creativecommons.org/licenses/by-sa/3.0/deed.en

310 notes · View notes

odinsblog · 1 year

Text

How automakers make use of data collected by connected cars is coming under scrutiny in California. On Monday, the California Privacy Protection Agency announced that it will review the data privacy practices of connected vehicle manufacturers. The agency is empowered to do so thanks to a 2018 state law, the California Consumer Privacy Act.

"Modern vehicles are effectively connected computers on wheels. They're able to collect a wealth of information via built-in apps, sensors, and cameras, which can monitor people both inside and near the vehicle," said Ashkan Soltani, CPPA's executive director.

"Our Enforcement Division is making inquiries into the connected vehicle space to understand how these companies are complying with California law when they collect and use consumers' data," he said in a statement.

Connected cars are fast becoming ubiquitous—it may well be impossible to buy a new car, truck, or SUV in 2023 that doesn't have at least one embedded modem in it. In the mid-2010s, many OEMs saw dollar signs at the prospect of monetizing data collected by their deployed vehicle fleets, and unlike with cellphones, it can be hard or impossible to disable location tracking in one's car.

"Under the California Consumer Privacy Act, geolocation is considered personal information. People have the right to say no to being tracked in their cars, but it is unclear if car companies are providing this right," said Justin Kloczko, a privacy advocate at Consumer Watchdog. "These companies know more about us than we know about ourselves, and they’re the ones in control of our personal information, not us," Kloczko said.

(continue reading)

#politics #location tracking #smart cars #privacy rights #data mining #spyware #geolocation data #connected cars #data protection #data privacy #consumer protection #geolocation tracking

45 notes · View notes

black-in-kansas · 1 month

Text

General Motors Caught Red-Handed: Texas Sues for Billions Over Decade-Lo...

youtube

#louis rossmann #right to repair #privacy #data protection #data privacy #general motors #consumer protection #Youtube

2 notes · View notes

avandelay20 · 2 days

Text

Customers need public databases to reference while shopping to understand whether the price listed is actually on special or discount before buying the item.

Hold these companies accountable. Make all pricing transparent. Make costs and profit transparent as well.

Markets operate best when information is easily accessible. Grocery stores are notorious for rigging the prices on a frequent basis to gouge customers time and treat shopping for basic necessities like a fucking video game.

#australia #coles #woolworths #accc #class action #consumer protection #public data

0 notes

speakingplainly · 13 days

Text

Bro this is merely a drop in the ocean.

Reminder:

Please ensure any of your IoT devices that connect to your home internet and stay on there do not connect to a server in another country. This includes literally any device that you connect your phone to to control lights, plugs, and anything else.

A hole is cyber security that is rarely discussed or when it is people pass it off. Don't think because you have nothing worth collecting that you are excluded from collection or that it isn't damaging. So much information is passed online.

Be safe, be cautious.

#Cyber #Cyber security #News #Internet #Us #USA #Data #Security #Privacy #Consumer safety #Consumer protection

0 notes

jcmarchi · 20 days

Text

Steve Statler, Chief Marketing Officer at Wiliot – Interview Series

New Post has been published on https://thedigitalinsider.com/steve-statler-chief-marketing-officer-at-wiliot-interview-series/

Steve Statler, Chief Marketing Officer at Wiliot – Interview Series

Steve Statler is the Chief Marketing Officer at Wiliot, author of Beacon Technologies, and the presenter of the Mister Beacon Ambient IoT podcast.

At the core of the Wiliot System are IoT Pixels, which are low-cost tags approximately the size of a postage stamp, designed for easy integration into a wide range of products. These IoT Pixels continuously gather data from their surroundings and are powered either by harvesting radio frequency energy or, in some versions, by a thin printed battery. The transmissions from IoT Pixels are secure and can be read using existing Bluetooth devices.

What are the potential benefits of integrating WiliBot into existing supply chain management systems?

Integrating WiliBot into existing supply chain management systems will allow brands and manufacturers to communicate with their products in ways that significantly improve their supply chain efficiency and sustainability.

By enabling natural-language conversations with any ambient-IoT connected product, WiliBot can be used by businesses seeking to ask questions about their ambient IoT enabled products and supply chains: How fresh is this product? How did it get to the store? Which product should I stock next, and why? What is the carbon footprint of this product? Why is it so high or low? The answers to these questions can then be integrated in real time into a businesses supply chain strategy.

How does Wiliot’s use of ambient IoT and GenAI enhance real-time data visibility in supply chains?

The combination of ambient IoT and GenAI offers a unique opportunity to enhance and apply real-time data visibility. Wiliot’s IoT Pixels are constantly collecting real-time data throughout the supply chain and even in stores.

WiliBot enhances this real-time data visibility by harnessing the power of generative AI, to make sense of the data provided. This allows companies – and eventually consumers – the ability to have conversations with the products they make, source, distribute and ultimately purchase. Breaking down complex and multitudes of data into easy to understand actionable insights.

For a GenAI model to run effectively, it requires significant data input to train it. In the past, due to the lack of large amounts of real time data, this meant supply chain GenAI models would utilize previously existing data. While this proved generally effective, supply chains shift from year to year, and last year’s data isn’t always the most accurate when predicting what businesses need in a year, month, and even day. The constant real-time data that Wiliot’s IoT Pixels and Ambient Data Platform feeds into WiliBot proves the most effective for brands looking to capitalize on the most current intelligence that’s happening in their supply chains.

In what ways can WiliBot help businesses improve sustainability and reduce waste within their supply chains?

Wilibot empowers consumers to vote with their purses and wallets based on better insights into the provenance, content and carbon footprint of one product versus another that may look identical. By capturing the dynamic carbon impact of storage, transportation at an item level and sharing that insight in real time, businesses can be empowered to manage down their carbon footprint every minute of every day. An end of year scorecard at a company level can’t do that.

Wiliot’s Ambient Data Platform, already allows companies to gain unprecedented intelligence about the sustainability about trillions of products. With the introduction of WiliBot, businesses will now be able to ask and easily break down that intelligence into real-time information about individual products.

In turn, this means companies can get real-time specifics on the sustainability of their supply chains. They can ask WiliBot questions like: why some products have a greater carbon footprint than others, what products they should stock before they expire, and how weather patterns are impacting products throughout the supply chain.

WiliBot allows companies to recognize where changes could be made to ensure sustainability and reduce waste, without waiting for the past year’s data.

How do Wiliot’s IoT Pixels work, and what makes them unique in enabling continuous, real-time data collection in supply chains without the need for batteries?

Wiliot’s IoT Pixels are low-cost tags, the size of a postage stamp, and can be seamlessly manufactured into just about any product. IoT Pixels are designed to provide insights on “everything, everywhere, all at once” – because of their small size, they can be affixed to almost any product, down to even crate-level shipments. What makes IoT Pixels unique, and what allows for them to provide continuous data collection, is that they’re powered by harvested radio frequency energy, meaning they use the radio frequencies from everyday devices that already exist in the world around us. IoT Pixels then securely transmit that data, also via existing Bluetooth devices, to the Wiliot Ambient Data Platform, where it’s available for businesses to pull from.

What are the security measures in place to ensure the privacy and integrity of data collected by IoT Pixels and processed by the Wiliot Ambient Data Platform?

The data security and governance robustness of Wiliot’s Ambient Data Platform has been certified by two leading examiners. We have achieved Systems and Organization Controls (SOC) 1 Type II and SOC 2 Type II reports, both issued by independent auditors from a leading Big 4 firm.

Additionally, we recently received its third-year recertification of its ISO 27001 and 27018 certifications by the International Organization for Standardization. Both of these certifications validate our ongoing commitment to data security, governance, and privacy.

Unlike other auto-identification technologies like QR codes and RFID, Wiliot’s implementation includes encryption backed access control to the data that relates to the content, movement and usage of products.

How does WiliBot leverage generative AI to provide actionable insights from the data generated by IoT Pixels?

The data generated by IoT Pixels is sent via Bluetooth to the Wiliot cloud once it’s finalized. From there, WiliBot can leverage the generative AI to provide actionable insights.

WiliBot’s Wiliot-developed AI, built on top of a leading Large Language Model, can identify supply chain “events” and automatically generate alerts or AI responses that allow businesses to course-correct or optimize their operations. This could mean creating an automatic alert for a business when shipments of their produce have been handled at an unsafe temperature, or when pharmaceuticals were kept in an environment too moist for them

The answers to these questions are available in the Wiliot Ambient Data platform, but haven’t always been easily accessible. With WiliBot, these actionable insights can be democratized across organizations, as opposed to requiring significant labor or integration costs.

Can WiliBot be customized to address specific industry needs, such as retail, pharmaceuticals, or food production?

Yes. Wiliot IoT Pixels can be affixed to and provide data on any product, across retail, pharmaceuticals, food production, and more, which means that WiliBot can be distinctively tailored to the needs of those industries.

The more relevant product data that is put into WiliBot, the more specific and targeted answers will be able to be. For food retailers, the priority when implementing WiliBot may be determining the effects of their supply chain’s weather patterns upon food rot and spoil; for clothing retailers, WiliBot may be more relevant in determining where product should go in the store. WiliBot is able to uniquely make sense of data based on each customer’s specific needs and to describe products, materials, supply chains, and everything connected to the internet.

How does the Wiliot Ambient Data Platform differentiate itself from traditional IoT platforms in terms of functionality and ease of integration?

The Wiliot Ambient Data Platform differentiates itself from traditional IoT platforms because of its ‘ambient’ aspect. The data drawn from the IoT Pixels into the platform are accessible all the time as opposed to requiring labor to track, scan or read it.

Wiliot also aims to set ambient IoT standards throughout the industry, which will allow for mass adoption and easy integration by the world’s largest retailers. Already, we are contributing to the 3GPPP alongside a number of large handset OEMs, and working on versions of the Ambient Data Platform that will support the Bluetooth, cellular/3GPP, and Wi-Fi/IEEE variants of ambient IoT.

What impact could WiliBot have on consumer transparency, particularly in understanding the carbon footprint and ethical sourcing of products?

Wiliot’s IoT Pixels already enable products to transmit item-level data about their carbon footprint and equip businesses with information needed to track, manage and reduce carbon emissions. WiliBot makes this even easier by allowing businesses to ask specific questions like where the or how products are sourced and their carbon footprint.

In the future, this convergence of ambient IoT and generative AI will be made available to consumers in-store and at-home through an ecosystem of mobile apps – enabling consumers themselves to speak to and converse with their products to better understand their carbon footprint, materials composition, ethical sourcing compliance, freshness and safety, and more.

This proliferation of information will allow for consumers to take their own ethical considerations into account when purchasing, and ultimately allow for an increased consumer experience without increasing employee workload or cost.

How does Wiliot ensure that the integration of ambient IoT with GenAI remains compliant with global data protection regulations?

Wiliot’s ambient IoT foundation for GenAI enables compliance to data protection regulations with accountability and access control, so that there is a clear owner of the data who has the tools to manage access to the data. Unlike other low-cost scalable radio frequency identifiers, every Wiliot tag is enabled with end-to-end encryption which prevents unauthorized access to data broadcast from a tag. Encryption starts at the chip level inside the tag and ends at the application in the cloud, which gives a single owner access to the data. With other forms of RFID, the owner isn’t clear – it could be the company that bought the RFID tag and applied it to the product, the distributor, the retailer, or the end customer. Wiliot’s approach of encrypting all the data means ownership can be transferred and data sharing can be regulated.

Thank you for the great interview, readers who wish to learn more should visit Wiliot.

0 notes

legalfirmindia · 5 months

Text

Data Protection: Legal Safeguards for Your Business

In today’s digital age, data is the lifeblood of most businesses. Customer information, financial records, and intellectual property – all this valuable data resides within your systems. However, with this digital wealth comes a significant responsibility: protecting it from unauthorized access, misuse, or loss. Data breaches can have devastating consequences, damaging your reputation, incurring…

View On WordPress

#affordable data protection insurance options for small businesses #AI-powered tools for data breach detection and prevention #Are there any data protection exemptions for specific industries #Are there any government grants available to help businesses with data security compliance?#benefits of outsourcing data security compliance for startups #Can I be fined for non-compliance with data protection regulations #Can I outsource data security compliance tasks for my business #Can I use a cloud-based service for storing customer data securely #CCPA compliance for businesses offering loyalty programs with rewards #CCPA compliance for California businesses #cloud storage solutions with strong data residency guarantees #consumer data consent management for businesses #cost comparison of data encryption solutions for businesses #customer data consent management platform for e-commerce businesses #data anonymization techniques for businesses #data anonymization techniques for customer purchase history data #data breach compliance for businesses #data breach notification requirements for businesses #data encryption solutions for businesses #data protection impact assessment (DPIA) for businesses #data protection insurance for businesses #data residency requirements for businesses #data security best practices for businesses #Do I need a data privacy lawyer for my business #Do I need to train employees on data privacy practices #Does my California business need to comply with CCPA regulations #employee data privacy training for businesses #free data breach compliance checklist for small businesses #GDPR compliance for businesses processing employee data from the EU #GDPR compliance for international businesses

0 notes

grrajeshkumar · 6 months

Text

Ultimate Guide: Legal Compliance for E-commerce in India [2024]

To start and run an e-commerce store in India, you need to comply with various rules, laws, and regulations. Here’s a categorized overview of the major ones: Business Registration and Licensing: Obtain a valid business registration (e.g., Sole Proprietorship, Partnership, Private Limited Company, or One-Person Company) Apply for relevant trade licenses from the concerned state/local…

View On WordPress

#2020 #Consumer Protection (E-Commerce) Rules #Data Protection and Privacy #E-commerce Regulations:#Labor Laws

0 notes

dont-open-dead-inside-25 · 7 months

Text

trying to request the data from my reddit profile so i can delete it. does anyone know which option to select? i am unfamiliar with these and don't currently have the time to research them

#finn says shit #reddit #gdpr #general data protection regulation #california consumer privacy act #ccpa #california privacy rights act #cpra #if it matters i'm not from california #and selecting other doesn't make you write anything

1 note · View note

fullhalalalchemist · 1 year

Text

URGENT: 🚨🚨EARN IT ACT IS BACK IN THE SENATE 🚨🚨 TUMBLR’S NSFW BAN HITTING THE ENTIRE INTERNET THIS SUMMER 2023

April 28, 2023

I’m so sorry for the long post but please please please pay attention and spread this

What is the EARN IT Act?

The EARN IT Act (s. 1207) has been roundly condemned by nearly every major LGBTQ+ advocacy and human rights organization in the country.

This is the third time the Senate has been trying to force this through, and I talked about it last year. It is a bill that claims "protects children and victims against CSAM" by creating an unelected and politically appointed national commission of law enforcement specialists to dictate "best practices" that websites all across the nation will be forced to follow. (Keep in mind, most websites in the world are created in the US, so this has global ramifications). These "best practices" would include killing encryption so that any law enforcement can scan and see every single message, dm, photo, cloud storage, data, and any website you have every so much as glanced at. Contrary to popular belief, no they actually can't already do that. These "best practices" also create new laws for "removing CSAM" online, leading to mass censorship of non-CSAM content like what happened to tumblr. Keep in mind that groups like NCOSE, an anti-LGBT hate group, will be allowed on this commission. If websites don't follow these best practices, they lose their Section 230 protections, leading to mass censorship either way.

Section 230 is foundational to modern online communications. It's the entire reason social media exists. It grants legal protection to users and websites, and says that websites aren't responsible for what users upload online unless it's criminal. Without Section 230, websites are at the mercy of whatever bullshit regulatory laws any and every US state passes. Imagine if Texas and Florida were allowed to say what you can and can't publish and access online. That is what will happen if EARN IT passes. (For context, Trump wanted to get rid of Section 230 because he knew it would lead to mass govt surveillance and censorship of minorities online.)

This is really not a drill. Anyone who makes or consume anything “adult” and LGBT online has to be prepared to fight Sen. Blumenthal’s EARN IT Act, brought back from the grave by a bipartisan consensus to destroy Section 230. If this bill passes, we’re going to see most, if not all, adult content and accounts removed from mainstream platforms. This will include anything related to LGBT content, including SFW fanfiction, for example. Youtube, Twitter, Reddit, Tiktok, Tumblr, all of them will be completely gutted of anything related to LGBT content, abortion healthcare, resources for victims of any type of abuse, etc. It is a right-wing fascists wet dream, which is why NCOSE is behind this bill and why another name for this bill is named in reference to NCOSE.

NCOSE used to be named Morality in Media, and has rebranded into an "anti-trafficking" organization. They are a hate group that has made millions off of being "against trafficking" while helping almost no victims and pushing for homophobic laws globally. They have successfully pushing the idea that any form of sexual expression, including talking about HEALTH, leads to sex trafficking. That's how SESTA passed. Their goal is to eliminate all sex, anything gay, and everything that goes against their idea of ‘God’ from the internet and hyper disney-fy and sanitize it. This is a highly coordinated attack on multiple fronts.

The EARN IT Act will lead to mass online censorship and surveillance. Platforms will be forced to scan their users’ communications and censor all sex-related content, including sex education, literally anything lgbt, transgender or non-binary education and support systems, aything related to abortion, and sex worker communication according to the ACLU. All this in the name of “protecting kids” and “fighting CSAM”, both of which the bill does nothing of the sort. In fact it makes fighting CSEM even harder.

EARN IT will open the way for politicians to define the category of “pornography" as they — or the lobbies that fund them — please. The same way that right-wing groups have successfully banned books about race and LGBT, are banning trans people from existing, all under the guise of protecting children from "grooming and exploitation", is how they will successfully censor the internet.

As long as state legislatures can tie in "fighting CSAM" to their bullshit laws, they can use EARN IT to censor and surveill whatever they want.

This is already a nightmare enough. But the bill also DESTROYS ENCRYPTION, you know, the thing protecting literally anyone or any govt entity from going into your private messages and emails and anything on your devices and spying on you.

This bill is going to finish what FOSTA/SESTA started. And that should terrify you.

Senator Blumenthal (Same guy who said ‘Facebook should ban finsta’) pushed this bill all of 2020, literally every activist (There were more than half a million signatures on this site opposing this act!) pushed hard to stop this bill. Now he brings it back, doesn’t show the text of the bill until hours later, and it’s WORSE. Instead of fixing literally anything in the bill that might actually protect kids online, Bluemnthal is hoping to fast track this and shove it through, hoping to get little media attention other than propaganda of “protecting kids” to support this shitty legislation that will harm kids. Blumental doesn't care about protecting anyone, and only wants his name in headlines.

It will make CSAM much much worse.

One of the many reasons this bill is so dangerous: It totally misunderstands how Section 230 works, and in doing so (as with FOSTA) it is likely to make the very real problem of CSAM worse, not better. Section 230 gives companies the flexibility to try different approaches to dealing with various content moderation challenges. It allows for greater and greater experimentation and adjustments as they learn what works – without fear of liability for any “failure.” Removing Section 230 protections does the opposite. It says if you do anything, you may face crippling legal liability. This actually makes companies less willing to do anything that involves trying to seek out, take down, and report CSAM because of the greatly increased liability that comes with admitting that there is CSAM on your platform to search for and deal with. This liability would allow anyone for any reason to sue any platform they want, suing smaller ones out of existence. Look at what is happening right now with book bans across the nation with far right groups. This is going to happen to the internet if this bill passes.

(Remember, the state department released a report in December 2021 recommending that the government crack down on “obscenity” as hard the Reagan Administration did. If this bill passes, it could easily go way beyond shit red states are currently trying. It is a goldmine for the fascist right that is currently in the middle of banning every book that talks about race and sexuality across the US.)

The reason these bills keep showing up is because there is this false lie spread by organizations like NCOSE that platforms do nothing about CSEM online. However, platforms are already liable for child sexual exploitation under federal law. Tech companies sent more than 45 million+ instances of CSAM to the DOJ in 2019 alone, most of which they declined to investigate. This shows that platforms are actually doing everything in their power already to stop CSEM by following already existing laws. The Earn It Act includes zero resources for proven investigation or prevention programs. If Senator Bluementhal actually cared about protecting youth, why wouldn’t he include anything to actually protect them in his shitty horrible bill? EARN IT is actually likely to make prosecuting child molesters more difficult since evidence collected this way likely violates the Fourth Amendment and would be inadmissible in court.

I don’t know why so many Senators are eager to cosponsor the “make child pornography worse” bill, but here we are.

HOW TO FIGHT BACK

EARN IT Act was introduced just two weeks ago and is already being fast-tracked. It will be marked up the week of May 1st and head to the Senate floor immediately after. If there is no loud and consistent opposition, it will be law by JUNE! Most bills never go to markup, so this means they are putting pressure to move this through. There are already 20 co-sponsors, a fifth of the entire Senate. This is an uphill battle and it is very much all hands on deck.

CALL YOUR REPRESENTATIVES.

This website takes you to your Senator / House members contact info. EMAIL, MESSAGE, SEND LETTERS, CALL CALL CALL CALL CALL. Calling is the BEST way to get a message through. Get your family and friends to send calls too. This is literally the end of free speech online.

(202) 224-3121 connects you to the congressional hotline. Here is a call script if you don't know what to say. Call them every day. Even on the weekends, leaving voicemails are fine.

2. Sign these petitions!

Link to Petition 1

Link to Petition 2

3. SPREAD THE WORD ONLINE

If you have any social media, spread this online. One of the best ways we fought back against this last year was MASSIVE spread online. Tiktok, reddit, twitter, discord, whatever means you have at least mention it. We could see most social media die out by this fall if we don't fight back.

Here is a linktree with more information on this bill including a masterpost of articles, the links to petitions, and the call script.

DISCORD LINK IF YOU WANT TO HELP FIGHT IT

TLDR: The EARN IT Act will lead to online censorship of any and all adult & lgbt content across the entire internet, open the floodgates to mass surveillance the likes which we haven’t seen before, lead to much more CSEM being distributed online, and destroy encryption. Call 202-224-3121 to connect to your house and senate representative and tell them to VOTE NO on this bill that does not protect anyone and harms everyone.

#earn it act #internet censorship #restrict act #us politics #net neutrality

43K notes · View notes

nationallawreview · 10 days

Text

Consumer Privacy Update: What Organizations Need to Know About Impending State Privacy Laws Going into Effect in 2024 and 2025

Over the past several years, the number of states with comprehensive consumer data privacy laws has increased exponentially from just a handful—California, Colorado, Virginia, Connecticut, and Utah—to up to twenty by some counts. Many of these state laws will go into effect starting Q4 of 2024 through 2025. We have previously written in more detail on New Jersey’s comprehensive data privacy law,…

0 notes

mostlysignssomeportents · 11 months

Text

An interoperability rule for your money

This is the final weekend to back the Kickstarter campaign for the audiobook of my next novel, The Lost Cause. These kickstarters are how I pay my bills, which lets me publish my free essays nearly every day. If you enjoy my work, please consider backing!

"If you don't like it, why don't you take your business elsewhere?" It's the motto of the corporate apologist, someone so Hayek-pilled that they see every purchase as a ballot cast in the only election that matters – the one where you vote with your wallet.

Voting with your wallet is a pretty undignified way to go through life. For one thing, the people with the thickest wallets get the most votes, and for another, no matter who you vote for in that election, the Monopoly Party always wins, because that's the part of the thick-wallet set.

Contrary to the just-so fantasies of Milton-Friedman-poisoned bootlickers, there are plenty of reasons that one might stick with a business that one dislikes – even one that actively harms you.

The biggest reason for staying with a bad company is if they've figured out a way to punish you for leaving. Businesses are keenly attuned to ways to impose switching costs on disloyal customers. "Switching costs" are all the things you have to give up when you take your business elsewhere.

Businesses love high switching costs – think of your gym forcing you to pay to cancel your subscription or Apple turning off your groupchat checkmark when you switch to Android. The more it costs you to move to a rival vendor, the worse your existing vendor can treat you without worrying about losing your business.

Capitalists genuinely hate capitalism. As the FBI informant Peter Thiel says, "competition is for losers." The ideal 21st century "market" is something like Amazon, a platform that gets 45-51 cents out of every dollar earned by its sellers. Sure, those sellers all compete with one another, but no matter who wins, Amazon gets a cut:

https://pluralistic.net/2023/09/28/cloudalists/#cloud-capital

Think of how Facebook keeps users glued to its platform by making the price of leaving cutting of contact with your friends, family, communities and customers. Facebook tells its customers – advertisers – that people who hate the platform stick around because Facebook is so good at manipulating its users (this is a good sales pitch for a company that sells ads!). But there's a far simpler explanation for peoples' continued willingness to let Mark Zuckerberg spy on them: they hate Zuck, but they love their friends, so they stay:

https://www.eff.org/deeplinks/2021/08/facebooks-secret-war-switching-costs

One of the most important ways that regulators can help the public is by reducing switching costs. The easier it is for you to leave a company, the more likely it is they'll treat you well, and if they don't, you can walk away from them. That's just what the Consumer Finance Protection Bureau wants to do with its new Personal Financial Data Rights rule:

https://www.consumerfinance.gov/about-us/newsroom/cfpb-proposes-rule-to-jumpstart-competition-and-accelerate-shift-to-open-banking/

The new rule is aimed at banks, some of the rottenest businesses around. Remember when Wells Fargo ripped off millions of its customers by ordering its tellers to open fake accounts in their name, firing and blacklisting tellers who refused to break the law?

https://www.npr.org/sections/money/2016/10/07/497084491/episode-728-the-wells-fargo-hustle

While there are alternatives to banks – local credit unions are great – a lot of us end up with a bank by default and then struggle to switch, even though the banks give us progressively worse service, collectively rip us off for billions in junk fees, and even defraud us. But because the banks keep our data locked up, it can be hard to shop for better alternatives. And if we do go elsewhere, we're stuck with hours of tedious clerical work to replicate all our account data, payees, digital wallets, etc.

That's where the new CFPB order comes in: the Bureau will force banks to "share data at the person’s direction with other companies offering better products." So if you tell your bank to give your data to a competitor – or a comparison shopping site – it will have to do so…or else.

Banks often claim that they block account migration and comparison shopping sites because they want to protect their customers from ripoff artists. There are certainly plenty of ripoff artists (notwithstanding that some of them run banks). But banks have an irreconcilable conflict of interest here: they might want to stop (other) con-artists from robbing you, but they also want to make leaving as painful as possible.

Instead of letting shareholder-accountable bank execs in back rooms decide what the people you share your financial data are allowed to do with it, the CFPB is shouldering that responsibility, shifting those deliberations to the public activities of a democratically accountable agency. Under the new rule, the businesses you connect to your account data will be "prohibited from misusing or wrongfully monetizing the sensitive personal financial data."

This is an approach that my EFF colleague Bennett Cyphers and I first laid our in our 2021 paper, "Privacy Without Monopoly," where we describe how and why we should shift determinations about who is and isn't allowed to get your data from giant, monopolistic tech companies to democratic institutions, based on privacy law, not corporate whim:

https://www.eff.org/wp/interoperability-and-privacy

The new CFPB rule is aimed squarely at reducing switching costs. As CFPB Director Rohit Chopra says, "Today, we are proposing a rule to give consumers the power to walk away from bad service and choose the financial institutions that offer the best products and prices."

The rule bans banks from charging their customers junk fees to access their data, and bans businesses you give that data to from "collecting, using, or retaining data to advance their own commercial interests through actions like targeted or behavioral advertising." It also guarantees you the unrestricted right to revoke access to your data.

The rule is intended to replace the current state-of-the-art for data sharing, which is giving your banking password to third parties who go and scrape that data on your behalf. This is a tactic that comparison sites and financial dashboards have used since 2006, when Mint pioneered it:

https://www.eff.org/deeplinks/2019/12/mint-late-stage-adversarial-interoperability-demonstrates-what-we-had-and-what-we

A lot's happened since 2006. It's past time for American bank customers to have the right to access and share their data, so they can leave rotten banks and go to better ones.

The new rule is made possible by Section 1033 of the Consumer Financial Protection Act, which was passed in 2010. Chopra is one of the many Biden administrative appointees who have acquainted themselves with all the powers they already have, and then used those powers to help the American people:

https://pluralistic.net/2022/10/18/administrative-competence/#i-know-stuff

It's pretty wild that the first digital interoperability mandate is going to come from the CFPB, but it's also really cool. As Tim Wu demonstrated in 2021 when he wrote Biden's Executive Order on Promoting Competition in the American Economy, the administrative agencies have sweeping, grossly underutilized powers that can make a huge difference to everyday Americans' lives:

https://www.eff.org/de/deeplinks/2021/08/party-its-1979-og-antitrust-back-baby

If you'd like an essay-formatted version of this post to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

https://pluralistic.net/2023/10/21/let-my-dollars-go/#personal-financial-data-rights

My next novel is The Lost Cause, a hopeful novel of the climate emergency. Amazon won't sell the audiobook, so I made my own and I'm pre-selling it on Kickstarter!

Image: Steve Morgan (modified) https://commons.wikimedia.org/wiki/File:U.S._National_Bank_Building_-_Portland,_Oregon.jpg

Stefan Kühn (modified) https://commons.wikimedia.org/wiki/File:Abrissbirne.jpg

CC BY-SA 3.0 https://creativecommons.org/licenses/by-sa/3.0/deed.en

Rhys A. (modified) https://www.flickr.com/photos/rhysasplundh/5201859761/in/photostream/

CC BY 2.0 https://creativecommons.org/licenses/by/2.0/

#pluralistic #cfpb #interoperability mandates #mint #scraping #apis #privacy #privacy without monopoly #consumer finance protection bureau #Personal Financial Data Rights #interop #data hoarding #junk fees #switching costs #section 1033 #interoperability

159 notes · View notes

iotavenews · 1 year

Text

#consumer protection laws in india #consumer consumer protection act #intellectual property rights #contractual obligations and agreements #general data protection regulation

0 notes

mrhairybrit · 1 year

Text

Understanding CPRA: A Guide for Beginners

The California Privacy Rights Act (CPRA) is a data privacy law that was passed in California in November 2020 as an extension and expansion of the California Consumer Privacy Act (CCPA). The CPRA introduces new privacy rights for consumers and additional obligations for businesses. The law is expected to go into effect on January 1, 2023. Why Do We Need CPRA? The CPRA came about to address some…

View On WordPress

0 notes

jinactusconsulting · 1 year

Text

Trusting Data in the Digital Age: Building a Better Future

23 May 2023

In today's interconnected world, data has become a powerful resource that fuels technological advancements and drives decision-making processes across various industries. However, the increasing reliance on data also raises concerns about its trustworthiness and the potential consequences of its misuse. Building trust in data is crucial to ensure the integrity, reliability, and ethical use of information. This article explores the concept of trust in data, its significance, challenges, and strategies to establish a foundation of trust for a data-driven future.

The Importance of Trust in Data:

Trust is the cornerstone of any successful relationship, and the relationship between humans and data is no exception. Trust in data is vital for several reasons:

Informed Decision Making: It enables individuals, organizations, and governments to make well-informed decisions with confidence. Whether it's assessing market trends, evaluating performance metrics, or formulating policies, reliable data forms the basis for sound judgments.

Transparency and Accountability: Trustworthy data promotes transparency, allowing stakeholders to understand the origins, quality, and limitations of the information they rely upon. It also holds organizations accountable for their actions, as data-driven insights can be scrutinized for bias, manipulation, or misrepresentation.

Technological Advancements: Trustworthy data is the fuel that powers artificial intelligence, machine learning, and other emerging technologies. Without reliable data, the algorithms and models developed to improve efficiency, automate processes, and drive innovation may yield flawed results and detrimental outcomes.

Challenges to Trust in Data:

Building trust in data is not without its challenges. Several factors contribute to skepticism and hinder the establishment of trust:

Data Quality and Accuracy: Data can be riddled with errors, inconsistencies, or biases, compromising its reliability. Incomplete or outdated datasets can further erode trust in their validity and relevance.

Data Privacy and Security: Data breaches, unauthorized access, and misuse of personal information have heightened concerns around data privacy and security. Individuals and organizations are increasingly wary of sharing their data due to potential risks of exploitation or compromise.

Ethical Considerations: Data collection, analysis, and utilization raise ethical questions regarding consent, fairness, and the potential for discrimination. Failure to address these concerns undermines trust in data-driven initiatives.

Building Trust in Data:

Establishing trust in data is a collective responsibility that requires proactive measures from various stakeholders. Here are some strategies to foster trust in data:

Data Governance and Standards: Developing robust governance frameworks and industry-wide standards for data collection, storage, and usage helps ensure transparency, consistency, and accountability.

Data Quality Assurance: Implementing rigorous data validation, verification, and cleansing processes helps maintain data integrity and accuracy. Regular audits and checks can help identify and rectify any errors or biases.

Data Privacy and Security Measures: Prioritizing data privacy and security is crucial to earning the trust of individuals and organizations. Implementing strong data protection measures, complying with relevant regulations (such as GDPR), and being transparent about data handling practices can build confidence in data usage.

Ethical Data Practices: Adhering to ethical guidelines, such as obtaining informed consent, anonymizing data, and minimizing bias, demonstrates a commitment to responsible data practices and helps build trust among stakeholders.

Collaboration and Openness: Encouraging collaboration, knowledge-sharing, and open data initiatives foster a culture of trust and transparency. Embracing external audits and inviting scrutiny can help identify areas of improvement and build confidence in data processes.

Conclusion:

In the age of data-driven decision-making, trust in data is paramount. Establishing trust requires addressing challenges related to data quality, privacy, security, and ethical considerations. By implementing robust governance frameworks, ensuring data accuracy, prioritizing privacy and security, adhering to ethical guidelines, and fostering collaboration, stakeholders can build a solid foundation of trust in data. Trustworthy data not only enables informed decision-making but also paves the way for responsible technological advancements that benefit society as a whole.

Make more confident business decisions with data you can trust.

Schedule a demo today!

#DataGovernance #DataManagement #DataPrivacy #DataProtection #DataCompliance #DataSecurity #DataQuality #DataGovernanceFramework #DataGovernancePolicy #GDPR (General Data Protection Regulation)#CCPA (California Consumer Privacy Act)#DataGovernanceBestPractices #DataStewardship #DataGovernanceStrategy #DataGovernanceCouncil #DataGovernanceManagement #DataGovernanceProcesses #DataGovernanceTools #DataGovernanceTraining

0 notes