Week of 2024-09-27
‘Not impossible’: Facebook whistleblower Haugen talks protecting kids on social media
Tara Deschamps | Toronto Star
In a recent interview, Facebook whistleblower Frances Haugen discussed the challenges and possibilities of protecting children on social media platforms. She emphasized that while the task may seem daunting, it is not impossible with the right regulatory framework and platform design. Haugen advocates for transparency and accountability from tech companies like Facebook to ensure they prioritize child safety. She highlighted the need for governmental action to enforce safety standards and make it easier for parents and children to navigate the online world safely.
Reckoning with Mis/Disinformation in 2024
Whitney Phillips | Sareeta Amrute | Danah Boyd | Alice Marwick | Data & Society
The article "Reckoning with Mis/Disinformation in 2024" from Data & Society explores the ongoing challenges of addressing misinformation and disinformation, particularly in light of evolving political, social, and technological landscapes. This four-part series reflects on the impacts of disinformation since the 2016 U.S. election, highlighting how political rhetoric, media manipulation, and foreign influence continue to shape public discourse. The series examines how new technologies, including AI, are complicating efforts to manage and counteract the spread of false information, emphasizing the need for public trust and accountability in the fight against disinformation. Insights from experts in this field are provided to help shape more informed public conversations around these critical issues.
FTC Report Confirms: Commercial Surveillance is Out of Control
Lena Cohen | Electronics Frontier Foundation
The Federal Trade Commission (FTC) report confirms that tech giants are engaging in widespread commercial surveillance, harvesting and sharing vast amounts of personal information for targeted advertising purposes. This four-year investigation into platforms like Facebook, YouTube, and X (formerly Twitter) revealed that companies track user activity not only on their own platforms but also across the internet, including non-users. Additionally, they purchase data from third-party brokers. Alarmingly, many companies are unable to fully disclose where user data is sourced from, and there is little oversight on how this data is shared, including with law enforcement and entities outside the U.S.
The report also highlights the lack of transparency in data collection and sharing, leaving consumers uninformed about the extent of their data being used. Despite offering privacy controls, these mechanisms are often ineffective. The core issue is the online behavioral advertising business model, which incentivizes privacy violations for profit.
The Electronic Frontier Foundation (EFF) calls for federal legislation to address these concerns, advocating for data minimization, a ban on behavioral advertising, and strong enforcement mechanisms, including a private right of action to hold companies accountable. Without legislative action, the report warns that commercial surveillance will only worsen.
Digital ID Isn't for Everybody, and That's Okay
Alexis Hancock | Electronic Frontier Foundation
This article from the Electronic Frontier Foundation (EFF) critiques the rapid adoption of mobile driver's licenses (mDLs) and digital IDs, warning of potential privacy risks and overreach. While touted as a convenient alternative to physical IDs, digital IDs may lead to increased frequency of ID requests, expanding into new areas such as age verification for online content and services. The article emphasizes that many people prefer or rely on physical IDs and may lack the resources for digital alternatives.
Privacy concerns loom large, as digital IDs could lead to greater data tracking, with more third parties accessing personal information. The article argues for legislation to protect privacy, limit data sharing, and ensure that digital ID systems don’t further marginalize vulnerable populations. It advocates for each individual’s right to choose, highlighting that digital identity shouldn't be inevitable for everyone
The Internet Archive’s Fight to Save Itself
Kate Knibbs | Wired
The Internet Archive is facing a series of legal challenges that could significantly impact its ability to provide free access to digital content, including its Wayback Machine and Open Library services. Publishers like Hachette, Penguin Random House, and HarperCollins sued the Archive for copyright infringement, claiming that its practices of scanning and lending digital books without permission harmed their sales. Despite arguments that the Archive’s lending practices did not affect sales, courts ruled against the Internet Archive, leading to the removal of over 500,000 books from its library. This ruling marks a critical blow to digital libraries and has sparked broader concerns about public access to information in the digital age.
The lawsuit highlights the ongoing tension between protecting intellectual property and ensuring public access to knowledge, especially in an era where more content is being paywalled or restricted. Critics argue that the ruling strengthens corporate control over information, while advocates of the Archive believe it provides an essential public service by preserving books, especially those that are banned or out-of-print. The outcome of this case, along with future lawsuits, could have lasting implications for digital libraries and the preservation of online content.
Canadian Intelligence Emerges from the Shadows: It’s About Time
Aaron Shull | Michael Den Tandt | Centre for International Governance Innovation
The article "Canadian Intelligence Emerges from the Shadows: It's About Time" from the Centre for International Governance Innovation discusses a significant shift in Canada's approach to intelligence and national security. On September 19, 2024, the Canadian government, for the first time, publicly outlined its national intelligence priorities. This move, though long overdue, is seen as a necessary response to the increasingly complex global security environment, marked by geopolitical tensions, cyber threats, and foreign interference.
The intelligence priorities aim to counter hostile state activities, protect Canadian sovereignty, and safeguard economic and national security interests. The article emphasizes that Canada is now taking national security more seriously, addressing areas like cybersecurity, foreign interference, and Arctic sovereignty. It also stresses the importance of public engagement and transparency in national security discussions, highlighting that this newly public list of priorities marks the beginning of an ongoing conversation about how Canada should address evolving threats.
This development is a step toward informing both policymakers and the public, and could lead to better decision-making in intelligence and security matters. However, the article notes that these changes come amidst growing global risks and challenges, including conflicts like the war in Ukraine and issues of foreign interference in Canadian elections.
Digital public infrastructure a pillar of UN’s ambitious Global Digital Compact
Masha Borak | Biometric Update
The United Nations' ambitious Global Digital Compact highlights the critical role of digital public infrastructure (DPI) in advancing global cooperation and multilateralism. Adopted during the 2024 Summit of the Future, this initiative aims to drive investment in digital public goods, particularly in developing countries. The compact encourages the adoption of open standards, interoperability, and safeguards that ensure DPI is inclusive, secure, and user-centered.
One of its main objectives is to bridge the digital divide by sharing best practices among governments and the private sector. The initiative has already seen tangible progress, including the development of the Universal Digital Public Infrastructure Safeguards Framework, which offers guidelines to minimize risks in DPI implementation. The pact also outlines the importance of transparent and secure digital systems to foster public trust.
Despite some criticism regarding the lack of specifics in the compact, the framework's introduction marks a significant step in global digital governance efforts, setting the stage for future collaborations and advancements in digital infrastructure development.
US needs facial recognition legislation, NIST guidance to protect civil rights: report
Chris Burt | Biometric Update
A recent report by the U.S. Commission on Civil Rights stresses the urgent need for legislation to regulate the use of facial recognition technology (FRT) to protect civil rights. Although facial recognition can aid law enforcement and other federal uses, the report highlights its risks, including racial and gender biases that disproportionately affect marginalized communities. There are concerns that these biases could lead to discriminatory practices, as certain demographic groups are more likely to experience inaccurate matches. The Commission recommends that Congress enact laws to ensure fairness, and suggests that the National Institute of Standards and Technology (NIST) develop protocols for testing FRT systems. The report also emphasizes the need for consistent training and oversight for those using this technology, with real-world testing to identify and address disparities.
In addition, the Commission calls for policies to be made public and for the implementation of statutory mechanisms to allow individuals affected by misuse to seek redress. The report underscores that without proper safeguards, FRT could exacerbate existing inequalities in law enforcement and civil applications.
Province tells U.S. firms Alberta wants data centres — but bring your own power
Emily Williams | CBC News
Alberta is positioning itself as a prime destination for data centers, particularly targeting U.S. tech firms in Silicon Valley. The province highlights its cooler climate, which reduces cooling costs for data centers, as well as its deregulated energy market. However, a significant challenge is Alberta's natural gas-dominated electricity grid, which raises concerns about pollution and long-term sustainability. Minister Nate Glubish's efforts aim to attract investment, but firms may need to generate their own power to operate sustainably in Alberta's energy market.
Got a threatening email with a photo of your house? London police warn it's a scam
Isha Bhargava | CBC News
London police are warning residents about a new email scam in which fraudsters send threatening messages, often with a photo of the recipient's home, claiming to have installed malware or hacked devices. The emails demand payment to avoid further action. Authorities emphasize that these are scare tactics and that no personal devices have been compromised. Police advise not to respond to the emails and to report such incidents.
Meta fined $101 million for storing hundreds of millions of passwords in plaintext
Alexander Martin | The Record
Meta has been fined €4 million under the EU's GDPR for failing to adequately protect user passwords. This stems from incidents where millions of passwords were stored in plain text, leaving them vulnerable to unauthorized access. The fine was imposed by Ireland’s Data Protection Commission (DPC), which oversees Meta’s compliance with EU privacy regulations. The DPC criticized Meta’s negligence in implementing proper encryption standards, which are crucial for user data security. The case highlights ongoing concerns over how tech giants handle personal information.
Telegram says it will share phone numbers and IP addresses of ‘bad actors’ to authorities
Daryna Antoniuk | The Record
Telegram has reportedly shared user IP addresses and phone numbers with authorities in Germany, following requests related to criminal investigations. Despite its reputation for strong privacy, the platform faced legal pressures, prompting the data handover in cases involving child exploitation and terrorism. This has raised concerns among privacy advocates, as Telegram's cooperation with law enforcement could set a precedent for further data-sharing. However, Telegram claims it remains committed to user privacy and only shares data in extreme cases.
Information Commissioner’s Statement for Right to Know Week 2024
Information Commissioner of Canada
The Information Commissioner’s statement for Right to Know Week 2024 emphasizes the importance of transparency and the public’s right to access government information. The Commissioner highlights challenges in accessing information and calls for improvements in timeliness and efficiency within federal institutions. The statement underscores the need for accountability and public engagement, reaffirming that access to information is a cornerstone of democracy.
Image released of mysterious object shot down over Yukon in 2023
Daniel Otis | CTV News
A recently released image shows the mysterious object shot down over Yukon in February 2023 by a U.S. fighter jet. The object was intercepted following concerns that it could pose a threat, similar to the earlier suspected Chinese spy balloon. Despite extensive searches, no debris from the object was recovered, leading to ongoing questions about its origin and purpose.
Police board meetings now at city hall to improve transparency
Tyler Clarke | Sudbury
The Greater Sudbury Police Board meetings will now take place at City Hall to improve transparency and accessibility. This move aims to foster greater public involvement and make it easier for citizens to attend and stay informed about police board decisions. The change comes in response to previous concerns about the accessibility of police board operations, marking a step toward more open governance.
AI May Be a Powerful Tool, but It’s No Substitute for Cyber Experts
Jeff Schwartzentruber | CIGI
While artificial intelligence (AI) can be a valuable tool in cyber defense, it cannot replace the expertise of human cyber professionals. AI helps automate tasks like threat detection and data analysis, but it lacks the nuanced understanding required to interpret complex cyber threats and adapt to evolving situations. Experts play a crucial role in managing AI tools and ensuring their effectiveness in cybersecurity strategies. The partnership between AI and human expertise is essential for a robust defense against sophisticated cyberattacks.
AI regulation is coming to Australia: what you need to know
Cheng Lim | Bryony Evans | Kendra Fouracre | Luke Pallaras | Lauren Bourke | Matt Healy | King & Wood Mallesons
Australia is set to introduce AI regulation, focusing on ensuring safety, privacy, and accountability in the development and deployment of artificial intelligence technologies. The upcoming regulatory framework aims to address concerns over bias, transparency, and the potential misuse of AI, especially in high-risk applications. Businesses involved with AI in Australia should prepare to meet compliance standards as these regulations evolve, impacting sectors like healthcare, finance, and defense.
Keeping children safe on social media: What parents should know to protect their kids
Barbara Ortutay | The Globe and Mail
The article from The Globe and Mail offers guidance for parents on how to protect their children on social media. It discusses the importance of setting boundaries, educating kids about online dangers, and utilizing privacy controls on platforms. Parents are encouraged to monitor activity, teach their children about cyberbullying, and stay informed about emerging online threats. The article emphasizes communication and proactive measures to help ensure children stay safe while navigating social media.
Parents are finding new ways to monitor their kids. But some experts are concerned
Catherine Zhu | CBC News
The CBC article discusses concerns around parental surveillance in an increasingly digital world, particularly the balance between monitoring children's online activity and respecting their privacy. Experts emphasize the importance of open communication between parents and children, promoting trust rather than excessive surveillance. The debate revolves around finding a balance where children can explore the internet safely while learning to navigate privacy issues on their own.
ID theft and false credit applications drive 54% surge in auto fraud: Equifax Canada
Ritika Dubey | The Hamilton Spectator
Equifax Canada reports a 54% surge in auto fraud, driven by identity theft and fraudulent credit applications. Criminals are increasingly using stolen personal information to secure auto loans, which has led to significant financial losses. The rise in fraud highlights the importance of stronger identity verification measures and increased consumer awareness. Equifax advises both consumers and lenders to remain vigilant against suspicious activity to help curb the growing problem.
Sudbury woman's ex partner accessed video from baby monitors for months after they separated
Aya Dufour | CBC News
A man from northern Ontario has been sentenced to 18 months in jail after being found guilty of criminal harassment and threatening an ex-partner. The court heard that his abusive behavior escalated after their separation, leading to significant emotional harm. The judge emphasized the seriousness of the threats, noting that the behavior violated the victim's sense of safety and well-being. This case highlights the legal consequences of harassment and the importance of addressing domestic abuse through the court system.
Feedback wanted: Ottawa launches public consultation on AI strategy
Jim Wilson | Human Resources Director
The Canadian government has launched a public consultation on its national AI strategy, inviting feedback from individuals and organizations on how artificial intelligence should be developed and regulated. This initiative aims to ensure that AI benefits society while addressing concerns about privacy, ethics, and accountability. The consultation is part of Ottawa's broader efforts to shape policies around emerging technologies and support responsible AI innovation in Canada.
Ottawa police flying drones at CityFolk, Bluesfest worries surveillance experts
Lynn Saxberg | The Ottawa Citizen
Ottawa police are using drones at CityFolk and Bluesfest, raising concerns among surveillance experts about potential privacy infringements. While authorities claim the drones enhance public safety and crowd monitoring, experts worry about the potential for excessive surveillance and the lack of clear regulations governing drone use. They emphasize the need for transparency and public input to ensure these technologies are used responsibly and do not violate citizens' rights.
Australia: Privacy experts shocked as Hobart council agrees to beam live CCTV footage into police station
Caitlin Cassidy | The Guardian
Hobart police in Australia now have real-time access to live CCTV footage across the city, raising concerns about privacy and potential over-surveillance. While authorities argue the measure enhances public safety and crime prevention, civil liberties advocates warn it could lead to unwarranted monitoring without proper oversight or transparency. The debate highlights the tension between leveraging technology for security and ensuring citizens' privacy rights are protected.
Calling all security cameras: Prince Albert starts community registry
Susan McNeil | Prince Albert Now
Prince Albert has launched a community security camera registry program, encouraging residents and businesses to voluntarily register their security cameras. The initiative aims to assist law enforcement in investigations by allowing police to know the locations of private cameras, potentially speeding up access to footage in case of incidents. The registry does not grant police live access but helps them request footage more efficiently when needed.
LinkedIn has stopped grabbing UK users’ data for AI
Natasha Lomas | Tech Crunch
LinkedIn has halted its use of U.K. users' data for training AI models following scrutiny over privacy concerns. This decision comes after the platform faced regulatory pressures about how personal data is leveraged for AI development. The change aligns with heightened data protection expectations in the U.K., where users are becoming more aware of how their information is utilized for AI and machine learning purposes.
Mozilla hit with privacy complaint in EU over Firefox tracking tech
Natasha Lomas | Tech Crunch
Mozilla has been hit with a privacy complaint in the EU over its Firefox browser's use of tracking technology. The complaint, filed by a German NGO, argues that Firefox's data collection practices may violate GDPR regulations, particularly concerning user consent and transparency. The issue raises concerns about how browser companies handle user data and whether they fully comply with European privacy laws. Mozilla has stated it is reviewing the complaint and reaffirmed its commitment to user privacy.
UK: Labour’s benefit fraud crackdown would allow officials to access bank accounts
Patrick Butler | The Guardian
The UK's Labour Party has proposed a controversial benefit crackdown that would grant officials access to claimants' bank accounts. The plan aims to tackle benefit fraud by allowing authorities to scrutinize financial transactions for inconsistencies. Critics argue this could lead to privacy violations and disproportionately target vulnerable individuals. The proposal has sparked a debate about balancing fraud prevention with the protection of personal data and civil liberties.
IPC Clarifies its Position on Notification and Consent for the use of AI Tools
Roland Hung | Torkin Manes
The Information and Privacy Commissioner (IPC) of Ontario has clarified its position on the use of AI tools, particularly regarding the need for notification and consent. The IPC emphasizes that organizations must be transparent when using AI technologies, ensuring individuals are informed about how their data will be used. Organizations must also obtain explicit consent where required by law. This guidance seeks to ensure that AI adoption complies with privacy regulations, fostering trust between the public and organizations using such technologies.
IAPP expands mission and launches Cybersecurity Law Center
IAPP
The International Association of Privacy Professionals (IAPP) has expanded its mission by launching the Cybersecurity Law Center, a new initiative aimed at addressing the growing intersection of cybersecurity and privacy. The center will offer resources, research, and guidance to help privacy professionals navigate complex cybersecurity legal challenges. This move reflects the increasing importance of cybersecurity in protecting data and complying with privacy regulations.
Looking to balance anonymity with accountability, Ontario Superior Court orders disclosure of whistleblower’s identity
Jordan Deering | Regan Christensen | Ryan Hamieh | DLA Piper
An Ontario court has ordered the disclosure of a whistleblower's identity in a case that raises concerns about privacy protections for individuals reporting misconduct. The ruling comes after a company sought access to the whistleblower’s identity during litigation. This decision highlights the legal complexities surrounding the protection of whistleblowers, balancing the interests of transparency with the need to safeguard individuals who report wrongdoing.
Government concerned about public scrutiny in mandating workers back to office
Matthew Kupfer | CBC News
The Canadian federal government is evaluating the future of remote work as it faces pressure from both workers and departmental needs. While some employees prefer to continue working from home, government leaders are considering a hybrid model that balances remote and office work. This shift comes amidst broader discussions on workplace productivity and the benefits and challenges of remote work. Decisions will impact how the public sector operates post-pandemic.
