Vogel Internet, Information Technology and e-Discovery Blog : Texas Internet, Information Technology, eCommerce & E-Discovery Lawyer & Attorney Peter S. Vogel : Gardere Wynne Sewell Law Firm : Dallas TX

In a recent interview Mark Zukerberg “told a live audience …that if he were to create Facebook again today, user information would by default be public, not private as it was for years until the company changed dramatically in December.” Without question Facebook and social networking have changed Internet users’ perceptions of what should be private and not.

Google CEO Schmidt Comments about Privacy
 

The Electronic Frontier Foundation recently reported:
 

When asked during an interview for CNBC's recent "Inside the Mind of Google" special about whether users should be sharing information with Google as if it were a "trusted friend," Schmidt responded, "If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place."
 

Schmidt went to say that under the US Patriot Act the US government may obtain information from Google which they routinely retain. Many Google users are unaware that Google retains each and every search for 18 months. So I guess his advice should make people stop and think.

Privacy – What Do Law Students Think?

When I first started teaching the Law of e Commerce at SMU Dedman School of Law in 2000 privacy was a very important and hot topic. A few years ago the CyberProf listserv did an informal survey of those of us who teach the Law of eCommerce and/or the Internet regarding how our students felt about privacy in 2000 and in 2008. Not much of a surprise that law students in 2008 seemed to care a lot less about privacy. My guess is that social networking, Facebook, MySpace, Twitter, texting, et al have been the big drivers of this change in attitude regarding privacy.

• Email This
• Print
• Comments
• Trackbacks

In a 5-4 ruling the Ohio Supreme Court now requires a search warrant to search cell phone content which the American Civil Liberties Union of Ohio calls a landmark decision as this appears to be a case of first impression. The defendant’s cell phone was searched without a warrant after he was arrested on drug charges based on a police sting operation. At trial the defendant claimed a violation of the 4th Amendment that although the police had the right to take his cell, the police did not have the right to search the contents of the cell. A decision to appeal to the US Supreme Court is pending.

US Supreme Court Agrees to Consider Text Messages

This week the Supreme Court agreed to consider the privacy claims of police officers text messages in City of Ontario v. Quon. The question before the Supreme Court is whether the city employees are entitled to privacy of the text messages stored at Arch Wireless’ servers since the city provided the text services to the officers as part of their jobs. Each officer received 25,000 characters a month as an allowance and the officers paid for any overages. The city paid no attention to the text messages until it discovered that officer Jeff Quon (who paid for characters above the allowance) had sent sexually explicit messages that were clearly personal and not business related. The question in this case is also a claim of violation of the 4th Amendment.

Web 2.0 Communications

Given what people post on social networking sites like Facebook, MySpace, and LinkedIn it is a wonder that many folks expect much privacy today. Courts will continue to be confronted with perplexing issues regarding the use of the Internet and this will never be less complex, but as I  blogged this week Judges in Florida should not be social network friends with lawyers who appear before them in cases even though lawyers may contribute to their election campaigns. As web 2.0 expands one easily images that the courts will have to reconsider how the 1789 written Constitution applies.

• Email This
• Print
• Comments
• Trackbacks

Behavior Advertising

A recent privacy blog discussed the February 2009 Federal Trade Commission Staff Report entitled “Self-Regulatory Principles For Online Behavioral Advertising,” and the opt-out questions posed by Congress are at the heart of whether new Internet privacy laws are required. The Internet economy, and certainly Google is chief example, are dependent upon the current behavioral advertising model and surely will be impacted by a change in the privacy laws in the US.

eMail Surveillance

Most US citizens believe that their emails are private. However employee privacy regarding emails in the workplace (not personal webmail) may be misplaced since in the US emails are private to employers and in the EU, Canada, and other countries emails are private to the employees. Nevertheless there are more questions being asked in Congress about how many e-mails are being collected in the name of security. The recent report that National Security Agency exceed its authority by intercepting emails and phone calls continues to be debated in Congress. Given President Obama’s cybersecurity agenda it will be interesting to see how the US congress can reconcile the expectation of personal privacy and need for Internet security. These debates will continue as the Internet evolves. Stay tuned for more.
 

• Email This
• Print
• Comments
• Trackbacks

After a three-year study a panel (of former military leaders and IT professionals) from the National Academy of Sciences reported that the US has no clear military policies for cyberattacks. Notwithstanding a recent blog about the NSA exceeding its authority to intercept email, we are not much safer from cyberattacks. One would have to live under a rock to have not noticed the significant number of system breaches. As a matter of fact as pointed out in other blogs, LexisNexis just warned 32,000 individuals about data breaches that personal information may have been improperly accessed in a credit card scheme as far back as 2004.

Proposed Federal Legislation to Update FISMA

The US Congress will be considering an update to FISMA (the Federal Information Security Management Act) called the "U.S. Information and Communications Enhancement Act of 2009." This proposed Act will create hacker squads to test defenses of agency networks, and the agencies will be required to show how they can effectively detect and respond to cyberattacks. Currently there are only about five federal agencies who conduct this type of testing.

Cyberattacks From Within

A former Sysadmin (System Administrator) recently pled guilty to a charge of cyber extortion by threatening his former employer and faces up to five years in prison and a fine of $250,000. After the Sysadmin was terminated last year he complained about the severance and threatened to cause extensive damage to his former employer’s systems. Apparently he left many back doors in the systems he managed that allowed him to enter and cause havoc, which of course as a Sysadmin he had the authority to do so.

How Safe Should We Feel?

Hopefully the US should get control of cyber security because it seems patently obvious to the most casual observer that at this time the US is extremely vulnerable. Maybe spending the US should $19 Billion on cyber security rather than on Electronic Health Records (EHR) since the US is so dependent on the use of the Internet today, and the US’s dependence on the Internet will only increase. Cyber safety is more critical than EHR.
 

• Email This
• Print
• Comments
• Trackbacks

A report that the National Security Agency (NSA) exceeded its authority by intercepting emails and phone calls of Americans make some people feel safer, and others wary. Many speculate that these massive email and phone call interceptions are systematic and intentional. For instance the Electronic Privacy Information Center (EPIC) and Electronic Frontier Foundation (EFF) have been following NSA’s activities for some time and are alarmed at NSA’s actions.

US Patriot Act

In the wake of September 11 terrorist attacks on October 26, 2001 President Bush signed the US Patriot Act after passing both houses of Congress in less than one day. The US Patriot Act gave the federal government unparalleled power to search emails and private communications without many checks and balances in the name of protection from terrorists. The US Patriot Act was renewed in 2005 substantially without major change. Congress and US citizens want certain protections, but EPIC and EFF are concerned that the US Patriot Act is too broad.

Increased in Criminal Data Breaches

Reports that there have been a significant increase in data breaches by organized crime is hardly surprise, but it seems that NSA’s efforts in searching emails and phone calls have not really paid off to make our Internet a safer place in which to conduct business. Last year there were more than 100 confirmed data breaches involving roughly 285 million consumer records, most of which occurred from sites overseas. There needs to be a balance between safety from bad guys and protection of civil liberties.
 

• Email This
• Print
• Comments
• Trackbacks (1)

A video about personal information was recorded in October, 2008 and was posted on WatchIT’s website  which is one of many educational programs available.  Please take a look to see which programs can help your business.
 

• Email This
• Print
• Comments
• Trackbacks

Facebook claims to have more than 120 million active members and it is the 4th most trafficked site in the world. Of course there are many other popular social network sites including LinkedIn and MySpace to name a few, and only to make things more interesting a recent report indicates that more than half of MySpace visitors are 35 or older. Not much of a surprise that more mature individuals are getting into social networking as the Internet evolves.

What about the Content?

The terms of use vary between Facebook and other social network sites, but one common provision in the terms of use is that the users grant these sites a worldwide license to the user content that is irrevocable, perpetual, non-exclusive, transferrable, royalty free to use, copy, or just anything they want. Facebook also limits its liability to the amount of monies paid (if any) or $1000. Even users of Google Apps grant Google a license to their content.

Web Universal ID?

Facebook recently announced Facebook Connect which is an Universal ID that will allow its users to only logon once and then navigate to third party sites. Not much of a surprise that Google, Yahoo!, and MySpace are also developing similar technology. However, it seems that either few individuals don’t care or understand that they are providing Facebook, MySpace, Google, and the all the rest with licenses to their personal content. Regardless of what users understand the growth of the social networking websites will be based on increased data from their users’ content which will generate more online advertising revenues.
 

• Email This
• Print
• Comments (2)
• Trackbacks

A recent a Google announcement of Wiki services in Google to improve the search experience and allow users to rank search results has a number of individuals questioning exactly what’s going on. Just like most wiki projects, this project did not in a straight line. Apparently this new service came from a Google Wiki Search Team rather than Google Labs.

How does the new Google Wiki work?

The new Google Wiki will allow users to conduct searches, and then permits them to reorder or delete certain results. That way when users return for future visits to Google they get their search results in the order they want. Only the user has access to their own search results with its Google Wiki reorganization, so they can keep this private.

What’s really going on?

Some skeptics complain that Google’s run out of ideas and that they are fixing something that wasn’t broken. Maybe, but perhaps there’s more method to this madness – since users’ can control the priority of their search results, won’t Google have even more powerful advertising data about users? Google users are more likely to spend more time on Google, which can only help Google’s business. Privacy of personal information should be a major concern to Google users since Google will have a personal insight about search priority of search results, not to mention the deleted search results. Stay tuned for future developments!
 

• Email This
• Print
• Comments
• Trackbacks

While most IT professionals are well aware of the evolution of Internet 2.0 computing services which offer on-line applications and large storage, in many ways this seems like an evolution of time-sharing from the 1960s when the likes of General Electric offered remote computing services to dumb terminals. Now Cloud Computing is one of the hot buzz words describing Software as a Service (SaaS) (sort of an updated term for ASPs- Application Service Providers) coupled with large amounts of storage. Major players are offering these services including IBM’s Blue Cloud,  Amazon’s S3, Google’s Apps, and Salesforce’s CRM. These Cloud Computing services allow users to collaboratively work on projects over the Internet using proprietary and open source applications. 

Collaboration is Great

One of the great benefits of using Cloud Computing like wiki tools is allowing collaboration, and many large companies including IBM, Microsoft, and Oracle use collaboration tools to develop new technologies. It is hard to believe that Wikipedia started in 2001 and now has more than 2.5 million English articles since it reached a major milestone of 1 million articles in March of 2006. Clearly there are many other wiki success stories, but yet still skeptics about the accuracy and authenticity of the content.

How Secure is the Data?

Virtually no one reads the Click Agreement terms or Terms of Service when accessing Internet sites, downloading software, or registering on a website, nor do business people generally consult their attorneys about these Click Agreement terms or Terms of Service. So is any wonder that the vendors generally provide the services “as is,” without warranties and limit their liability and damages, and make jurisdiction and venue as inconvenient as possible to the user? Probably not, but when there are service outages that even the Service Level Agreements offer a reimbursement for down time, but not consequential damages. Another major concern is privacy of data since such laws such as HIPAA and the EU Data Directive restrict use of certain person information, and yet depending on how the Cloud Computing provider operates, these data privacy issues can be lost.

• Email This
• Print
• Comments
• Trackbacks

Congressional hearings reveal that Internet companies routinely track behavior of visitors to websites, and as a result Congress is considering legislation to help personal privacy. Currently the Federal Trade Commission allows for self-regulation by websites, and websites need not have privacy policies, but if there are privacy policies the FTC expects adherence. Otherwise the FTC levies fines.
 

Unfortunately few Internet users ever bother to review the Privacy Policies of the websites that they visit, because if they did perhaps Congress would not be so shocked. Google and other major players retain data on visitors for 18 months, and even the EU recently was considering restricting the data retention to only 12 months (not that the 6 months additional data would change the fact that the ISPs were capturing information for their own purposes). Since the federal government allowed Google to purchase DoubleClick clearly everyone was aware of where Google was headed but to take advantage and use personal information about the Internet traffic.
 

Tracking information about web traffic is not bad, but when personal identifiable information is compromised consumers react. A number of major players submitted letters to the House Committee including AOL, Charter Communications, Earthlink, Time Warner Cable, and Yahoo! to name a few.
 

• Email This
• Print
• Comments
• Trackbacks