'Privacy policies should be called surveillance policies' says Privacy International chief

Privacy and data luminaries came together for storage vendor Teradata's privacy event yesterday morning

The head of an international privacy think tank has condemned corporations and developers 'app permissions' and privacy policies as a mask over an unregulated 'Wild West' data landscape that must be tamed.

"The existence of privacy policies - which should be called surveillance policies as they are an explanation of everything that is done to you and your data when it is handed over to a company - shouldn't matter because underneath there should be a law to protect you," said Privacy International CEO Dr Gus Hosein, speaking at Teradata event yesterday.

Using the example of data regulations in the US, or lack thereof, Hosein said "it is a bit of Wild West, and everyone knows it needs to be fixed but doesn't know what the solution is. But we shouldn't revel in that."

Hosein condemned the UK government for favouring "innovation instead of fair rules". He said regulation would eventually filter through - but most likely from new markets like India and China where huge investments arebeing made in smart cities and tech firms are beginning to set up shop. Both of these markets currently have no, or limited data protection laws, he added.

'Jurisdiction isn't very effective'

With a new European data protection regulation on the horizon, firms are in a data collection limbo, added Stephen Brobst, storage vendor Teradata's CTO (and former member of Barack Obama's President's Innovation and Technology Advisory Committee).

"Making privacy policies simpler doesn't help very much - I click 'I agree' dozens of times a day. It is important that they are precise", he said. However, he added: "jurisdiction, when it does exist, is very ineffective."

Brobst went further, saying countries with strict data regulation are at a competitive disadvantage.

"If I look at places where there has been significant regulation on surveillance, there are countries that do not allow enterprises keep data for a certain amount of months - even in the consumer would allow it. That means they can't do relevant pricing and recommendations - and those companies are at a huge disadvantage."

Confusion from corporations and device manufacturers over data collection

The fact that device makers often do not know how and where information comes from is another cause for concern, Brobst said during the event at the Shard in London yesterday.

For example, when Edward Snowden famously leaked NSA and GCHQ intelligence that revealed how governments were collecting citizen data, it became clear that information was transmitted from users even when their device was turned off.

After the revelations, Privacy International contacted all device manufacturers to understand how this was possible, and found that the majority were unsure, but pointed to the chips which are purchased from their suppliers. They were unable to tell how the data was being used or pulled off by the chips when the device was not in use, Hosein said.

Join the CSO newsletter!

Error: Please check your email address.

Tags Privacy InternationalTeradatasecurityprivacy

More about GCHQNSAPrivacy InternationalTechnologyWest

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Margi Murphy

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts