"the pornographic equivalent of Mark Zuckerberg" | The Cat Herder, Volume 2, Issue 10

Bank Holiday edition. Quite short. 😼   March 18 · Issue #26 · View online Bank Holiday edition. Quite short. 😼 UK online pornography age block triggers privacy fears | Culture | The Guardian www.theguardian.com – Share Government to confirm launch date of nationwide age block on pornographic content Forcing users to pay pornography firms to track them doesn’t seem to be a clever solution to any particular problem but certainly has the potential to create a large number of entirely new problems. Here’s a link to the Wikipedia entry about the Ashley Madison data breach. Ahem. Yes it will. Documents Reveal ICE Using Driver Location Data From Local Police for Deportations | American Civil Liberties Union www.aclu.org – Share Over 80 local law enforcement agencies, from over a dozen states, have agreed to share license plate location information with ICE. Emails show local police handing driver information over to ICE informally, violating local law and ICE policies. Many of the CCTV systems surveilling public areas which have popped up in Ireland recently have Automated Number Plate Recognition (ANPR) capabilities. Do you know how many organisations your location might be shared with as you drive past one of these cameras? It’s a question worth asking and a conscientious data controller should be able to tell you. They probably did. Facial recognition's 'dirty little secret': Millions of online photos scraped without consent www.nbcnews.com – Share Facial recognition researchers are sweeping up photos by the millions from social media and categorizing them by age, gender, skin tone and dozens of other metrics. Researchers found a lot of personal data lying around unattended and appropriate it for ‘research’ purposes, much to the surprise of many. Creative Commons has shrugged and says there’s not much they can do about it. Publicly available personal data is still subject to data protection law. On the same beat Buzzfeed News reported that US Customs and Border Protection is “scrambling to implement this "biometric entry-exit system”, with the goal of using facial recognition technology on travelers aboard 16,300 flights per week". The documents obtained by the Electronic Privacy Information Center state that “there were no limits on how partnering airlines can use this facial recognition data … CBP did not explain what its current policies around data sharing of biometric information with participating companies and third-party firms are”. Who Targets Me @WhoTargetsMe The Spanish data protection authority has released guidance that microtargeting in election campaigns may be against the law. Most parties have pulled their ads ahead of the General Election on April 28th, awaiting clarification. https://t.co/lBmMeiU3wX 10:16 AM - 14 Mar 2019 The European Data Protection Board published a statement during the week on the use of personal data in political campaigns (direct PDF link). It’s quite straightforward stuff: “Personal data revealing political opinions is a special category of data under the GDPR.” Transparency and the provision of adequate information to voters about political adverts is crucial Profiling is restricted. “a legal effect generated by automated decision-making may include affecting a person’s vote in an election.” In the annex to the document the EDPB rounds up guidance published by some of the national supervisory authorities. The Irish Data Protection Commission published guidance for both canvassers and canvassees last November. ‘Elections and Canvassing: Data Protection and Electronic Marketing’ gives advice and information on the responsibilities of those who process personal data for electoral and canvassing activities. Elections and Canvassing: Data Protection and Electronic Marketing – the Data Protection Rights of Individuals’ gives advice and information to members of the public on their data protection rights when their personal data is being processed for electoral and canvassing activities. ‘Is Ireland taking its role as Europe’s data watchdog seriously?’ asks Karlin Lillington in The Irish Times. ‘Does the GDPR really say that?’ from the Data Protection Commission. We’d previously covered one or two of these, particularly in GDP-Hair from last November. “What goes unexamined is the way that both surveillance and sexism in tech are functions of power in technology, and that surveillance (as well as its analog prototype, the male gaze) has a long history of affecting “the other” differently than those in power.” From Kate Losse‘s 2014 essay on surveillance, power and gender, 'The Male Gazed’. Hal Hodson takes a deep dive into DeepMind for The Economist in ‘DeepMind and Google: the battle to control artificial intelligence’ —- Endnotes & Credits The elegant Latin bon mot “Futuendi Gratia” is courtesy of Effin’ Birds. As always, a huge thank you to Regina Doherty for giving the world the phrase “mandatory but not compulsory”. The image used in the header is by Krystian Tambur on Unsplash. Any quotes from the Oireachtas we use are sourced from KildareStreet.com. They’re good people providing a great service. If you can afford to then donate to keep the site running. Digital Rights Ireland have a storied history of successfully fighting for individuals’ data privacy rights. You should support them if you can. Find us on the web at myprivacykit.com and on Twitter at @PrivacyKit. Of course we’re not on Facebook or LinkedIn. Barring a disaster this newsletter will be in your inbox again next weekend. See you then. If you know someone who might enjoy this newsletter do please forward it on to them. Did you enjoy this issue? In order to unsubscribe, click here. If you were forwarded this newsletter and you like it, you can subscribe here. Powered by Revue Privacy Kit, Made with 💚 in Dublin, Ireland

Bank Holiday edition. Quite short.

😼

Government to confirm launch date of nationwide age block on pornographic content

Forcing users to pay pornography firms to track them doesn’t seem to be a clever solution to any particular problem but certainly has the potential to create a large number of entirely new problems. Here’s a link to the Wikipedia entry about the Ashley Madison data breach. Ahem.

Many of the CCTV systems surveilling public areas which have popped up in Ireland recently have Automated Number Plate Recognition (ANPR) capabilities. Do you know how many organisations your location might be shared with as you drive past one of these cameras? It’s a question worth asking and a conscientious data controller should be able to tell you.

Facial recognition researchers are sweeping up photos by the millions from social media and categorizing them by age, gender, skin tone and dozens of other metrics.

Researchers found a lot of personal data lying around unattended and appropriate it for ‘research’ purposes, much to the surprise of many. Creative Commons has shrugged and says there’s not much they can do about it.

Publicly available personal data is still subject to data protection law.

On the same beat Buzzfeed News reported that US Customs and Border Protection is “scrambling to implement this "biometric entry-exit system”, with the goal of using facial recognition technology on travelers aboard 16,300 flights per week".

The documents obtained by the Electronic Privacy Information Center state that “there were no limits on how partnering airlines can use this facial recognition data … CBP did not explain what its current policies around data sharing of biometric information with participating companies and third-party firms are”.

The European Data Protection Board published a statement during the week on the use of personal data in political campaigns (direct PDF link). It’s quite straightforward stuff:

• “Personal data revealing political opinions is a special category of data under the GDPR.”
• Transparency and the provision of adequate information to voters about political adverts is crucial
• Profiling is restricted. “a legal effect generated by automated decision-making may include affecting a person’s vote in an election.”

In the annex to the document the EDPB rounds up guidance published by some of the national supervisory authorities. The Irish Data Protection Commission published guidance for both canvassers and canvassees last November.

• ‘Is Ireland taking its role as Europe’s data watchdog seriously?’ asks Karlin Lillington in The Irish Times.
• ‘Does the GDPR really say that?’ from the Data Protection Commission. We’d previously covered one or two of these, particularly in GDP-Hair from last November.
• “What goes unexamined is the way that both surveillance and sexism in tech are functions of power in technology, and that surveillance (as well as its analog prototype, the male gaze) has a long history of affecting “the other” differently than those in power.” From Kate Losse‘s 2014 essay on surveillance, power and gender, 'The Male Gazed’.
• Hal Hodson takes a deep dive into DeepMind for The Economist in ‘DeepMind and Google: the battle to control artificial intelligence’

—-

Endnotes & Credits

• The elegant Latin bon mot “Futuendi Gratia” is courtesy of Effin’ Birds.
• As always, a huge thank you to Regina Doherty for giving the world the phrase “mandatory but not compulsory”.
• The image used in the header is by Krystian Tambur on Unsplash.
• Any quotes from the Oireachtas we use are sourced from KildareStreet.com. They’re good people providing a great service. If you can afford to then donate to keep the site running.
• Digital Rights Ireland have a storied history of successfully fighting for individuals’ data privacy rights. You should support them if you can.

Find us on the web at myprivacykit.com and on Twitter at @PrivacyKit. Of course we’re not on Facebook or LinkedIn.

Barring a disaster this newsletter will be in your inbox again next weekend. See you then.

If you know someone who might enjoy this newsletter do please forward it on to them.