February 13, 2022
"Your phone camera will track your eyeballs" | The Cat Herder, Volume 5, Issue 05
| |
| February 13 · Issue #167 · View online |
|
|
A couple of trips down memory lane as some US lawmakers claim US intelligence agencies might be illegally snooping on US citizens and the UK government shovels its perennial favourite, age verification, into the ever-expanding mess that is the Online Safety Bill. And the eyeball thing of course. The eyeball thing is very special.
😼
|
|
|
This idea is truly deserving of an award for Dystopian Stupidity.
|
|
|
|
He explains that with the new version of MoviePass, you can watch ads to earn credits that can go toward free movies. Your phone camera will track your eyeballs to make sure you're actually watching. "What it does is it basically creates a transaction between you and the brand." https://t.co/Lip0CDXPLT
|
|
|
|
|
|
People loved MoviePass but hated that it wasn’t continuously scanning their eyeballs to make sure they were watching pre-roll ads in exchange for tiny discounts on tickets. Props to the team for figuring this out https://t.co/Hdn48hchez
|
|
|
|
MoviePass will also be integrating PreShow, which Spikes describes as an advertising platform that will make use of facial detection technology to make sure a customer watches an opted-into ad, in exchange for additional credits. During a demo, a video served up automatically paused when the system detected the viewer had looked away, requiring direct attention in order to complete the transaction for the credit. A MoviePass rep confirmed that this works through the front-facing camera on a phone. “This is happening only on your phone, uniquely to you, and the credits that earn are your credits that go into your virtual wallet that you get to spend, so it’s your own money,” Spikes said. An earlier version of this technology without facial detection led to most customers starting the video and then putting the phone down. While it’s now common for streaming services to offer cheaper, ad-supported rates, it’s notable that PreShow will be using its facial detection technology to compel attention in exchange for a cheaper movie ticket.
|
MoviePass 2.0 plans summer relaunch with credits, theater partnerships but no unlimited movies - CNET
The new MoviePass plans to support all theaters, but it won’t be a free-for-all.
|
|
|
We’ve definitely been here before, Part I.
|
|
|
|
BREAKING: Newly declassified documents reveal that the CIA has been secretly conducting massive surveillance programs that capture Americans’ private information.
|
|
|
|
The CIA has a secret, undisclosed data repository that includes information collected about Americans, two Democrats on the Senate Intelligence Committee say. While neither the agency nor lawmakers would disclose specifics about the data, the senators alleged the CIA had long hidden details about the program from the public and Congress.
|
CIA has secret program that collects data on Americans, Sens. Ron Wyden and Martin Heinrich say - CBS News
Ron Wyden of Oregon and Martin Heinrich of New Mexico, both Democrats, are pressing for more information on the practice. The CIA’s focus is supposed to be abroad.
|
|
|
We’ve definitely been here before, Part II.
|
The proposed law will see individual British internet users required to hand over a form of identification – such as a passport, driving licence or credit card – to an age verification provider, which would then tell a website hosting porn that the user is over 18. Outlets that fail to prove they have robust age checks could be fined 10% of their global revenue by the media regulator Ofcom, or risk being blocked altogether by British internet service providers.
|
Reddit and Twitter users face age checks under UK porn law plans | The Guardian
Social network users may be asked to submit passport or credit card details under plans outlined by ministers
|
|
|
Back to the smart TV itself. One scary feature to look out for is automated content recognition (ACR). Often turned on by default, this uses analytical techniques to identify video and audio running on the TV, matching it against a big database to identify what’s being played. It’s pretty creepy stuff – ACR works on anything played on the TV including DVDs and Blu-rays, CDs and games. … And in theory, ACR could be used for even more unsettling profiling, says Lewis. “With the analytical technologies available, data from facial recognition, sentiment analysis, speech-to-text and content analysis could be gathered to build an in-depth picture of an individual user.”
|
What your smart TV knows about you – and how to stop it harvesting data | The Guardian
Smart TVs are always gathering data about you that can be monetised. What can you opt out of – and what can you safely leave alone?
|
|
|
The CNIL followed the Austrian DPA in warning that transatlantic transfers of personal data through use of Google Analytics are not sufficiently protected. “in the absence of an adequacy decision (which would establish that this country offers a sufficient level of data protection with regard to the GDPR) concerning transfers to the United States, the transfer of data can only take place if appropriate guarantees are provided for this flow in particular … although Google has adopted additional measures to regulate data transfers in the context of the Google Analytics functionality, these are not sufficient to exclude the accessibility of this data for US intelligence services.” |
|
|
|
|
|
|
-
“The third risk comes from the age verification and assurance processes themselves. These processes may collect many different pieces of personally identifiable information in order to profile you to establish your likely age. In doing so, they will create massive privatised databases of personal Internet browsing – databases which would be very appealing to governments or hackers. Regardless of whether a service provider chooses a data-intensive form of age verification or a third-party provider of age assurance, either solution creates a barrier to public access which can only be opened by providing personal data. That is, in fact, what the law intends it to do. This will be excellent news for the identity verification provider market if no one else.” From ‘Age verification in the Online Safety Bill’ by Heather Burns on the Open Rights Group site.
-
“We argue that by characterising IAB Europe as a joint controller with RTB actors, the Belgian decision gives DPAs an agreed-upon blueprint to deal with a structurally difficult enforcement challenge. Furthermore, under the DPA’s simple-looking remedial orders are deep technical and organisational tensions. We analyse these “impossible asks”, concluding that absent a fundamental change to RTB, IAB Europe will be unable to adapt the TCF to bring RTB into compliance with the decision.” From ‘Impossible Asks: Can the Transparency and Consent Framework Ever Authorise Real-Time Bidding After the Belgian DPA Decision?’ by Michael Veale, Midas Nouwens and Cristiana Teixeira Santos.
-
“In a study on online advertising for the Parliament’s crucial Committee on the Internal Market and Consumer Protection, de Streel and nearly a dozen other experts documented how "dark patterns” had become a major tool used by websites and platforms to persuade users to provide consent for sharing their data. Their recommendations for the DSA—which included more robust enforcement of the GDPR, stricter rules about obtaining consent, and the dark patterns ban—were included in the final bill.“ From ‘Is Momentum Shifting Toward a Ban on Behavioral Advertising?’ by Harrison Jacobs for The Markup.
—
|
|
|
|
|
If you know someone who might enjoy this newsletter do please forward it on to them.
|
|
Did you enjoy this issue?
|
|
|
|
In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
|
|
|
|
Privacy Kit, Made with 💚 in Dublin, Ireland
|
|
|
A couple of trips down memory lane as some US lawmakers claim US intelligence agencies might be illegally snooping on US citizens and the UK government shovels its perennial favourite, age verification, into the ever-expanding mess that is the Online Safety Bill. And the eyeball thing of course. The eyeball thing is very special.
😼
This idea is truly deserving of an award for Dystopian Stupidity.
The new MoviePass plans to support all theaters, but it won’t be a free-for-all.
We’ve definitely been here before, Part I.
Ron Wyden of Oregon and Martin Heinrich of New Mexico, both Democrats, are pressing for more information on the practice. The CIA’s focus is supposed to be abroad.
—
We’ve definitely been here before, Part II.
Social network users may be asked to submit passport or credit card details under plans outlined by ministers
Smart TVs are always gathering data about you that can be monetised. What can you opt out of – and what can you safely leave alone?
The CNIL followed the Austrian DPA in warning that transatlantic transfers of personal data through use of Google Analytics are not sufficiently protected. “in the absence of an adequacy decision (which would establish that this country offers a sufficient level of data protection with regard to the GDPR) concerning transfers to the United States, the transfer of data can only take place if appropriate guarantees are provided for this flow in particular … although Google has adopted additional measures to regulate data transfers in the context of the Google Analytics functionality, these are not sufficient to exclude the accessibility of this data for US intelligence services.”
—
The Finnish DPA fined the Finnish Motor Insurers’ Centre €52,000 for processing far more personal data than was required for the purpose of processing claims.
-
“The third risk comes from the age verification and assurance processes themselves. These processes may collect many different pieces of personally identifiable information in order to profile you to establish your likely age. In doing so, they will create massive privatised databases of personal Internet browsing – databases which would be very appealing to governments or hackers. Regardless of whether a service provider chooses a data-intensive form of age verification or a third-party provider of age assurance, either solution creates a barrier to public access which can only be opened by providing personal data. That is, in fact, what the law intends it to do. This will be excellent news for the identity verification provider market if no one else.” From ‘Age verification in the Online Safety Bill’ by Heather Burns on the Open Rights Group site.
-
“We argue that by characterising IAB Europe as a joint controller with RTB actors, the Belgian decision gives DPAs an agreed-upon blueprint to deal with a structurally difficult enforcement challenge. Furthermore, under the DPA’s simple-looking remedial orders are deep technical and organisational tensions. We analyse these “impossible asks”, concluding that absent a fundamental change to RTB, IAB Europe will be unable to adapt the TCF to bring RTB into compliance with the decision.” From ‘Impossible Asks: Can the Transparency and Consent Framework Ever Authorise Real-Time Bidding After the Belgian DPA Decision?’ by Michael Veale, Midas Nouwens and Cristiana Teixeira Santos.
-
“In a study on online advertising for the Parliament’s crucial Committee on the Internal Market and Consumer Protection, de Streel and nearly a dozen other experts documented how "dark patterns” had become a major tool used by websites and platforms to persuade users to provide consent for sharing their data. Their recommendations for the DSA—which included more robust enforcement of the GDPR, stricter rules about obtaining consent, and the dark patterns ban—were included in the final bill.“ From ‘Is Momentum Shifting Toward a Ban on Behavioral Advertising?’ by Harrison Jacobs for The Markup.
—
Endnotes & Credits
Find us on the web at myprivacykit.com and on Twitter at @PrivacyKit. Of course we’re not on Facebook or LinkedIn.
If you know someone who might enjoy this newsletter do please forward it on to them.
