There’s nothing wrong with saying that you “own” data. Public Knowledge has supported data ownership as a colloquialism that reflects an intuition: Data about us provides information regarding the intimacies of our very identity and existence. Speaking in this way, we should certainly “own” or have control over that data to protect our fundamental right to privacy.
Today, Public Knowledge and the Roosevelt Institute launched “The Case for the Digital Platform Act,” a new e-book by Public Knowledge Senior Vice President Harold Feld with a foreword by former Federal Communications Commission Chairman Tom Wheeler. The e-book operates as a guide for addressing the challenges posed by the power of digital platforms.
As Congress and other relevant stakeholders debate how to protect Americans’ privacy, a key concern is making sure that new legislation doesn’t entrench the power of big tech incumbents. In this post, we argue that incorporating data interoperability into privacy legislation is essential to empowering consumers’ data rights and fostering a competitive marketplace.
Facebook announced yesterday that it expects to pay a fine up to $5 billion dollars over accusations that the company violated its 2011 consent decree with the Federal Trade Commission over consumer privacy on the social media platform. The company also said there can be no assurances as to the terms of resolution of the investigation.
Last week, thanks to investigative reporting, we learned that Facebook discovered in January that it was storing millions of users’ passwords in plain text format, making them fully readable for thousands of its employees. Facebook has acknowledged that this was a serious security error and privacy breach on its side, as its systems, ideally, “are designed to mask passwords using techniques that make them unreadable”, and promised that it “will be notifying everyone whose passwords we have found were stored in this way.” There is no evidence that any of the thousand employees with access to these unencrypted passwords actually accessed them, but Facebook’s decision to remain mum reveals an important lesson for the overarching privacy and security policy debate. Importantly, data security incidents are a widespread problem that goes well beyond Facebook.