Pink Edition
A Question of Privacy
The question of online privacy is a very hot topic. Many people have an opinion, many companies talk about it - but few really protect your privacy.
Let's look at what it takes to create a privacy policy.
What is personal information?
When we talk about online privacy and protecting your personal information we are really talking about 4 different things:
- Personal information specific to you as a person - like your name, address, phone number, age, your education, the name of your children, your gender, who you are married to (or if you are single), social security number, tax number etc.
- Information about your actions - what websites you have visited, what you have searched for, what products you like, what you bought at Amazon, how many times you went to the bathroom last week etc.
- Information that you supply to a website - like the things you post about yourself on your blog, what you post on Twitter and the comments you made on varies websites.
- Technical information that links you with any of the above - like your IP address, Mac address, unique cookie identifiers and encryption keys.
The important thing to remember is that everyone is collecting personal information, and most of it is not harmful. Your neighbor knows what time you drive to work or take out the trash. You local car dealer knows about your driving habits and you local grocery store knows what kind of bread you like - everyone knows something about you.
This is great. It is nice that you can say "I need new tires" to your car dealer - and then be assured that you get the right kind because he already knows what you need.
The problem with personal information on computers and especially online is that it allows people to collect much more information than they should - and even worse - combine information for their own advantage. For instance, while it is great that you car dealer knows about your driving habits, you don't really want him to know what kind of food you like, or what person you bought flowers for.
...and this is where a privacy policy comes into play.
What is a Privacy Policy about?
A Privacy Policy is not something you make in order to cover yourself legally, nor is it something you can use to get out of trouble just by saying "we violated you privacy, but you should know because we said we would do so".
A Privacy Policy is statement of respect and ethics. You make a privacy policy because you realize that people have a right to privacy. It is okay to collect essential information if it is to help the people who visit you - not if it is to further you own egocentric desires.
It is not okay to collect unrelated personal information just because you say you will in your privacy policy. It is certainly not okay to use that personal information to your own advantage or to share it with questionable companies.
You cannot own parts of other people's life and as such, privacy is a statement where you say "I do know something about you, but I also deeply respect you as a person".
5 elements of privacy
Most Privacy Policies only deals with how your personal information is shared. Most will say "We do not share your personal information with anyone - except our selected partners".
But, there is much more to a privacy policy - 5 things to be exact. It ranges from full privacy protection (green) to full violation of people's privacy (red). They are:
Collecting
How much personal information do you collect?
Protection
What measures you have taken to protect people's personal information.
Control
What level of control you allow people to have over the information you have about them.
Usage
How you use people's personal information.
Sharing
In what way your personal information is shared with external sources.
Companies in Europe are actually legally required to protect people's right to privacy. You will be breaking the law if you have any red or yellow marks. Privacy laws in Asia and US is less severe. Even worse, most privacy laws only apply to companies - not individuals. Personal websites can basically get away with anything
(Note: a company blog is not a personal website)
But, again the purpose of creating a privacy policy is not to protect you legally - it is about ethics and trust. Having any kind of yellow or red marks is just wrong - no matter what website you have.
Also remember that if you do use external services to enhance you site - your level of privacy protection is affected by their actions. You do not respect people's personal information of you share it with people who violate it. It is not a problem to use external partners, if they are as responsible as you are.
Not everything is a privacy concern
While it is important to protect people's rights, it is also important to realize that many things do not invade people's privacy.
A person's privacy can only be violated if the information is used for specific and individual tracking. General website statistics is not a violation of people's privacy, nor is personalization.
Comments
Jonathan - Sep. 19, 2007
It's worth stating also that the basic definition of "personal data" is usually that which can be used to identify a living person.
I think another point here (and one that makes me oppose almost all collection of personal data) is that while statement of intent is all very well, the practical reality of the situation is that data leaks. No matter how much you "respect" the people that gave you their data, respect alone won't stop you leaving 10,000 names and addresses on a laptop in the local KFC.
This is why the real battleground needs to shift to putting users in control of how much data they release - regardless of privacy policies. Want to stop the cookies? You may be a paranoid nerd, but I'll defend your right to do so - and design my web site so that it'll work for you. Want to turn off JavaScript or use a disposable email address? Infuriating, but the same applies.
I would like to see, for example, the introduction of revocable keys for personal data. Have my name and address, but only in a form encrypted to you, with a key I can revoke at any time.
Thomas Baekdal - Sep. 20, 2007
Jonathan, Yes - I agree.
In the perfect world we, the real owners of our personal information, would have full control not only over what information is transferred - but also in what way it could be used.
In fact, the best way would be to change the system so that websites and companies could validate the identity of a person without ever seeing the actual personal information. And, use personal information without actually storing it.
This way you could make a comment on my site, your comment would be physically stored in a secure location controlled by you. I and other visitors would still be able to read it, but not actually use it or share it. You could at any time delete your comment simply by accessing your own secure personal server, and I would not be able to do anything to prevent it.
Sadly though, this is not possible today - the internet needs to be modified modified quite extensively to support this kind of data use and protection.
collector - Dec. 26, 2007
Everything that is not going via https protocol or encrypted is unprotected and can be stolen (sniffed). So we cannot really "value user's privacy" without buying ssl certificate and allowing "https" connection. Unfortunately this is too expensive for many website owners.
Published: Sep. 19, 2007 in Management
Thomas Baekdal is a Writer, Interaction Designer, Change Advocate and Project Manager.
Daniel Aleksandersen - Sep. 19, 2007
Here is a good tip for when you are writing a privacy policy for a website: Keep it very short and write in plain‐English. The target audience of most texts on a website—including the privacy policy!—is meant for the end user. Make sure they can easily read and understand your privacy policy.
The end user will feel much more secure if they can be assured their information is safe in a way they can understand. It really should not be necessary to contact a lawyer to comprehend a simple privacy policy!