Navigating the Dataverse: Privacy, Technology ... - The ICHRP

More documents

Recommendations

Info

is central and inevitably intersubjective. 130 To speak of communicative control, however, also focuses on notions of autonomy and intentionality. It assumes that “information” carries value – that it is not merely free-floating signification. To be a private autonomous person, then, would be to have the capacity to set a value on information concerning the self – to decide what it means – before it is launched into the dataverse. Privacy implies relationships with others: whether we think of these others as neighbours, friends, family, “society”, the “public” or the state, the negotiation of those relationships is central and inevitably intersubjective. The Discussion Paper has questioned the principles underlying common ideas about privacy. Following Dean, it suggests that technoculture materialises the public sphere: private persons are represented in this public space in the form of digital doubles or “dividuals” with data images or “surveillant identities”. Our digital profiles exist in cyberspace, just as they do in government and marketing databases, and although we may be able to tweak certain elements of the information circulating about us, it seems unlikely that we will ever be in a position to determine what form our “dividual” should take or limit just how much and what kind of information it should encompass. Ultimately our “dividual” has a life of its own, and we may not even know its full parameters. This too is, inevitably, a source of anxiety. Yet, if privacy is indeed a public good, we should expect public and legal protections against such outcomes. If there is a right to privacy, that must surely mean at minimum that we retain some basic control over our digital selves. A cursory reading of the EU Data Protection Directive would appear to support such a view, as we shall see in a moment. Since the “dividual” has real-world consequences, it is here that the body of laws intended to protect privacy should be most relevant. Let us examine the relevant law with that in mind, beginning with the United States and then turning to the right to privacy and data protection, respectively, in Europe. Since the “dividual” has real-world consequences, it is here that the body of laws intended to protect privacy should be most relevant. The United States: a “Reasonable Expectation of Privacy” The right to privacy has had a difficult history, uncertain status, and a dose of transatlantic schizophrenia. In the United States it has a very clear genealogy dating from an 1890 law review article by two legal scholars, Samuel Warren and Louis Brandeis. 131 Much later, as a Supreme Court judge in 1928, Brandeis gave that earlier idea constitutional legs in a strongly-worded dissent to a ruling on wiretapping, Olmstead v. United States. 132 The essence of Brandeis’s famously broad intervention was that privacy rights extend beyond property controls alone. It was finally adopted by the Court in 1965 in a case (Griswold v. Connecticut) that concerned a married couple’s use of contraceptives. 133 130 On privacy as the negotiation of interpersonal relationships, see Irwin Altman, “Privacy Regulation: Culturally Universal or Culturally Specific”, Journal of Social Issues (1977); Leysia Palen and Paul Dourish, “Unpacking “Privacy” for a Networked World”, CHI (2003). 131 Samuel Warren and Louis Brandies, “The Right to Privacy” 4, Harvard Law Review 193 (1890). For one of many versions of this history, see Gerety (1977). 132 Olmstead v. United States, 277, U.S. 438, 455–56 (1928). [Telephone lines are owned by the phone company and not the individual: tapping is therefore not a breach of the individual’s right.] 133 Griswold v. Connecticut, 318 U.S. 479 (1965). 46 Navigating the Dataverse: Privacy, Technology, Human Rights
Griswold set the pattern for one branch of interpretation of the right to privacy in Supreme Court case law, which in the main focused on “decisional privacy” (Roessler’s first category). Privacy appears as the right to choose, particularly in matters concerning the body. 134 A second branch of case law commences with a ruling on wiretapping (Katz v. United States), which overturned Olmstead. An FBI wiretap on a public telephone booth was found illegal because (to paraphrase Justice Marshall Harlan in language that has since become standard) in the circumstances in question a person has a “reasonable expectation of privacy”. 135 This remains the test for privacy in cases involving surveillance; but its most consistent effect (the “public” phone booth in this particular case notwithstanding) has been to distinguish spatially between “public” and “private” (i.e., the home). 136 The implication appears to be that an American’s home is his castle, but the decision is clearly rooted in “local privacy” (Roessler’s second category), rather than “informational privacy” (her third). An American’s home is his castle, but the decision is clearly rooted in “local privacy” rather than “informational privacy”. The right to privacy in these cases derives from the Fourth Amendment to the US Constitution, which says: The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no Warrants shall issue, but upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized. The amendment explicitly addresses property (hence the near-hypnotic return, in the case law, to the privacy of the home), personal security and legality (warrants, “affirmations”, specific instructions). The amendment includes a number of terms of art that have provided excellent fodder for legal wrangling. What is a “reasonable” search or seizure? What evidence indicates a “probable” cause to justify undertaking one? The “reasonable expectation of privacy” is, of course, similarly open to subjective interpretation. 137 As Daniel Solove points out, “reasonable expectation” sounds like a moving target. 138 As surveillance becomes normalised, for example, expectations shift. We know our online presence leaves a significant data-trail, but also that the full extent and content of this data-trail is not known to us. Can we expect it not to be known to 134 Landmark cases include Loving v. Virginia, 388 U.S. 1 (1967); Stanley v. Georgia, 394 U.S. 557 (1969); Roe v. Wade, 410, U.S. 113 (1973); Lawrence v. Texas, 539, U.S. 558 (2003). 135 Katz v. United States, 389, U.S. 347 (1967), concurring opinion of Justice Harlan. 136 Relevant cases include Kyllo v. United States [thermal-imaging devices to track movements within a house violate privacy: “the Fourth Amendment draws a firm line at the entrance of the house”]; Florida v. Riley [surveillance flights over greenhouses for marijuana plantations do not violate privacy: “as a general proposition, the police may see what may be seen from a public vantage point where [they have] a right to be”]; Dow Chemicals Co. v. United States [telescopic lenses on overflying craft are lawful]; United States v. Karo [a tracking device in a home violates privacy]; United States v. Knotts [following a car on public roads does not violate privacy]. See generally Solove (2009), 110–111; Nissenbaum (2010), 115–116. 137 Antonin Scalia described the Court’s case law as tautological, identifying “reasonable expectations” since Katz, wherever they “bear an uncanny resemblance to the expectations that this Court considers reasonable.” Cited in Solove (2009), 72. 138 Solove (2009), 72. Navigating the Dataverse: Privacy, Technology, Human Rights 47
Page 1 and 2:
Navigating the Dataverse Privacy, T
Page 3 and 4:
Navigating the Dataverse: Privacy,
Page 5 and 6:
Navigating the Dataverse: Privacy,
Page 7 and 8:
Contents Acknowledgements Executive
Page 9:
Acknowledgements This Discussion Pa
Page 12 and 13:
As to the first, the Discussion Pap
Page 14 and 15: contesting profiles so long as cert
Page 16 and 17: ▪ Human rights organisations can
Page 18 and 19: gathering technologies as illustrat
Page 20 and 21: information is extensively gathered
Page 22 and 23: themselves were reproduced in onlin
Page 25 and 26: I. A Short History of Privacy Altho
Page 27 and 28: property. 20 This establishes the l
Page 29 and 30: Privacy must be viewed as an ideal
Page 31 and 32: During the 1980s, partly as a resul
Page 33 and 34: e removed merely by an effort of cl
Page 35 and 36: II. The Privacy-Technology Dynamic
Page 37 and 38: dataverse. Not only are there many
Page 39 and 40: internet, when it arrived shortly t
Page 41 and 42: simply are not - they don’t exist
Page 43 and 44: III. Security and Surveillance Havi
Page 45 and 46: When we talk about state surveillan
Page 47 and 48: stimulation of economic activity. S
Page 49 and 50: Digital Personhood How should we th
Page 51 and 52: Identity is therefore unitary and a
Page 53 and 54: IV. Privacy across Borders: Persona
Page 55 and 56: Where research on communications an
Page 57 and 58: The Expanding Dataverse Biometric I
Page 59 and 60: peoples of most countries, enormous
Page 61 and 62: Such protections do not shield indi
Page 63: V. Law, Privacy, Profiling This Dis
Page 67 and 68: terrorist”. 144 In Posner’s vie
Page 69 and 70: ut it has not so far accepted that
Page 71 and 72: 2. The Court turned to the practice
Page 73 and 74: normative statements on the substan
Page 75 and 76: individual may have multiple profil
Page 77 and 78: Let’s take another example: “ri
Page 79 and 80: VI. Boundaries and Borders We have
Page 81 and 82: process” to empirical research in
Page 83 and 84: As a result, communicational pruden
Page 85 and 86: Business School: “The amount of p
Page 87 and 88: the domain of international law. In
Page 89 and 90: A U.S. Secret Service liaison poste
Page 91 and 92: examples to the experience of a sho
Page 93 and 94: Conclusion This Discussion Paper ha
Page 95: The rise of contemporary data harve
Page 100: This ICHRP Discussion Paper examine
show all

Navigating the Dataverse: Privacy, Technology ... - The ICHRP

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?