Feeds

US Trade Commission to revisit online privacy

Maybe self-regulation isn't so rosy after all

  • alert
  • submit to reddit

SANS - Survey on application security programs

In a slight deviation from its market-forces-are-good-enough mantra, the US Federal Trade Commission has just established what it calls the Federal Trade Commission Advisory Committee on Online Access and Security. The Committee will advise the FTC on information security practices employed by Web sites. The Committee will "[consider] the parameters of reasonable access to personal information and adequate security to protect such information, and [prepare] a written report presenting options for implementation of these fair information practices and the costs and benefits of each option," an FTC press release says. Issues to be tackled include whether the level of access provided by Web sites should vary with the sensitivity of the personal information collected; whether consumers should be provided access to enhancements to personal information (e.g., inferences about their purchasing habits); methods for verifying the identity of individuals seeking access; whether a fee may be charged for access; and whether limits could be placed on the frequency of requests for access, and if so, what those limits should be. The Committee will also consider standards for evaluating the measures taken by Web sites to protect the security of personal information; what might constitute reasonable steps to assure the integrity and accuracy of such information; and what measures should be undertaken to protect such information from unauthorised use or disclosure. The decision to examine a regulatory initiative follows many months of debate within the FTC, during which the option to let business regulate itself has predominated. Much of the FTC's patience with self-regulation has been predicated on the expectation that businesses will look after privacy concerns with some diligence, recognising privacy as a natural and necessary lubricant of e-commerce. Numerous studies have indicated that overall, e-commerce is failing to offer adequate privacy protection to customers and Web site visitors, preferring to do only as much as it is forced to do. With that in mind, the FTC may be preparing to mandate what common sense and enlightened self-interest ought to encourage. ®

3 Big data security analytics techniques

More from The Register

next story
Spanish village called 'Kill the Jews' mulls rebranding exercise
Not exactly attractive to the Israeli tourist demographic
Sleuths find nosy NORKS drones on the Chinternet
UAVs likely to have been made in the Middle Kingdom
Oz bank in comedy Heartbleed blog FAIL
Bank: 'We are now safely patched.' Customers: 'You were using OpenSSL?'
Och aye! It's the Loch Ness Monster – but only Apple fanbois can see it
Fondleslab-friendly beastie's wake spotted... OR WAS IT?
Dorian Nakamoto gets $23,000 payout over Bitcoin invention saga
Maintains he didn't create cryptocurrency, but will join community
Japanese boffin EYES up big bucks with strap-on digi-glasses
AgencyGlass saddles user with creepy OLED display
Forget the beach 'n' boardwalk, check out the Santa Cruz STEVE JOBS FOUNTAIN
Reg reader snaps shot of touching tribute to Apple icon
Happy 40th Playmobil: Reg looks back at small, rude world of our favourite tiny toys
Little men straddle LOHAN, attend tiny G20 Summit... ah, sweet memories...
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.