Feeds

US civil liberties gang questions Obama cookie plan

Fed website 'sea change'

5 things you didn’t know about cloud backup

A proposal to loosen restrictions on the use of tracking cookies by federal government websites should be carefully scrutinized so they don't jeopardize the privacy of people who visit them, groups advocating civil liberties warned Monday.

The American Civil Liberties Union said the proposal, floated July 24 by the White House OMB, or Office of Management and Budget, was a "sea change" that could erode protections that for the past nine years have safeguarded the personal information of millions of people who visit federal websites.

"Without explaining this reversal of policy, the OMB is seeking to allow the mass collection of personal information of every user of a federal government website," Michael Macleod-Ball, the acting director of the ACLU's Washington legislative office, said in a statement. "Until the OMB answers the multitude of questions surrounding this policy shift, we will continue to raise our strenuous objections."

Under current rules, federal agencies are prohibited from using cookies and similar tracking technologies unless there is a "compelling need" and the agency head has approved their use. Under the new rules, the OMB would adopt a three-tier approach that would permit tracking under different circumstances. They include:

  • Single-session technologies, which track users over a single session and do not maintain tracking data over multiple sessions or visits;
  • Multi-session technologies for use in analytics, which track users over multiple sessions purely to gather data to analyze web traffic statistics; and
  • Multi-session technologies for use as persistent identifiers, which track users over multiple visits with the intent of remembering data, settings, or preferences unique to that visitor for purposes beyond what is needed for web analytics.

"The goal of this review is to develop a new policy that allows the Federal Government to continue to protect the privacy of people who visit Federal websites while, at the same time, making these websites more user-friendly, providing better customer service, and allowing for enhanced web analytics," federal CIO Vivek Kundra and Michael Fitzpatrick, associate administrator of the OMB Office of Information and Regulatory Affairs, wrote.

While the use of cookies on most websites has vastly increased over the past nine years, their use on federal websites have remained static, they added.

Two other privacy advocates also weighed in on the proposed changes. In comments (PDF) jointly submitted by the Electronic Frontier Foundation and the Center for Democracy and Technology said any change should include broad disclosures to visitors that include the fact that tracking technologies are being used, the reasons for their use, whether tracking is based on single or multiple visits to the site, and the identities of the third-party companies involved in the tracking.

They also said any information collected that is not relevant to the purpose of the tracking should be discarded as soon as possible.

"Federal agency Web sites will have a key role to play in making government more transparent, accountable and participatory," the groups wrote. "To succeed, the operation and improvement of Federal agency Web sites must be done through the lens of protecting citizen privacy." ®

The essential guide to IT transformation

More from The Register

next story
Britain's housing crisis: What are we going to do about it?
Rent control: Better than bombs at destroying housing
GCHQ protesters stick it to British spooks ... by drinking urine
Activists told NOT to snap pics of staff at the concrete doughnut
Top beak: UK privacy law may be reconsidered because of social media
Rise of Twitter etc creates 'enormous challenges'
What do you mean, I have to POST a PHYSICAL CHEQUE to get my gun licence?
Stop bitching about firearms fees - we need computerisation
Ex US cybersecurity czar guilty in child sex abuse website case
Health and Human Services IT security chief headed online to share vile images
We need less U.S. in our WWW – Euro digital chief Steelie Neelie
EC moves to shift status quo at Internet Governance Forum
Oz biz regulator discovers shared servers in EPIC FACEPALM
'Not aware' that one IP can hold more than one Website
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.