Feeds

US Senators pen Act to ban location-based stalking

Watching the watchers

Build a business case: developing custom apps

Two US senators have filed a new Act called the Location Privacy Protection Act, which would require stricter controls and more transparency for all cellular companies that collect location data.

The Bill, brought by Senator Al Franken and co-sponsored by Senator Richard Blumenthal would make it illegal to divulge location information to any third party, and set penalties for a variety of location offences, including location-based stalking.

A special report commissioned by the Department of Justice in 2009 uncovered that there were 26,000 victims of GPS stalking each year, many of them by cellphone.

Last month Senator Franken held Senate Judiciary hearings on privacy which helped him collect data for this bill and shape its content. Of particular concern were the behavior of Apple and Google, which are said to make location data available to a large number of applications.

Beastly acts

Senator Al Franken

Franken: Right to Privacy

If the bill passes, they will be obliged to tell the user that location data is being held and specifically asked, on each occasion if it is okay to release that data to another company.

Franken says that Apple iPhones and Google Android smartphones automatically send location data from the phone to Apple and Google, even when the users are not using location applications. It has been suggested, and denied by Apple, that in Apple's case users have no way to stop this data collection.

Senator Franken is most concerned that a number of prior US Acts contradict one another, specifically the Cable Act and the Communications Act prohibit companies from freely disclosing customer location. while the Electronic Communications Privacy Act (ECPA) has a clause that allows smartphone companies, app companies, and phone companies to freely share their customer location data without consent.

The ECPA allows location collection when the internet is used on the phone. Franken wants these provisions changed and made explicit.

In April when this issue first broke, Apple put out a letter to satisfy customers that it was not overtly collecting location data and explained that it only collected a map of local hotspots and cell towers so that "if" an Apple customer asked for his or her location, it could then provide it quickly, combining GPS and cell tower triangulation.

We know where you live

But Apple insists that the data held on the iPhone is a small subset of this, and not usable by anyone else and that only an anonymous version of that data ever left the phone, and then it was encrypted. The Senators disagreed and said that they found many Apps which clearly have location data.

Apple continues to insist that it has not offered up this data to applications, which might then offload that data to remote databases, but the senators feel there is enough evidence so show that location privacy is being breached.

The bill calls on the National Institute of Justice to issue a study on the use of location technology in dating violence, stalking and domestic violence and to facilitate the reporting of these crimes to the FBI's Internet Crime Complaint Center.

It also calls on the Attorney General to develop a training curriculum so that law enforcement, courts, and victim advocates can better investigate and prosecute crimes involving the misuse of location data.

The bill will also create criminal penalties for so-called "stalking apps" which knowingly and intentionally disclose geo-location information when there is a potential for domestic violence or stalking to occur.

It also criminalizes knowing and intentional aggregation and sale of the location data of children 10 years old and younger. The bill has the support of a broad coalition of consumer protection and anti-stalking advocacy groups. If such US legislation passes, it is likely to provide a template for wider law-making around the world.

Copyright © 2011, Wireless Watch

Wireless Watch published by Rethink Research, a London-based IT publishing and consulting firm. This weekly newsletter delivers in-depth analysis and market research of mobile and wireless for business. Subscription details are here.

Bootnote

You can see Senator Franken introducing the Location Privacy Protection Act in this YouTube clip.

Secure remote control for conventional and virtual desktops

More from The Register

next story
UK fuzz want PINCODES on ALL mobile phones
Met Police calls for mandatory passwords on all new mobes
Canadian ISP Shaw falls over with 'routing' sickness
How sure are you of cloud computing now?
Don't call it throttling: Ericsson 'priority' tech gives users their own slice of spectrum
Actually it's a nifty trick - at least you'll pay for what you get
Three floats Jolla in Hong Kong: Says Sailfish is '3rd option'
Network throws hat into ring with Linux-powered handsets
Fifteen zero days found in hacker router comp romp
Four routers rooted in SOHOpelessly Broken challenge
New Sprint CEO says he will lower axe on staff – but prices come first
'Very disruptive' new rates to be revealed next week
US TV stations bowl sueball directly at FCC's spectrum mega-sale
Broadcasters upset about coverage and cost as they shift up and down the dials
PwC says US biz lagging in Internet of Things
Grass is greener in Asia, say the sensors
Ofcom sees RISE OF THE MACHINE-to-machine cell comms
Study spots 9% growth in IoT m2m mobile data connections
O2 vs Vodafone: Mobe firms grab for GCHQ, gov.uk security badge
No, the spooks love US best, say rival firms
prev story

Whitepapers

5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.