US Senators pen Act to ban location-based stalking
Watching the watchers
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
Two US senators have filed a new Act called the Location Privacy Protection Act, which would require stricter controls and more transparency for all cellular companies that collect location data.
The Bill, brought by Senator Al Franken and co-sponsored by Senator Richard Blumenthal would make it illegal to divulge location information to any third party, and set penalties for a variety of location offences, including location-based stalking.
A special report commissioned by the Department of Justice in 2009 uncovered that there were 26,000 victims of GPS stalking each year, many of them by cellphone.
Last month Senator Franken held Senate Judiciary hearings on privacy which helped him collect data for this bill and shape its content. Of particular concern were the behavior of Apple and Google, which are said to make location data available to a large number of applications.
Beastly acts
Franken: Right to Privacy
If the bill passes, they will be obliged to tell the user that location data is being held and specifically asked, on each occasion if it is okay to release that data to another company.
Franken says that Apple iPhones and Google Android smartphones automatically send location data from the phone to Apple and Google, even when the users are not using location applications. It has been suggested, and denied by Apple, that in Apple's case users have no way to stop this data collection.
Senator Franken is most concerned that a number of prior US Acts contradict one another, specifically the Cable Act and the Communications Act prohibit companies from freely disclosing customer location. while the Electronic Communications Privacy Act (ECPA) has a clause that allows smartphone companies, app companies, and phone companies to freely share their customer location data without consent.
The ECPA allows location collection when the internet is used on the phone. Franken wants these provisions changed and made explicit.
In April when this issue first broke, Apple put out a letter to satisfy customers that it was not overtly collecting location data and explained that it only collected a map of local hotspots and cell towers so that "if" an Apple customer asked for his or her location, it could then provide it quickly, combining GPS and cell tower triangulation.
We know where you live
But Apple insists that the data held on the iPhone is a small subset of this, and not usable by anyone else and that only an anonymous version of that data ever left the phone, and then it was encrypted. The Senators disagreed and said that they found many Apps which clearly have location data.
Apple continues to insist that it has not offered up this data to applications, which might then offload that data to remote databases, but the senators feel there is enough evidence so show that location privacy is being breached.
The bill calls on the National Institute of Justice to issue a study on the use of location technology in dating violence, stalking and domestic violence and to facilitate the reporting of these crimes to the FBI's Internet Crime Complaint Center.
It also calls on the Attorney General to develop a training curriculum so that law enforcement, courts, and victim advocates can better investigate and prosecute crimes involving the misuse of location data.
The bill will also create criminal penalties for so-called "stalking apps" which knowingly and intentionally disclose geo-location information when there is a potential for domestic violence or stalking to occur.
It also criminalizes knowing and intentional aggregation and sale of the location data of children 10 years old and younger. The bill has the support of a broad coalition of consumer protection and anti-stalking advocacy groups. If such US legislation passes, it is likely to provide a template for wider law-making around the world.
Copyright © 2011, Wireless Watch
Wireless Watch published by Rethink Research, a London-based IT publishing and consulting firm. This weekly newsletter delivers in-depth analysis and market research of mobile and wireless for business. Subscription details are here.
Bootnote
You can see Senator Franken introducing the Location Privacy Protection Act in this YouTube clip.
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
COMMENTS
Location Data
The Cell Towers are "Points of Interest". These can easily be exchanged for other arbitrary Landmarks. The ***user's*** location is not relevant, only the ***user's*** choice of Landmark, which may be on the other side of the world.
e.g.
Washington, DC http://www.rustprivacy.org/2011/phase/washington-dc.html
Canberra ACT, Australia http://www.rustprivacy.org/2011/phase/canberra-au.html
Dublin, Ireland http://www.rustprivacy.org/2011/phase/dublin-ie.html
If you'll excuse the expression, the clock is running out on the Advertising Industry's claim that gadget users do not know their own location.
Bless his heart
from the video: "... our federal laws on this subject are a confusing hodgepoge full of gaps and loopholes..."
Sen. Franken, truer words were never spoken... and equally applicable to any subject.
If interested, [PDF] text is here:
http://franken.senate.gov/files/docs/Location_Privacy_Protection_Act_of_2011_Bill_Text.pdf
Not to be confused with the senate bill from a decade ago which is here;
http://www.techlawjournal.com/cong107/privacy/location/s1164is.asp
"...has a good faith belief..."
Ahh, the phorm/BT defence lives on to fight another day! The excuse of choice for data pimps the world over.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
Data control in the cloud
