WebProNews

Tag: united kingdom information commissioner’s office

  • Google “Surprised” that UK Privacy Agency Cares About Privacy

    Google “Surprised” that UK Privacy Agency Cares About Privacy

    The Information Commissioner’s Office in the United Kingdom announced last week that it would be re-opening its inquiry of Google and its payload data-collecting Street View cars. In a letter sent to Google’s Global Privacy Counsel, Peter Fleischer, ICO Head of Enforcement Steve Eckersley cited recent revelations that arose from the Federal Communication Commission’s investigation of the Street View cars’ spying habits as grounds to revisit the case.

    Today, The Telegraph has obtained and published in full a copy of Fleischer’s reply to the ICO and, unsurprising, Google resorts to the most commonly accepted form of apology in our modern era: the non-apology.

    Fleischer’s lengthy missive to the ICO begins with how “profoundly sorry” the company was about the payload data collection then reminisced about Google’s cooperation with the ICO. However, before individually addressing each of Eckersley’s questions, Fleischer added, “Google is surprised that the ICO has decided to re-open its investigation into this matter,” and proceeded to redirect the ICO with an undue lesson in data storage as well as adherence to the story that Google didn’t know nothin’ about no Street View spying before 2010.

    Fleischer continues to attest that Google doesn’t actually know what is included in the collected data apart from what it supplied the ICO with in 2010 because it hasn’t looked at it. Whether you believe that or not is up to you, but given Google’s bloodlust for consumer information, believing that Google wouldn’t access that data is akin to expecting that a rabid pack of cheetahs wouldn’t run down a zebra coated in bacon grease.

    However, Google did comply with the ICO’s request to supply a copy of the original software design with the reply. Fleischer also included “certificates of destruction in respect of payload data collected in the UK” and closed the letter with the suggestion that the ICO should have no other questions for Google.

    That last part is a dry pill to swallow. I understand that this is legal-speak politesse, leading an investigator into agreeing that, yes, there is nothing more to see here, but that is ingenuine. In all truth, there may be nothing left to see here but it’s hard to take Google at its word because the company has become a masterful escape artist when it comes to directly answering questions. With that history of obfuscation never far behind, Google should leave it to the ICO to decide when the investigation is over.

  • One Man’s Crusade Against Google Street View’s Payload Data Collection [Updated]

    Nobody really knows what kind of information Google obtained when it was collecting payload data as its Street View car drove around the neighborhoods of the world sponging up personal information from people using unsecured wi-fi networks. Speculation abounds about what exactly the Street View cars collected, everything from personal emails, passwords, browsing histories, IP addresses, telephone numbers, full names of users, and even the porno websites some people might frequent. Yesterday, following an investigation by the Federal Communications Commission, the United Kingdom’s Information Commissioner’s Office reopened its probe into Google’s collection of payload data to find out what exact information Google was able to obtain and, perhaps more foreboding, why Google denied knowing about the data collection back in 2010.

    Perhaps emboldened by his government’s decision to reopen its investigation of Google, The Daily Mail‘s David Thomas has declared a one-man battle with the company in order to find out just what information may have been secretly lifted from his online life when the Street View car cruised his way.

    In a spirited op-ed published yesterday in the Mail, Thomas describes how he was working from home at the time he suspects Google may have sopped up some of his personal information, including financial discussions with his agent, confidential medical information, and material related to his writing (he is an author). Thomas is rightfully upset about his information possibly being secretly collected by Google and although he admits that he was naive to believe it was unnecessary to secure his wi-fi network because he lives in the countryside of West Essex, he isn’t about to let Google off the hook.

    Although the ICO has decided to reopen its inquiry into Google, Thomas intends to pursue his own crusade against the mapping service. Citing Britain’s Data Protection Act of 1998, he wrote of his plans to extract from Google what information of his the company may have in its possession.

    The Data Protection Act gives us all the right to demand the information an organisation (whether public body or commercial corporation) holds about us. It’s called a Subject Access Request. It costs between £2 and £10, and a reply must be received within 40 days.

    So I have decided to make my own small stand against the Google monster. I want to know what it knows about me, and what it might have stolen. If the Street View cars stole data from my system, and it hasn’t yet been destroyed, then I want to know what they’ve got.

    And if Google has been passing my personal information on to third-party companies so they can bombard me with advertising, I want to know about that, too.

    I’m in no way a sharp tack when it comes to legal issues, but to my mind the United States doesn’t have a comparable law to the UK’s Data Protect Act. While we yankees might not have the same legal opportunities to see what (if any) information was collected on us over here States-side, if Thomas is successful in obtaining any of the information that Google may have obtained from him it could provide some insights of how big this trove of payload data really is.

    On the other hand, while Google’s practice of collecting user information with their secret wardriving Street View cars is shady any way you look at it, the potential for Google to scrape off tons of sensitive information from each person on each wi-fi network the Street View cars pass is questionable. For one, if the average speed limit is 25 miles per hour in these neighborhoods where the Street View car travels, that’s an extremely narrow window to collect any information off of any random wi-fi-connected devices. Two, the reach of most home wi-fi networks doesn’t really produce the most powerful connection; if I walk out to my driveway I lose the connection from my apartment that’s less than 60 feet away. Trying to connect from a car in the middle of my street? Not really feasible.

    Still, Google got something from wardriving software, we just don’t know what. Google was contacted for comment for this article and asked if it had any intention to comply with the ICO’s requests, but Google did not reply.

    Thomas might be escalating this issue further than it deserves to go, or maybe he’s unimpeachably righteous in his effort against Google. There’s no way to tell, and there will not be any way to tell until Google becomes more transparent about the types and depths of information its Google Street View cars collected, which is why Thomas’ determined battle against Google matters.

    Update: A spokesperson with Google replied to my request for comment on the ICO’s investigation:

    We’re happy to answer the ICO’s questions. We have always said that the project leaders did not want and did not use this payload data. Indeed, they never even looked at it.

    While trying to put some distance between itself and the payload data, that doesn’t exactly give any indication about the nature of the payload data.