Data privacy via the WTO?
Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I’d be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
Dear Aram, I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108). Karolina Mojzesowicz from the European Commission stated that “Convention [108] was the source, the mother of the European EU data protection rules” and that it “was and will remain the key compass in the European and global privacy legal landscape” Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org> on behalf of Aram Sinnreich <aram@american.edu> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I’d be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/) _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Dear Aram,Congrats for the important initiative.Though, I agree with Ansgar that the WTO would not be a suitable and fair organization to deal with this challenge. I believe most of us from Latin America would also agree with my perspective. Best regards.RohmFederal University of Rio de Janeiro Enviado do Yahoo Mail no Android <div>Em sáb, 25 25e ago 25e 2018 às 9:44, Ansgar Koene</div><div><Ansgar.Koene@nottingham.ac.uk> escreveu:</div> I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108). Karolina Mojzesowicz from the European Commission stated that “Convention [108] was the source, the mother of the European EU data protection rules” and that it “was and will remain the key compass in the European and global privacy legal landscape” Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org> on behalf of Aram Sinnreich <aram@american.edu> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I’d be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/) _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/
Thanks for this discussion This is interesting: Article 8 – Additional safeguards for the data subject Any person shall be enabled: ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file; How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don’t know where to start looking? Best, Sonia From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO? Dear Aram, I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108). Karolina Mojzesowicz from the European Commission stated that “Convention [108] was the source, the mother of the European EU data protection rules” and that it “was and will remain the key compass in the European and global privacy legal landscape” Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I’d be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/) _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/
Hi Sonia, in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? Thanks for this discussion This is interesting: Article 8 – Additional safeguards for the data subject Any person shall be enabled: ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file; How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don’t know where to start looking? Best, Sonia From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO? Dear Aram, I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108). Karolina Mojzesowicz from the European Commission stated that “Convention [108] was the source, the mother of the European EU data protection rules” and that it “was and will remain the key compass in the European and global privacy legal landscape” Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I’d be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/) _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc. It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights.... From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk>; Aram Sinnreich <aram@american.edu>; air-l@listserv.aoir.org <air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Hi Sonia, in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Thanks for this discussion This is interesting: Article 8 - Additional safeguards for the data subject Any person shall be enabled: ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file; How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking? Best, Sonia From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO? Dear Aram, I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108). Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape" Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! http://cmsimpact.org/data-security/policy-briefing-note-an-international-app... Thanks! - Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/) _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk>; Aram Sinnreich <aram@american.edu>; air-l@listserv.aoir.org <air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
http://cmsimpact.org/data-security/policy-briefing-note-an-international-app...
Thanks!
- Aram Sinnreich (http://aram.sinnreich.com)
Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/)
Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ [University of Central Lancashire 1828 - 2018] Please consider the environment before printing
Which is why we need to move away from the fantasy that notice and consent provides sufficient protections for people and instead accept that, as with things like food safety, there needs to be pro-active oversight by watchdog organizations. Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk> Sent: Sunday, August 26, 2018 6:38:21 PM To: Livingstone,S Cc: Ansgar Koene; air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk>; Aram Sinnreich <aram@american.edu>; air-l@listserv.aoir.org <air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
http://cmsimpact.org/data-security/policy-briefing-note-an-international-app...
Thanks!
- Aram Sinnreich (http://aram.sinnreich.com)
Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/)
Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ [University of Central Lancashire 1828 - 2018] Please consider the environment before printing
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Yes... I don’t think the general populace are anywhere near understanding how digital choices could affect us now and more-so in the future. Thoughts on a public awareness campaign? I’m not sure GDPR actually touched the sides for those on the periphery of direct implementation. On 26 Aug 2018, at 20:05, Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> wrote: Which is why we need to move away from the fantasy that notice and consent provides sufficient protections for people and instead accept that, as with things like food safety, there needs to be pro-active oversight by watchdog organizations. Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk<mailto:AMLTaylor@uclan.ac.uk>> Sent: Sunday, August 26, 2018 6:38:21 PM To: Livingstone,S Cc: Ansgar Koene; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk><mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
http://cmsimpact.org/data-security/policy-briefing-note-an-international-app...
Thanks!
- Aram Sinnreich (http://aram.sinnreich.com)
Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/)
Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ [University of Central Lancashire 1828 - 2018] Please consider the environment before printing
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Yes a public awareness campaign would be good, but it would have to be something that people really notice. Something like a day of full media coverage with easy to use tools to help people find out about the data that is held about them and the way it has had an effect on the services they have received. People need to see a direct personal impact. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk> Sent: Sunday, August 26, 2018 11:54:07 PM To: Ansgar Koene Cc: Livingstone,S; air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? Yes... I don’t think the general populace are anywhere near understanding how digital choices could affect us now and more-so in the future. Thoughts on a public awareness campaign? I’m not sure GDPR actually touched the sides for those on the periphery of direct implementation. On 26 Aug 2018, at 20:05, Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> wrote: Which is why we need to move away from the fantasy that notice and consent provides sufficient protections for people and instead accept that, as with things like food safety, there needs to be pro-active oversight by watchdog organizations. Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk<mailto:AMLTaylor@uclan.ac.uk>> Sent: Sunday, August 26, 2018 6:38:21 PM To: Livingstone,S Cc: Ansgar Koene; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk><mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
http://cmsimpact.org/data-security/policy-briefing-note-an-international-app...
Thanks!
- Aram Sinnreich (http://aram.sinnreich.com)
Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/)
Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ [University of Central Lancashire 1828 - 2018] Please consider the environment before printing
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
It was interesting to watch how Cambridge Analytical raised awareness, although understandings as they relate to the individual seemed to vary - like many things what it all meant/means was only accessible to a percentage. I’m not convinced that those who have the power to drive an awareness campaign on the scale required forward fully understand either. It would be a bit of a leveller for the dominant platforms and a shot across the bow to those engaged in unethical practices. It would also be helpful for addresses some of the more dominant myths - such as those you regularly challenge Sonia Amanda On 27 Aug 2018, at 00:10, Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> wrote: Yes a public awareness campaign would be good, but it would have to be something that people really notice. Something like a day of full media coverage with easy to use tools to help people find out about the data that is held about them and the way it has had an effect on the services they have received. People need to see a direct personal impact. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk<mailto:AMLTaylor@uclan.ac.uk>> Sent: Sunday, August 26, 2018 11:54:07 PM To: Ansgar Koene Cc: Livingstone,S; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Yes... I don’t think the general populace are anywhere near understanding how digital choices could affect us now and more-so in the future. Thoughts on a public awareness campaign? I’m not sure GDPR actually touched the sides for those on the periphery of direct implementation. On 26 Aug 2018, at 20:05, Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk>> wrote: Which is why we need to move away from the fantasy that notice and consent provides sufficient protections for people and instead accept that, as with things like food safety, there needs to be pro-active oversight by watchdog organizations. Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Amanda M L Taylor <AMLTaylor@uclan.ac.uk<mailto:AMLTaylor@uclan.ac.uk>> Sent: Sunday, August 26, 2018 6:38:21 PM To: Livingstone,S Cc: Ansgar Koene; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk><mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/108).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://www.coe.int/en/web/portal/home/] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
http://cmsimpact.org/data-security/policy-briefing-note-an-international-app...
Thanks!
- Aram Sinnreich (http://aram.sinnreich.com)
Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/)
Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ [University of Central Lancashire 1828 - 2018] Please consider the environment before printing
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Hi All, This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space. Best, Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk<mailto:AMLTaylor@uclan.ac.uk>> wrote: Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value. Amanda On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>> wrote: Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc. It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights.... From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO? Hi Sonia, in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90%2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi%2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject%2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zzc9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO? Thanks for this discussion This is interesting: Article 8 - Additional safeguards for the data subject Any person shall be enabled: ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file; How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking? Best, Sonia From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk><mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>>, "air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" <air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO? Dear Aram, I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this. As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation. Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency. When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int%2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions%2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6zbibi5Tk%3D&reserved=0). Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape" Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108. Note that the Council of Europe [https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int%2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others. As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay. Best wishes, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90%2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi%2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject%2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zzc9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO? Fellow AoIRers, Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO. This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts! https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an-international-approach-to-data-privacy%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0 Thanks! - Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Faram.sinnreich.com&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So%2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0) Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) Author (https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0) _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk%3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir.org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU%2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0 Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS%2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk%3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir.org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU%2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0 Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS%2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law. _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk%3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir.org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU%2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0 Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS%2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk%3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir.org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU%2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0 Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS%2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society. The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ... On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene < Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk <mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
Thanks for this interesting points. This is a thought provoking thread. I'm interested in the role of the WTO regarding data administration and e-commerce (I started doing my thesis on this subject). Anyone knows more about it that can point me to relevant research? El lun., 27 ago. 2018 7:51, Deborah Lupton <deborah.lupton@gmail.com> escribió:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene < Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk <mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University ( https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165
4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&
reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
Hi, this isn't exactly about data administration, but rather about ecommerce negotiations relating to transparency of algorithmic services. Thought it might still be of interest. The information is from an NGO that monitors these negotiations. Cheers, Ansgar Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations http://unbias.wp.horizon.ac.uk/ http://casma.wp.horizon.ac.uk/ http://www.horizon.ac.uk/ https://standards.ieee.org/develop/project/7003.html https://sites.google.com/site/arkoene/ ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org> on behalf of Adriana Foronda <adrianabelenforonda@gmail.com> Sent: Monday, August 27, 2018 4:52:53 PM To: deborah.lupton@gmail.com Cc: air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? Thanks for this interesting points. This is a thought provoking thread. I'm interested in the role of the WTO regarding data administration and e-commerce (I started doing my thesis on this subject). Anyone knows more about it that can point me to relevant research? El lun., 27 ago. 2018 7:51, Deborah Lupton <deborah.lupton@gmail.com> escribió:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene < Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk <mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University ( https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165
4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&
reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/ This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
Thank you for sharing your projects Deborah and Jennifer. I am just writing up a research consultancy where we interviewed youth/parents and teachers in 5 EU countries about current and emerging changes in technology. The overall sense in terms of questions about data protection is that some people are paying more attention since Cambridge Analytica (at least those who come to focus groups, which is obviously not necessarily representative!), although the language of ‘data’ and ‘privacy’ seems very unevenly spread. Moreover, even people who are aware of data collection seem more or less OK with it as long as it is ‘useful’ (e.g. advertising to them services they want, as opposed to something their spouse looked for or unrelated content). A few people found it ‘creepy’ but not to the extent that they cared that much about it or would stop using services because of it. This is only a small project and not something we can draw big conclusions from but is interesting. Ultimately, for the moment I don’t think there is a clear conversation about/rationale for why people should care about data collection/data privacy. Yes there is a movement to make this more of a focus of legislation but even I, as a media researcher, remain a little woolly as to what the consequences at the individual level are for my data being collected - let alone from a collective/equity perspective. Until the consequences are made more transparent to people I think any demand for changing data collection practices will have to come from researchers/advocates/government rather than expecting that it will come from ‘the public.’ Alicia Dr Alicia Blum-Ross www.parenting.digital <http://blogs.lse.ac.uk/parenting4digitalfuture/> www.makeyproject.eu <http://makeyproject.eu/> @aliciablumross <https://twitter.com/aliciablumross?lang=en>
On Aug 27, 2018, at 4:50 AM, Deborah Lupton <deborah.lupton@gmail.com> wrote:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene < Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk <mailto:Ansgar.Koene@nottingham.ac.uk>> Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
I am finding very similar attitudes and practices here in Australia, even soon after the Cambridge Analytica scandal. Most Australians have not yet been directly adversely affected by secondary use of their personal data in material ways, at least to their knowledge. They are not very concerned about it, therefore. On Tue, Aug 28, 2018 at 5:44 AM, Alicia BR <alicialorna@gmail.com> wrote:
Thank you for sharing your projects Deborah and Jennifer. I am just writing up a research consultancy where we interviewed youth/parents and teachers in 5 EU countries about current and emerging changes in technology. The overall sense in terms of questions about data protection is that some people are paying more attention since Cambridge Analytica (at least those who come to focus groups, which is obviously not necessarily representative!), although the language of ‘data’ and ‘privacy’ seems very unevenly spread. Moreover, even people who are aware of data collection seem more or less OK with it as long as it is ‘useful’ (e.g. advertising to them services they want, as opposed to something their spouse looked for or unrelated content). A few people found it ‘creepy’ but not to the extent that they cared that much about it or would stop using services because of it.
This is only a small project and not something we can draw big conclusions from but is interesting.
Ultimately, for the moment I don’t think there is a clear conversation about/rationale for *why* people should care about data collection/data privacy. Yes there is a movement to make this more of a focus of legislation but even I, as a media researcher, remain a little woolly as to what the consequences at the individual level are for my data being collected - let alone from a collective/equity perspective. Until the consequences are made more transparent to people I think any demand for changing data collection practices will have to come from researchers/advocates/government rather than expecting that it will come from ‘the public.’
Alicia
Dr Alicia Blum-Ross www.parenting.digital <http://blogs.lse.ac.uk/parenting4digitalfuture/> www.makeyproject.eu <http://makeyproject.eu/> @aliciablumross <https://twitter.com/aliciablumross?lang=en>
On Aug 27, 2018, at 4:50 AM, Deborah Lupton <deborah.lupton@gmail.com> wrote:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk <AMLTaylor@uclan.ac.uk>>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk <Ansgar.Koene@nottingham.ac.uk>] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk <S.Livingstone@lse.ac.uk>>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu <aram@american.edu>>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <
Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk
<mailto:Ansgar.Koene@nottingham.ac.uk>>
Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url=
http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
Hi all, Regarding data privacy and the WTO, here are some papers by legal scholars who argue trade is not a great place for privacy negotations. From a European perspective, privacy protections will degrade when being placed within free trade frameworks. https://policyreview.info/articles/news/why-trade-not-place-eu-negotiate-pri... by Margot Kaminski http://www.ivir.nl/publicaties/download/1807 [opens PDF], 'Trade and Privacy: Complicated Bedfellows? How to achieve data protection-proof free trade agreements' by my colleagues Kristina Irion, Svetlana Yakovleva, and Marija Bartl. https://www.ivir.nl/publicaties/download/Irion_Yakovleva-2016-The-best-of-bo... [opens PDF, also available via the journal European Data Protection Law Review] 'The Best of Both Worlds? Free Trade in Services and EU Law on Privacy and Data Protection' by Kristina Irion and Svetlana Yakovleva Best, Sarah Sarah Eskens, LLM PhD Candidate Institute for Information Law (IViR) University of Amsterdam s.j.eskens@uva.nl +31 (0)20 525 7382 Visiting address Roeterseiland Campus, building A, room 5.06 Nieuwe Achtergracht 166 1018 WV Amsterdam Postal address University of Amsterdam Institute for Information Law P.O. Box 15514 1001 NA Amsterdam www.ivir.nl | www.saraheskens.eu | @SarahEskens -----Original Message----- From: Air-L [mailto:air-l-bounces@listserv.aoir.org] On Behalf Of Deborah Lupton Sent: dinsdag 28 augustus 2018 00:18 To: Alicia BR Cc: air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? I am finding very similar attitudes and practices here in Australia, even soon after the Cambridge Analytica scandal. Most Australians have not yet been directly adversely affected by secondary use of their personal data in material ways, at least to their knowledge. They are not very concerned about it, therefore. On Tue, Aug 28, 2018 at 5:44 AM, Alicia BR <alicialorna@gmail.com> wrote:
Thank you for sharing your projects Deborah and Jennifer. I am just writing up a research consultancy where we interviewed youth/parents and teachers in 5 EU countries about current and emerging changes in technology. The overall sense in terms of questions about data protection is that some people are paying more attention since Cambridge Analytica (at least those who come to focus groups, which is obviously not necessarily representative!), although the language of ‘data’ and ‘privacy’ seems very unevenly spread. Moreover, even people who are aware of data collection seem more or less OK with it as long as it is ‘useful’ (e.g. advertising to them services they want, as opposed to something their spouse looked for or unrelated content). A few people found it ‘creepy’ but not to the extent that they cared that much about it or would stop using services because of it.
This is only a small project and not something we can draw big conclusions from but is interesting.
Ultimately, for the moment I don’t think there is a clear conversation about/rationale for *why* people should care about data collection/data privacy. Yes there is a movement to make this more of a focus of legislation but even I, as a media researcher, remain a little woolly as to what the consequences at the individual level are for my data being collected - let alone from a collective/equity perspective. Until the consequences are made more transparent to people I think any demand for changing data collection practices will have to come from researchers/advocates/government rather than expecting that it will come from ‘the public.’
Alicia
Dr Alicia Blum-Ross www.parenting.digital <http://blogs.lse.ac.uk/parenting4digitalfuture/> www.makeyproject.eu <http://makeyproject.eu/> @aliciablumross <https://twitter.com/aliciablumross?lang=en>
On Aug 27, 2018, at 4:50 AM, Deborah Lupton <deborah.lupton@gmail.com> wrote:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk <AMLTaylor@uclan.ac.uk>>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk <Ansgar.Koene@nottingham.ac.uk>] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk <S.Livingstone@lse.ac.uk>>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu <aram@american.edu>>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <
Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk
<mailto:Ansgar.Koene@nottingham.ac.uk>>
Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KSi% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url=
http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/
Thank you to everyone who has responded to this thread. I value and admire the level of passion and expertise in this community. As I suspected, this “modest proposal” was the tip of an iceberg that goes very deep. While many of you raise concerns about the WTO as the proper venue, for a variety of excellent reasons (e.g. bias against the global south, lowest common denominator politics, questions about whether data is/should be a trade issue), I’m still not aware of any alternative venue that has the same power to make functional trade relations contingent on adherence to a minimum threshold of enforcement. I’ll keep reading, though! As to the issues surrounding public awareness and agency, yes, I agree, that’s a hugely important dimension of this challenge. My own survey work has shown that there are hidden justice and equity issues buried in this concern, as well — namely, that while nearly every subset of the population shares the same general level of privacy concern, those that have actualy taken some action (e.g. montioring or adjusting their privacy settings on data capitalism websites) tend to be those who are more socially empowered, such as younger adult internet users and the better educated. See the embedded screenshot from a recent talk I gave on this subject for actual crosstab data. Glad to share more. — Aram Sinnreich (http://aram.sinnreich.com) Associate Professor Chair, Communication Studies American University (http://www.american.edu/soc/) School of Communication (http://www.american.edu/soc/) Author (http://j.mp/sinnreich) | Musician (https://dubistry.bandcamp.com/)
Really interesting discussion, all, and thanks. If I may just add that one in three internet users worldwide is a child, and it's important to include children in the research and in the regulatory discussion (as Amanda Third and I argued here http://eprints.lse.ac.uk/68759/ ) I recently wrote about children's data and digital literacy in relation to the GDPR in case that's of interest http://www.iicom.org/intermedia/intermedia-july-2018/children-a-special-case... and will continue to research this topic http://www.lse.ac.uk/media-and-communications/research/research-projects/chi... all the best, Sonia Professor Sonia Livingstone, DPhil, FBA, FAcSS, FBPS, FRSA, OBE Dept. of Media and Communications, London School of Economics and Political Science Room TW2 7.01, Houghton Street, London WC2A 2AE UK Web & bio: www.sonialivingstone.net Blog: www.parenting.digital Twitter: @Livingstone_S Global Kids Online: www.globalkidsonline.net Open access publications: http://eprints.lse.ac.uk/view/lseauthor/Livingstone,_Sonia.default.html New book: The Class: Living and learning in the digital age Children’s rights in the digital age: New Media & Society special issue -----Original Message----- From: Air-L [mailto:air-l-bounces@listserv.aoir.org] On Behalf Of Deborah Lupton Sent: 27 August 2018 23:18 To: Alicia BR <alicialorna@gmail.com> Cc: air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO? I am finding very similar attitudes and practices here in Australia, even soon after the Cambridge Analytica scandal. Most Australians have not yet been directly adversely affected by secondary use of their personal data in material ways, at least to their knowledge. They are not very concerned about it, therefore. On Tue, Aug 28, 2018 at 5:44 AM, Alicia BR <alicialorna@gmail.com> wrote:
Thank you for sharing your projects Deborah and Jennifer. I am just writing up a research consultancy where we interviewed youth/parents and teachers in 5 EU countries about current and emerging changes in technology. The overall sense in terms of questions about data protection is that some people are paying more attention since Cambridge Analytica (at least those who come to focus groups, which is obviously not necessarily representative!), although the language of ‘data’ and ‘privacy’ seems very unevenly spread. Moreover, even people who are aware of data collection seem more or less OK with it as long as it is ‘useful’ (e.g. advertising to them services they want, as opposed to something their spouse looked for or unrelated content). A few people found it ‘creepy’ but not to the extent that they cared that much about it or would stop using services because of it.
This is only a small project and not something we can draw big conclusions from but is interesting.
Ultimately, for the moment I don’t think there is a clear conversation about/rationale for *why* people should care about data collection/data privacy. Yes there is a movement to make this more of a focus of legislation but even I, as a media researcher, remain a little woolly as to what the consequences at the individual level are for my data being collected - let alone from a collective/equity perspective. Until the consequences are made more transparent to people I think any demand for changing data collection practices will have to come from researchers/advocates/government rather than expecting that it will come from ‘the public.’
Alicia
Dr Alicia Blum-Ross www.parenting.digital <http://blogs.lse.ac.uk/parenting4digitalfuture/> www.makeyproject.eu <http://makeyproject.eu/> @aliciablumross <https://twitter.com/aliciablumross?lang=en>
On Aug 27, 2018, at 4:50 AM, Deborah Lupton <deborah.lupton@gmail.com> wrote:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk <AMLTaylor@uclan.ac.uk>>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk <Ansgar.Koene@nottingham.ac.uk>] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk <S.Livingstone@lse.ac.uk>>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu <aram@american.edu>>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KS i% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b 7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <
Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk
<mailto:Ansgar.Koene@nottingham.ac.uk>>
Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KS i% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b 7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url=
http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& amp; reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org Join the Association of Internet Researchers: http://www.aoir.org/
Hello all In relation to an early question in this thread about how people will exercise their data rights, colleagues here at Sheffield explored this issue on a project covering 10 countries and 184 organisations, in which expert post-docs attempted to access their data rights. In 20% of cases, it was not possible to locate the data controller; in 43%, data was not disclosed; in 56%, no adequate response about data sharing was received. See: - https://www.springer.com/gb/book/9783319475714 - https://www.dhi.ac.uk/san/waysofbeing/data/governance-crone-l'hoiry-2015.pdf . In relation to the 'how-do-people-feel-about-what-happens-to-their-data' question, despite the projects shared in this thread and others emerging elsewhere, there is still a huge absence of knowledge about this which has been produced through methodologically rigorous empirical research, in my view. Here are some things I (& others) have said on the topic: - Kennedy, H. (2018) ‘Living with data: aligning data studies and data activism through a focus on everyday experiences of datafiction’, *Krisis: journal for contemporary philosophy, *http://krisis.eu/living-with-data/. - Kennedy, H., Elgesem, D. and Miguel, C. (2015) ‘On fairness: user perspectives on social media data mining,’ *Convergence*, DOI: 10.1177/1354856515592507. Best wishes Helen On Wed, 29 Aug 2018 at 09:45, Livingstone,S <S.Livingstone@lse.ac.uk> wrote:
Really interesting discussion, all, and thanks. If I may just add that one in three internet users worldwide is a child, and it's important to include children in the research and in the regulatory discussion (as Amanda Third and I argued here http://eprints.lse.ac.uk/68759/ )
I recently wrote about children's data and digital literacy in relation to the GDPR in case that's of interest
http://www.iicom.org/intermedia/intermedia-july-2018/children-a-special-case...
and will continue to research this topic
http://www.lse.ac.uk/media-and-communications/research/research-projects/chi...
all the best, Sonia
Professor Sonia Livingstone, DPhil, FBA, FAcSS, FBPS, FRSA, OBE Dept. of Media and Communications, London School of Economics and Political Science Room TW2 7.01, Houghton Street, London WC2A 2AE UK Web & bio: www.sonialivingstone.net Blog: www.parenting.digital Twitter: @Livingstone_S Global Kids Online: www.globalkidsonline.net Open access publications: http://eprints.lse.ac.uk/view/lseauthor/Livingstone,_Sonia.default.html New book: The Class: Living and learning in the digital age Children’s rights in the digital age: New Media & Society special issue
-----Original Message----- From: Air-L [mailto:air-l-bounces@listserv.aoir.org] On Behalf Of Deborah Lupton Sent: 27 August 2018 23:18 To: Alicia BR <alicialorna@gmail.com> Cc: air-l@listserv.aoir.org Subject: Re: [Air-L] Data privacy via the WTO?
I am finding very similar attitudes and practices here in Australia, even soon after the Cambridge Analytica scandal. Most Australians have not yet been directly adversely affected by secondary use of their personal data in material ways, at least to their knowledge. They are not very concerned about it, therefore.
On Tue, Aug 28, 2018 at 5:44 AM, Alicia BR <alicialorna@gmail.com> wrote:
Thank you for sharing your projects Deborah and Jennifer. I am just writing up a research consultancy where we interviewed youth/parents and teachers in 5 EU countries about current and emerging changes in technology. The overall sense in terms of questions about data protection is that some people are paying more attention since Cambridge Analytica (at least those who come to focus groups, which is obviously not necessarily representative!), although the language of ‘data’ and ‘privacy’ seems very unevenly spread. Moreover, even people who are aware of data collection seem more or less OK with it as long as it is ‘useful’ (e.g. advertising to them services they want, as opposed to something their spouse looked for or unrelated content). A few people found it ‘creepy’ but not to the extent that they cared that much about it or would stop using services because of it.
This is only a small project and not something we can draw big conclusions from but is interesting.
Ultimately, for the moment I don’t think there is a clear conversation about/rationale for *why* people should care about data collection/data privacy. Yes there is a movement to make this more of a focus of legislation but even I, as a media researcher, remain a little woolly as to what the consequences at the individual level are for my data being collected - let alone from a collective/equity perspective. Until the consequences are made more transparent to people I think any demand for changing data collection practices will have to come from researchers/advocates/government rather than expecting that it will come from ‘the public.’
Alicia
Dr Alicia Blum-Ross www.parenting.digital <http://blogs.lse.ac.uk/parenting4digitalfuture/> www.makeyproject.eu <http://makeyproject.eu/> @aliciablumross <https://twitter.com/aliciablumross?lang=en>
On Aug 27, 2018, at 4:50 AM, Deborah Lupton <deborah.lupton@gmail.com> wrote:
Interesting to see what you are doing, Jennifer. I have two current projects on people's understandings and responses to personal data on the go at the moment, both of which will contribute to my book-in-progress, provisionally titled 'Data Selves' (to be published by Polity), which will also involve quite a lot of social theory, building on my recent article in Big Data & Society.
The first project, 'Data Personas', asks people to respond to the concept of 'data persona', including imagining how much this persona is similar to or different from them, and how it will change in the future. The second project, "Personal Data Feelings', involves the story completion method, using four different story 'stubs' involving personal data privacy issues. There's some really interesting insights coming out of both ...
On Mon, Aug 27, 2018 at 8:12 PM, Pybus, Jennifer via Air-L < air-l@listserv.aoir.org> wrote:
Hi All,
This is a really important thread. We have been researching public awareness of mobile data generation since 2013 and have found a range of awareness levels. But to generalise, people still seem to favour convenience, despite the spike in awareness from FB, Cambridge Analytics, etc. We developed tools like the Mobile Miner app, for ethically harvesting mobile data for research and collective use. I am leading a new AHRC project that will further develop those tools for greater public impact and access. We will be working with the Tactical Tech Collective on our ‘Hacking the Mobile Ecosystem’ tools/workshop suite. This allows people to drag mobile applications onto their laptops for closer examination, allowing them to decompile or break open apps and to inspect their technical elements. Relevant to this thread, we’ve used this to examine personal data flows, for example regarding what kind of data the app is accessing, how often, and with whom it is shared. We will be launching a website soon and tools will be available for all interesting in cultivating creative and critical understanding of the personal data economy. Watch this space.
Best,
Dr. Jennifer Pybus Programme Convenor, BA Digital Culture Lecturer in Digital Culture and Society King’s College London Department of Digital Humanities Strand, Room 3.22 London, WC2R 2LS
On 26 Aug 2018, at 6:39 pm, Amanda M L Taylor <AMLTaylor@uclan.ac.uk <mailto:AMLTaylor@uclan.ac.uk <AMLTaylor@uclan.ac.uk>>> wrote:
Can I just add... does anyone think people in general have moved past the convenience over conscious phase of new technological change? My experience tells me on the whole that most people haven’t really thought about any of this - hence why data trading has made the oil type status in terms of value.
Amanda
On 26 Aug 2018, at 18:28, Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk>> wrote:
Hi and yes, I realise that. If I know who has my data I now have the right to ask them about it. My query was more how a user is to know which service provider to ask? Who, in short, will help me establish the existence of files in the first place? Given the global trade in data and a host of intermediaries, data brokers, etc.
It seems to me that the user now needs to understand not just the apps on their phone but the entire data economy, if they are to exercise their rights....
From: Ansgar Koene [mailto:Ansgar.Koene@nottingham.ac.uk <Ansgar.Koene@nottingham.ac.uk>] Sent: 26 August 2018 16:31 To: Livingstone,S <S.Livingstone@lse.ac.uk<mailto:S.Livingstone@lse.ac.uk <S.Livingstone@lse.ac.uk>>>; Aram Sinnreich <aram@american.edu<mailto:aram@american.edu <aram@american.edu>>>; air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>> < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org <air-l@listserv.aoir.org>>> Subject: Re: [Air-L] Data privacy via the WTO?
Hi Sonia,
in order for a country to be compliant with Convention 108 it must pass national laws that, as a minimum, enact the rights and obligations stated in the convention. In the case of the EU, Article 8 of Convention 108 is included in GDPR via the right to ask service providers what data they hold about you.
Cheers,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KS i% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b 7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Livingstone,S <S.Livingstone@lse.ac.uk<mailto: S.Livingstone@lse.ac.uk><mailto:S.Livingstone@lse.ac.uk>> Sent: Saturday, August 25, 2018 8:02:07 PM To: Ansgar Koene; Aram Sinnreich; air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org> Subject: Re: [Air-L] Data privacy via the WTO?
Thanks for this discussion
This is interesting:
Article 8 - Additional safeguards for the data subject
Any person shall be enabled:
ato establish the existence of an automated personal data file, its main purposes, as well as the identity and habitual residence or principal place of business of the controller of the file;
How do we imagine users can figure out which data brokers and harvesters have their personal data and will the data protection authority really help them if they don't know where to start looking?
Best, Sonia
From: "air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>" < air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@listserv.aoir.org
<mailto:air-l-bounces@listserv.aoir.org>> on behalf of Ansgar Koene <
Ansgar.Koene@nottingham.ac.uk<mailto:Ansgar.Koene@nottingham.ac.uk
<mailto:Ansgar.Koene@nottingham.ac.uk>>
Date: Saturday, 25 August 2018 at 13:43 To: Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto: aram@american.edu>>, "air-l@listserv.aoir.org<mailto: air-l@listserv.aoir.org><mailto:air-l@listserv.aoir.org>" < air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org>> Subject: Re: [Air-L] Data privacy via the WTO?
Dear Aram,
I read your policy brief with interest and I think most people will be able to agree with your analysis that an international approach to data privacy is necessary. I do however have my concerns regarding the WTO as appropriate body for administering this.
As its name suggests, the WTO is tasked with dealing with questions regarding trade. Assigning data privacy as being mandated by WTO pre-supposes a trade based interpretation of data privacy akin to discussions around ownership of personal data or "data as the new oil" etc. When contrasting the US and EU approaches to data privacy, personal data as a trade good is considered as a US perspective. The EU approach at the basis of the GDPR is to consider data privacy from a human rights perspective. This distinction has a lot of consequences, one of which would be a discomfort with having the WTO as administrating organization for international privacy regulation.
Connected to this are concerns that trade negotiations, including those at the WTO, are considered to be lacking in transparency.
When considering international efforts to establish common minimum requirements around data privacy it would be important to also consider the efforts of the Council of Europe, which recently updated Convention 108 (Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data https://emea01.safelinks . protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fconventions%2Ffull-list%2F-%2Fconventions% 2Ftreaty%2F108&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=b0vw6gt%2F5dkNe9j6Cj6ffnqD5LNtSslUpj6z bibi5Tk%3D&reserved=0).
Karolina Mojzesowicz from the European Commission stated that "Convention [108] was the source, the mother of the European EU data protection rules" and that it "was and will remain the key compass in the European and global privacy legal landscape"
Out of the 110 countries in the world with data protection laws (in June 2016) nearly half are already members of Convention 108.
Note that the Council of Europe [https://emea01.safelinks. protection.outlook.com/?url=https%3A%2F%2Fwww.coe.int% 2Fen%2Fweb%2Fportal%2Fhome%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= DithW6DkA643iqWrJKE3RcRMe%2FRL2zfxJven%2FLs1Jbg%3D&reserved=0] has 47 member states, including the 28 EU states bus also Russian Federation, Turkey and others.
As of October 1st 2018 Convention 108 will be in force not only in the 47 countries of the Council of Europe but also in Cabo Verde, Mauritius, Mexico, Senegal, Tunisia and Uruguay.
Best wishes,
Ansgar
Dr. Ansgar Koene Senior Research Fellow: UnBias, CaSMa & Horizon Policy Impact Horizon Digital Economy Research Institute University of Nottingham Working group chair for IEEE Standard on Algorithm Bias Considerations https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Funbias.wp.horizon.ac.uk%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= kdHbPJZloN1FnzL83H2CmOXtN76rUUN3QNDQROx86Mo%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcasma.wp.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=0cT90% 2FkBazD7MBCxNNxw1RzoAlxdYv9ZQRV%2BeSVKgYM%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.horizon.ac.uk%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=tArKcG3DGDPQOseMkq7KS i% 2BK29WEOHEjY2jaIxTlm0A%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fstandards.ieee.org%2Fdevelop%2Fproject% 2F7003.html&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=mdeu6eTyjAhjeesisl3T5mXnjED3Zz c9Tczbk1CaSEs%3D&reserved=0 https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fsites.google.com%2Fsite%2Farkoene%2F& data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b 7a cec9%7C8370cf1416f34c16b83c724071654356%7C0&sdata= aJmh8lX6yczGPPEIOJJ3rxq083kGogdJ0ax3tJPx2ek%3D&reserved=0 ________________________________ From: Air-L <air-l-bounces@listserv.aoir.org<mailto:air-l-bounces@ listserv.aoir.org><mailto:air-l-bounces@listserv.aoir.org>> on behalf of Aram Sinnreich <aram@american.edu<mailto:aram@american.edu><mailto:aram@ american.edu>> Sent: Friday, August 24, 2018 8:39:15 PM To: air-l@listserv.aoir.org<mailto:air-l@listserv.aoir.org><mailto: air-l@listserv.aoir.org> Subject: [Air-L] Data privacy via the WTO?
Fellow AoIRers,
Last week, I published this short policy brief arguing that post-GDPR, data privacy should be administered via an international treaty organization, specifically the WTO.
This is a very preliminary sketch, but I'd be curious to hear feedback from other people interested in data privacy regulation before I build on it. Let me know your thoughts!
https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fcmsimpact.org%2Fdata-security%2Fpolicy-briefing-note-an- international-approach-to-data-privacy%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= nwNBtO08Tsp5OaMCAiYEIM2wkLoorUXfAV%2BfGqxLnFM%3D&reserved=0
Thanks!
- Aram Sinnreich (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faram.sinnreich.com&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=9So% 2Bv8vb53Rlp0AWOuEFWqHEOQMX6tqhrfjbsgDMpbA%3D&reserved=0)
Associate Professor Chair, Communication Studies American University (https://emea01.safelinks.protection.outlook.com/?url=
http%3A%2F%2Fwww.american.edu%2Fsoc%2F&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D&reserved=0) School of Communication (https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Fwww.american.edu% 2Fsoc%2F&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=hiobnStUXaXw%2FDbQyb7CTwDvp%2Fq8sEY7CIvVZmk8jZ4%3D& amp; reserved=0)
Author (https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fj.mp%2Fsinnreich&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= fhJz9yHDVdIprJj4U2aMqkqsUeZ7gSunxgauUR2tzqs%3D&reserved=0) | Musician (https://emea01.safelinks.protection.outlook.com/?url= https%3A%2F%2Fdubistry.bandcamp.com%2F&data=01% 7C01%7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata= TNSNPBZS5LxPDxCFLxdOrM5yklyDxJZP0MtFxuQXMjc%3D&reserved=0)
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please contact the sender and delete the email and attachment.
Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham. Email communications with the University of Nottingham may be monitored where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org><mailto: Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please contact the sender and delete the email and
attachment.
Any views or opinions expressed by the author of this email do not
necessarily reflect the views of the University of Nottingham. Email
communications with the University of Nottingham may be monitored
where permitted by law.
_______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 [University of Central Lancashire 1828 - 2018] Please consider the environment before printing _______________________________________________ The Air-L@listserv.aoir.org<mailto:Air-L@listserv.aoir.org> mailing list is provided by the Association of Internet Researchers https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Faoir.org&data=01%7C01%7Cjennifer.pybus%40kcl.ac.uk% 7Caf72fedc4bf243c4d62508d60b7acec9%7C8370cf1416f34c16b83c72407165 4356%7C0&sdata=wGcL0cCT0HFpwlRD0%2BsMp38S60eX1fqZPkNh0Irilgk% 3D&reserved=0 Subscribe, change options or unsubscribe at: https://emea01.safelinks. protection.outlook.com/?url=http%3A%2F%2Flistserv.aoir. org%2Flistinfo.cgi%2Fair-l-aoir.org&data=01%7C01% 7Cjennifer.pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=rlHDqqbU% 2F92AQz0KCgPxcVVELw92Tc%2FzSk75wWm2dgQ%3D&reserved=0
Join the Association of Internet Researchers: https://emea01.safelinks.protection.outlook.com/?url= http%3A%2F%2Fwww.aoir.org%2F&data=01%7C01%7Cjennifer. pybus%40kcl.ac.uk%7Caf72fedc4bf243c4d62508d60b7acec9% 7C8370cf1416f34c16b83c724071654356%7C0&sdata=dP9ymJ7bnRjSK9uS% 2BwahNXtsO4V3IXjc1mzP3RY1VhQ%3D&reserved=0 _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/ listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
_______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/ _______________________________________________ The Air-L@listserv.aoir.org mailing list is provided by the Association of Internet Researchers http://aoir.org Subscribe, change options or unsubscribe at: http://listserv.aoir.org/listinfo.cgi/air-l-aoir.org
Join the Association of Internet Researchers: http://www.aoir.org/
-- Professor Helen Kennedy, Chair in Digital Society University of Sheffield T: 0114 2226488 E: h.kennedy@sheffield.ac.uk OUT NOW: 'Living with data: aligning data studies and data activism through a focus on everyday experiences of datafication', *Krisis, Journal for Contemporary Philosophy*, 2018, http://krisis.eu.
participants (11)
-
Adriana Foronda -
Alicia BR -
Amanda M L Taylor -
Ansgar Koene -
Aram Sinnreich -
Deborah Lupton -
Eskens, Sarah -
Helen Kennedy -
Livingstone,S -
Pybus, Jennifer -
Ricardo Rohm