Accepting Guest Blog Posts

I have accepted a position that will not allow me to write in 2016. However, I want to continue to provide information on cyber, intellectual property (IP), social media, security, privacy, and technology law and policy to you all.  So…. I am accepting  submissions from guest bloggers!

Please send me your best cyber, IP and tech law and policy posts. Many of this blog’s followers are entrepreneurs, technophiles, tech novices, bloggers, social media user and those intrigued by tech, so please cater your posts to that audience. Please send posts to thedigitalcounselor@gmail.com. I will notify you if your post is selected.

Thank you for your submission, in advance, and more importantly, THANK YOU FOR READING!

I hope the readers find previous posts and any information others are able to provide in my absence helpful! And I look forward to returning in 2017!!

Will Congress Limit NSA Data Collection?

Do you know when and how the government can access your telephone records? Do you care? Do you worry about your personal privacy? Well, there is major legislation on the horizon that will affect how and when your data is collected and retained.

Image courtesy of cuteomatic.com
Image courtesy of cuteomatic.com

On May 22, 2014, the United States House of Representatives passed bill H.R. 3361, the USA Freedom Act, aimed at limiting the federal government’s ability to collect bulk phone records and also increasing transparency. This bill, supported by the President, received bipartisan support. It restricts the data collected from communications companies by the NSA and other intelligence agencies. One of the goals is to minimize the retention and dissemination of non-public data. The House’s approach to data retention is to have telecoms store the data, to be made available to the government, by request. The bill has no mandated retention period. Finally, the bill also extends certain provisions of the USA Patriot Act, scheduled to expire in 2015.

What will the Senate do? It has been almost a month since they’ve received the bill and it has not yet passed.  Senate Intelligence Committee chair Dianne Feinstein (D-Calif.) said that she wanted to find a way to get the USA Freedom Act (H.R. 3361) passed, though she would prefer that the government, rather than telecom companies, retain the responsibility for storing and analyzing data.

The European Court of Justice recently determined that their data retention law, which is similar to the House’s bill, violates the fundamental rights of citizens. How should this determination play into the U.S.’s data retention law? If its a violation of the fundamental rights–namely privacy–for European citizens, does it violate the fundamental rights of US citizens? How do you want any data collected by your telecom company stored and accessed?  The expiration of portions of the US Patriot Act, as well as the call for data retention, and surveillance reform in the wake of the Snowden leaks raise a lot of questions. Now is the time for the US government to pass legislation that both protects the privacy of citizens and aids in protecting national security.

Get involved in this debate!

For more information about this issue and how the European Court of Justice’s decision factor’s in the debate, read the article I published,  “Does Personal Privacy Matter? Developments in EU and US Data Retention Law” in the American Bar Association’s Information Security & Privacy News.

Make Sure to Change Your Privacy Settings on Facebook…Again!

Tired of changing your privacy settings on Facebook? Well… Sorry!  You need to do it again…  If you do not want Facebook to track your browsing both on and off their site and track the apps you use, change your settings!

argyllfreepress.com
argyllfreepress.com
Today, Facebook announced that it would begin targeting advertisements to users based on the websites they visit and apps that they use. In a blog post, the company explained that users can opt out of the web browser-based tracking through an online ad industry program and can also opt out of the app-based tracking through their smartphones’ privacy controls.

If you have to see ads while using Facebook, they might as well cater to your specific needs and likes, right? It’s seemingly harmless and most people do not have anything to hide. However, this kind of customization is a double edge sword. On one side you have the benefit of a tailored experience while on the other hand your private searching is being consumed by entities like Facebook. A more specific and more troubling concern is that children as young as 13 will be monitored… Are your teens thinking about the ramifications of having Facebook watch their every movement? Congress is promising to monitor the implications of this new advertising system and so should you. Your privacy and the privacy of your family is important! 

Privacy is the price of convenience. Decide which one matters to you most.

35 Senators Ask Tough Questions Re: Internet Transition

Today, 35 U.S. Senators lead by Senators John Thune (R-S.D.) and Marco Rubio (R-Fla.) sent a letter to the National Telecommunications and Information Administration (NTIA), seeking clarification regarding the recent announcement that NTIA intends to relinquish responsibility of the Internet Assigned Numbers Authority (IANA) functions to the global multistakeholder community. Read my previous post “US to Relinquish Control of the Internet” for more background on this issue.

The letter express the group’s “[strong] support [of] the existing bottom-up, multistakeholder approach to Internet governance.” The letter highlights bipartisan support of S. Con. Res 50 in 2012 that reinforces “the U.S. government’s opposition to ceding control of the Internet to the International Telecommunications Union (ITU), an arm of the United Nations, or to any other governmental body.”

The group cautions: “We must not allow the IANA functions to fall under the control of repressive governments, America’s enemies, or unaccountable bureaucrats.”  To read the full text of the letter click here.

As you read it I encourage you to think about a few things: 

Are these the right questions?

These are fair questions and likely on the minds of those invested in the outcome of this transition. ICANN & NTIA have pledged transparency throughout this process, therefore, I look forward to their candid responses. None of the questions are out of line or beyond the scope of Congressional oversight.

What other questions should we ask?

The answers to these questions will spark additional questions. However, in my opinion, there are a few other questions the Senators could have posed.

  • What happens if the deadline is not met? Is the US prepared to renew the contract? Is the US prepared for the international backlash if the deadline is not met?
  • Does the structure of an organization like ICANN, that has an entire constituency of comprised of government representatives (GAC),  meet the nongovernmental multistakeholder model? To what extent and how are governments going to be kept out of oversight after the initial launch?
  • Whose interests does NTIA seek to serve or protect by initiating this transition?

What other questions do you have?

How hard do you want Congress to push on this issue?

Transparency will help alleviate fears and misconceptions. I think the answers to these questions and those likely to follow with help shape the dialogue as this process continues. Gaining the confidence of the American people and other inter nation critics will serve to make this a smoother process for NTIA and ICANN. I encourage Congress to pursue the answers to these questions and then decisions can be made about how to proceed.

This issue has a long way to go before we can develop a definitive perspective on the positive or negative effect this will have on the future of the Internet.  I will continue to monitor the developments but I encourage you think about what concerns you most and leave your thoughts in the comments.

 

The below are highlights of the questions asked:

  • Please provide us with the Administration’s legal views and analysis on whether the United States Government can transition the IANA functions to another entity without an Act of Congress. 
  • Please explain why it is in our national interest to transition the IANA functions to the “global multistakeholder community.” 
  • Why does the Administration believe now is the appropriate time to begin the transition, and what was the specific circumstance or development that led the Administration to decide to begin the transition now?
  • What steps will NTIA take to ensure the process to develop a transition plan for the IANA functions is open and transparent?
  • Will NTIA actively participate in the global multistakeholder process to develop a transition plan for the IANA functions, or will the Administration leave the process entirely in the hands of ICANN?
  • What specific options are available to NTIA to prevent [a government or inter-governmental solution] from happening?
  • How can the Administration guarantee the multistakeholder organization that succeeds NTIA will not subsequently transfer the IANA functions to a government or intergovernmental organization in the future, or that such successor organization will not eventually fall under the undue influence of other governments?
  • How did NTIA determine that ICANN is the appropriate entity to lead the transition process, and how will NTIA ensure that ICANN does not inappropriately control or influence the process for its own self-interest? 
  • Does NTIA believe ICANN currently is sufficiently transparent and accountable in its activities, or should ICANN adopt additional transparency and accountability requirements as part of the IANA transition? 
  • Is it realistic to expect that an acceptable transition plan can be developed before the IANA functions contract expires on September 30, 2015?  Is there another example of a similar global stakeholder transition plan being developed and approved in just 18 months? 
  • How will NTIA ultimately decide whether a proposed transition plan for IANA, developed by global stakeholders, is acceptable?  What factors will NTIA use to determine if such a proposal supports and enhances the multistakeholder model; maintains the security, stability, and resiliency of the Internet Domain Name System; meets the needs and expectation of the global customers and partners of the IANA services; and maintains the openness of the Internet? 
  • Will NTIA also take into account American values and interests in evaluating a proposed transition plan?  How? 

US to Relinquish Control of the Internet?

On Friday, the U.S. Commerce Department’s National Telecommunications and Information Administration (NTIA) announced it is giving up control of a system that directs Internet traffic and Web addresses. As a result, Internet Corporation for Assigned Names and Numbers (ICANN), the nonprofit organization charged with managing the Internet, is tasked to convene global stakeholders to develop a proposal to transition the current role played by NTIA in the coordination of the Internet’s domain name system (DNS). This announcement came as a surprise to many but a coalition of nations has been calling for the US to relinquish control of the Internet for at least the last nine months. Politically this takes the US out of the line of fire but practically what does this do for the culture of the Internet?

Why is this important to you? Because it may change the Internet as you know it….

What exactly was the US Doing?

NTIA is the Executive Branch agency that advises the President on telecommunications and information policy issues. NTIA’s programs and policymaking focus largely on expanding broadband Internet access and adoption in America. NTIA controls the DNS which essentially converts the web addresses (URLs) we type in to the search bar into the correct IP address to retrieve the website you requested. Whether you are accessing a Web site or sending e-mail, your computer uses DNS to look up the domain name you’re trying to access. This system is essential to the functionality and security of the Internet.

If not the US, then who?
This contract to control DNS has allowed the U.S. government to exert what some claim is too much influence over the Internet. technology that plays such a pivotal role in society and the economy. So if not the US, then who with the world feel comfortable wielding that power and influence?

There’s a meeting, ICANN 49, March 23 in Singapore and the future of the Internet is at the top of the agenda.

According to Lawrence Strickling, assistant secretary at the Commerce Department, “[The department] will not accept a proposal that replaces the NTIA’s role with a government-led or intergovernmental solution.” Does that leave ICANN or a similar organization to maintain the DNS?

Why should you care?
Because this could mean a very different Internet…

While companies like Verizon applaud the moveITIF and other organizations have argued before that U.S. government oversight has played an essential role in maintaining the security, stability, and openness of the Internet and in ensuring that ICANN satisfies its responsibilities in effectively managing the Internet’s DNS. Without the U.S. government’s presence some lawmakers and members of the tech industry have expressed concern that relinquishing control of IANA will open up the Internet to threats from other governments that seek to censor it.  This could mean a very different Internet.

Are their concerns justified? No one really knows right now but what we can surmise is that the Internet is in for some changes in the years to follow the change of control. Many countries have dealt with privacy and censorship in ways different from that of the US. How will ICANN deal with these conflicting views democratically and ensure Internet users from all economies and sovereign nations will be represented and heard? Will the standards of openness and free flow of information embraced today remain the baseline? Does the “global multistakeholder community” NTIA is referring to exist? What is the legal jurisdiction for both ICANN and this new multistakeholder body?

There are no answers to these questions because so little is known about whats to come. I look forward to the information and ideas that flow from the ICANN meeting next week.  The questions need to be among those at the top of the list.

Do Not Track Me… But Cater to Me

We have all become accustomed to having our technology cater to most of our needs in very personal way. However, we all desire to retain a certain amount of privacy.  For example, our cellphones track our every move and click while occasionally make calls – and yet we would be lost without the maps and ability to request anything from “Siri.” Our cable boxes may bring our favorite shows and movies but they also report back to providers all of your family’s television viewing habits.  We all appreciate the convenience that customization provides however that means a loss of privacy….

Why Are We Worried?
The latest buzz word is the The Internet of Things (IoT). What is that? “The Internet of Things” refers to the concept that the Internet is no longer just a global network for people to communicate with one another using computers, but it is also a platform for devices to communicate electronically with the world around them. The result is a global “network of physical objects that contain embedded technology to communicate or interact with people, things, and the external environment. It includes everything from traffic sensors to refrigerators, thermostats, medical devices, and wristwatches that can track or sense the environment and use the data they collect to provide a benefit, or transmit the data to a central repository for analysis, or both.”

This network of objects enables providers of goods and services to use your personal behavior to profile and evaluate your activities and habits.  The Internet of Things will result in increased data collection, amplifying the importance of simplifying choices and giving control to individuals with real-time notices. Transparency will facilitate consumer understanding of the collection, use and sharing of personal data. However, there is a real danger of data being used in unexpected ways. The Internet of Things has created a potential perfect storm of four major information policy concerns: online safety, privacy, security, and intellectual property issues. The goal is to determine what “reasonable” expectations regarding data usage should be, and then manage consumer expectations accordingly. Measures ensuring the network’s resilience to attacks, data authentication, access control and client privacy need to be established.  An ideal framework would consider the underlying technology and involve collaboration on an international scale.

The need to balance reasonable activity on the Internet and use of The Internet of Things with responsible privacy protections is exponentially increasing. This balance is extremely important because the last thing we want is to stifle innovation by over legislating this area.

Laws to Watch
At least 14 states have proposed legislation on the 2014 docket that is intended to increase privacy protection for consumers and limit both government and private sector surveillance via the Internet of Things. At the federal level, several bills are already making their way through Congress.

State
AB370, an amendment to the California Online Privacy Protection Act of 2003 (“CalOPPA”). CalOPPA requires owners of commercial websites and online service providers (“operators”) to conspicuously post a privacy policy. The privacy policy must disclose to consumers, among other things, the categories of personally identifiable information (PII), such as name, hone address, email address, social security number,  the operator collects and with whom the operator shares such information. Operators affected by CalOPPA include website operators and, as interpreted by the California Office of Attorney General, operators of software and mobile apps that transmit and collect PII online.

Federal 
The Black Box Privacy Protection Act is a bill in front of Congress that prohibits the sale of automobiles equipped with event data recorders-unless the consumer can control the recording of information. Additionally, the data collected would belong to the vehicle owner.

The We are Watching You Act is a bill in front of Congress that requires the operator of a video service (such as a DVR or Xbox) to display the message “We are watching you” as part of the programming provided to the consumer prior to the device is collecting visual or auditory information from the viewing area. This is not likely to pass but its a sign of legislation to come.

The Federal Trade Commission (FTC) has this phenomenon on its radar, it hosted an all-day workshop entitled, “Internet of Things: Privacy and Security in a Connected World in November. The FTC has also released a number of reports and guidelines that direct business on how to protect consumer privacy.

International 
With Internet Governance on the forefront of international discussion, international “Internet of Things” legislation is not the priority and likely to be left up to each country to decipher. International collaboration on issues like this early is one out come I hope comes from these Internet Governance talks…. but we’re a long way out from that happening.

The examples listed are a narrow sampling of privacy legislation designed to protect users from unwanted intrusions. Most notably, states have passed a number of laws protecting privacy rights in recent years.

Conclusion
The Internet of Things will bring tremendous new benefits to consumers but we must balance the need for consumer privacy. State, federal and international regulators must work to restrict government and private-sector collection and control of the data IoT will create. In the meantime, make sure you are aware of the information you provide through your IoT. Explore privacy settings and read privacy policies if you are concerned about sharing too much data with providers. Know what your priorities are as it relates to customization and privacy. If you value convenience and do not mind a prying eye or two, if it means a personalized user experience, share your data freely. However, if you value preserving your privacy be proactive about doing so until lawmakers can find the appropriate balance. Do not shun technology just educate yourself.

Security Risks & the Healthcare Roll Out

Anticipation of the healthcare roll-out tomorrow, October 1, 2013, has sparked heated debate and concern over costs, employer rescission of benefits, and questions about the Health Insurance Marketplace. One question, raised by the FTC and other stakeholders, remains to be fully addressed: What security measures will be put in place to protect Marketplace consumers from identity theft?

The new Health Insurance Marketplace allows you to fill out an application and see all the health plans available in your area. While all insurance plans are offered by private companies, the Marketplace is run by either your state or the federal government. As designed, consumers create an account online or over the phone with a “navigator.”  Under the Affordable Care Act (ACA), the government is training additional customer service professionals to help consumers “navigate” the Health Insurance Marketplace. To create an account, participants must provide their personal data such as household size, income, passport, address, and potentially a social security number for every member of the household that needs coverage. 

What measures are being taken to dispose of information gathered by customer service professionals? What safeguards are in place to prevent identity theft? Scammers are already calling consumers and pretending to be navigators to gather their personal information.  How will consumers know the difference?

​How to protect yourself in the interim:

  • Do not give personal information to cold calls or emails from navigators or others representing themselves as part of the Marketplace.
  • ​If you call-in or seek help in person, ask navigators what the internal policy is on handling your personal information. 
  • Share the least amount of information necessary when shopping for health plans.

For more information about the healthcare roll out visit healthcare.gov

Update October 1, 2013: The government has released the following on avoiding consumer fraud http://oig.hhs.gov/fraud/consumer-alerts/alerts/marketplace.asp

New gTLD Timelines

ICANN
New gTLD timeline

ICANN has released two new timelines for when we can expect the launch of the first new gTLDs (the part of the URL behind the “.” such as “.com” or “.mobi”).

The launch of these new gTLDs will have a lasting and significant effect on the way we use and operate the Internet. This fact is why new gTLDs have yet to launch. The industry is a buzz with the pros and cons of every aspect of this change. The confusion of consumers, protecting intellectual property, domain name approvals, potential monopolies, privacy, and other business concerns are on the forefront.  No interest group wants things to remain the same but with competing interests and priorities carving out new policy has been slower than anticipated.

I encourage consumers to remain aware of this development. This will develop the way we consume online information.   I will continue to write about the developments. Also visit some of my previous posts such as Will You Be Confused When the New gTLDs Launch?  Visit ICANN’s site on new gTLDs for developments.

What are you concerned about? Are you interested in hearing more about the effect this will have on businesses and families?

 

Could a Senate Bill Mean Trouble for the Budget Conscious Fashionista and the “Trickle Down Trend”??

Designers have been vying for a way to protect the creativity and innovation reflected in their collections each season. The recent Louboutin v. YSL case is a great example. However, many designers are not so lucky.

BUT, do we as the consumer want them to be successful??? Don’t we want the looks shown on the runway?  But how many of us can afford them until they’ve been copied and changed slightly to appear at department stores and trendy stores?  Well that might be a new concern for the fashionista on a budget.

On September 20, the Senate Judiciary Committee approved Senator Chuck Schumer’s Innovative Design Protection Act., (the “IDPA”), sending the law to the Senate floor for consideration.

Fashion:District The Show
Fashion:District The Show (Photo credit: TPWP)

The IDPA would allow a fashion design to be protected for 3 years if it includes original elements of an article of clothing or accessory (such as a bag or eyewear), or an original arrangement of elements.  U.S. designers would be able to enforce their rights against a “substantially identical” design.  Will this eliminate the “trickle down trends” we all enjoy (I am copyrighting this term lol)??

While the definitions of these terms still leave a lot of room for interpretation, there are some clear parameters in place.  The provision would not protect colors (though some protection is available under trademark law) or graphics on fabric (though traditional copyright protection is available there).  Partial elements of an article, such as a sleeve, are outside the protection, since the legislation only protects the article as a whole.  Other exemptions are made for items that are the subject of independent creation; for copying of the design for home use; and by carve-outs for retailers, consumers, and third parties such as ISPs and search engines.  The IDPA would not extend protection to anything created prior to the enactment of the law.

The bill has garnered the support of the American Apparel and Footwear Association and the Council of Fashion Designers of America, but the California Fashion Association is still opposed to the initiative.  But how do you feel? I am extremely conflicted. As an attorney and a business woman I understand and support the desire to reward and promote innovation by providing protections for those spending their time and using their talents to create new items. However, as a fashionista and consumer I wonder how the industry will adapt. The “new hot thing” each season is just that because traces of it appear in most if not all new collections for the season. So that leads me to believe (or maybe I’m just hoping) that this will not be used as much as we fear or at least won’t be successful enough to deter or hinder the trickle down trend. It will really be beneficial to that stand out item that breaks the mold. Is three years too long to wait for its cheaper sister?

Fashionistas there is hope! We may not have to worry about how this will play out and affect our wardrobes just yet… Congress is busy and time is running short! Federal spending, revenues, the deficit and the national debt are presumably the issues which will garner the limited time and attention likely to be available between now and the end of the session.

Lets watch this one…

Let me know what you think!