On Apr 20, 2017, at 12:44 PM, Aurelie Pols <
" class="">
> wrote:
I'm not sure if you guys saw this: point 17 of the EDPS' opinion on digital content so dumping this here. Hopefully it makes sense
17. There might well be a market for personal data, just like there is, tragically, a market for
live human organs, but that does not mean that we can or should give that market the blessing
of legislation. One cannot monetise and subject a fundamental right to a simple commercial
transaction, even if it is the individual concerned by the data who is a party to the transaction
Good catch! Except for the incentives by the data market actors/data brokers/... what ever you want to call them to bypass any obligations put forward by the GDPR, ranging from internally lack of transparency to interesting engineering solutions to separate unique identifiers from the data, hashing and what ever, as well as lobbying/praying to get legitimate interest into ePrivacy, I see a clash between the US view of data ownership and the European stance that fundamental rights can not be monetized.
Yes. We should also be careful not to be overly broad in our characterizations and thinkings, since there are many in the US, and within US companies, that share the European view (including most of the US folk on this list); and European companies are not off the hook for behaving or acquiescing to norms such as trafficking in live human data organs. That those practices were normalized primarily by US companies is beside the fact that they are morally (and soon legally) indefensible except in terms that reduce people to digital honey-pots.
Also, even within Google, Facebook and Amazon there are many people who are appalled at those norms and want to change them. Apple is already on the individuals’ side to a high degree http://apple.com/privacy, and that helps.
Many here know large global companies that are variously worried and activated by the approach of May 2018, and that much of the conflict between those two views is internal as well as external for those companies. Also, best practices are exactly that, no matter where they take place.
Our challenge here is to show how the individual-side code and terms we develop are going to be good for companies—and to develop reciprocal code that works on the corporate side as well.
Just wanted to mention that, not sure if it's directly useful but felt it should be pointed out.
It’s very useful. Thanks!
Doc
|