Press Announcement: World Privacy Forum files comments to DHS regarding the Border Crossing Information System; Some proposed routine uses of the system directly contravene the Privacy Act of 1974

Border Crossing Information System, DHS — The World Privacy Forum submitted public comments today to the Department of Homeland Security regarding its proposed Border Crossing Information System. The BCI system would set up a database of all border crossings via car, rail, air and other means, including collecting identifiable data on the activities of American citizens. Information collected includes biographical and other information such as name, date of birth, gender, a photograph, itinerary information, and the time and location of the border crossing. The WPF comments focus entirely on the proposed Routine Uses of the system. As currently written, the DHS proposal contains some Routine Uses that directly contravene the Privacy Act of 1974 and are illegal. Other Routine Uses are overbroad and vague, and still others contravene guidance from the Office of Management and Budget (OMB). One example of an overbroad Routine Use is Routine Use J, which will allow DHS to release data collected for the Border Crossing Information System for hiring decisions or contract awards. This information may be requested by Federal, state, local, tribal, foreign, or international agencies. Another Routine Use, G, impermissibly duplicates and weakens the Privacy Act’s condition of requirement for notice when information is disclosed in certain circumstances.

Public Comments: August 2008 – Border Crossing Information, System of Records Notice, DHS-2007-0040

The World Privacy Forum filed comments regarding DHS’s proposed Border Crossing Information system of records, finding that many of the Routine Uses proposed for the system were impermissible and illegal under the Privacy Act of 1974. The comments focus on the Routine Uses, rather than the system itself.

Perceptions of privacy by the class of 2012

Privacy and the class of 2012 — Each year Beloit College publishes a “Mindset List” to share incoming college students’ rapidly changing cultural frames of reference with the faculty. For the class of 2012, several privacy-related items made the Mindset List for the first time. The list notes that these students’ frames of privacy references are that “Personal privacy has always been threatened” (#43) and “Employers have always been able to do credit checks on employees” (# 39).

World Privacy Forum Files FTC Complaint About AOL Data Releases

Internet privacy — The World Privacy Forum filed a complaint today with the Federal Trade Commission regarding AOL’s multiple releases of portions of its users’ search query histories. The complaint discusses AOL search query releases from 2004 and 2006. The complaint alleges that the data release was intentional, and due to significant identifiability issues of the data subjects, that the releases are harming some AOL customers, and that AOL customers did not know their search histories would be made available to the public. The World Privacy Forum urges consumers to take precautions when using search engines.

World Privacy Forum Announces IPSC2008 Conference in Tokyo, Japan

IPSC2008 Conference — The World Privacy Forum is co-hosting the first International Privacy and Security Conference 2008 (IPSC2008), to be held in Tokyo, Japan on November 11-12, 2008. Also co-hosting the conference are the Japan-based Institute of Electronics, Information and Communication Engineers (IEICE), Social Implications of Technology and Information Ethics, and the Japan Society of Security Management. This conference brings together Japan’s leading privacy and security experts and scholars as well as experts from the US and the EU.