Privacy Complaint Against Google's GMail Service 447
CRCates writes "Privacy groups in the UK have filed a complaint against Google over its new Gmail service. Privacy groups said they were concerned about Google's ability to link a user's personal details, supplied in the Gmail registration process, to Web-surfing behaviour through the use of a single cookie for its search and mail services. "
These providers can't just do as they please... (Score:2, Interesting)
YES they can! it's called an eula...
Nobody's forcing you... (Score:5, Interesting)
All of this complaining and bickering for a service that is not yet released...
Re:Tit for Tat (Score:3, Interesting)
I will note, however, that at least in the United States we went ahead and outlawed indentured servitude, even though (a) it was usually entered into voluntarily (b) it often had a net benefit to the indentured party. Still, we felt that the moral and social cost of the "servitude" part was too high to allow individuals to enter into that sort of contract.
Perhaps the privacy advocates are arguing along the same lines here.
I will also note that while Google claims that one of their corporate policies is "don't be evil", they also absolutely refuse to discuss or explain almost any facet of their operations. Just a thought.
sPh
Oh For The Love Of God (Score:3, Interesting)
But I suppose when Google is the only mail provider providing a gig of space, it's no wonder why privacy advocates are jumping up and down.
You can't have your cake and eat it too. Google is a private company. They own the servers and the bandwidth. These privacy advocates can go jump as far as I'm concerned.
Microsoft Exchange? (Score:5, Interesting)
snip
"If a person deletes an email, he should be confident that email is actually deleted," said Maurice Westerling, co-founder of Bits of Freedom, another privacy interest group, based in the Netherlands.
MS Exchange has settings for the email retention period. If you delete something from your mailbox in Outlook, then empty your Trash folder, it's effectively gone from your view and you've no way to retrieve it. It is however stored in Exchange for as long as the administrators wish to hang onto it (and that "deleted" email is, indeed, backed up and restorable).
If you shift-delete an object out of your Inbox, using that wonderful permanent-kill technique that the tech-savvy thinks protects and anonymizes their email... it's stored for the email retention period listed by the sysadmins, is backed up, and is restorable. It looks very dead to
(fyi, the only real way around this is to edit your Outlook client so that you can get the Recover Deleted Items option on every object in your inbox [as opposed to just the Recycle Bin], then habitually view -- and purge -- that information on a schedule that is more frequent than the one used for our backups. That'd work.)
Anyway, the shorter point is, this kind of thing happens. The reason is happens is liability. If a criminal organization is using Google's GMail system for planning a robbery, or if a terrorist group decides they want to attack rail systems in Europe and wants to do so by using random public terminals to sign into email accounts that someone else hosts, it's a problem. If law enforcement comes looking and Google has to say "Oh, sorry - we respect privacy so much that we absolutely and permanently delete all traces of all email the second you touch the delete object!", it will not be a pleasant thing. The investigators will not be happy.
Alternate question; do you really think that your email is permanently gone from Yahoo! and Hotmail?
Do you really think they can't restore to an arbitrary point in time?
Do you think they wouldn't turn that info over to law enforcement in a heartbeat if a court order came down?
Are the rules
I know (Score:2, Interesting)
in spam report. The same spam keeps coming
again and again.
Well, even if they wanted... They'd have to
hire at least the whole population of China.
Or invent a REAL artificial intelligence, which
itself has more value than all our Yahoo mails.
You get what you pay for (Score:4, Interesting)
Re:Don't Like it, Don't Use It (Score:2, Interesting)
Re:One rule for some... (Score:2, Interesting)
I don't think most people would have a problem, as long as it was not useable only from Windows, or only with MSIE, or other lock-in strategy.
Hotmail doesn't work with Opera: I wonder why. Accidental "We cannot possible test with every browser"? Or deliberate "We don't want to encourage browsers other than ours"? Or between "Opera compatability is bottom of the list"? It looks to me as if M$ is trying to use Hotmail as a lever against any competitor. If Google shows a sniff of such an attude, I will criticise it - but not till then.
Re:Not that simple (Score:1, Interesting)
Deal (Score:3, Interesting)
No? Well maybe we could just REGULATE IT NOW BEFORE IT'S A FUCKING PROBLEM THEN.
Sorry, but I am sick to death of this 'well then don't use it then' argument. 'Complaining' has another name, and it's 'telling a company what the consumer wants.' In this case the geek user market wants better privacy, so why do you insist on defending Google?
Obvious (Score:2, Interesting)
How naive would someone have to be to believe that they are simply offering 1gb to anyone and everyone for absolutely nothing in return.
It started as google.com, not google.org
Re:Erase the cookie (Score:4, Interesting)
Doesn't do anything if I voluntarily sign into an account.
Heck, if Slashdot partnered with DoubleClick (and I didn't block ads), it'd be pretty easy to track whatever I do on the Web as well.
Don't use the service.
Doesn't mean it's not a legitimate complaint, though, about the service.
How do you know Yahoo! doesn't read all it's mail?
We don't, though it seems like the whole Yahoo Mail thing is at least as intrusive as Google -- and Yahoo tries to handle all manner of services as well.
I use Google on a "session cookies only" basis, and block ads, which makes it at least somewhat difficult to tie different online personas together.
I do have one (IMHO) legitimate privacy grievance with Google's operation. Google does not let you save preference options in the content of an URL -- language, results size, image content filtering, etc. It is technically possible (and really, pretty easy) to do so, but they prefer to force me to retain a permanent cookie on my system if I wish to use these features (or set the content each time I visit their site). There's a constant nag to give the degree of privacy that I *do* have, which I'm less than thrilled about. I consider search engine cookies pretty much unacceptable based on the sheer amount of data they hand out. You don't have to be searching for how to defraud your employer or for child porn to be uncomfortable with someone having a complete record of everything you're looking for. I view search engines as a tremendous data leak out of companies. Do you Google for things that you're doing research on, or companies that you might be doing business in, or areas/markets that you might be entering? That's sensitive data. What about having a "terrorist keyword red flag list"? Search engines would be an incredibly rich resource for fishing expeditions to find suspicious folks, simply because of the sheer amount of data involved. You think you ever mind wind up in politics? Do you want your opponent to ever be able to dig up the fact that you searched for images of a gay porn actor fifteen years ago? There's an awful lot of very nasty things that can be done with search engine data. Google, on the whole, might be currently playing nice, but that's no guarantee that they will do so in the future, post-IPO, when shareholders are demanding more profits and a partnership with DoubleClick could net Google a loooot of money...
Re:PGP anyone? (Score:5, Interesting)
I got excited about this almost ten years ago. I installed PGP in my email client, made my keyring (or whatever it's called) and sent a few test messages to myself. After a couple of years in which time I never found anyone who even understood the idea, I gave up, never bothered to reinstall when I moved to a new PC.
Re:Microsoft Exchange? (Score:3, Interesting)
With a system like that, you could implement a system where "deleted" chunks get purged or overwritten on some semi-regular basis.
Government-backed blocking of services? (Score:3, Interesting)
I was intrigued by the following statement in the article:
I live in Sweden. I don't know about Germany, but I have never heard of any government-backed agency in Sweden actually blocking access to foreign services for any reason, and in particular not for such a silly reason as sign-up procedures not compliant with Swedish law! If anyone can guess what the article author is referring to here, please let me know.
I have been trying for years to have my employer (a state university) merely consider blocking certain foreign ISPs from pouring junk mail over ourselves, but every suggested policy in that direction has either been rejected with a vague reference to the law prohibiting that, or not seen any response at all. I find it hard to believe that anybody in Swedish public administration would officially approve of blocking third-party traffic, let alone actually do it.
Could be same complaint vs other surveilancegimick (Score:2, Interesting)
Basically between the archived e-mail, the search engine cookies and the social networking engine, there is an excellent, detailed data set.
European privacy law is, for the time being, much stricter than in the U.S. and it would be a good thing to bring the U.S. up to standard. Likewise, some countries are years (238 years) ahead of the U.S., Britain, France and a few others in regards to keeping public records accessible. If the U.S. and the EU had the same public access as Sweden and Finland have written into their constitution, more than a few expensive scandals could have been prevented.
Re:NSA (Score:2, Interesting)
For me it's more a case of - these days, once the Govt., or the intelligence and security services, have this monitoring infrastructure, it goes something like this:-
Year 1: The tax and benefits departments in the Govt will ask the spooks to start sharing. The police will ask for access also.
Year 2: The entire Government - health, pensions, local govt. etc., education - will all want it. Schools will use it to vet new employees.
Year 3: Security-conscious corporations like banks and airlines will demand access.
Year 4: The whole damn lot will be available on a couple of DVDs at your friendly local market... at least if you live in Moscow or Jakarta.
Year 5: "Check Other Peoples' Email" toolbar appears on Google. The dying embers of the snailmail service are suddenly brought back to life by the return to fashion of the traditional love letter.
Re:Deal (Score:5, Interesting)
Why do you get to decide unilaterally when the deal is off?
"Defending Google" here is defending the right to enter into agreements. You, apparently, want to be protected from your decisions by being able to change the terms of service if you don't like them at a later date and you want the force of law, through regulation, to enforce your preference.
You don't need regulation, you need to be responsible for your decisions.
Your concerns might be valid, I don't know. But, and I know you are sick to death of this, if you feel this way, "DON'T USE IT THEN". That would be a way of 'telling a company what the consumer wants'. But, you don't really want to tell a company what the consumer wants, you want to force the company to provide a service that you want.
Re:Why shouldn't google be able to link data? (Score:3, Interesting)
It's at least as likely. Look at the track record of Google versus the track record of the Govt. Which one would you rather play poker with?
Re:Not that simple (Score:1, Interesting)
The irony is that this is probably just a caching issue, and no one would have noticed or cared if Google hadn't been so honest about it...
Think about it: things that get "deleted" on HDs don't actually get deleted until you overwrite that sector; why is this such a concern? If anything, I'm more inclined to trust them since they're so forthcoming...