Senate Scrutinizes Privacy Issues of ISP User Tracking

Hugh Pickens writes "As companies collect, use, and disseminate data regarding online users, there is concern that tracking individuals' Internet activity and gathering information from online users violates their expectations of privacy. The Senate Commerce Committee will hold a hearing Wednesday to look at the policy issues, and the hottest topic will be proposed systems by which ISPs can watch users and sell information about their surfing habits to advertising companies. The Center for Democracy and Technology has issued a report suggesting that these systems may violate federal law (PDF). 'Advertising per se is not the evil here,' says Leslie Harris from CDT. 'It's the collection of individuals' information, usually without their knowledge, always without their consent, creation of profiles and the complete inability of people to make choices about that.' On the other side NebuAd, the most active ad-targeting company, says its profiles are interest-based, and not personally identifiable. 'We have designed our entire company to make sure that we stay on the opt-out side of those laws and policies,' says NebuAd CEO Robert Dykes. Charter Communications announced last month that it would suspend a trial of NebuAd due to customer concerns about privacy."

Yeah, and?

[Red Flayer]

'It's the collection of individuals' information, usually without their knowledge, always without their consent, creation of profiles and the complete inability of people to make choices about that.'

Hey, guess what... if a partner in a two-way correspondence chooses to share details of that correspondence, that's their choice (i.e., don't give private info to someone you don't trust). If you choose not to make safe your correspondence from third parties via encryption, that's your problem.

I'm willing to risk some troll or flamebait mods here to make a point:

No correspondence should ever be considered absolutley private. The same tools that allow data aggregation by companies like Google and ISPs give us better access to information and (arguably) a better quality of life. You have to take the bad with the good.

Creation of profiles allow vendors to serve us better. They allow better targeting of ads so we're not bombarded with ads for things we have no interest in (ok, in theory. In practice, this needs further work). They allow people and businesses to target our needs better, so it's easier for me to find what I'm looking for.

As long as we have the ability to anonymize and encrypt our traffic (which isn't a given), I have no problem with profiling. Those who want to opt out can do so easily... and if there is enough demand for it, there will be off-the-shelf tools for joe sixpack to do so.

So my point is this: Allow us to anonymize our traffic. Allow us to encrypt our traffic. Then you can go ahead and profile all you want.

Re:Boiling a frog

[easyTree]

CongressCritters and Snoozators will soon be making a lot of noise about how they are protecting the public from being spied upon, while at the same time making it legal for us to be spied on.

Democracy in action :) - or rather that's what happens when the free market and democracy collide.

We had a similar situation in the UK recently with a company called Phorm. ISP's were entering into secret deals with them to collect our data so that they could modify the html streams returned from sites to inject targeted advertising. i.e. pure evil was afoot :)

http://en.wikipedia.org/wiki/Phorm [wikipedia.org]

Re:---HOW--- are they showing ads?

[QuantumRiff]

Neubud purchases ad space on tons of websites.. when the web page is requested, they check the requesting IP. If its on a network they "service" then they call up the cookie and the profile from the monitoring hardware at the ISP, and instead of displaying a static ad, display one targeted to your surfing habits. Then they give the ISP a chunk of change (or a percentage of ad revenue, not sure), for allowing them to have their monitoring/profiling tools installed at their access points.. The ads don't go "over" other ads, IE, you won't see them on your personal blog.. only on sites where they have already purchased advertising. (at least thats what they claim for now)

Re:---HOW--- are they showing ads?

[Anonymous Coward]

Actually, other articles have stated this is not the case.

NebuAd gets a bunch of various advertising spaces from a bunch of different web sites. Advertisers sign on with them. They act as middlemen, and an advertiser's ad may appear on any of the sites they have a deal with. It's the same as google ads in that sense. The difference is that google reads the page, and shows ads related to the content on that page; nothing personal is collected. NebuAd, on the other hand, partners with ISPs and collects user data. The ads that are displayed are related to your previous activity on other sites, but they only show up in NebuAd spaces; they don't hijack the ad spaces on any old site.

So don't worry, they're not screwing over other businesses, just you.

Re:Yeah, and?

[pin0chet]

There are plenty of highly anonymous VPN/SSL tunneling services available for 10 or 15 bucks a month. No need to take a speed hit or trust an unknown foreign proxy server. -Steganos https://www.steganos.com/us/products/home-office/internet-anonym-vpn/overview/ [steganos.com] -VPNGates http://www.vpngates.com/ [vpngates.com] -SecureIX http://www.secureix.com/ [secureix.com] -Relakks https://www.relakks.com/?cid=gb [relakks.com] -Anonymizer http://www.anonymizer.com/ [anonymizer.com]