Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
AI Privacy Technology

AI Reads Privacy Policies So You Don't Have To -- and It's Actually Pretty Good (thenextweb.com) 35

An anonymous reader shares a report: Don't you absolutely hate how dense and confusing privacy policies are? Considering they're full of gotchas and intentionally obscure legalese, it's no surprise that hardly anyone bothers to even read them -- we've simply accepted we're giving up our data, and with it, our sense of privacy. But thanks to this new policy-reading AI, things won't have to be this way for much longer. Guard is a recurrent neural network-based app that reads and analyzes privacy terms, so you don't have to. While it can't yet examine policies on request, the AI has rated the privacy terms of a slew of popular services like Netflix, Instagram, Twitter, and Tinder.

What's particularly nifty about Guard is that it not only gives an overall score, but also breaks down the main threats included in privacy policies. It also lists the total number of threats, and looks at past privacy scandals a service has been involved in. Like I already said, Guard has only analyzed the privacy policies of a small batch of popular services, but you can easily suggest new apps for consideration. The app was built by developer Javi Rameerez, who created the software as part of his thesis on AI and natural language processing.

This discussion has been archived. No new comments can be posted.

AI Reads Privacy Policies So You Don't Have To -- and It's Actually Pretty Good

Comments Filter:
  • by burtosis ( 1124179 ) on Wednesday September 25, 2019 @11:15AM (#59234452)
    Will this AI go full meta and read its own privacy policy to you honestly? If not I'm going to suggest it on their site.
  • Since it can't know what I want or prefer or find OK.

    All it can do, is to Apple it: Pick the dumbest common denominator, and expect the user to be that, until he is.

    I don't know why, but that pretty much always turns out to be the most opposite of what I am that is practically possible. And usually far more so, than I could even imagine in my most dystopic predictions.
    I suspect though, that that is actually true for most people. As the maximum overlap of a large set of sets, is bound to be very small. Which

    • by hey! ( 33014 )

      You didn't read the summary. It produces, in addition to a score, a breakdown of threats. You can weight those threats however you like.

  • Here's my open source TOS-interpreting AI:

    10 PRINT "WE OWN ALL YOU DATAZ LOL"
    20 GOTO 10

  • AI after reading all these privacy policies will inevitably conclude that humanity is beyond any redemption, and nuking it from the orbit is the only way to be sure.

  • Unless it tells you it's bullshit. You can't enforce a "privacy policy". First off, the government won't let you. And second, it's impossible to verify they don't harvest data and hide it in the basement.

    • Unless it tells you it's bullshit. You can't enforce a "privacy policy". First off, the government won't let you. And second, it's impossible to verify they don't harvest data and hide it in the basement.

      It's not just privacy but also copyright, like when they tell you that they own every word and photo that you upload to their site and can use them for commercial purposes in perpetuity without your knowledge or consent, and without payment.

  • Um... no. (Score:4, Interesting)

    by Sarten-X ( 1102295 ) on Wednesday September 25, 2019 @11:43AM (#59234714) Homepage

    Don't you absolutely hate how dense and confusing privacy policies are?

    Um... no?

    Considering they're full of gotchas and intentionally obscure legalese

    95% of which is actually necessary in any contract to make it actually stand up under legal scrutiny.

    While it can't yet examine policies on request, the AI has...

    ...performed no differently than any number of pundits writing articles about the latest horrible changes to any given service's policies.

    What's particularly nifty about Guard is that it not only gives an overall score, but also breaks down the main threats included in privacy policies. It also lists the total number of threats, and looks at past privacy scandals a service has been involved in.

    Great. Now we've turned legal contracts into a game. It's a score to be manipulated like any other. Perhaps this one company only shares your data with one subsidiary. That looks great, unless you realize that it's that company that sells your data to anybody. Any particular gaming mechanism will work until the developers notice, or until the developers hear about a "scandal". Not a lawsuit or change in legislation, but a public scandal fueled by a media frenzy and a popularity contest.

    In short, your legal advice will be driven not by law, but by who can manipulate the media the best.

  • For years I have wanted to start a non-profit that provides a web site where you can look up EULAs and TOSs to see, in a uniform manner, what they state. I really wanted it to have a "jerky license of the month" that would highlight bad licenses. But the hard part is getting a pro-bono lawyer to review them all. The software license analyzer might make this possible! It looks like Guard does almost exactly what I wanted

    • What do you need a lawyer for? Did you not learn to read?

      • by suutar ( 1860506 )

        Are you under the impression that the legal meaning of words is typically the same as the meaning in general English conversation?

      • by MobyDisk ( 75490 )

        What do you need a lawyer for?

        I recommend against a web site giving legal advice with no input from a lawyer.

        Did you not learn to read?

        I'm blind you insensitive clod! Those screen readers are terrible at reading licenses!

  • Well above average at spotting privacy friendliness

  • It can't do it on the fly.

    Who is to say an individual didn't break it down?

    And it is a limited list.
  • Great - It reads Netflix , Apple TV, and Amazon Prime Streaming policies. What if they all say "we totally sell everything and do background credit checks on you monthly" and I don't like it?! No TV for me!?

    These EULAs and Privacy policies are written for The Company. Not for the consumer. You accept them or don't use the service. A Very binary choice. The entry onto the internet for everyone is walled by the very companies offering the services, who also wrote the policy.

    The consumer is not prot

    • Well, actually that is not true at all. You can "strike out" their terms & conditions and replace them with your own, and the same with their "privacy policy". And then you offer them money and make acceptance of the money and provision of the service acceptance of the terms of the modified policies. Then, if they take your money they have agreed to the "shrink wrap" conditions you attached to that act. And you have proof that they accepted your terms -- they took your money.

      Is not the bidirectional

    • by tlhIngan ( 30335 )

      Great - It reads Netflix , Apple TV, and Amazon Prime Streaming policies. What if they all say "we totally sell everything and do background credit checks on you monthly" and I don't like it?! No TV for me!?

      These EULAs and Privacy policies are written for The Company. Not for the consumer. You accept them or don't use the service. A Very binary choice. The entry onto the internet for everyone is walled by the very companies offering the services, who also wrote the policy.

      What did you think privacy policies

  • Good news! I've run updated the Privacy Policy through the symbolic analyzer and it condensed from 10 pages to less than half a page.

    Expectations of consumer privacy: None!
    Data to be sold to third parties: Anything we can get our hands on!

  • Everybody knows EULAs and "privacy" policies essentially require you to surrender all your rights to everything, and sacrifice your firstborn if you have more than one child, in order to use the product or service.

    No need to read them: just assume whichever company is behind the product is hell-bent on shafting you any which way they can and take adequate protections to curb their appetite for data they shouldn't have when using their product/service.

  • This is why it's nice to see a top-heavy regulation like CCPA come through once and again. Instead of BS privacy policies, we'll soon have a required site/page on every website to automatically delete our stuff. (Source: I'm working on such things now.)
  • So instead of passing laws to require policies to be written in such a way that they be understood by most people, we're now using A.I. to summarize in plain english what the policies contain.

    • by Blue23 ( 197186 )

      So instead of passing laws to require policies to be written in such a way that they be understood by most people, we're now using A.I. to summarize in plain english what the policies contain.

      So you are saying the developer had the ability to unilaterally change the laws in every country?

      Yes, there may be a better solution, but that does not mean that working towards solutions in your grasp is a bad thing. If you only accept 100% perfect you'll never improve.

      Take your username to heart - they did something which is a step in the right direction and within their ability. Celebrate that, don't dismiss their efforts because it's not the sweeping solution you want.

  • I, for one, welcome our new AI overlords (Big Brother) who will read all the privacy (exfiltration) policies and decide how much privacy I will have (none) and how much data the advertising (social credit score) bots will slurp (all of it).

  • ... created the software as part of his thesis on AI and natural language processing... Natural language? In a privacy policy? Flawed thesis.

"For the love of phlegm...a stupid wall of death rays. How tacky can ya get?" - Post Brothers comics

Working...