Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Privacy Businesses United States

Can Privacy Be Big Business? A Wave of Startups Thinks So. (nbcnews.com) 41

California helped create the modern Big Data industry, in which tech companies vacuum up and profit off personal information. Now a new law in the state is creating something like a solution to the loss of privacy. From a report: The California Consumer Privacy Act, which took effect Jan. 1, gives people the right to know what large companies know about them and the right to block the sale of that information to others. In effect, it created a market for privacy expertise and software. A wave of privacy-focused technology startups is offering a variety of services, from personal data scrubbing to business-focused software meant to help companies comply with the law. A brief list of the nearly 300 companies now selling privacy services includes Privacera, Privsee, Privally, Privitar and Privaon. There's DataFleets, DataGrail, DataGravity, Dataguise, DataTrue and Datastream.io. And there's HITRUST, Mighty Trust, OneTrust, trust-hub, TrustArc and The Media Trust, as well as SecureB2B, Securiti.ai, Security Scorecard and Very Good Security. Personal privacy is still under threat from data breaches, data harvesting and elsewhere, but it may also finally be living up to its promise as a profitable business.
This discussion has been archived. No new comments can be posted.

Can Privacy Be Big Business? A Wave of Startups Thinks So.

Comments Filter:
  • These all feel like a fix for symptoms and not the causes.
    • At least we can treat the symptoms now, instead of just slowly bleeding out.
    • by Penguinisto ( 415985 ) on Tuesday February 04, 2020 @03:16PM (#59690576) Journal

      I doubt it even does that.

      The moment you buy something, you have to give up a name (which can be gleaned from your billing info), a physical address, an email addy, and often a phone number. Sure, you can go to outlandish lengths to scrub a lot of that info (pre-paid debit card + burner phone + rented mailbox + quickie gmail thingy), but unless you feel like living as if you're in a witness protection program, odds are good that your information will make it out there to at least one retailer. That retailer in turn bundles and sells your info and poof, there you are, ready to be traded like everyone else. I suspect that only the really massive corps like Amazon won't bother selling your info to anyone else... at least that I'm aware of.

      Think of it like DRM and how well that doesn't work... then realize these folks are basically selling you a means to DRM your info.

      So, unless you end up living like a hermit and buying everything in-person with cash, there's not much these startups can really do to help you stay private (at least that you can't do on your own to an extent). Now if you want to pollute the data and jack the signal-to-noise ratio top the point where no one knows for certain if you are really you, that's a whole different story entirely...

      • Re: (Score:2, Interesting)

        by Anonymous Coward

        I suspect that only the really massive corps like Amazon won't bother selling your info to anyone else... at least that I'm aware of.

        Posting anon rather than run any risk of repercussions.

        I work for a smaller company (Amazon is a competitor that's trying to get into our space heavily these days) that positions itself as the premier company in its industry (I think it is, but that's a whole different conversation). Whenever ownership gets asked, "Do we sell our customers' data?" their response is either a flat out "NO" or, "I cannot possibly imagine a situation where it would be beneficial to do so."

        To elaborate on why I actually trust t

        • Well if the response is "I cannot possibly imagine a situation where it would be beneficial to do so." then your company can't make any money off of it so of course they won't sell it. I fail to see your point. If the response is "We don't because we value our customers privacy" then I would be impressed.

          • You're credulous of words they say, so it doesn't matter what words they say, you're completely screwed.

            Stop trusting the sounds that come out of people's orifices.

            You know when to trust a company isn't selling your data? When they never collected it.

      • by tlhIngan ( 30335 )

        So, unless you end up living like a hermit and buying everything in-person with cash, there's not much these startups can really do to help you stay private (at least that you can't do on your own to an extent). Now if you want to pollute the data and jack the signal-to-noise ratio top the point where no one knows for certain if you are really you, that's a whole different story entirely...

        These companies aren't selling privacy. They're selling privacy expertise - because of all these privacy laws coming up

    • by hey! ( 33014 )

      This is called "Making money not solving problems." It's a thing now. Pharmaceutical companies blockbuster drugs all *manage chronic conditions*. If you could cure that condition, the revenue dries up.

      • by GuB-42 ( 2483988 )

        This is called "Making money not solving problems." It's a thing now. Pharmaceutical companies blockbuster drugs all *manage chronic conditions*. If you could cure that condition, the revenue dries up.

        I don't believe that "pharmaceutical companies don't want to create cures" idea. For many reasons.
        - A cure can be sold for a lot more money.
        - A cure will destroy the competition. And thanks to the patent that goes with it, the creator will get the profits for the best 20 years.
        - A cure will get more support from governments: priority for clinical trials, healthcare support, ...
        - For non-infectious diseases like cancer, even if you have a cure, people will continue getting sick, it is not like the revenue co

    • by jon3k ( 691256 )
      I feel like they are a component of the solution. Now add in decentralization and the ability to run these applications yourself, even if it is on leased infrastructure, and you've really got something.
  • first they steal your personal information and sell it, then they charge money to scrub it
  • Selling things that don't exist is always big business. Just look at the church...

  • by binarybum ( 468664 ) on Tuesday February 04, 2020 @03:40PM (#59690722) Homepage

    Many of these company monikers sound like new brands of vagina cream.

  • Privacera, Privsee, Privally, Privitar and Privaon. There's DataFleets, DataGrail, DataGravity, Dataguise, DataTrue and Datastream.io. And there's HITRUST, Mighty Trust, OneTrust, trust-hub, TrustArc and The Media Trust, as well as SecureB2B, Securiti.ai, Security Scorecard and Very Good Security

    Any product or service sold as private or secure the safe bet is to always assume the opposite. Just looking at these names I find it impossible to believe they represent actual privacy or security.

  • Lets assume weare at war, thus the tactics of Information Warfare apply. The best tool we have is disinformation. Pollute the data everywhere you go. Problem solved.
  • Would you like to buy it back?

  • by ctilsie242 ( 4841247 ) on Tuesday February 04, 2020 @04:00PM (#59690824)

    Privacy is about the weakest link. It doesn't matter if a company thumps their chest and touts "100% security" in their app when another app or library they are using is happily sending all info out. Every link in the chain must be secured in a provably good manner, not just "just trust us... this crypto library is actually a good one, not something one of us devs cobbled together in a few hours."

    There are companies that sell anti-jailbreaking as privacy. No, we don't want more XBox and PS-whatevers that are pretty much hackproof by the user, but allow remote access. We need devices that do what the owner wants, and not some third party's MBA-laden marketing department who slurps a lot of personal data, then their database gets hacked and that data winds up everywhere. We don't need phones with multiple layers of OS signing and encryption... just to cover the fact that the phone maker is exfilterating data.

    Then come consumers. A lot of them don't give a rat's oingo boingo about privacy, and really don't care to pay the price or suffer some inconvenience. Even though many apps can show where they have been in real time, with that data winding up in the hands of people who might just use that for bad things.

    Enough of the gimmicks. It would be nice to have a neutral organization that doesn't have an axe to grind that can do something similar to UL for privacy and openness. Something that, if the organization did certify a product, it won't suck, is sold securely (as in securely against stuff the user doesn't want to happen, as opposed to anti-jailbreak measures), and is an open device.

    Maybe we can see more products like Librem devices, and fewer IoT "trust us, this is secure... until it isn't and you have to chuck this model and buy our version 2.0 which we pinky promise, security stuff may get addressed."

    • The key there is an "open device". That ain't going to happen. Companies and consumers have already rejected that concept. Companies make more money with walled/closed devices and consumers don't care enough to ask for open devices.

    • Then come consumers. A lot of them don't give a rat's oingo boingo about privacy, and really don't care to pay the price or suffer some inconvenience. Even though many apps can show where they have been in real time, with that data winding up in the hands of people who might just use that for bad things.

      Your average consumer has been indoctrinated for at least the last couple decades that 'sharing is good and right and normal' and 'only Bad People who have things to hide want privacy'. This gets reinforced by people who say things like 'I have nothing to hide therefore I have nothing to fear', and denials to the tune of 'my life is so boring who would want to spy on me?', like they're cult members or automatons. If you tell people you're not on Facebook or Twitter or other so-called 'social media', you're

  • Way to go California! Is that like giving a bunch of people guns then offering services to the rest of us for security?
    • Way to go California! Is that like giving a bunch of people guns then offering services to the rest of us for security?

      No, it's like taking all the guns away, (except for the criminals, whl will *never* relinquish theirs) and *then* offering security services to the newly-unarmed.

      Y'know, what Bloomberg's already doing in Virginia, NH, NM... and more. He's shadow-funding all that. Even here in FL, he's doing it.

    • Nope, it's not like that at all.
  • Privacy isn't something that you have to actively DO. It's a matter of actively NOT doing things (like using Google, Facebook, Amazon, credit cards, etc.).
  • by NaCh0 ( 6124 ) on Tuesday February 04, 2020 @04:28PM (#59690984) Homepage

    People willingly post every private detail of their life to facebook, instagram, snapchat and now tik-tok.

    Cookie policies wrapped in a mile of legalize to resemble a EULA does absolutely nothing to protect your privacy. It doesn't even address the 800lb gorilla in the room that most people only care about privacy in name only, not in their personal behavior.

    • I think it is more of a waste of time because all the data sold and resold is "anonymized" and thus exempt from disclosure requests and resale restrictions. Now, /. readers should know that that anonymization is reversible, but that consideration isn't influencing the way the laws are written. I haven't looked into the details of this California law so I could be wrong about that case.
  • Organisations & individuals can collect information about you only after they have your permission in writing & you can revoke that permission at any time.

    That sounds personal & private, doesn't it? It doesn't turn our personal lives into publicly traded virtual commodities without our permission, oversight, or compensation.

    What all these half-measures reveal is that the US government, along with many other governments, are unwilling to reign in the big tech companies' abuse of their citizens.

  • Just sayin'.
    Having a 'privacy industry' is just a work-around for the real problem; it's like taking an over-the-counter 'cold remedy' when you have a virus, it doesn't kill the virus, it just treats the symptoms. The problem here is that the general publics' 'immune system' has no defense agains the 'virus' that is the pervase collection of data by data-mongering corporations like Facebook and Google, and any 'privacy industry' is just a feel-good treatment to distract everyone from the fact that their pr
  • I think if you perform the appropriate market research, you will find plenty of evidence against the idea that people are willing to do anything for privacy; certainly not pay money for it.

    Good luck to these startups, but they'll all probably burn.

news: gotcha

Working...