If nothing else, the leaked Supreme Court draft opinion that would end the right to privacy allowing women to get abortions should serve as a scary wake-up call to companies that have vast stores of user data. Technology companies, including app makers and connected device companies, have a stunning array of information about people housed in their data centers. In many cases, that data is just a subpoena or warrant away from government hands.
In other cases, the data is actively harvested and sold to buyers, ranging from governments to advertisers to academic researchers. When you add connected devices into the mix — where remote access to a device and control of that device is possible — companies might be forced to turn over data and turn against customers.
Without decisive regulations on what data should be considered private, how and who can access data, and clear rules about ownership and rights that ensure a buyer has physical control of a purchased device, technology firms are creating new windows into their users’ lives and then being forced to let the government peer in. In the case of connected devices, they may even let the government open the window.
If you think I’m overstating the potential for damage that could occur as technology firms and the state collide, consider some recent examples:
This is why we need to call for technology companies to hold less data, and to hold it for less time. And when it comes to data such as location data, which can easily identify an individual, we need to apply the various protections and standards associated with Personally Identifiable Information, or PII.
PII is a broad term that is defined not by specific pieces of data, but by how data can be used to “distinguish or trace an individual’s identity, either alone or when combined with other information that is linked or linkable to a specific individual.”
There are several different regulatory frameworks for dealing with PII, so laws that govern how companies use it vary based on industry. But the fact is that location data is PII and that tech companies collecting it should treat it as such. Today it is treated as an asset, sold to companies seeking demographic data or other information.
In the future, tech firms should treat location data as something a consumer can share with third parties, but that those third parties should also respect. So while that would mean we could still enjoy location-based apps, it would also likely mean we’d have to pay for them since they would not be subsidized by data sales.
We also should recognize that even if law enforcement agencies don’t have a legal right to data, currently they can buy it from third parties. So we either need to eliminate that option or create rules around how, exactly, law enforcement can use privately purchased data.
For years, the tech industry has told its users that it only shares its data with law enforcement and the state in exceptional cases. Yet it’s clear that private data brokers are buying data on users from tech companies and selling it to the state, creating a disconnect between legal protections enshrined in the Bill of Rights and the reality of prosecution.
The challenges will only grow as people give more information to more services, and devices collect highly personal information that can be remotely accessed and controlled. Without laws governing data use and collection, tech firms will become complicit in laws such as prosecuting women for having abortions or outing LGBTQIA+ students to their families, which their employees and many of their users might find unfair. And that’s not a fun (or profitable) position for them to be in.
This is the final episode of The Internet of Things Podcast, and to send us…
This article was originally published in my weekly IoT newsletter on Friday August 18, 2023.…
This article was originally published in my weekly IoT newsletter on Friday August 18, 2023.…
Verdigris has raised $10M for smarter buildings: I am so excited by this news, because roughly eight…
Amazon's head of devices, David Limp, plans to retire as part of a wave of executives that…
If you need any more indication that Matter is not going to kill all of…