Uber’s Fingerprinting Foibles and the Costs of Not Complying with Industry Self-Regulation

No stranger to privacy kerfuffles, Uber is once again in the news for its business practices and invasive use of technology. This time, the headlines are focused on Uber’s intentional circumvention of Apple’s developer rules, which prohibit apps from collecting certain technical identifiers from iPhones. The larger challenge this raises is determining whether Uber’s violation of Apple’s developer terms could or should raise regulatory ire. Sanctions should be tailored to fit the crime, but when it comes to privacy and security mishaps with technology, consumers and their advocates are left in the dark.

Read More

Serious Privacy Risks Lie in the Path of Vehicle Automation

Yesterday, CDT joined four top cryptography and security experts in raising serious privacy concerns with proposed next-generation vehicle-to-vehicle communication standards. We call for this system to be explicitly opt-in or for the design to be significantly reconsidered so as to avoid the problems we identify. There are some promising tools from applied cryptography that could be leveraged to design a system that would impact driver and passenger privacy to a much lesser extent.

Read More

Putting Problems at the Copyright Office in Perspective

Last Monday, an audit report from the Office of the Inspector General at the Library of Congress (LOC) was leaked to the public by Techdirt. The report found that the Copyright Office (USCO) mismanaged efforts to modernize its systems and that the Office failed to notify both the LOC and Congress regarding the scope of the subsequent problems. It is clear that Congress must reevaluate its current approach to copyright reform and pursue measures that will directly address the shortcomings at USCO; CDT believes that Congress should reconsider efforts to curtail Hayden’s authority and instead work with the LOC to implement reforms that will improve the copyright system for rightsholders and users alike.

Read More

German Proposal Threatens Censorship on Wide Array of Online Services

Anticipating federal elections in September, Germany’s Minister of Justice has proposed a new law aimed at limiting the spread of hate speech and “fake news” on social media sites. But the proposal, called the “Social Network Enforcement Bill” or “NetzDG,” goes far beyond a mere encouragement for social media platforms to respond quickly to hoaxes and disinformation campaigns and would create massive incentives for companies to censor a broad range of speech. CDT recommends that the German legislature reject this proposed measure. It clearly impinges on fundamental rights to free expression and due process.

Read More

Data Portability’s Potential and Promise

In collaboration with the Bertelsmann Foundation, CDT is releasing a paper that explores how legal regimes founded on principles of individual control (that is, a person having some say in what happens to their data) have fared in the big data world. We examine legal frameworks in the United States, the European Union, and Germany to understand how their approaches have been challenged by big data. We also shine a light on the public’s view of their own control in big data products and services, and reflect on how these views differ in the US and abroad.

Read More