Category: human rights

Transparent Lives: Surveillance in Canada

The New Transparency project is coming to an end, and we are launching our major final report, Transparent Lives: Surveillance in Canada / Vivre à nu: La surveillance au Canada, in Ottawa on Thursday 8th May (which is also my birthday!). The report is being published as a book by Athabasca University Press, so it is available in all formats including a free-t0-download PDF. We want as many people in Canada (and elsewhere) to read it as possible.

The launch will be covered by the Canadian press and was already blogged in the Ottawa Citizen a few days ago.

A website with resources and summaries will be here very soon, and there is also a promotional video / trailer here in Youtube.

 

Hot Air on the Surveillance Industry from the UK

Privacy International has produced a much-needed survey of the state of the surveillance industry, following its other excellent report on the use of development aid to push surveillance technologies on developing countries. The British government’s response, voiced by the Chair of the Parliamentary Committee on Arms Export Controls, Sir John Stanley,  has been a typically limp one, largely concerned with the possibility of such systems being sold to ‘authoritarian regimes’ yet blustered and talked of ‘grey areas’ when it came to Britain’s responsibility for this trade.

But this is all way too little too late. I warned of the danger of the increased technological capabilities and decreasing costs of ‘surveillance-in-a-box’ systems as far back as 2008 (see my post here which refers to that). Instead of taking horizon-scanning and pre-emptive action to limit this, Britain, the USA and many other states have encouraged this trade with state aid – as they have with military and security industries more broadly – and, not least, encouraged the use of surveillance on a global scale themselves. Their own extensive breaches of human rights through programs like PRISM and TEMPEST give them no real moral high ground to talk about what authoritarian regimes might do, when they are already pursuing the same actions.

How online companies can protect privacy and free speech

QR_logoThere have been a lot of stories about online services breaching privacy, losing user’s data, being hacked, being to willing to give into state requests for information and much more. But not so much on how companies might provide a positive service that works, whilst respecting privacy, free speech and other fundamental rights. But now ACLU has issued a helpful guide. Clearly, it’s designed for business rather than being a critique of businesses and their practices, and as such is hardly a manual for revolution, but it will be interesting to see who takes notice… and who doesn’t.

War on Terror corrupts US justice

On January 1st this year, US President Obama signed into law the National Defense Authorization Act (NDAA) that, amongst other many other provisions, allows for the US military to indefinitely detain without trial anyone suspected of terrorists acts inside the United States and, the same for anyone captured in battle wherever it is in the world. Even the UK’s provisions, which were widely criticised, were nothing like this, indeed the argument was not about indefinite detention at all, but simply over how many days someone suspected of terrorism should be allowed to be detained without trial: 14 or 28. That’s some way short of indefinite.

Of course, the infinitely compromising and slippery Obama is trying to have his cake and eat by promising that he will not actually allow this power to be used except in strict accordance with the constitution. That may provide some temporary relief for US citizens accused of terrorism, at least and until a more gung-ho President is elected or Obama gives in to demands that he must use it – something military sources are looking forward to, it seems. However the provisions on the treatment of foreign captives effectively provide a legal footing in domestic law for the extrajudicial actions of former President Bush’s establishment of Guantanemo Bay and the associated global network of extraordinary rendition and torture / interogation sites. They undoubtedly contravene the Geneva Conventions (see 75 UNTS 135, for example)and several other aspects of International Law, notably the International Covenant on Civil and Political Rights.

But, this is far from the only current assault on the rights of those who remain innocent in law of any criminal act in the USA. In New York, for example, the New York Police Department in conjunction with the CIA was last year revealed as operating a secret surveillance program against Muslims, titled ‘Ancestries of Interest’. It is unlikely to be the only such program. Like Obama’s indefinite detention provision, this is a perversion of the constitutional rights of US citizens. US police forces from the FBI downwards are not generally permitted to use undercover agents without there being some kind of specific allegation or exisiting evidence of crime. Essentially, this makes a whole community subject to categorical suspicion and permanent infiltration and investigation. It seems that every level of policing and justice in the USA from investigation to trial to sentencing has been indelibly stained by the War on Terror.

But this has all happened several times before of course, and happily not everyone has forgotten their history. Now black Christian pastors who remember the FBI/NSA COINTELPRO operations of the 1960s against black radical and civil rights groups,  are reportedly joining with Islamic groups in opposing the NYPD’s racist and islamophobic surveillance program. Along with the challenges being mounted to Obama’s new law by ACLU and others, there are signs that Obama is no longer being given the benefit of the doubt by many of the groups who supported him first time around. How successful any of these moves will be is anyone’s guess but solidarity that moves beyond American Islamic groups having to defend themselves against the howling mob is something of a step forward.

Who gets Freedom of Information?

UK transparency campaigner, Heather Brooke, writes a comment piece on The Guardian website today on why she believes that UK university cancer researchers should have to give up information to transnational tobacco giant, Philip Morris. The basis for the argument is that Freedom of Information law should apply regardless of who the applicant is.

I generally admire Heather’s single-minded work on FoI, but single-mindedness is not always a virtue, and can sometimes lead to overly extreme conclusions which lack a broader understanding of the political economics involved. As in this case. As a researcher and analyst rather than a campaigner, I can see that there are three important counter-arguments to her piece:

1. Corporations are not people. There is a serious and ongoing battle here. Although legal incorporation means companies are often considered as legal people, we should not start to think of them as having ‘rights’ like individuals, not should rights that come from citizenship or by being an individual voter apply to them. Recently, the US supreme court rejected the argument of a large telecoms company that it had privacy rights. The worrying thing is that several lower courts had accepted that it could have such rights. Rather than providing corporations with more equivalences to human rights, we need to be holding corporations to account.  This brings me to…

2. The really important issue with large private companies and FoI is why those large private companies are not subject to the same kind of transparency. Corporate confidentiality makes no sense even in the context of liberal economic theory, however it makes even less sense if we think about FoI as a method of accountability. Corporations are unable to be held accountable via electoral processes and the markets are too diffuse and diverse (and spread across too many different countries) to work as a mechanism of accountability, so we need law that rebalances the power imbalances between corporations on the one had, and people, individually and collectively, on the other – through transparency. That is, after all, what is its main point when it comes to state transparency and FoI; it’s not really about ‘value for the tax payer’, it’s about power.

3. On that note, FoI is being increasingly used against academics and activists in particular as a form of intimidation by corporate interests. This is not to say that academics and activists should not be accountable, but it is not the case that all parties here of on a level playing field, and further, mechanisms of accountability are themselves not simply neutral or unequivocally always a good thing because of what they are supposed to do. Law has to embed intention, and be interpretable by the courts, in a way that clearly differentiates between legitimate use (for people holding organisations to account), poor excuses (as in the state claiming expense or lack of time as reasons for not releasing information), and blatant misuse of the law for purposes for which it was not intended. If it does not, it can simply become another method the intensification of organisational power against the interests of people.

Corporate Privacy Redux

The Supreme Court of the USA has unanimously decided (pdf) that “corporations do not have “personal privacy” for the purposes of exemption 7(C) [of The Freedom of Information Act].”

This is a welcome decision which should set back further efforts by corporate bodies to claim ‘human rights’ as a justification for avoiding their responsibilities under laws mandating transparency and accountability.

Marc Rotenberg points us to a welcome for this decision from Senator Patrick Leahy of Vermont.

Good news all round for once.

Corporate Privacy?

I’ve been arguing a lot recently that individual privacy, state secrecy and corporate confidentiality should be regarded as clearly separate things. Keeping this separation is important precisely because it stops organisations which we should expect to be open to inspection and accountable to us, from using ‘privacy’ as an excuse for avoiding such inspection. Philosophically, the distinction should be clear, but legally it may not be so obvious. One problem however lies in the nature of the whole notion of ‘incorporation’, which in its very language already assigns certain individual human attributes to organisations. And corporations are very much aware of this.

Marc Rotenberg points me to a very interesting legal test case in which the Electronic Privacy Information Center (EPIC) in the USA is currently involved. This case originally started when in 2008 the Federal Communications Commission ruled that corporations could not use ‘privacy’ as a reason to reject Freedom of Information requests. In 2009, a court overruled this decision. And now the FCC, ironically aided by EPIC, an organisation which frequently finds itself challenging rather than supporting the state on such issues, is seeking to have this ruling overturned in the Supreme Court.

This strikes me as a vital case, not just for the USA, for other jurisdictions where corporations will be observing the outcome and seeking to bring similar challenges if they can. If privacy, and indeed any other fundamental human right, is to mean anything it can neither be granted to companies who find it simply a convenient cover for a desire for confidentiality, nor to states who seek to maintain secrecy. Clearly there is information possessed by corporations and by states that might have elements that could be damaging to personal privacy. Private individuals acting in a corporate or state capacity may perhaps in some clearly delineated circumstances have the right not to be personally identified, even more so for individuals from outside the organisation concerned, but the ‘what’ of the information should still not, by association with an individual expressing a desire for privacy or anonymity, acquire the protection of privacy.

Spain vs. Google or Freedom of Expression vs. the Right to Be Forgotten

Several outlets are reporting today, the interesting clash between Spanish courts and Google. The argument is over whether Google should carry articles that have been challenged by Spanish citizens as breaching their privacy. An injunction was won in the courts by the Spanish data protection commissioner over publication of material that is being challenged under privacy legislation.

Clearly there are two main issues here. One is the specific issue of whether Google, as a search engine, can be considered as a publisher, or as it claims, simply an intermediary which publishes nothing, only linking to items published by others. This is important for Google as a business and for those who use it.

But the other is a more interesting issue which is the deeper question of what is going on here which is the struggle between two kinds of rights. The right to freedom of expression, to be able to say what one likes, is a longstanding one in democracies, however it is almost nowhere absolute. The problem in a search-engine enabled information age, is that these exceptions, which relate to both the (un)truth of published allegations (questions of libel and false accusation) and of privacy and to several other values, are increasingly challenged by the ability of people in one jurisdiction to access the same (libellous, untrue or privacy-destructive) information from outside that jurisdiction via the Internet.

In Spain, the question has apparently increasingly been framed in terms of a new ‘right to be forgotten’ or ‘right to delete’. This is not entirely new – certainly police records in many countries have elements that are time-limited, but these kinds of official individually beneficial forgettings are increasingly hard to maintain when information is ‘out there’ proliferating, being copied, reposted and so on.

This makes an interesting contrast with the Wikileaks affair. Here, where it comes to the State and corporations, questions of privacy and individual rights should not be used even analogically. The state may assert ‘secrecy’ but the state has no ‘right of privacy’. Secrecy is an instrumental concept relating to questions of risk. Corporations may assert ‘confidentiality’ but this is a question of law and custom relating to the regulation of the economy, not to ‘rights’.

Privacy is a right that can only be attached to (usually) human beings in their unofficial thoughts, activities and existence. And the question of forgetting is really a spatio-temporal extension of the concept of privacy necessary in an information society. Because the nature of information and communication has changed, privacy has to be considered over space and through time in a way that was not really necessary (or at least not for so many people so much of the time) previously.

This is where Google’s position comes back into play. Its insistence on neutrality is premised on a libertarian notion of information (described by Erik Davis some time ago as a kind of gnostic American macho libertarianism that pervades US thinking on the Internet). But if this is ‘freedom of information’ as usually understood in democratic societies, it does have limits and an extreme political interpretation of such freedom cannot apply. Should Google therefore abandon the pretence of neutrality and play a role in helping ‘us’ forget things that are untrue, hurtful and private to individuals?

The alternative is challenging: the idea that not acting is a morally ‘neutral’ position is clearly incorrect because it presages a new global norm of information flow presaged on not forgetting, and on the collapse of different jurisdictional norms of privacy. In this world, whilst privacy may not be dead, the law can no longer be relied on to enforce it and other methods from simple personal data management, to more ‘outlaw’ technological means of enforcement will increasingly be the standard for those who wish to maintain privacy. This suggests that money and/or technical expertise will be the things that will allow one to be forgotten, and those without either will be unable to have meaningful privacy except insofar as one is uninteresting or unnoticed.

New Report on Social Control

There is an interesting new report out from the Geneva-based organisation, the International Council on Human Rights Policy (ICHRP)*, called Modes and Patterns of Social Control. It has a lot of overlap in content and analysis with the book I am writing at the moment, which is great in that it means I am not alone in what I am thinking. The authors include a fellow surveillance CRC, Stephane Leman-Langlois, and Clifford Shearing, one of the pioneering figures in our understanding of surveillance today.

*disclaimer: I am an advisor on another ICHRP project on Surveillance and Privacy that has just started.

Czech Republic operating illegal ‘gay’ screening

The Czech Republic is violating the European Convention on Human Rights by using a controversial and highly privacy-invasive method of screening those seeking asylum on grounds of being persecuted for their sexual orientation.

A BBC report (via BoingBoing) says that the country’s interior ministry has been criticised by the EU Agency for Fundamental Rights for using a ‘penile plethysmograph‘ on such claimants.

This so-called ‘phallometric test’ uses sensors attached to the penis which measure blood flow when different images are shown. The evidence from such tests is not recognised by courts in many countries due to its many problems including lack of standardization and the highly subjective interpretation of results.