Is It Impossible to Protect Your Privacy?

By Alexandra Marks, Christian Science Monitor. Posted April 22, 2008.

With identity theft reaching record levels, our ability to collect personal data has far outstripped our ability to protect it.

Tools
EMAIL
PRINT
8 COMMENTS

Share and save this post:

AlterNet Social Networks:

Also in Rights and Liberties

Why the FBI Squelched an Investigation of a Post-9/11 Meeting Between White Supremacist and Islamic Extremists
Mark Levine

Obama's Radical Detention Plan Is Dangerous and Must Be Fought
Ari Melber

Why Are Muslim Charities Still Being Branded as Terrorist Bankrollers?
Willam Fisher

Mississippi Pol Said to Be an Ally of Gov. Haley Barbour Addresses Infamous Racist Group
Heidi Beirich

In Iran, Fears That a Prominent Prisoner Detained In Election Upheaval Could Die in Jail
Katie Mattern

ACLU: Racial Profiling "Widespread and Pervasive"
Haider Rizvi

More stories by Alexandra Marks

Rights and Liberties RSS Feed

Main AlterNet RSS Feed

Upcoming AlterNet stories on Digg

Individuals might treasure their personal data like Social Security and credit-card numbers, but identity thieves can buy them cheap and in bulk online.

Credit-card numbers can now go for as little as 40 cents each. A matching name, Social Security number, address, and date of birth cost just $2.00, according to security experts.

Even as the incidences of identity theft reach record highs, the government and private institutions continue to collect record amounts of personal, private data.

And despite all of the rules, regulations, and software innovations in place to ensure that information doesn't fall into the wrong hands, it does, and regularly.

In just the past month, State Department employees were disciplined for snooping through presidential candidates' passport files, and hospital workers have been charged with selling the personal information of tens of thousands of patients as well as rifling through the patient records of top stars. And in Hollywood a private detective to the stars is accused of bribing police and telephone company officials so he could scour their confidential databases.

Then there's the Internal Revenue Service. A week before tax day, its inspector general warned that the computer systems that contain the private tax returns of every taxpayer in America are vulnerable to disgruntled employees and hackers.

The problem, say security experts, is that the world's ability to collect data has far outstripped its ability to protect it.

"Lots of organizations and institutions, governmental and private both, are really good at collecting data, but don't have the practices and technologies in place to make sure [they're] well housed and secure," says Jim Harper, a security expert at the libertarian CATO Institute in Washington. "That's why people are able to dip into databases they shouldn't dip into."

So what's a privacy-conscious person to do? Cut up all credit cards and use just cash? Forgo a passport and foreign travel?

"The only real protection the public can have in this arena is to deny the government the information in the first place," says Tim Sparapani, senior legislative counsel at the American Civil Liberties Union. "Despite all of the bells and whistles, the government has proven itself to be miserably poor at controlling and limiting access to the information that it's gathered about the public."

It's not that the government doesn't try. There are reams of regulations that people with access to confidential information are sworn to follow. Agencies such as the Department of Homeland Security have their own privacy offices that spawn their own committees which study and address both the regulatory and technological ways of protecting all the information that government has in its databases.

But as history has shown, there are the genuinely malicious among us, and even the most meticulous people can err. The recent dust-up over contract employees peering into the passport files of the presidential contenders was blamed on "imprudent curiosity."

Still, two workers were fired and another was disciplined. The inspector general of the State Department is investigating the incidents. It includes a thorough "review of the internal control processes and other aspects of managing the passport data," according to a spokesman for the inspector general. That should be completed by the end of May.

In the meantime, privacy experts like Mr. Harper see a "glimmer" of hope in the incident. First, that it was discovered, since many such incidents go unnoticed, security experts say. Second, that the State Department had digital "flags" on the files of prominent people that alerted superiors when their data were accessed by an unauthorized person.

Harper says such "flags" should be on everyone's files, not just those of important people, so that the government can keep an accurate record, called an "audit log" on the files. "That's a very small, but important, protection, and … it will be recognized soon enough as standard operating procedure," he says. "If you hold personally identifiable data, then you'll have audit logs so you can have records of who accessed it and when."

View as a single page

See more stories tagged with: privacy, aclu, irs, identity theft, real id act, private security, data mining

Alexandra Marks is a staff writer at the Christian Science Monitor.

Liked this story? Get top stories in your inbox each week from Rights and Liberties! Sign up now »

Rights and Liberties » Story Tools: EMAIL PRINT 8 COMMENTS

Comments	Turn comments off sitewide	Give us feedback »
Comments closed. The comments for this story have been closed. Thank you to everyone who participated.		View:
When will the civil rights movements [Report this comment] Posted by: saltoafronteira on Apr 22, 2008 2:56 AM Current rating: 5 [1 = poor; 5 = excellent] realise that we are in the middle of a unconventional war ? Nowadays weaponry is a mixture of lawsuits, demonstrations, civil desobeyance, tax strikes, products boicot, HACKING AND COUNTER HACKING! There are many front battles, and the electronic one is central. Piracy and espionage can and may be hacked ! obviously, that kind of organization must be paralel and independent from any bipartisan sistem. Contemporary civil rights "warfare" begins with the making of small associations, few people but highly organized, with links to other associations, in order to collect and distribute information, thus helping the people at local communities level. I have no doubts that in the software expertise community there is people able and willing to help. Wake up, people, there is no point on endlessly and pessimistically despair about this. Things can and must be done, and they still can be done in lawful ways, but it is time to do it. Starting with your neighbours and friends. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] Brave New World [Report this comment] Posted by: talkville on Apr 22, 2008 4:02 AM Current rating: 5 [1 = poor; 5 = excellent] Privacy, most especially for the multitudes, is no longer an option; we have been de-prived of such a right if it ever was one. All of this was done perfectly 'legally' by 'reforms' initiated since the Reagan/Thatcher days and today seems an accomplished fact. Information sharing between Corporate Entities ("fictitious Individuals) is rampant and even made mandatory in most cases, both for economic reasons as well as for political ones (Magic Wand: National Security). Withholding information would rapidly place us into a Hobbes-style 'state of nature', so severely restricted from social interaction we may as well get us each a cave for hermitage; any activity in a total Market, today's paradigm social realm, makes personal information in some or other degree necessary. Catch 22, 23, 24 and still going. There are significant signs that many of the younger generation simply accept this new paradigm and don't even worry about it any more, which tends strongly to transfer 'protection' functions from the individual to the Corporate-State -- exactly as they have always wanted. DNA, GPS, Retina Scans, embedded electronic identifiers in consumer products... on and on, one could make the prediction that within just a few more years every man, woman and child will be locatable at any time and in any place according to the demands of: yup! the Corporate-State. Personal privacy is in the process of being completely drained of content, if it has not already happened. What will be left? a shell fulfilling defined functions for defined periods of times in prescribed forms and for prescribed remunerations. Dynamic Functional Nodes with Names. Brave New Individuals. And Liberty? the abstraction it has mostly always been. Are we 'beyond freedom and dignity', temporal units feeding the ravenous maw of the eternally 'living' Corporate Individuals facilitated by the police power of the fascist state? Perhaps it's not THAT dire. Then again, perhaps it just might be. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] A Losing Battle [Report this comment] Posted by: Freticat on Apr 22, 2008 10:10 AM Current rating: 5 [1 = poor; 5 = excellent] We are constantly running into conflicts with how we are expected to both protect and use our personal information. On the one hand, the SSA tells me to protect my social security number; on the other, I have to show my medicare card (with my SSN quite prominently displayed) every time I board a bus to qualify for discounted fare for the disabled. Retailers ask for my phone number or ZIP code when I make even trivial purchases (I usually make one up on the spot). It's probably too late to protect what little privacy we still have, but I do my best to throw a few monkey wrenches in the machinery. My grocery discount card is registered to a fake name at an address that doesn't exist with a phone number that can't exist. It may be petty, but sometimes even a pinprick can be satisfying when sticking it to The System. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] » RE: A Losing Battle Posted by: Freticat NO, it is not possible [Report this comment] Posted by: billwald on Apr 22, 2008 10:48 AM Current rating: 4 [1 = poor; 5 = excellent] It is not possible for the working class to maintain any privacy against the the government or big business. Except for what goes on in the bedroom, why does anyone care? Information is only valuable when it is restricted. I propose that starting with the President, then congress, then the cabinet and govt heads, that all financial transactions be posted on the web. Then down the food chain until all money is electronic and every transaction is posted on the web. Then we eliminate every personal tax and sales tax and put a 4 percent transfer tax on all transfers, half on each party. This will be a defacto 8% tax because half the economy is under the table and the new tax will apply to the dopers and the Mafia. Then we junk this secret ballot garbage on national elections. There never will be an honest, secret national election. Post the voter lists and the votes and everyone can make their own count. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] A Consumer Bill of Rights ... that unfortunately will never happen... [Report this comment] Posted by: mmckinl on Apr 22, 2008 5:05 PM Current rating: Not yet rated [1 = poor; 5 = excellent] The article has a great idea in these tags that would track enquiries into our personal data. They should be made mandatory in law with stiff penalties for violations. A person should be able to check the list of such enquiries into their personal data as well. A person should be able to sue companies for losing or abusing their data. There are more reforms than mentioned here to give the public real consumer rights, but like I said, they will never com about. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] personal privacy? [Report this comment] Posted by: notmom on Apr 24, 2008 8:52 AM Current rating: Not yet rated [1 = poor; 5 = excellent] OK, let's talk about a practical application. The other day, after a traffic accident, I used my cell phone to call the police for the mandatory police report. After describing the location to the dispatcher (but not verbally giving my phone number), I received a return call for a more detailed location - twice. I don't know about yours, but my cell has two options for the GPS locater: anyone can access it that has the technology, or only emergency organizations. Mine is set to emergency only. So why did the idiot cop take over half an hour to find the accident scene, telling us he "drove past three times" and couldn't see two vehicles with four-way flashers in the middle of the street? Because we moved 6 feet to the left into a center turn lane instead of blocking through traffic? Privacy be damned - I wanted to get out of the hot sun instead of sitting there waiting for a brain-dead power-mad jerk. The technology is there for a reason - and when it's appropriate, it damn well ought to be used! [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5] use cash [Report this comment] Posted by: whealeydj on Apr 24, 2008 8:16 PM Current rating: Not yet rated [1 = poor; 5 = excellent] whenever possible which is easy to say but hard to do. [« Reply to this comment] [Post a new comment »] [Rate this comment: 1 - 2 - 3 - 4 - 5]

Newsletter

Search:

» RE: A Losing Battle Posted by: Freticat