Aired June 28, 2013
Slides & Transcript
Welcome to the our June webinar, Overview of Online Privacy.
As the internet has grown, it has made it easier than ever to connect with other people from across the globe. But this ease of connection has made it harder for us to maintain the same level of privacy we do in the offline world. When you meet someone on the street, it’s easy to regulate your conversation with them to make sure you aren’t giving away more information than you’re comfortable with.
It’s a different story online, where you constantly broadcast your IP address, location information, and other types of data before you even start typing. Add to that the ease with which social networks and other websites allow you to share information about yourself, like your real name, your email address, phone number or other vital statistics and soon you may be sharing more than you realize with people you don’t even know.
Different countries have taken their own unique approach to regulating online privacy. Some have been more restrictive of the types of information that internet companies can require or record, while others have been lax.
As a U.S.-based company, Wikia is compliant with all United States federal laws. Sean will provide an overview of the current major privacy laws now passed and those being debated.
Lets first define a couple of terms you will hear throughout this webinar.
- Privacy - The Fourth Amendment protects against unreasonable search and seizure of private citizens and their "persons, houses, papers, and effects" but, surprisingly the Founding Fathers made no mention of e-mail in remote servers or geolocation metadata embedded in photo uploads. Modern definitions of privacy are in a state of flux as our culture adapts to new technologies.
- Cookie - a small piece of data sent from a website and stored in a user's browser. Cookies are set on your browser when you visit a website and track information about your internet usage. This is used most often for advertising to display ads that are relevant to your searches. Ever wonder how ads change to reflect a topic or place you just searched? That happens because of the cookie set on your browser. It also helps to keep you logged into your account, as well as other backend browser functions.
- IP Address - a standard internet code that identifies a computer network or a particular computer or other device on a network, consisting of four numbers separated by periods. This can belong to one person or be used by multiple users. On Wikia this is what is displayed when a logged out user contributes to a wiki.
Our main focus today is User Conduct, which is the most important section for you as a Wikian to be aware of, since it describes what is and isn’t allowed on Wikia wikis.
As a contributor to Wikia you agree to a number of terms, which focus on making Wikia a safe environment, open to all and without content that violates laws or harasses others. Within this user conduct section are also a number of specific privacy rights. I will break some of these down now.
Now lets look what our user conduct clause says. The first statements include what you can’t do on Wikia. It includes :
- “Post or transmit any content that … otherwise violates any law or right of any third party,” - This can includes all publicity and privacy rights. Under this, you’re not allowed to submit any content that violates another person’s privacy, whether they are a Wikia user or anyone else.
- “Post or transmit any communication or solicitation designed or intended to obtain password, account, or private information from any Wikia user;” -This keeps people from using Wikia as a place to collect private information. Trying to solicit real names, addresses, account names, or any other private information is a kind of phishing, and we don’t allow it on Wikia.
The next group of terms describe what you must do to use Wikia. These include:
- Maintain the security of your password and identification
- Maintain the confidentiality of any password(s) associated with your use of the Service;
- Notify the company immediately in case of any unauthorized use of your account; These go together because they all have to do with making sure that you don’t share your account details with anyone else. Aside from issues of potential abuse, including framing you for spam and vandalism, this can create privacy dangers because once someone gains access to your account, they can use that information to find out more about you.
- Make sure you don’t access, collect or store personal data about other users in connection with the prohibited conduct and activities described in this “User Conduct” section" - While there is a lot to learn about your fellow community members, you are not permitted to create a storehouse of information or use Wikia as a means of gathering or storing any private info. This includes things like wikis dedicated to tracking real people, or pages “doxing” or purposely compiling dossiers of private info. In general, we discourage any user from posting images or linking to Facebook profiles directly from Wikia.
When you register for an account, you are required to provide your email address and date of birth, in addition to your username and password. Part of the reason we require this info is to help maintain accurate records of your account and provide support when there are account issues. The date of birth is required to make sure that you are eligible for an account. There are specific privacy protections for people under 13 that we will be discussing in more detail later when we get to privacy legislation like COPPA.
I’m now going to overview a couple of these laws, some of which are about to be updated and that you may have heard of in the news. This section is not about my or wikia’s political views on these laws, but rather a simplified description of the legal jargon and how it may affect your wiki, your wikia account and your online interactions.
Generally speaking, our legislators have done a fairly terrible job at keeping the law up to speed with the evolving need for privacy that comes with new technology. To be fair, keeping pace with the online world is an incredibly difficult task. Over the years, U.S. lawmakers have made several attempts to regulate this arena and there are several laws that touch on internet privacy.
The Children's Online Privacy Protection Act (COPPA) is a United States federal law designed to limit the collection of personal information from people younger than 13 years of age. It was passed in 1998, and has been updated only once with a set of revisions that become effective July 1st, 2013. The Federal Trade Commission (FTC) oversees the application and enforcement of the law. It applies to any website or service based in the U.S.
One popular misconception is that COPPA absolutely forbids anyone from using certain websites. While this can be a common outcome, the stated goal of the law is to make sure that websites obtain parental consent before they collect personal information from children. Unfortunately, in the online setting, obtaining and verifying parental consent puts a legitimate strain on internet companies who would have to staff entire departments dedicated making sure that the parental approval was genuine.
Recent changes to COPPA have required Wikia to make adjustments. On wikis that might be directed to children, we have to make sure that we do not collect personal information, including IP address and certain kinds of cookies. Because Mediawiki software uses IP addresses to track anonymous edit, we are disabling anonymous edits on those wikis. We realize that many anonymous editors make valuable contributions, but this was a step we had to take to make sure we maintained compliance with COPPA. So starting July 1st, anon editing will be disabled for wikis that are targeted to children.
In February, the U.S. House of Representatives re-passed the Cyber Intelligence Sharing and Protection Act (CISPA). They had passed an earlier version of this controversial bill, but it stalled in the Senate. The current version is virtually identical to the previous version, and is as well stalled.
The purpose of the bill is "To provide for the sharing of certain cyber threat intelligence and cyber threat information between the intelligence community and cybersecurity entities,." It does so by removing legal liability for companies who share user information with the government and with each other, whether or not doing so might violate already existing privacy laws. CISPA calls for the creation of framework for user data and other information to be shared mutually between any government agencies and a private company, as well as between private companies.
There was a great deal of public outcry, and though it once again stalled in the Senate it’s continued existence shows how serious the government is taking cybersecurity issues. There will continue to be bills that attempt to deal with similar issues in the future.
The Electronic Communications Privacy Act (ECPA) was passed in 1986, and has been amended numerous times as part of other security legislation, including the PATRIOT Act. Congress passed the Electronic Communications Privacy Act ("ECPA") to expand the scope of existing federal wiretap laws, such as the Wiretap Act, to include electronic communications like email, physical location markers, video, text, audio, and data, transaction logs and all other "metadata" associated with an online communication. Under ECPA, the government is able to acquire these communications when they subpeona internet companies like Google, Facebook, or Wikia.
COPPA, ECPA, and CISPA are just a few of the many laws that touch on privacy, both online and off. We could do an entire webinar just running through the individual laws, and we would be here all day, but here is a brief sampling.
The Foreign Intelligence Surveillance Act (FISA) allows the U.S. government to intercept electronic communications between "foreign powers" and "agents of foreign powers" (which may include American citizens and permanent residents suspected of espionage or terrorism). This was the law under which the NSA surveillance programs operated.
The Communications Assistance for Law Enforcement Act of 1994 (CALEA) retains the U.S. government’s right to intercept communications over digital networks. CALEA requires phone companies to modify their networks to ensure government access to all wire and electronic communications as well as to call-identifying information.
Our expectations and understanding of privacy today is vastly different than it what it was even a few years ago. The only real certainty when it comes to predicting the future of privacy is that will continue to become more complex as technology advances.
As our digital footprint grows larger and larger, our Congress will continue to try to pass laws that update the Founder’s conception of privacy for the internet age.
Mobile devices are taking more of a central role than ever. Your voice and image can now be recorded with the touch of a button and shared with the entire world in a matter of seconds. New devices like Google Glass make it difficult to know where the lines are between the online world and the offline one. If our lawmakers have been a tad slow to address the pace of technology, it’s hard to blame them.
Because legislation can often lag behind the times, and often has a tendency to erode privacy more than it protects it (see CISPA), it’s important that you take an active role in safeguarding your own information.
We’re not trying to argue that you shouldn’t take advantage of new technologies or use your online presence to connect to people in the real world. However, you must be aware of how much information you are giving away. The key is to decide for yourself what your threshold for privacy is. On the one hand, there are people who go to great lengths to encrypt every communication and use services like TOR or private VPNs to hide their movements online. On the other end of the spectrum are people who blindly share every detail about their lives, from photos of their morning crepe to announcing their evening plans as a status update. Only you know where on that spectrum you feel comfortable and safe.
While data mining and government surveillance have proven to be real concerns, the biggest risk to privacy is often what we willingly reveal ourselves. So this should really go without saying, but a good rule of thumb is to never, ever give someone online your social security number. Identity theft is no laughing matter, and obtaining that bit of data can make it easier for crooks to obtain access to many facets of your life.
Entering your date of birth can be a requirement to register for websites, due to COPPA considerations but you should take care not to share this information publicly without good reason. Your address is required for shipping and billing purposes, but I wouldn’t post it publicly. You never know what you might find in your mailbox, or who might end up paying you a visit.
Your real name is something that some website require, but other like Wikia allow you to use a screen name or pseudonym. For example, on Wikia I am semanticdrifter but I link that with my real name. There are genuine reasons why you might want to use a screenname instead of your birth name.
Watch what you say and where you say it. Information about yourself that you feel like sharing today might be embarrassing or inconvenient to have publicly available further down the road. And sharing something on the internet means you often lose a certain amount of control over when, how, and where it reappears.
- The Electronic Frontier Foundation
- The Center for Democracy and Technology
- The Electronic Privacy Information Center
- Fight for the Future
- File:Templates Overview
- File:Wikia Mobile Apps & Skin
- File:Videos on your wiki
- File:Templates 101 Tips for editing & creating templates on Wikia
- File:Best Practices for Structuring your Wiki Categories, Namespaces and Navigation
- File:Social Media & Your Wiki
- File:SEO Tips and Tricks
- File:Wikia Webinars - Introducing the Message Wall & Wiki Navigation
- File:Managing your wiki - review of tools & special pages
- File:Mainpages 101 - How to make a great mainpage for your wiki
- File:Keeping The Peace - Best practices for handling conflict on your wiki
- File:Tips for Designing & Promoting Your Wiki
- File:Intro to CSS & Your Wiki Webinar
- File:What is your copyright - A webinar focused on content licensing with Creative Commons.wmv
- File:Wikia Copyright Basics Webinar
- File:Community Guidelines Webinar
- File:Tips & Tools for Community Discussions
- File:Advanced Ways to Customize Your Wiki Webinar
- File:Wikia Webinars - Admin Tools & Tips
Appears on these pages
Wikia Webinars are monthly presentations provided by the Community Support team to provide live...
Below are some helpful videos for Wikia trainings, tips, and tricks. Be sure to check out Wikia...