Profile picture
David Carroll 🦅
@profcarroll
, 9 tweets, 3 min read Read on Twitter
What would happen if companies and organizations that collect and infer data about you were required by law to securely send you your data dossier monthly?
The California Consumer Privacy Act, enforceable summer of 2020, introduces some notions of a Right of Access into the American privacy regime. Applicable companies should be working on how to comply with adequate access requests by California residents (& EU citizens under GDPR)
I think @CenDemTech made a really helpful comparison chart between CCPA, its own national data rights bill, and GDPR. Here’s the comparison on the Right of Access.
cdt.org/insight/compar…
If I ran a company or organization I would try to get so far ahead of future litigation and just voluntarily send a secure link to my customers/users data dossier as a monthly email reminder to encourage healthy data rights hygiene.
I figured out that companies HQ’d in EU may honor Subject Access Requests from non-citizens like me. GameLoft, a French mobile game company, provided me with this data when I used a form buried in their privacy policy. Note that I disabled this game from getting my location info.
After considering the feedback, I'd amend the question at the ^top of the thread to getting an annual data rights report by default with an option to receive it monthly and the ability to delegate a third-party to aggregate and manage your data rights as your data fiduciary.
Received a Booking dot com privacy update email today which pointed out they are a Dutch holding company that owns Kayak, Agoda, OpenTable, RentalCars and you can email them to do a subject access request for your data. I’ll let you know how it goes.
In other Subject Access Request news, @justinhendrix may have volunteered to try and get his Russian IRA targeting data via the Irish data protection authority since Alex Stamos spilled the beans that Facebook was worried about that particular scenario.
Since Booking Holdings doesn’t have an automated SAR form I had to formulate my own request. So I requested all supplied and *inferred* data since I know that data protection authorities take the view that this information is subject to disclosure. ico.org.uk/action-weve-ta…
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to David Carroll 🦅
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @profcarroll see all

Profile picture
David Carroll 🦅
@profcarroll
A thing that will irritate a lot of professional journalists greatly is that when Mueller‘s work is resolved it’s quite doubtful that any of Seth Abramson’s derided threads will be debunked retrospectively. (It was often a critique of style not substance.) washingtonpost.com/politics/2019/…
In other words Abramson readily admits we won’t know if he was recklessly speculating until the SDNY completes its work after Mueller, which could take years, but in the meantime, assuming he was way off base, it’s unlikely that WaPo would be quoting him for its news analysis now
I gave up following Abramson’s threads long ago, but it wasn’t because I thought the substance was off base. Only the style was intolerable. I didn’t need to be convinced that there was a surplus of evidence in the public domain to indicate the general narrative of collusion.
Read 4 tweets
Profile picture
David Carroll 🦅
@profcarroll
This particularly pernicious business model of automated algorithmic microtargeting is fundamentally monstrous, a beast that must be slayed.
Mining behavioral data to automatically devise ad targeting vectors without adequately rigorous human supervision for ethics is essential Zuckerberg/Sandberg business acumen.
*adequate

We can hammer them on this hard because this is not the first time we’ve seen Facebook ad products go full nazi.
Read 3 tweets
Profile picture
David Carroll 🦅
@profcarroll
I’m that draconian dad who blocks the youtube domain on the kids devices. It remains an unsafe product for families. It puts parents on the frontlines to protect their children from content that would never make it to a television screen. (FCC liability vs. CDA sec 230 immunity)
Cue the unsolicited parenting advice…
I think I might favor the idea floated by @gchaslot (yes?) of narrowing CDA§230 immunity to put FCC-style liability on platforms for the content they recommend. Puts a cost on externalities of reco engines juicing the population with toxic waste for shilling fuzzy ad metrics.
Read 8 tweets

Related threads

Profile picture
UCCat20
@UCC_Official
UCC had opportunity to comment on the #Data.Protection & Privacy Bill. The enactment of this law is long overdue. A comprehensive law on the collection & processing personal information gives effect to the right to Privacy envisaged under Article 27(2) of the Constitution
UCC welcome the protections offered by the Bill in terms of export of data, breach notification requirements, data subjects access rights, automated decision making, compensation and the right to be forgotten and provision for financial and penal sanctions for breach of the law.
Distinction between Data collectors & data controllers.
The Bill should however clarify & distinguish Data Collectors, from Data Processors & Data Controllers. Clause 2 is inconsistent with international good practice which provides for two broad categories of Data Controllers
Read 17 tweets
Profile picture
Rosie Williams
@Info_Aus
People interested in #myhealthrecord might also be interested in new legislation being introduced which will over-ride the Privacy Act to allow sharing of your administrative data datacommissioner.gov.au #Auspol
In case it isn't obvious, gov needs this new Act because the Privacy Act prevents them from joining all your administrative data into one big project using info you provided in the last census.
The reason no one knows about this is because data governance frameworks are apparently a boring topic the media doesn't want to talk about.
Read 22 tweets
Profile picture
Simon Elvery
@drzax
Here's someone who's highly engaged in politics, news and society but didn't know about #MyHROptOut until this morning.

If you're in media and wondering if this needs more coverage, here's your answer. #MyHealthRecord #Privacy
Opting out doesn't appear to be going well for people so far. I've seen multiple reports of long wait times on the phone and web server crashes.

I've you're planning to opt out, I'd suggest maybe not doing it today, but definitely not waiting too long.

#MyHealthRecord #Privacy
For the record, I've gone back and forward on opting out myself.

As a journalist with strong interests in tech and privacy, I really want to see the system for myself. Kick its tyres and experience its flaws and limitations personally. But ...

#MyHealthRecord #Privacy
Read 142 tweets
Profile picture
ashkan soltani
@ashk4n
Today is the day #CALeg votes to pass the #AB375 bill - otherwise the California Consumer Privacy Act @caprivacyorg ballot initiation moves forward.

Either would mark a huge win for Californian's #privacy rights
The most ironic thing from yesterdays public comments hearing on #AB375/@caprivacyorg:

All the industry lobbyists complaining about this "take it or leave it" #privacy deal that would prevent them from forcing consumers to take the industry's "take it or leave it" #privacy deal
Although it *was* slightly concerning that practically every assemblyman and industry representative made sure to mention that "they're looking forward to the clean-up amendments" if #AB375 does pass -- almost verbatim as if they were orchestrated by Sinclair Media
Read 7 tweets
Profile picture
sevvie Rose
@sevvierose
(1) The #California Legislature is panicking tonight. They're currently presented with a watered-down #ConsumerProtection bill that would require tech companies to disclose the data collected on users, and delete the data collected on them at request. leginfo.legislature.ca.gov/faces/billNavC…
(2) This bill poses a huge threat to the profits of FAANG corporations, and it poses a threat to the companies who rely on this data to sell advertisers and political groups analytics on prospective consumers/voters.

Why is it such a problem, though?
(3) The #CCPA is actually quite milquetoast, as it's written now. But if they don't pass this bill, California has a much bigger problem coming for them in November: the will of the people.
Read 18 tweets
Profile picture
Jijeeshpb
@jijeeshpb
If we take into account the amount we spen don AADHAAR and the amount various irganisations are still spending and the charges for each and evey verification process at retail stage, the profit will be negative. (7/n)
Having seen that #Aadhaar is not feasible technologically or economically. We will move to Rights. I have another thread explaining how Aadhaar violates Universal Declaration of Human Rights here
(9/n)
Since, #Aadhaar involves mandatory collection of biometric and demographic data, and its centralised storage, it essentially involves the question of #Privacy . Especially in country where there are no Data protection frameworks.
(10/n)
Read 45 tweets

Trending hashtags

#Redding #Russia #California #liberals #business #BlueWave2018 #wildfires #insurgent #biometrics #tech #Hesperia #data #SantaMaria #MorenoValley #SanJose #privacy #VoteBlue #OrangeCounty #TimDraper #Visalia #righttodelete #automation #problems #DomesticViolence
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!