EU wants tighter online privacy

November 5, 2010 By GABRIELE STEINHAUSER , AP Business Writer
In this March 2, 2010 file photo, a woman decorates a camera car of Google at the CeBIT in Hannover, northern Germany. British authorities say Google breached data protection laws when its Street View mapping service scooped up data from private wireless networks. (AP Photo/Joerg Sarbach, File)

(AP) -- The European Union wants companies such as Google Inc. or Facebook Inc. to give people more control over how their online habits are tracked, requirements that could crimp Internet firms' ability to target advertising.

Internet companies, privacy activists and the EU's executive commission are likely to wrestle over the specifics of the rules, which cut to the heart of funding models not only for technology firms but also for many online news sites and blogs.

"People should be able to give their informed consent to the processing of their ," the European Commission said Thursday in a new strategy paper.

It also wants users to be able to modify and delete any information that has been collected, giving them "a right to be forgotten."

Thursday's strategy paper will form the basis for an overhaul of the EU's 15-year-old laws on data protection scheduled for next year. It is open for public consultation until January, and the commission aims to propose legislation by mid-2011. Any new laws would have to be approved by the and national governments.

Tracking an individual's search history to target online advertising is a key revenue source for companies such as Yahoo! Inc. and Google.

Other firms use cookies - small files placed on a user's computer - or pop-up windows to track the websites a user has visited in the past or the books and clothing he has bought online.

The more closely ads can be linked to a user's interests, the more likely they are to be successful.

But privacy watchdogs have raised concerns over whether this information can be linked to an individual's name or address, what it could be used for, and how long it can be stored.

Technological advances and the many players involved in so-called behavioral advertising "make it difficult for an individual to know and understand if personal data are being collected, by whom, and for what purpose," the commission says in its strategy.

Websites should be more transparent about who is collecting data, and why, and how Internet used can "access, rectify or delete their data," it adds.

However, Thursday's document doesn't say whether the EU intends to require users to specifically "opt in" to having their data collected, or whether it is enough to allow them to "opt out."

Another key question will be how prominently websites have to display any opt-out buttons or links and how complicated the process could be. Google, for instance, already has a small "Privacy" link on its homepage, through which users can edit or clear their Web history.

As it stand right now, the commission's strategy looks "ambitious," said Wim Nauwelaerts, a counsel at Brussels-based law firm Hunton & Williams who has advised several technology firms on privacy issues.

"The EU's data protection framework already had the reputation of being one of the most stringent out there," said Nauwelaerts. "And this only reinforces it."

Google and its big rivals say they never link an individual's data to his name or address and that they don't collect information on sensitive issues such as health or sexual orientation.

Google has come under fire after vans collecting data for its StreetView application also scooped up sensitive information from unprotected wireless networks.

Facebook last month acknowledged that 10 of its most popular "apps" transmitted information about its users to advertisers and data-gathering firms.

declined to comment on Thursday's strategy paper, saying it was too early in the process. and Microsoft Corp., which runs search engine Bing, didn't respond to requests for comment.

In the U.S., several proposals by lawmakers to tighten data protection laws have failed to gain much traction in Congress. But privacy experts said they were encouraged by the EU's push to strengthen online privacy laws.

New EU rules are certain to create a "spillover effect" that raises the bar for privacy standards around the globe, including in the U.S., said Marc Rotenberg, president of the Electronic Privacy Information Center.

The U.S., he said, has been reluctant to update rules governing the collection of personal data online and has instead placed "blind faith in self-regulation."

But "the EU directive is a wake-up call," said Rotenberg, who last week testified on privacy issues in the European Parliament. "The U.S. will now have to work to catch up."

Jeffrey Chester, executive director of the Center for Digital Democracy, a not-for-profit group based in Washington, believes that despite the bitter political climate in the capital, online legislation may be one area ripe for bipartisan compromise.

The U.S. Federal Trade Commission also is expected to weigh in on the matter.

The FTC will soon issue a report outlining recommendations on how to ensure that consumers know what information is being collected about them on the Web and how it is being used, and give them control over that data.

Explore further: Privacy group files FTC complaint on Google Buzz


Related Stories

Privacy group files FTC complaint on Google Buzz

February 16, 2010

(AP) -- A privacy watchdog group complained to federal regulators on Tuesday about Google's new Buzz social networking service, saying it violates federal consumer protection law.

Congress weighs landmark change in Web ad privacy

September 7, 2009

(AP) -- The Web sites we visit, the online links we click, the search queries we conduct, the products we put in virtual shopping carts, the personal details we reveal on social networking pages - all of this can give companies ...

Boosting online privacy

August 4, 2010

Hardly a month goes by without a new alarm being sounded about privacy online, either because companies are surreptitiously collecting and using data about Web users or because they're releasing information that users thought ...

Experts meet to hash out web privacy rules

November 4, 2009

Hundreds of privacy experts from around the world met in Madrid on Wednesday for a three-day conference which aims to arrive at a global standard for the protection of personal data.

Recommended for you

Startup Pi out to slice the charging cord

September 19, 2017

Silicon Valley youngster Pi on Monday claimed it had developed the world's first wireless charger that does away with cords or mats to charge devices.

A solar cell you can put in the wash

September 18, 2017

Scientists from RIKEN and the University of Tokyo have developed a new type of ultra-thin photovoltaic device, coated on both sides with stretchable and waterproof films, which can continue to provide electricity from sunlight ...

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

5 / 5 (1) Nov 05, 2010
Curious how privacy on the internet is so important from a commercial point of view, but when it comes to the U.S. gov't snooping into anything and everything that is done online, at any time for any reason, or no reason, there is no restriction.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.