[LINK] personally-held collections of personal data

Richard rchirgwin at ozemail.com.au
Sat Mar 23 15:56:10 AEDT 2013


On 22/03/13 10:20 PM, Karl Auer wrote:
> On Fri, 2013-03-22 at 22:04 +1100, Roger Clarke wrote:
>> At 21:28 +1100 22/3/13, Karl Auer wrote:
>>>   ... What responsibility do we have - legally, practically,
>>> ethically - to people whose personal details we have collected as
>>> private individuals?
>>> What centralised address-book services highlight is that ... these
>>> new services ... are facilitating, and encouraging, the escape of
>>> the data into networks of people, devices and virtual data stores.
>>> NSWPC (1977) recognised the potential for data held by individuals
>>> to harbour threats to privacy. With advances in technology, that
>>> potential has now come to fruition.
>>>   ... the disclosures involved in centrally-stored address-books and
>>> 'testimonials' throws into serious question the blanket exemption
>> >from data protection laws of personal data in the possession of
>>> private individuals.
> What I hope my blog made clearer, and the aspect not covered in your
> article from 2004, is not so much the mere storage in a third-party
> service, but the fact that these third party systems *use the data* -
> for their own ends, sometimes on behalf of the storing party, and
> sometimes on behalf of yet other parties. That is, they do not merely
> store, they *actibvely mine it*, as well as, in some cases *actively
> share it on*.
>
> Given that (say) Facebook will do this, what responsibility does one
> have to *not disclose one's contacts to Facebook*?
>
> Regards, K.
>
I have been wondering the same thing. I'm hoping to make an article out 
of it, but the early signs aren't encouraging: the privacy lawyers I've 
spoken to so far were pretty sure that the Privacy Act doesn't sweep 
this up yet.

RC



More information about the Link mailing list