Spending time in Tokyo has given me a good look into the where the US is heading.
Mobile + Social
VIa mobile, we will have all of our needs in one
» Payments (already rolling out via Google Wallet, Box, etc.)
» Transportation (possibly separate from payments)
» Personal (Calendar, health, etc.)
As we move forward, these personal attributes will have the ability to connect to our social applications - via seamless sharing. Seamless sharing will continue because people will continue to want to share in a more simple way. For example, think Foursquare checking you in to the train station when you scan your phone for payment.
In the same manner, as we move forward, companies will have to avoid the “Facebook problem” or the backlash against seamless sharing. The Facebook reaction has taught us that an initial opt-in is not enough. Opt-in/opt-out give people a clear choice but oftentimes, people do not understand what they agree to in the opt-in.
The only other choice companies have is to give consumers choice to share with certain individuals or only at certain times. Choice embedded into design post opt-in will be a key tool as personal sharing increases and becomes more automated. The ability to choose should be clearly labeled within the program and simple.
Just like every other area of Internet, consumer choice should be very simple - particularly for mobile sharing. As companies move to mobile, they should ensure that consumers clearly see their ability to choose what they share and understand the choices they make.
People have always shared information with their best friends - photographs, gossip, personal news, etc. They share this information with best friends because they don’t expect them to share the information with outsiders. Now, these best friends are online. So the way we share with them is through the Internet, yet still don’t expect them to divulge our secrets.
Much of society has recognized that sharing via Internet is the most convenient way to share. Companies have also recognized that some of things we share, we only want our family or best friends to know. Companies have created groups, friend lists or circles to address these needs. There is free, virtually unlimited storage and a lesser risk of misplacing this information online - as an added plus, my friends can view it at their leisure instead of sitting through hours of slideshows or boring conversations.
Companies are recognizing a limited-sharing privilege in privacy. Although the law is very slow to change, could this possibly lead to framework for recognizing new private relationships? How will these relationships be defined? Through online BFF groups? What will be the magic number? Friends have always been a part of real life, but not the law - can online social relationships pave the way to a change? If so, would these friends have responsibilities, like a fiduciary duty not to disclose? I don’t see these changes coming any time soon, but the reflection of real life is online, showing that it might be time for the law to contemplate change.
“The problem, of course, is that there is no notice and there is no choice. Nobody reads privacy policies. People that read them don’t understand them.”
Ryan Calo, Stanford Center for Internet and Society
By fatimanadine on Wednesday, September 28th, 2011
Recently, a GigaOm article dubbed 2011 as “the year mobile IT was born.” The article described corporate IT departments saying yes to mobile device and tablets, even those owned by the employee.
It’s great to see more companies embracing mobile and letting employees choose a device that makes them happy. However, companies can particularly run into problems when employees use their own personally bought devices for both personal and work reasons. Therefore, companies should inform and carefully train their employees to avoid legal issues.
A few privacy and data security issues:
Companies should make sure
-that IP or other sensitive information remains secure. They can help security by increased employee training and required authentication and other protections on devices.
-that they take the same precautions (or whatever possible) to avoid security breaches when employees travel abroad with sensitive information on their phone to places with a reputation for corporate espionage.
-to determine what information they will be able to access on an employee using a mobile device and make sure the employee knows before they agree to a mixed work and personal mobile device.
Employees can easily give access to family or friends, accidentally send sensitive information to friends or lose the information in a place where they would not take their work device. Some of these problems can be remedied by using VM technology, but without proper precautions, mixing devices used for work and devices used for play can be a slippery slope.
It’s key to make sure that the data is secure. To quote Julie Palen,
“It’s all about the device, as long as the data is secure and controlled … then that’s the big change and the answer becomes yes.”
“The advent of technology collecting cell site location records has made continuous surveillance of a vast portion of the American populace possible: a level of Governmental intrusion previously inconceivable. It is natural for Fourth Amendment doctrine to evolve to meet these changes.”
Judge Garaufis
Summary of case @ CDT blog: http://cdt.org/blogs/greg-nojeim/129court-rules-warrant-required-stored-cell-site-location-information
The NYTimes recently reported on the Indian Identity project, Aadhaar. I feel that Aadhaar is a great idea for indigent people in India. In addition to increasing access to public welfare, it can lay the foundation for access to public justice via online dispute resolution that is mobile phone based.
ODR already exists in India (see http://www.odrindia.com/ - headed by a world-renown ODR expert, Chittu Nagarajan). However, the national identity system can help strengthen the system. Once the system can securely use mobile devices to recognize a person’s identity, it could lead to better enforceability of judgments. In addition, since the system is centralized, there could be much more done to ensure fairness and enforceability because of its direct link to other parts of the person’s identity.
I talked to some Indians (aka my cousins) and asked them their thoughts on the project. They were mostly unconcerned with the project and felt that most nations are moving to a centralized identity system even if it’s not run by the government. I feel that there is much truth to that.
However, I find it alarming that the central identity system is run by the government. Such a system brings up huge issues related to transparency and privacy. India does not have the best reputation for transparency of its practices and still has many hurdles to overcome. As it moves forward, the country must build trust with its citizens. The country is already taking steps to fight corruption, but we must wait and see how it uses the collected identity data. If Aadhaar works well in providing social services to the indigent, the government may be able to build sufficient trust to expand programs connected with the identity service.
I imagine that the government doesn’t have the resources (or really cares) to constantly track every single citizen at all times, but there are an overwhelming number of privacy and data security issues related to this project. (Ex. civil liberties, hacking, spoofing, identity theft, security strength, publication availability of data to name a few, but the list goes on and on.) Hopefully, a greater number watchdog groups or trusted organizations will spring forward to help create best practices. We will just have to see how it all plays out… maybe in the end it will be used to create a state-sponsored biodata-based dating service!
