Woman Sues Blockbuster for Facebook Privacy Violations

Chris Blanc writes "A Texas woman has sued Blockbuster over its activities relating to Facebook's Beacon tool. The movie rental service has been reporting user activity to Facebook since Beacon launched last November, which the plaintiff says is a violation of the Video Privacy Protection Act."

'A Texas Woman'?

[Skyshadow]

We need more info -- can someone please post her name, address, phone number and video rental preferences?

Re:'A Texas Woman'?

I believe her name is Debbie, and she's from Dallas. Google should get you the rest.

Re:'A Texas Woman'?

[vil3nr0b]

She is probably ashamed because Blockbuster keeps sending NC-17 movie flyers to her house.

More and more problems

[jmpeax]

Social networking sites, and Facebook in particular, seem to be increasingly undesirable.

Apart from not wanting people such as potential employers to gain access to profiles that are by default made openly accessible, security vulnerabilities are particularly worrying, given the fact that social networking accounts often contain detailed personal information in context (i.e. not just a name, but a name connected to a university, email account, other people, images etc.) Add to that advertising schemes that intentionally deliver users' data to third-parties, and you have a dangerous mix, especially considering the average user's lack of awareness regarding safe-guarding personal data.

Re:More and more problems

[Jeff+DeMaagd]

I saw this in part when adding an app means that the app has access to all your profile information. It's either all or nothing, no way to add restrictions.

OK, Facebook has access to my information, but I don't see why third party developers have to have it. I also don't put much information on there. I just have to assume that any information in my profile is going to be available to anyone, even if I put up restrictions and limitations, so I'm careful what I put up there.

Re:More and more problems

[OMNIpotusCOM]

While you have a point, they can be fun if you use them the correct way. It's kind of like creating ghost Amazon.com accounts and searching for really f-ed up stuff, or just opposites (Marilyn Manson/Britney Spears, etc...), then going to your main page to see what they recommend for you. Same thing with FaceBook and the like... except there you have to be careful not to get on a government watch list by watching too many Michael Moore movies and because you're like 30 and have nothing but 13 year olds on your friends list.

Re:More and more problems

FBIbot V3.2 flagged post; FACEBOOK_MATCH_LATER=yes

Re:More and more problems

[dreamchaser]

They are just a fad and will fade away just like TV and the Web did. Oh wait...

I'm afraid social networking sites are here to stay, unfortunately. I agree with a lot of people here that at least currently they are insecure and have few if any redeeming qualities. However, an entire generation or two is growing up using them. It's going to be a hard habit to break. Maybe the fad part will wear off some but they are probably here to stay.

Re:More and more problems

[porcupine8]

I just have to assume that any information in my profile is going to be available to anyone, even if I put up restrictions and limitations, so I'm careful what I put up there.

Exactly. My face book is under my real name, with real information. I don't put anything on it that I wouldn't want my professors/bosses to see (because they're on my friends list!), which pretty much means anything I wouldn't want the entire world to see.

I have blogs and accounts on other sites that are less connected to my IRL identity. Sure, people who know me could probably figure out it was me, but my name is not on them, nor is any identify information like what college I went to or what year I graduated from high school. I can be a little more free, but I'm still reasonably careful because I know that if ANYONE can connect that to the real me, they can tell others.

Re:More and more problems

No limit to the number of social networking sites that can be created. Facebook isn't like Comcast with huge infrastructure costs barring easy competition. Though watch out for ridiculous imaginary property laws to try and limit competition. If sites like myspace and facebook aren't careful they could end up being dumped like spam yahoo email accounts.

Re:More and more problems

[It'sYerMam]

Not sure whether you realise but, as of recently, you can control exactly who can see what of your profile. Risks should be minimised if you have a private profile and don't let anyone but your proper friends see your drunken photographs and so on.

Re:More and more problems

[denmarkw00t]

Social networking sites, and Facebook in particular, seem to be increasingly undesirable.

I concur - and it doesn't help that I haven't had much desire to do any social networking lately, save for a quick check-in if I was expecting something. I cleared my Facebook account of most information and limited my applications to a handful (photos, events, the stuff that isn't so invasive) and tightened my privacy. There were a lot of changes to what was public and how public that I missed in my absence.

Re:More and more problems

[CSMatt]

And what if one of your friends later interns at a company that you plan on working for? If the boss knows that your friend has Facebook access to you, he could demand that it be printed out and given to him. Given the choice between disloyalty and unemployment, I would say most would pick disloyalty, especially in our current economic situation.

Re:More and more problems

[paintswithcolour]

Absolutely justified.

And if you had a key to your friend's house, or they invited you in, your boss could ask you to rummage through all their stuff and take photos. You could chip in with some personal stories too...I mean your friend should expect it, it's your job on the line.

Re:More and more problems

[pbhj]

I don't see why third party developers have to have it Erm, that's what facebook sell. They "sell" your details to app developers in return for their apps. The more adopted the app, the more data mining they can do (more people that is).

In turn the apps generate more page views, which generates more "ad" revenue.

You're not really that naive, are you?

The devs sell your details then to spammers/scammers (or the service agents of spammers and scammers) so they can either target spam or match up the rest of your details with the government leaked SSID (NINO in the UK) listings and apply for credit cards for you ...

Facebook must be a marketeers dream - they not only get to market stuff to you, but also to all of your friends. They now have far greater opportunity to manipulate peer pressure, the greatest tool of the capitalist.

Re:More and more problems

[dreamchaser]

I think I'll hit lycos and altavista and see what I can find about that phenomena...you know, web sites that lose out to hungrier/better newcomers.

Re:More and more problems

[chrispalasz]

I find this article particularly interesting because I had the same problem and complaint.

Less than a month ago I signed up for Blockbuster Online, which I've tried before and liked. Suddenly I'm getting all this Facebook spam from blockbuster asking me to approve their request to tell the world every single movie I'm renting.

I didn't click any check box giving Blockbuster permission to access any of my Facebook information. Not only that, but I had to go to the Blockbuster website and find out HOW they got my information and how to stop it. Finding that information was not obvious. You wouldn't be able to find it by browsing the site. You have to do a search through their help section.

In the end, Blockbuster (from their online store site) told me to use the Facebook option to block their website from accessing my profile if I didn't want their spam.

I definitely see it as a violation of privacy; especially considering they didn't even ask and offered no option of their own for stopping the spam.

Re:More and more problems

[xstonedogx]

What's the problem? It sounds like you've just found a place you don't want to work and a friend you no longer want to have. Win-win.

Re:More and more problems

[sumdumass]

Two totally different situations. Perhaps a more appropriate comparison would be if his boss asked to photograph the stereo equipment he has or the furniture or something. But taking something from a house isn't the same thing- you are not deprived of property when they print out your drunken orgies posted on the interweb. Even if you attempt to hide them from people that would frown on it.

On another note, it would be no different then asking them what type of person they were. Sort of like with a personal reference even if they didn't list you as one. Obviously, if you have pictures to prove it, you are that type of person. So I guess maybe the question is the same, do you tell and keep your job, or lie to protect your friend and hope you don't lose it when they find out later?

Now if we could only work a car in here somewhere, we could really screw some analogies up.

Re:More and more problems

[Fulcrum+of+Evil]

Isn't this the place that decided out of the blue to show everybody everything that their friends were doing? If it's in their hands, better be sure you trust those hands.

Re:More and more problems

[TheLink]

Because he would still rather work at that place - just like that "disloyal" friend would too.

And given "our current economic situation" maybe even if that place is filled with disloyal friends and crappy bosses.

Go figure :).

Re:More and more problems

[yomegaman]

I'd expect social networking sites to have the same "network" advantage that eBay does. The more users they have, the more attractive it becomes to new users. Unless eBay totally screws up, they pretty much have the field to themselves because why bother listing on a site nobody looks at? Why wouldn't FaceBook be the same way? If all your friends are there, that's where you'll go.

Disclaimer: I am way too old and curmudgeonly to have used FaceBook myself, so I could be way off.

Re:More and more problems

[Jeff+DeMaagd]

Not sure whether you realise but, as of recently, you can control exactly who can see what of your profile. Risks should be minimised if you have a private profile and don't let anyone but your proper friends see your drunken photographs and so on.

But there are potential security concerns here. Much like that MySpace crack where it spidered all the pictures marked "private" from thousands of accounts and posted them for everyone to see. Basically, you have to assume that anything you post on the Internet will be visible by everyone, that way you aren't surprised when it actually does happen. As such, don't post pictures and information online that can be identified as you.

Another issue is that someone could post undesirable pictures OF you and tag it with your name. No amount of privacy settings on your account can hide that picture. So you should be careful when you allow yourself to be photographed, you can't get it back if it gets out there.

Re:More and more problems

[CSMatt]

There's also the problem of how your friends present themselves on Facebook, and how that can negatively reflect upon you as a person - even if your own profile is "clean." Policing their profiles would be unreasonable. Aside from being a complete invasion of your friends' right to make decisions (even stupid ones) for themselves, the sheer amount of people on the average Facebook user's friends list makes it impossible to actively make sure that your friends aren't making asses out of themselves. The "friend me or else" attitude these sits have created (Clicking "Confirm" usually means that - save for their annoying invites - you will never hear from that person again, while clicking "Ignore" is apparently the online equivalent of assaulting someone unprovoked) also causes in inflated friends list of people that you rarely socialize with or may not have even seen before in your life, giving the assumption that you actually have a relationship with these people.

But employers don't know this. Most, it seems, can't comprehend the differences in how online social networks are used in practice compared to traditional social networks, and that one's Facebook profile is not necessarily a true reflection of the person.

Re:More and more problems

[alshithead]

"In the end, Blockbuster (from their online store site) told me to use the Facebook option to block their website from accessing my profile if I didn't want their spam."

I don't do Facebook so I don't know if they tell you in their TOS that they allow Blockbuster to feed off their profiles. Here's a large portion of the problem. The link between them is not plainly and obviously stated in a way to catch attention and then, once you identify the issue, the solution is also buried. We live in a world of obfuscation and to a certain extent, arrogance. Oh, the little people just don't have a need to know... Wouldn't it be nice if everyone just stated things plainly and clearly? Of course, that would put a lot of lawyers, bosses, and the IRS out of business.

Blockbuster makes you waive that

[Animats]

Blockbuster's user agreement includes a wavier of your rights under the Video Privacy Protection Act. That's why I don't shop there.

Re:Blockbuster makes you waive that

[Presto+Vivace]

Wow, that is a hell of a waiver.

Re:Blockbuster makes you waive that

[PingXao]

I'm not a member but I sometimes go in to browse the new releases while my roommate looks for something to rent. They better not use my picture without my permission. Those rights are available, at a price, and I never waived anything.

Re:Blockbuster makes you waive that

Blockbuster's user agreement includes a wavier of your rights under the Video Privacy Protection Act. Boy, that is bad. All my local video rental place makes you sign away is your first-born.

Re:Blockbuster makes you waive that

[HaeMaker]

That sounds "unconscionable"!

As in "unconscionable contract".

Sorry, Ralph, "unpossible".

Re:Blockbuster makes you waive that

[ark1]

Just beacause it is in the contract does not mean it is legal.

Re:Blockbuster makes you waive that

Blockbuster's user agreement includes a wavier of your rights under the Video Privacy Protection Act. That's why I don't shop there.

not sure how it works in the U.S.A, but here in New Zealand, you *cannot* contract yourself out of the law. e.g: if an employment contract you sign states you waive the right to opt out of working on public holidays, that clause does not apply. Surely you'd have something similar in the states?

Re:Blockbuster makes you waive that

[TheRedSeven]

Parent is not correct, at least according to the website:

From the privacy policy

Legal Notices--Video Privacy Protection Act of 1988. Blockbuster supports the Video Privacy Protection Act of 1988 and will use reasonable commercial efforts to require employee and business partner compliance with the Act.

Now, that's pretty vague, but if you take it at face value (HAH!), it would imply that they don't have you waive your rights under this law.

However, they do have some pretty crappy privacy when it comes to any comments you post to their website (ratings and such): From the TOS:

Content submitted to blockbuster.com (including your name) will not be confidential and may be published or disclosed in Blockbuster's sole discretion, without any compensation to you.

By submitting Content, you grant Blockbuster the right to use your submitted name in connection with your Content.

I may just be going back to Netflix...

Re:Blockbuster makes you waive that

[fishbowl]

And that is exactly why "she is suing", and why we aren't reading about the Texas Attorney General bringing a case before the grand jury to indict Blockbuster's board for breaking the law.

It's also why Harris' class-action suit won't be heard. The class is defined as a group among those who have waived their rights. Nobody in the class is entitled to damages, so they cannot prevail.

Re:Blockbuster makes you waive that

Very true. Most "good" clickwraps and T&C statements (check any video game manual) will mention that their agreement does not override your individual state's rights like warranty or right to sue.

Government can and does legislate power to the people... as well as taking it away. :-)

And even if something is illegal across the board, you still have to go to court to argue it. I begin to wonder if American parents have to give their children a seperate allowance for laywers' fees.

Re:Blockbuster makes you waive that

There are a lot more reasons than that to not shop their as well, such as their editing of movies to meet their values.

Re:Blockbuster makes you waive that

[canajin56]

Doesn't slashdot publish your content (including your username) at its sole discression, without any compensation to you?

Re:Blockbuster makes you waive that

[Alarindris]

I was hesitant to post, but seeing yours, I believe we do. Not a lawyer, forgot where I heard it and can't seem to find a source, so take it as you will.

Re:Blockbuster makes you waive that

In Germany and most EU countries there's a clear differenciation: Some laws cannot be contracted out (like f.e. creating a private copy of copyrighted media), some can only be contracted out under specific circumstances (f.e. in assurance contracts), and most can be contracted out. Privacy protection laws belong to the first category.

Oh, and you don't even have to sue. Even if you sign the agreement, the restrictions never apply in first place, not even if you're fully aware of them. They aren't enforceable either.

Re:Blockbuster makes you waive that

[Venner]

In the USA, "freedom to contract" tends to trump. However, you generally can't contract out of criminal laws, nor laws passed under the auspices of a state's general police powers (health, public welfare & safety, etc.) This might be valid as a waiver of a statutorily created right (I mean, you can even waive many constitutional rights), but I'd certainly argue it being unconscionable.
Uneven bargaining power, the reason they ask you to waive it in the first place (entirely to their benefit, against an apparent legislative preference), the relative sophistication of the consumer and the inability to make an informed decision, the conspicuousness of such a clause, etc, etc, etc.

Re:Blockbuster makes you waive that

[pbhj]

>>> you can even waive many constitutional rights

Like what? What good is a constitution if your employer just says "sign this":

"I waive all rights under the law, my employer now owns me"

Then goes off to put all your possessions on ebay ...

Re:Blockbuster makes you waive that

Yes it does. My name is Anonymous Coward and I approve this message.

Re:Blockbuster makes you waive that

[sumdumass]

There are limitations to what can and can't be done. Some contracts limit your free speech forbid you to run for public office while employed, demand arbitration instead of lawsuits, limit legal jurisdiction to some far away home office location where they already purchased the judges and so on.

I remember reading about a court case a while back where it said some things in contracts like that become null if it is universal a requirement for employment. This is especially true when there is a law of some sort giving the employee more rights. It seems that they have to allow the rights and then negotiate them away. If they impose a policy or condition for employment that removes those rights, they can't really be enforced. Well, they can as long as you don't get a lawyer and fight it.

I think the case I was reading about had to do with some company who imposed flex time on hourly employees so that any time worked over 40 hours in one week was time off during the next week so they could get out of paying the mandated time and a half for overtime. Apparently the company has a forced overtime rule where they could hold you over your shift for 4 hours at their discretion or tell you your working on the weekends sometime during the work week. It would suck to work two 12 hour shifts and three 8 hour shifts in a week (8 hours of time and a half overtime) to loose half a days pay and get an extra day off the next week.

Re:Blockbuster makes you waive that

[TheLink]

I'm starting to think that they should make it illegal for people to put such terms in contracts.

Employment contracts have started getting more and more unreasonable and crap in the past few decades.

A sufficiently high level of unreasonableness and crapness is indistinguishable from evil.

They often say "Oh it's nothing, the company will never do that", "Oh that's just our standard contract", or bullshit like that.

Slavery was abolished years ago, but they're now reintroducing it in employment contracts everywhere. Go read some of those contracts, which boil down to "If you sign this you are now my Slave^H^H^H^H^HEmployee, I'm the Master^H^H^H^H^H^HEmployer so bow down, worship and serve me, bwahaha, and lastly, fuck you".

Re:Blockbuster makes you waive that

[sumdumass]

After viewing the law, I don't think you can waive your rights on this one. It specifically says they must get your informed, written consent from the consumer, at the time the disclosure is sought. But more appropriately, it specifically banns the disclosure of any personally identifiable information concerning any consumer then lists specific ways it is allowed.

I think the informed part means they can't hide it in some terms of service legalese in an attempt to obfuscate it. I think the written consent means they need your signature. The "at the time the disclosure is sought" means each and every time someone decides they want to disclose the information. Putting this all together, I think it specifically means they have to get your informed written consent before disclosing any personally identifiable information each and every time they "plan" on doing it which would mean a waiving of a right still wouldn't give them the ability to ignore this law.

Re:Blockbuster makes you waive that

That's why I don't shop there.

I don't shop there because they pulled some shit the last time my wife and I were there. The three kids behind the counter gave my wife a story about how the account had expired. (Likely bullshit.) So they took her credit card to "reinstate" her BB account. After a lot of shucking and jiving, passing the card back and forth from one to the other, for "verification" or "clarification on the process", not to mention calling in the manager to sort it all out for them, we completed the transaction.

The following day, my wife discovered they hadn't given her credit card back. When she called the CC company to cancel the card, she found the sniveling little assholes had charged a few hundred dollars worth of CDs and filled numerous gas tanks, all within a short time after the store closed.

BB basically said, "Eat shit -- you can't prove our people did it."

Fuck those bastards right in the heart.

Re:Blockbuster makes you waive that

[Valar]

So if you post comments on their website, they (*gasp*) post them? They use your name if you give it to them? I CERTAINLY HOPE NO OTHER WEBSITES FIGURE OUT HOW TO DO THIS! TEH END OF TEH NETS!

Re:Blockbuster makes you waive that

[kelnos]

For example, in the US, you can waive your 5th amendment right of protection from self-incrimination by agreeing to testify in a criminal case in which you are the defendant.

Re:Blockbuster makes you waive that

[TheRedSeven]

Yes, but when I rate movies so I can get recommendations, I don't expect that those ratings will be broadcast to the rest of Blockbuster users. Especially using my real name. I would hope that something I do within my account would stay *within my account*, or at least stripped of Personally Identifiable Information and/or aggregated before being distributed as public information.

Re:Blockbuster makes you waive that

[TheRedSeven]

Yes, when I post to the forum. I expect nothing less. When I rate movies to get recommendations, I sure as heck hope that those ratings aren't attached to my name and sold to the highest bidder. I would hope that they are stripped of personally identifying information and/or aggregated so that they can't be tracked to me. I no longer have any reasonable expectation that Blockbuster is doing this.

Welcome to the digital age

I wouldn't expect anything else.

What do you think all this credit card tracking and online accounts and frequent-buyers club bullshit is about?

It is all for companies to be able to direct their advertising more effectively. That is their incentive in providing these tools.

If you don't like this sort of intrusion into your lives, then why not take control of your own governance and change things?

Re:Welcome to the digital age

Wiki...government. Yeah, that sounds like it would go over real well with the current suits.

(btw vote ron paul)

Re:Welcome to the digital age

Fuck em. The suits have all the power, all the money, and all the guns. But if we just ignore them, all of their power goes away, their money is no good, and they have nobody to operate the guns.

Re:Welcome to the digital age

[Nullav]

Everyone ignoring them all at once, including the soldiers they command. That doesn't sound difficult at all!

Re:Welcome to the digital age

Not at all. As long as the soldiers are part of "everyone."

Re:Welcome to the digital age

Your article advocates a

( ) technical ( ) legislative ( ) market-based (x) vigilante

approach to fighting the man. Your idea will not work. Here is why it won't work.
(One or more of the following may apply to your particular idea, and it may
have other flaws which used to vary from state to state before a bad federal
law was passed.)

( ) Trackers can easily use it to harvest identities
( ) Mailing lists and other legitimate email uses would be affected
( ) No one will be able to find the guy or collect the money
( ) It is defenseless against brute force attacks
( ) It will stop spam for two weeks and then we'll be stuck with it
( ) Users of email will not put up with it
(x) Microsoft will not put up with it
(x) The police will not put up with it
( ) Requires too much cooperation from trackers
(x) Requires immediate total cooperation from everybody at once
( ) Many email users cannot afford to lose business or alienate potential
employers
( ) Spammers don't care about invalid addresses in their lists
( ) Anyone could anonymously destroy anyone else's career or business

Specifically, your plan fails to account for

(x) Laws expressly prohibiting it
(X) Lack of centrally controlling authority for web behaviour
( ) Open relays in foreign countries
( ) Ease of searching tiny alphanumeric address space of all email addresses
(x) Asshats
( ) Jurisdictional problems
( ) Unpopularity of weird new taxes
(x) Public reluctance to accept weird new forms of money
( ) Huge existing software investment in SMTP
( ) Susceptibility of protocols other than SMTP to attack
( ) Willingness of users to install OS patches received by email
( ) Armies of worm riddled broadband-connected Windows boxes
( ) Eternal arms race involved in all filtering approaches
( ) Extreme profitability of spam
( ) Joe jobs and/or identity theft
(X) Technically illiterate politicians
(X) Extreme stupidity on the part of people who do business with the man
(X) Dishonesty on the part of the man
( ) Bandwidth costs that are unaffected by client filtering
( ) Outlook

and the following philosophical objections may also apply:

(x) Ideas similar to yours are easy to come up with, yet none have ever
been shown practical
( ) Any scheme based on opt-out is unacceptable
( ) HTTP headers should not be the subject of legislation
( ) Blacklists suck
( ) Whitelists suck
( ) We should be able to talk about Viagra without being censored
( ) Countermeasures should not involve wire fraud or credit card fraud
( ) Countermeasures should not involve sabotage of public networks
( ) Countermeasures must work if phased in gradually
( ) Sending email should be free
( ) Why should we have to trust you and your servers?
( ) Incompatiblity with open source or open source licenses
( ) Feel-good measures do nothing to solve the problem
( ) Temporary/one-time email addresses are cumbersome
( ) I don't want the government reading my email
(x) Killing them that way is not slow and painful enough

Furthermore, this is what I think about you:

( ) Sorry dude, but I don't think it would work.
(x) This is a stupid idea, and you're a stupid person for suggesting it.
( ) Nice try, assh0le! I'm going to find out where you live and burn your
house down!

Re:Welcome to the digital age

Right. That is why open source software and Wikipedia are such failures.

Re:Welcome to the digital age

[Nullav]

Because we edit laws on Wikipedia, right?

FaceBook is evil.

[v(*_*)vvvv]

These first generation social networks are going to be the source of a lot of regret. We can only hope that the damage is minimal and that the lessons are learned quickly.

Re:FaceBook is evil.

[geekoid]

I hope people realize everyone does stupid shit sometimes and we can get over it.

Re:FaceBook is evil.

I hope people realize everyone does stupid shit sometimes and we can get over it. Tell that to the hiring mgr. or HR person. And these days, just to apply to a job, you have to provide your SSN (Not just Government, Home Depot and other corps).

It doesn't really matter if they personally don't have a problem but if they perceive that their customers will, then you're SOL.

Re:FaceBook is evil.

[Tony+Hoyle]

That's more likely.

A society where everyone pretty much knows whats going on with their friends/aquantences without all this victorian privacy bullshit sounds much more healthy.. and that's what's happening, slowly.

Re:FaceBook is evil.

[Kingrames]

What?
are you serious?
When I want privacy I'm not talking about people not seeing the legs of the dinner table.

I'm talking about people not being able to track:
how often I go to the bathroom
where I live
What movies I watch
how much gas is left in the tank of my car
how much gas I use driving to work
how much gas I use during the week

And it's not because those things are important.
It's because of powerful mathematical functions and formulas that can derive, from that, exactly where I hang out with friends, and when, and for how long, and the most opportune moment to pop out of the bushes and ninja-kill me.

Seriously. you have no business trying to math-ninja me.

also, I am NOT paranoid, so stop calling me that.

Re:FaceBook is evil.

[pavon]

It's not my friends/acquaintances that I'm worried about. And frankly I think the "more information / better communication will make us will make us more tolerant" line is wishful thinking. There have always been groups on the edge of society that were harshly treated if their (harmless) habits were exposed. Mutually Assured Destruction doesn't help in those cases - the majority may redefine all the sins that the majority commits to be socially acceptable, but not the minority sins.

Furthermore, I don't really buy the idea that lack of privacy is something that is good for society. Your relationship with your customers is not the same as the one with your boss or coworkers or parents or friends or spouse or kids. It's not so much that I want to keep things secret so much as I want them to be presented in context, which is why we tend to only share private aspects of our life when we think someone knows us well enough to understand them. People will always be unduly influenced by first impressions - it's fundamental psychology, not culture - and so I think this compartmentalization of our personal lives will always be valuable to some extent.

Even if this generation becomes more tolerant, the previous generation is still going around for quite some time, and will have disproportionate control of politics and business for that time. Most of the benefits that result from this newfound lack of privacy will take a full generation to come to fruition, whereas the damage it causes can be felt now.

Finally, even if society becomes less judgmental in personal life, there will always be profit/power motive in using your information against you. I don't trust the government or the insurance companies to look the other way when given info they can use against me, and if history is any indication, governments and corporations will aways be untrustworthy.

So, I really don't think this Victorian judgment bullshit is going away anytime soon, and I'll keep my Victorian privacy till then thank-you-very-much :)

Re:FaceBook is evil.

[Oligonicella]

Look around. The younger generation is doing just as much harm or even more so (Anonymous anyone?) than the older in terms of privacy. Don't delude yourself that once they're gone it'll be all peaches and cream.

Re:FaceBook is evil.

Exactly. Say, In 1956 I was convicted of statutory rape of a minor. In 1957 we were married and have been married since. Someone may stop reading at the first sentence. Everybody takes information differently and so we tailor explanations by whom we're talking to.

Re:FaceBook is evil.

The first generation of social networks were AOL and ICQ. People have not learned.

Re:FaceBook is evil.

[GodfatherofSoul]

I bet you've never read Les Miserables. Sometimes what's in someone's past is best left there.

Blockbuster - brick and mortar

[esconsult1]

Regardless of what is happening, i doubt facebook will every retire beacon. It will end up being fairly profitable for them. In fact, based on their CPM, that is probably the most profitable part of their business, and its the part that pisses off their users the most.

Really, when will mass market social network like facebook ever turn a profit? The only way to do that is to open the gates to their walled gardens. The only walled garden sites that really and truly make money are subscription based ones where you have to pay to go through the gate.

bang her all day, or no way?

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Where the data stops

[RollingThunder]

Interesting... part of the issue seems to be that the opting out happens at the Facebook side.

These fixes should relieve any concerns in Harris' lawsuit, right? Wrong. There is a difference between reporting the data to Facebook and publishing it to a user's news feed by default, and Blockbuster is still engaged in the former.

It seems that if your two accounts are linked, there's no way to stop Blockbuster from sending the data to Facebook; only your feed preferences keep it from popping up.

Re:Where the data stops

[sumdumass]

It appears that according to the law, Block buster needs to get "informed written consent at the time disclosure is sought" otherwise they are prohibited from disclosing any personally identifiable information regardless of their TOS or privacy policy.

Re:Easy

Oh, hey there, Malicious Link! I almost didn't recognize you without your -1 Troll goatee!

From Blockbuster's TOS

[TheRedSeven]

Parent is not correct, at least according to the website:

From the privacy policy

Legal Notices Video Privacy Protection Act of 1988. Blockbuster supports the Video Privacy Protection Act of 1988 and will use reasonable commercial efforts to require employee and business partner compliance with the Act.

Now, that's pretty vague, but if you take it at face value (HAH!), it would imply that they don't have you waive your rights under this law.

However, they do have some pretty crappy privacy when it comes to any comments you post to their website (ratings and such): From the TOS :

Content submitted to blockbuster.com (including your name) will not be confidential and may be published or disclosed in Blockbuster's sole discretion, without any compensation to you. Blockbuster may, but is not obligated to, respond to any Content.

By submitting Content, you grant Blockbuster the right to use your submitted name in connection with your Content.

Re:From Blockbuster's TOS

[TheRedSeven]

Drat. That's supposed to be in response to Animats post. I'll repost there.

Re:From Blockbuster's TOS

[Tony+Hoyle]

That's just normal bolierplate. It basically means 'You post on a public forum, your problem.'. I run a few hobby lists and they have something pretty similar when signing up. I didn't used to, until some idiot threatened to sue because my *public* mailing list sent his message to all the subscribers (imagine that!) and I refused to travel around the world personally deleting each copy off everyone's machines, google, the wayback machne, etc...

Yes but it's illegal.

[goombah99]

Your right to privacy on video rental records used to be dictated by what ever agreement you had or lacked. But then Robert Bork was nominated to the supreme court. At that time a reporter obtained his video rental history and published it. The politically charged backlash created a federal law mandating the privacy of those records.

In otherwords, video rental records have a protected status that is federally recognized. it's not the same as most other information about you. it might even be more protected than your credit history!

Now this is a civil suit ($$$) not a prosecution, so that law is only out there saying what the standard of conduct expected of blockbuster is and is not a direct factor in the trial. I would guess that block busters agreements reasonably allow them to share your data with 3rd party business affiliates or for purposes of debt collection. However, I think the expectation is that your records are not public records.

Facebook might be the loosely defined bussiness affiliate, but most people would probably say it's public. And you did not really intend to direct them to share your borrowing records, nor at the time you agreed with facebook to share certain data could you have anticipated that blockbuster would become a bussiness affiliate. They really needed to negotiate that with you.

finally just because you sign a "wavier" does not mean you cannot sue. As I understand it, you can never sign away your right to sue. The wavier simply makes it hard to win.

I note that recently Netflix ran into a problem too. Their supposedly anonymized rental records used in their contest to improve movie selection turns out to have enough information content that clever googling can re-associate names with a large fraction of the people in the data base. (e.g. they mention movies they watched somewhere on the web and this can be correlated). Some group in texas actually did the reverse calculations and showed it worked.

Re:Yes but it's illegal.

[TubeSteak]

finally just because you sign a "wavier" does not mean you cannot sue. As I understand it, you can never sign away your right to sue. The wavier simply makes it hard to win. I imagine the "waiver" you sign as part of your Blockbuster membership (assuming it's in there) would constitute the "express, written consent" required by the Video Privacy Protection Act.

Which would mean you've signed away your right to sue under that law.

What this really shows is that even opt-in laws can be easily bypassed by burying the opt-in amongst other small legal language and not making it a separate issue.

Re:Yes but it's illegal.

[10101001+10101001]

I imagine the "waiver" you sign as part of your Blockbuster membership (assuming it's in there) would constitute the "express, written consent" required by the Video Privacy Protection Act.

Which would mean you've signed away your right to sue under that law.

2710. Wrongful disclosure of video tape rental or sale records
(b) Video Tape Rental and Sale Records.
(2) A video tape service provider may disclose personally identifiable information concerning any consumer
(B) to any person with the informed, written consent of the consumer given at the time the disclosure is sought;
-- http://www.law.cornell.edu/uscode/18/2710.html

In short, no. Feel free to find text in this law to back up your imagination.

Re:Yes but it's illegal.

[sumdumass]

It took me a minute to see what you were getting at. But right as I was about to ask you which part didn't allow it, I noticed the Informed written consent part of b-2-B would make it illegal to hide it in with a bunch of other junk and it is apparent that it needs to be done when the disclosure is planned to happen.

I guess the question might be how obfuscated could the wording actually be before it isn't an informed consent and how would we define the "time disclosure is sought"? If it means some time before they decided to use your name and information specifically, then there is a lot of problems there. If it means that they could plan on doing it at a later date but with nothing specific in mind, it might not be as clear cut. Although the way I read that, as soon as they single you out, they have to get written permission to disclose anything and make some sort of effort to let you know what they intend to do for each and every time they decide to do it.

How does beacon know who you are?

[oogoliegoogolie]

If my name is Abrahamo Lincolni and there are forty Abrahamo Lincolni's on Facebook, how would beacon reliably link the Blockbuster account to the account on Facebook? IP? CC? Address? Email address? Those seem unreliable since the user can enter different info on different sites.

Or does the user have to manually link the two accounts together for beacon to work.

Re:How does beacon know who you are?

If you are signed in to your Facebook account, Beacon is running. If you then go to Blockbuster to do anything on their site, Beacon associates your FB account (the specific Abrahamo Lincolni that is you, and none of the other 39 Abe's on FB) with your Blockbuster account, and reports that association to Blockbuster.

If you didn't log out of FB before closing that tab, Beacon is (I'm pretty sure) still running, and will still do the same thing when you log into Blockbuster or any other Beacon merchant.

Anyone up for a boycott of all merchants who use Beacon?

Re:How does beacon know who you are?

Here's how:

Beacon is a cookie.

You log in to Facebook, cookie is placed. You later log out of Facebook, do other stuff on your computer.

Then, you log into Blockbuster.
Beacon stores info about what you do in your Blockbuster account (e.g., rented [movie]).

The next time you log into Facebook, Beacon tells Facebook the information it's stored.

And that's how it knows; no special input needed on the user's part.

Re:How does beacon know who you are?

[BigDaddyOttawa]

Well, luckily for you, if you're Abrahamo Lincolni, you're the only one.

http://www.facebook.com/srch.php?nm=Abrahamo+lincolni

They should have no trouble tracking you.

Re:How does beacon know who you are?

[CSMatt]

1. There's two listings in the search results.
2. You don't know if there are any others who opted out of public search listings.

Being an idiot publically online is one thing,

[v(*_*)vvvv]

but this is about information leaked that wasn't even published.

Beacon had also ruined surprise presents that had been purchased online by publishing them to Facebook. How gross is that? For blockbuster to not predict the reprocutions of this tells me they deserve to get destroyed by Netflix.

Curious

So what if you don't subscribe to Facebook, do they turn your information over to them anyway?

Re:Curious

[CSMatt]

Yes.

Social networks for all of society

Take it to its ultimate extreme: government by social networking. This link appears in the thread right above this one: http://www.metagovernment.org/

I would rather have an open source government than a FaceBook government. That is our only choice, since it is unlikely that we will keep using the old system for much longer.

Re:Social networks for all of society

[danielsfca2]

is unlikely that we will keep using the old system for much longer.

Haha. The entrenched power of the government is forever.

Re:Social networks for all of society

So all this democracy stuff everyone talks about is just bullshit, right? We should all just give up and let our rulers decide what is best for us for all eternity.

Imagine the Repurcussions

[SRA8]

I think people clearly see the danger of this beacon feature abstractly. But like me provide two examples that may show the problems in more context:

Example 1: Man buys book "How to Quit Your Job and get a Better Job for Dummies". His employer sees it on his profile and passes on the man for a job promotion, why promote someone who is looking to quit.
Example 1a: Same as above but man was buying the book for a friend unhappy with job. Man wanted his friend to find a job as enjoyable as his own.

Example 2: Man buys a book "Surviving AIDS" for a college project. His neighbors now think he has AIDS.
Example 2a: Man gets AIDS 10 years later. Denied for treatment by health insurance company as a pre-existing condition, based on his purchasing the book 10 years ago.

Re:Imagine the Repurcussions

[CSMatt]

The overall message you are trying to convey is one that should be taken very seriously, but these two examples are pretty poor.

Example 1a: Buy the book with cash. Don't buy anything on credit/debit that you don't want traced back to you.
Example 2a: Who as AIDS (not just HIV, full AIDS) for over 10 years? I was always under the assumption that AIDS victims didn't last longer than 5 years.

Re:Imagine the Repurcussions

[danielsfca2]

I was always under the assumption that AIDS victims didn't last longer than 5 years.

Nah, with today's treatment I'm pretty sure you can live with full-blown AIDS for decades.

Re:Imagine the Repurcussions

[Requiem18th]

Du'h, the phrase "Man gets AIDS 10 years later" means he got AIDS after 10 years of not having AIDS, not that he got AIDS and 10 years later he was looking for treatment.

  And buying stuff with cash is treating the symptoms (of tracing, not AIDS) not the disease.

  Seriously, Am I missing a here?

Re:Imagine the Repurcussions

[codegen]

How do you buy a book with cash off the internet? To the best of my knowledge amazon does not have a COD option. Do you have to rent a post office box just to buy a book? I suppose that the smaller book stores might be willing to order in special for you, but those stores are getting harder and harder to find.

Re:Imagine the Repurcussions

[SRA8]

The overall message you are trying to convey is one that should be taken very seriously, but these two examples are pretty poor. Example 1a: Buy the book with cash. Don't buy anything on credit/debit that you don't want traced back to you. Example 2a: Who as AIDS (not just HIV, full AIDS) for over 10 years? I was always under the assumption that AIDS victims didn't last longer than 5 years.

Having to unnecessarily change all their online habits is exactly what people shouldn't have to do (if they even know better.)

Magic Johnson went public with his HIV+ status in 1991.

Re:Imagine the Repurcussions

[CSMatt]

Barnes and Noble, perhaps?

Re:Imagine the Repurcussions

[CSMatt]

Du'h, the phrase "Man gets AIDS 10 years later" means he got AIDS after 10 years of not having AIDS, not that he got AIDS and 10 years later he was looking for treatment. Which was exactly what I was trying to convey in my rebuttal to Example 2a. I haven't looked into it, but I'm pretty sure that AIDS patients don't last for 10 years after diagnosis, which the poster is implying the insurance company believes when the man gets denied insurance because of a "pre-existing condition" (him buying the book 10 years ago). It is obvious, given the context, that the man did not have AIDS when he bought the book, but the poster is trying to suggest that the insurance company thought he did. My rebuttal implies that the insurance companies should know full well about the longevity of AIDS patients, and should therefore discard the book as evidence of a "pre-existing condition" because it was clearly purchased so long ago that, had the man really had AIDS at the time, he would most likely be dead by now.

Even if I am wrong, and it is possible to live 10 years with AIDS, the insurance company should realize that there was no way that he could have afforded the medication to live that long on his own. AIDS medication is simply too expensive, and it would never have made sense for the man to pay for them out of his own pocket for 10 years and then suddenly ask for help from the insurance company.

Re:Imagine the Repurcussions

[Requiem18th]

Ok i got you wrong, but, well the insurance company can use his private data to say he was planing to get AIDS. I mean, they are lawyers and bankers, they've got to at lest try...

Re:Imagine the Repurcussions

[SRA8]

I guess you didnt see my other response. Magic Johnson has publicly had AIDS for almost 17 years now (likely longer, but he/we didnt had not diagnosed it yet.) With treatment, AIDS easily lasts for well over 15yrs. Secondly, why are you dwelling on the 10 year figure. How about we reduce it to 3 years and make the example suit your fancy?

Re:Imagine the Repurcussions

[codegen]

Nope. At least I couldn't find any option to buy with cash from them either. Just lots of assurances on how safe it is to give them your CC number.

Re:Imagine the Repurcussions

[CSMatt]

Really? I've never bought anything at Barnes and Noble, but so far pretty much every brick-and-mortar store I've even been to doesn't mind if I pay them in cash.

Re:Easy

[GoldCow64]

Why isn't this shit being deleted again?

Hey, idiot!

So what's your home address, phone number, birthdate and SSN?

Sorry to puncture your idiotic notions with healthy reality.

Facebook Platform Application Terms

[ASBands]

(b) Examples of Facebook Site Information. The Facebook Site Information may include, without limitation, the following information, to the extent visible on the Facebook Site: your name, your profile picture, your gender, your birthday, your hometown location (city/state/country), your current location (city/state/country), your political view, your activities, your interests, your musical preferences, television shows in which you are interested, movies in which you are interested, books in which you are interested, your favorite quotes, the text of your "About Me" section, your relationship status, your dating interests, your relationship interests, your summer plans, your Facebook user network affiliations, your education history, your work history, your course information, copies of photos in your Facebook Site photo albums, metadata associated with your Facebook Site photo albums (e.g., time of upload, album name, comments on your photos, etc.), the total number of messages sent and/or received by you, the total number of unread messages in your Facebook in-box, the total number of "pokes" you have sent and/or received, the total number of wall posts on your Wall(TM), a list of user IDs mapped to your Facebook friends, your social timeline, and events associated with your Facebook profile.

That's from Facebook's "privacy" statement. That said, I'm not sure the lady has any right to this lawsuit, as it is fairly explicitly stated that there are no rules.

Re:Facebook Platform Application Terms

[Culture20]

She's suing blockbuster, not facebook.

Re:More problems...if you want them

I am astonished how otherwise intelligent people never stop to think how easy it is to "anonymize" their Facebook accounts but still have their close friends recognize them. For example, when creating an account:

* Use a nickname instead of your real name.
* Use a disposable email account.
* Don't bother filling out info like, phone numbers, home address, gender, relationship details.
* Don't fill out any other sensitive info, or use fake, or humorous data only your friends would understand.
* Make use of FB's extensive privacy settings to lock out access to non-approved friends.
* Turn off FB's "social ads" feature.
* Use Firefox with Ad Blocker Plus enabled.
* Block suspicious or undesirable apps.

You can still enjoy these social web sites without advertisers or employers getting any useful, real information on you.

Re:Easy

[koh]

Because YHBT. YHL. HAND.

Re:Easy

[GoldCow64]

Elaborate please? I mean really, this is just like the old ass hole goatse links. Why aren't they just simply deleted?

Then block Beacon

[CSMatt]

Block Beacon from ever being accessed by your Web browser.

The sites are:
http://.facebook.com/beacon/*
http://facebook.com/beacon/*

Re:Easy

[Kingrames]

In the words of a slashdot user's sig who shall remain anonymous,
"Censorship is always more offensive than that which is censored. Always."

Re:Easy

[GoldCow64]

Haha, well I think thats true in almost all situations. But say someone spammed what he did 100 times. What I'm trying to get at is, there is a limit.

Re:Easy

No, what you are getting at is that there is a limit for you and you think that limit should apply to everyone. Of course that's what censorship is.

Re:Easy

[WhatAmIDoingHere]

Browse at +3.

Re:Easy

[GoldCow64]

lol, you /.ers are a feisty bunch. Ok, so think of this example. I want to kill you to express myself. Why would you censor me?

Re:Easy

[Z34107]

Are laws against murder "censorship" against "violent expression"?

Goatse = (attempted) eyeball murder.

Re:Easy

[sumdumass]

Perhaps instead of a deletion, a {work unfriendly} advisory in brackets could be added.

There is a real problem with some links in some places. Especially when they are presented at a site that is somewhat "work/family safe" oriented. I say safe orented because it is well known that people surf this site at work or in front of the kids. Purposely hiding the true origin of a link to trick people into viewing it is about as stupid as it can get.

And no, it isn't censorship to delete a link that is fed through a proxy in order to obfuscate the origin so that people who wouldn't otherwise click on it could be tricked into doing so. If the point was to post a link to something, then the link to it would be posted and not bounced from a assumed safe domian. In case your wondering, http://rds.yahoo.com/_ylt=A0oGkwkgCAlIK5YAl_5XNyoA/SIG=1hr6qq1f/EXP=1208637856/**http%3A//slashblog.notlong.com/ is the same as going to http://.slashblog.notlong.com/

And yes, I purposely broke both links. The first one can be followed and anyone with half a brain can fix the other after opening it. It you have doubts, you can go up and click on the original to verify.

Re:Easy

[GoldCow64]

Well, what his post really does is prevent me from expressing myself by intentionally crashing my browser. Temporary of course, but it prevents me none the less.

Re:Easy

[Z34107]

Well, you see, I'm for the "censorship" of spam. Spammers are a minority of users I'd like to see disenfranchised of everything but breathing. Well, maybe that too.

Saying that a spam filter is censorship is exactly like saying arresting someone for murder is "censorship." They're both non-sequitors, IMHO, TUIA (To Use an Internet Acronym>)

Re:Easy

[Ihmhi]

Gotta love NoScript. First it stops that annoying "Rickroll screen that moves around and annoys the hell out of you", and now this website too?

Is it legal to marry a program?

Well, it's not social networking per se

[Moraelin]

Well, I don't use these sites, so maybe I'm talking out the arse. But the way I see it, the root of all evil isn't that they're social networking sites. It's that they're run by evil fucks who have no qualms about raping your privacy for a quick buck. And have found equally evil fucks (e.g., Blockbuster) who cheerfully ignore not just your privacy, but also the law, in their race for more effective advertising. I.e., again for a buck.

There's nothing to say that other sites couldn't do the same, other than personal scruples. (Including not asking for that much private data to start with.)

E.g., Slashdot could share the data the same way. E.g., if you seem to aggree with user John Doe (e.g., you added him to friends, or modded him up more than once), then it may interest you that he rented "Dilbert Does Detroit" and "Gay Blowjobs volume 13." You know, maybe you'd take that as a movie recommendation ;)

E.g., AOL essentially already did that kind of a privacy violation when they released those people's search strings. Not as marketing, sure, but part of an "omg, someone code a better search engine than Google, please, they're eating our lunch money" fit.

There's nothing to say they, or a similar company couldn't do the same. E.g., if you use AIM or pretty much any major IM program, they have your data and your contacts list. Maybe if you're good enough a friend with John Doe to have it on your contacts list, well, see above, you might be interested in those movies too. (Or, of course, maybe he's your co-worker, or boss, or the pastor in your bible study group. In which case I guess it will be even more interesting to know that;)

E.g., GMail has not only your address book and mail traffic history to data-mine if they wanted to, but also who sent a GMail ivitation to whom in those marketing stunt days. It's a fairly safe assumption that people sent the first invites to their friends and family, and only moved on to perfect strangers if they still had any left. Maybe if you sent your first GMail invitation to John Doe, you like him enough to take his history of movie rentals as a recommendation.

E.g., almost any MMO makes you enter a ton of personal data and is used by a lot of people as, basically, a social site in 3D. It's fairly trivial to look who's on your friends list, who you're grouping with a lot or talking to a lot, who else is in your guild, who you've brought to the game (e.g., via those "invite a friend, get a free week!" incentives), etc, and start showing them what else you rented or bought.

Etc.

And there's nothing to say that such data can't be equally accessible to a potential employer. (There are already people who go "I led a guild on WoW" when they apply for a management position.) Or outright sold to any potential employer who wants to pay a few bucks for it.

Basically what I'm trying to say is that it's not just social sites: You already give a lot of data about yourself to a lot of people. And at the moment in a lot of places there's nothing except wishful thinking to reassure you that they won't use it. _Probably_ most of them would rather not lose your business by posting your private stuff on a billboard. But as we see here, Blockbuster didn't think twice, and Facebook had nothing to lose anyway.

Sure, you can be paranoid and avoid giving any personally identifiable data, but if the problem gets too widespread, it can be just as much a problem if you're the only guy who is an information black hole. Sorta how the early stealth ships were actually too good at absorbing radar, so they were actually quite visible to radar as a hole in the ocean. If you're the only guy for whom an employer can't find any trace on the net, well, maybe you have some dark secret to hide.

Methinks it would be high time to swing the law bat at that kind of problem.

Re:Easy

Censorship is what the government does, using threats of punishment. The owner of a message board deleting posts is not censorship.

Re:Easy

[ArAgost]

This is not censorship. This is common sense, keeping the place clean, etc.

Re:Easy

[MrNaz]

No, but I think that people like you who think that censorship is good should be censored.
Oh, wait...

Here's the Solution

[DeanFox]

Video Privacy Protection Act, which prohibits "video tape service providers" from allowing third parties to access personally identifiable information about someone's renting or buying habits without their express, written consent. (The law was enacted in 1988 after a newspaper published records of 146 videos that Judge Robert Bork had rented during his consideration for a Supreme Court vacancy.) It always comes down to this. Protection laws like this only get enacted when they, the law makers themselves, are affected. As it stands now the corporations have their ear. If this was to happen in 2008 they would have ban, not the corporation, but Facebook.

-[d]-

At least it isn't government

[smchris]

The FBI getting a librarian to tell them what you have been reading, well, that's obviously evil. But this is business-to-business. Isn't it great to see free and unbridled libertarian capitalism? I mean, hey, who's forcing her to use Blockbuster?

On the other hand, can it really be that the Reagan era schooled generation is starting to see that corporations _can_ be evil?

Re:Easy

[GoldCow64]

Yea, I think thats a good idea to flag posts like that.

Re:Easy

[Kingrames]

As long as the information is still there it's not censorship.

I think the point is that nobody should have the authoritative power to simply delete messages.

Re:Easy

[sumdumass]

I personally don't mind if they have the power or not. I mean the information in question was crafted in a way to trick people into viewing it. I hardly see that as free speech or anything I am concerned with. I liken it to a scam attempting to mislead a person for whatever gain and I don't care if it is deleted. I would be just as satisfied if not more so with a "not work safe" tag or something surounding the link to inform people of the dangers of it though.

Re:Easy

you bastard.

i guess i've been away from "teh internets" too long and i fell for that.