Slashdot Mirror

← Back to Stories (view on slashdot.org)

World Privacy Forum's Top Ten Opt-Outs

Posted by kdawson on from the do-not-want dept.

Ant writes in to mention the World Privacy Forum's top ten information collector/user list, which shows opt-out instructions (or at least a starting point): "As privacy experts, we are frequently asked about 'opting out,' and which opt outs we think are the most important. This list is a distillation of ideas for opting out that the World Privacy Forum has developed over the years from responding to those questions. ... Many people have told us that they think opting out is confusing. We agree. Opting out can range from the not-too-difficult (the FTC's Do Not Call list is a fairly simple opt out) to the challenging (the National Advertising Initiative (NAI) opt out can be tricky). Our hope is that this list will clarify which opt out does what, and how to go about opting out. In this list, some opt outs can be done by phone, some have to be sent in a letter via postal mail, and some can be accomplished online. Some opt outs last forever, some have time limits, and others can be changed at will. If an opt out is on this list, it is because we thought it might be important enough to be worth whatever annoyance it may pose. "

22 of 162 comments (clear)

  1. The Wrong Approach by afabbro · · Score: 5, Insightful

    How about making everything in the world an opt-in by default?

    For example, I don't recall announcing that I want telemarketers to call me, so why should I have to opt-out?

    --
    Advice: on VPS providers
    1. Re:The Wrong Approach by Anonymous Coward · · Score: 5, Insightful

      well that's simple, it's because the telemarketers automatically opt-in'd you into their call 24/7 list.

    2. Re:The Wrong Approach by BrokenHalo · · Score: 3, Informative

      Didn't you read the contract? It's in the small print...

      Even if it is, who cares?

      The point is, if they send you crap, the best way to deal with it is to not respond in any way visible to the spammer. An opt-out is usually seen as a confirmation that you have a valid address. An extra rule or two on your email filter, and/or an extra entry in your hosts file if you want to be thorough about never doing business with the spammer might help.

      Or you could get creative: A few years ago, I was getting a load of mail every day from some travel outfit that had got my address from somewhere, and I couldn't get them to stop. So I collected every address of theirs that I could find and put them all (with mailto links) in a little webpage with a title to the effect that "I am willing to accept all bulk mail; please contact me at the following addresses..." and left the webcrawlers to do their job. The deluge stopped within three days.

    3. Re:The Wrong Approach by Forge · · Score: 3, Insightful

      I have an elegant solution. Regardless of where I shop or what I buy, if they ask for a phone number and don't obliviously need one, I give them my number in Jamaica. 22c per minute on Skype, even more with most other services. It won't discourage them (still get some calls) but it dose my heart good to know that I am costing them money, even if it's just a few cents to leave a voicemail I will ignore.

      For an email address I give them a disposable address. It's good to have a few of these. That way if one of your retailers is selling info to Spammers you can probably narrow it down.

      More importantly you can just not read that inbox since you never gave the address to anyone you want to hear from.

      --
      --= Isn't it surprising how badly I spell ?
    4. Re:The Wrong Approach by NovaHorizon · · Score: 4, Informative

      Untrue. Telemarketers can NOT call you past 9pm at night, though I'm unsure how early in the morning. Also, telephone surveys are exempt from the same rules.

      --
      Defective Logic
    5. Re:The Wrong Approach by Kratisto · · Score: 5, Funny

      somegobbledygook@mailinator.com fucking HATES you, and the server admins aren't too happy either.

      --
      Conscience is the inner voice which warns us that someone may be looking.
    6. Re:The Wrong Approach by KDR_11k · · Score: 5, Funny

      Don't worry, the list is located in Alpha Centauri and requires showing up in person to be added.

      --
      Justice is the sheep getting arrested while an impartial judge declares the vote void.
  2. Telemarketing is a good opt-out but... by BadAnalogyGuy · · Score: 5, Insightful

    Face it, the types of emails that you want to opt out from are exactly the ones that do not honor opt-out lists.

    Remember when you first tried to ride a bike and your dad pushed you so hard that you fell over and skinned your knees and bloodied your nose? This is like taking that swing at him that you always wanted to. Unfortunately at that age, no matter what you do, he wasn't ever affected by your little attacks and rants.

    1. Re:Telemarketing is a good opt-out but... by AuMatar · · Score: 5, Informative

      No, I don't. Mainly because my dad wasn't an asshole.

      --
      I still have more fans than freaks. WTF is wrong with you people?
    2. Re:Telemarketing is a good opt-out but... by cypherwise · · Score: 5, Funny

      Remember when you first tried to ride a bike and your dad pushed you so hard that you fell over and skinned your knees and bloodied your nose?

      At least you live up to your name...

  3. Advertisers do not respect their targets by erroneus · · Score: 4, Insightful

    The disrespect that advertisers pay to their targets works well for them as it is believed that it boosts their viewership and of course the viewers who are most likely to buy and spend are unaware of or don't care that they are being disrespected.

    I have little doubt that if people could get sales by knocking on your door and punching you in the face to make a sale, they would do exactly that. They don't care about the harm they cause.

  4. World? by Anonymous Coward · · Score: 5, Insightful

    For something from the World Privacy Forum it didn't really give much info for people that don't live in the US.

  5. There's only one opt-out by sonamchauhan · · Score: 4, Informative

    There's only one true opt-out... and it's at the receiver's end.

    This is really possible only if I created a unique, unguessable email address each time I gave my email out.

    This is not as impossible as you think. For instance, Gmail supports the "+arbitrary_tag" convention. So email sent to:
        example+listserv1@gmail.com
        example+bank1@gmail.com
        example+dad@gmail.com
      -- all shows up in the Gmail inbox of 'example@gmail.com'.

    If you started getting spam at one of the 'example+...@gmail.com', you can guess who gave your address out.

    See: http://alblue.blogspot.com/2007/05/multiple-addresses-with-gmail.html

    Note, Gmail's convention leaves out the 'unguessable' bit of this idea out - so spammers can easily build rules to harvest real addresses from gmail addresses containing a '+' sign.

  6. Old fashioned opt out by eggman9713 · · Score: 3, Interesting

    I used to get catalogs from a marketing company despite opting out via dmachoice.org, as they were a member of the Direct Marketing Association.
    I would get at least 2 catalogs a week from these people despite letters and phone calls asking them to stop. Well, After that didn't work, I collected all the catalogs over a 3 month period, stuffed them in a large envelope and sent them back to the company postage due. I never received another catalog from them.

  7. Easy solution by NineNine · · Score: 4, Funny

    An easy solution for me is to change my phone number often. Problem solved.

  8. FERPA and multiple levels of opt-out by Anonymous Coward · · Score: 3, Insightful

    Most schools interpret/implement FERPA-related opt-outs in such a way that if a student's information is restricted, teachers are not allowed to post that student's photo on the web, or in the yearbook, or in the school newspaper, etc.

    In the school district I work for, we are not allowed to take a child's picture if they have opted out. That means that, at every event I go take photos at, I have to find 'homeroom' teachers for each student and verify whether any students have opted out, then take photos around them. Before I post pictures, I have to verify again. Before I give those photos to the teachers and students for their own use and enjoyment, I have to remove photos of those students.

    Privacy is good, privacy is important. I think FERPA-type rules are very important because I've seen various employers do some horrible things with employee and customer data without realizing the problem. Implementations at the school level definitely need to be improved -- I'm tired of seeing how bad kids feel about being the only person in their class not in pictures.

    The solution is easy: allow parents to opt-out of sharing textual directory information with anyone outside the district, but still allow student participation in district activities, teacher web postings on official sites, and district photography.

    If your school or your child's school only provides all or nothing opt-out, you need to spend 30 minutes one night and go voice your opinion to the school board at a school board meeting. The board should appreciate your input and it's the only way to really be heard -- contacting anyone else and your question will just get buried by someone who doesn't want to do the extra work to make it happen. (read: my boss)

  9. Opt-in actually makes more business sense. by Shag · · Score: 5, Interesting

    Using opt-in saves you the cost of marketing to people who don't want your stuff, saves you the cost of storing data about them, and saves you from the negative word-of-mouth opt-out causes.

    I've run opt-in marketing campaigns, and have converted multiple employers from opt-out to opt-in. Before the switch, every mailout would result in an inbox full of complaints and threats. After the switch to opt-in, people would actually mail us asking where the ads were, if we were late.

    I'll take opt-in over opt-out any day.

    --
    Village idiot in some extremely smart villages.
    1. Re:Opt-in actually makes more business sense. by ImaLamer · · Score: 4, Interesting

      I agree. As both a list manager for e-mail and phone lists we have the opinion that we don't want to waste time with the people who don't want to hear from us.

      On the calling side; we love the FDNC list. It means we don't have to spend man hours dialing people who will just scream and holler (when all it takes is a simple 'take us off your list'). As far as e-mail goes; we sent out opt-in emails to 20,000 folks in our market area and 95% of them opt'ed in. People respect that you asked first and if you tell them there might be interesting content coming their way they watch for it.

      --
      Get your Unix fortune now!
    2. Re:Opt-in actually makes more business sense. by ImaLamer · · Score: 3, Interesting

      And before you reply saying that asking to be taken off a calling list doesn't work - realize you've dealt with fly-by-nights or otherwise shady ventures before. We are quick to blacklist anyone who is nasty or otherwise shows no interest, it just doesn't pay to keep calling.

      Spam is spam, but believe it or not... most people WANT to be marketed to. Don't believe me? Purchase some Experian demo data and look at the 'multi-company mail responders'. In our geographical market most of the households do in fact reply to junk mail and so forth.

      (And you'll never beat junk mail - it makes the USPS too much money. You can opt-out of 'junk mail', but you have to wait in line to do it. It's just too much postage for the USPS to turn down.)

      --
      Get your Unix fortune now!
  10. Reality Check by db32 · · Score: 4, Interesting

    Opt out of everything! Encrypt everything! Privacy is supreme! Oh wait...except you make yourself a bit of a target by being part of that tiny percent that actually gives a shit about that kind of stuff. I agree that privacy is important. I agree that some things should not be so easily made public information. I agree that advertising is irritating as hell. However, making yourself relatively unique by fighting so hard to stay "under the radar" actually makes you stand out as one of the few that actually are totally concerned about it. The unfortunate reality is MANY people believe "If you have nothing to hide then you have nothing to fear" and the "they" rely on that behavior to find the "suspect" people.

    Let us break this down in a way that I suspect all "geeks" and whatnot can understand. Do you spend much time investigating the events/items that meet your expectations of "normal"? Or are you more interested in the "odd" result? How much time do you really dedicate to fixing a Windows glitch vs how many time you just write it off to "Yeah, typical Windows behavior". Compare that to how many times you investigate into a *nix type glitch where the norm is to behave in exactly the same fashion every time unless some odd and relatively easily discoverable condition occurs...

    The very act of struggling so hard to make yourself completely anonymous and "off the radar" makes you a high visibility target. I often see people go on about how they refuse to use discount cards and so on... WHY?! Seriously...is your hot dog and milk buying patterns so fucking important to your privacy? If you are really buying something "suspect" or "interesting" then don't use the card. Fuck, I actively check costs and ingredients in shit because I am concerned about what I am paying and what I am eating. What better way to "vote with your dollar" then to send a nice "I am not buying this fucking garbage" message every time you check out? I don't buy shit with aspertame, I don't buy shit with partially hydroginated bullshit (did you know they can legally claim 0 trans fat by making it less than .5g per serving? Who the fuck eats 1 cookie as a serving? Eat 2 cookies and you get ~1g of trans fat...5g of which per week increases your heart attack risk by ~25%). I am more than happy to provide that information to the marketeers because I want them to know I don't want that bullshit in my cupboards! How else do you plan to send a strong message with your dollar? Make sure they pay attention to your dollar!

    Put yourself in "their" shoes. Who stands out more...the guy trying to mind his own business in the large crowd of other people who are generally just trying to mind their own business or the guy who is sneaking with sticks strapped on all over trying to look like a shrub. "They" employ a great number of very intelligent people more interested in solving puzzles than being "bad guys" to weed out those strange responses. It is an interesting challenge in human behavior.

    Seriously...hiding every aspect of your life makes you more suspect. I think the notion of making every aspect of your life public voluntarily through myspace/facebook/twitter/whatever is absolutely moronic in the extreme, but trying to hide every aspect is the same thing. Unless you are looking for pedophilia, necrophilia, beastiality, or some other pretty universally questionable porn...you probably stand out more as "I don't ever look at porn" rather than "I like *XYZ* kind of porn".

    The biggest violators of "privacy" are in it to make money, not to be evil dictators. They are going to dig into your information whether you like it or not. Provide them information that sends a clear message of what you want and they will most certainly meet your demands to continue making money! Every time some telemarketer calls me with some survey I am HAPPY to spend 5-10 minutes of my day answering their questions. You cannot even begin to imagine my amusement when they start asking about how much TV I

    --
    The only change I can believe in is what I find in my couch cushions.
  11. sidewalks by reiisi · · Score: 3, Insightful

    Part of me wants to agree with you.

    But another part of me tells me making opt-in the defualt by laws with teeth in them is not going to be a good thing.

    Think about your sidewalk. It's there for a purpose.

    Block off your sidewalk with a 3 meter wall and a moat full of crocodiles and you get no solicitors. But the firemen and the EMTs also have a problem getting in when you're home alone, passed out, with the house burning down around you.

    The problem is that no-call lists are not No-solicitors signs. They're more like attractive nuisances. Train wrecks in progress.

    No-solicitors signs can't be enforced on people who are not from your country until the Internet starts having laws, and we don't want the Internet to have laws.

    Which means the ultimate solution is a stratified (balkanized) Internet, and we don't want that, either.

    At least, we don't want stratification until the ISPs get their hands out of the cookie jar so that every home, family, and/or user gets a full domain name and the ISPs either provide mail service to that domain or provide the hooks for the domain owner (not renter) to run his or her own server.

    And before that, we need better standard OSses. (That means we have to get Microsoft, Apple, and Oracle out of the way. IBM, too, since getting the others out of the way would leave them with no real competitors. Sun being bought by Oracle worries me.)

    And we need better standards for e-mail, file sharing, web-site publishing, etc., standards that transparently support simple forms of encryption. Not perfect encryption, but good enough to eliminate casual eavesdropping just by putting an pwn3d bot's interface in promiscuous mode.

    That's a lot of work, and we're hiding from it.

    Until then, RFC 5233 addresses can help a lot, if used wisely.

    How to use the RFC 5233 addresses wisely?

    First, assume that your base address will soon be harvested. Thus, your base address of user@isp.example is essentially an alias for user+spam@isp.example . Pre-filter it that way.

    Second, set up a suffix for bulk purposes, such as user+bulk_nnnnn@isp.example . "bulk" is okay, but you might prefer something a little more original to yourself, like "klub", or "hanbai". The serial number could also come before or in the middle, like bunnnnnlk, and you might want to use pseudo-random serial numbers instead of just cycling through from bu00000lk to bu99999lk.

    Hmm. bu23645lk would be harder to filter than bulk23645 with the simple non-RE filters that are most common.

    Third, set up suffixes for mail lists. user+list_nnnnn@isp.example or user+listname@isp@example .

    By setting up suffixes, I mean that you outline a system of filter rules.

    Fourth through n-1-th, plan out the patterns you'll use for friends, family, church, school, club (hmm. klub. woops.), etc.

    All these can be white-list controlled, because you have an idea who and where mail addressed that way should be coming from. Two or three sets of filters for each system, one that white-lists known senders, one that diverts unknown senders to a "probably-junk" folder, and maybe one that (temporarily or permanently) black-holes known offender senders who have latched onto that group of suffixes.

    Finally, you have a set of doorbell or knock addresses that you give out at business meetings and other parties: ackr_nnnnn@isp.example . (At this point, I assume that the use of the knock address is obvious?)

    Now, I'm going to polish that up a bit and publish it on my blog.

    Of course, with a little time, you can actually set up a domain of your own for cheap with a little help from a place like google.com and a place like dyndns.org. (Google will run your mail server for you if you have a web server and a domain name pointed to it. Of course, there's that thing about letting Google spool your mail, but it is possible.)

    --
    Computer memory is just fancy paper, CPUs just fancy pens with fancy erasers; the 'net is just a fancy backyard fence.
  12. from 47cfr64.1200 by RobertLTux · · Score: 3, Informative

    "(c) No person or entity shall initiate any telephone solicitation,
    as defined in paragraph (f)(12) of this section, to:
            (1) Any residential telephone subscriber before the hour of 8 a.m.
    or after 9 p.m. (local time at the called party's location), or
    "

    http://frwebgate.access.gpo.gov/cgi-bin/get-cfr.cgi?TITLE=47&PART=64&SECTION=1200&TYPE=TEXT
    chapter and verse for you (assuming a US location) or as formally titled

            TITLE 47--TELECOMMUNICATION CHAPTER I--FEDERAL COMMUNICATIONS COMMISSION (CONTINUED)

    PART 64_MISCELLANEOUS RULES RELATING TO COMMON CARRIERS-- Subpart L_Restrictions on Telemarketing, Telephone Solicitation, and Facsimile Advertising Sec. 64.1200 Delivery restrictions.

    --
    Any person using FTFY or editing my postings agrees to a US$50.00 charge