Slashdot Mirror
The "Hidden" Cost Of Privacy
Schneier points out an article from a while back in Forbes about the "hidden" cost of privacy and how expensive it can be to comply with all the various overlapping privacy laws that don't necessarily improve anyone's privacy. "What this all means is that protecting individual privacy remains an externality for many companies, and that basic market dynamics won't work to solve the problem. Because the efficient market solution won't work, we're left with inefficient regulatory solutions. So now the question becomes: how do we make regulation as efficient as possible?"
1. Fake own death
2. ???
3. Private!
It's funny that one could look at this and say the markets don't work. The markets ARE working and that most people don't actually care about privacy.
If people -cared- about privacy, they would be willing to pay for the extra care it takes to ensure that their data is private. But, we live in a world where most people really don't care so much if everyone else knows what they are doing, so long as they are not confronted with it, or misuse the information.
Like, if you told someone at a grocery store that, to get their "club card" savings, the store would know exactly what they bought, they would say, they probably didn't care. Now, if they got a letter from the grocery store saying, "hey, since you like strawberries, you might like our sale on blueberries", they might dig that too. And, if they got junk mail from blueberry and strawberry growers, even that might be ok. But, if they got an email saying, "hey, you are killing humanity because you are eating strawberries and your preference for red fruit makes you some kind of a communist", then they would be pissed off.
Bottom line is, people don't care about privacy, but they do care about having their personal information being used to hurt them. It's pretty much the 5th amendment proposition, writ large and writ everywhere. Nothing is really private, but, you can't have your personal information be used to attack you, and that is what the market reflects.
This is my sig.
Define the ownership of personal data to include the person whom the data applies to.
If I enter into a business relationship with someone else, all the information I provide should be considered to be co-owned by both of us. Any subsequent sharing of that information with a third party should involve both the consent of both of us as well as sharing the proceeds of that subsequent exchange. When the costs of managing such transactions are factored in, far fewer of them would occur.
The idea that anyone complains about the costs of complying with such regulations puzzles me. I mean, I could start a business stealing cars and then complain that the costs of complying with auto theft laws were onerous and harming the profitability of my enterprise. Tough sh*t. Its all based on fundamental property rights. Just because someone has developed a business model based upon a legal oversight doesn't legitimize their complaint when the law catches up and plugs the loophole.
Have gnu, will travel.
Unfortunately, not all of us live in a Democracy. We Americans, for example, live an a Plutocratic Republic that pretends to be a Democracy.
Go ahead, Ferengi, mod me down for expressing an honest opinion that happens to be true. When the Corporation can "donate" a thousand bucks to the Republican and another grand to the Democrat, it doesn't matter which candidate loses, the corporation wins.
Free Martian Whores!
There are even more direct costs for consumers who wish to maintain their privacy these days. For example, how many of you have signed up for the discount card at the supermarket or the "rewards card" at any number of other businesses? Unless you have taken other steps which also cost money, such as arranging a mail drop or renting a PO Box, you have essentially "sold" your privacy in exchange for a discount on purchases. Those of us who value our privacy and wish to maintain it are frequently compelled to forgo such discounts or else pay, in time, money or effort, to set up specialized fronts to protect our "true" identities (i.e. the mail drop, aliases, corporate credit card, etc). Perhaps privacy was less expensive in the distant past, but in modern society preserving it effectively is becoming ever more labor intensive and expensive. In fact, the invasion of our privacy is now so pervasive that people give strange looks to those of us who decline to be part of "rewards", club cards, and other privacy invasive schemes in exchange for discounts; as if they cannot understand why someone wouldn't fill out a card with their real name, address, SSN, and mother's maiden name in exchange for a $5 discount.
Yes, it is.
Transparency for the state means transparency on laws as they are prepared, transparency towards regulatory bodies of those laws, etc... It means that the rules that state officials prepare and their work is fully transparent.
Still, the said officials can retain the full privacy of everything that isn't directly work related (IE. What they do on their time off work, what they do during their lunch breaks, whose photo they have in their wallet and what bodyparts have they pierced...)
State is indeed some concrete thing, independent from individuals. Ideal situation is that state represents the masses but it never represents the individuals.
You have:
SOX, CISP, GLBA, HIPPA as the most expensive for corporations. I can speak to CISP and HIPPA from a professional standpoint. The others I cannot.
CISP compliance has a serious impact in that test environments cannot use raw customer data for testing for banks. Sanitized data must be used in test environments normally. In the event of a product fix that needs to be testing back in a test environment offshore resources for instance cannot have access to those environments and the data must be documented and exist only for a limited time. Pulling 20,000 records for testing for instance may take 4-6 hours pre-CISP but post CISP the sanitization process may push that out to 5-10 hours. If you are attempting to do that process in the evening, with only a 6 to 8 hour window CISP meant that many had to beef up their systems to ensure the process was complete within the window. For smaller banks the costs must have been harsh. Updating software, policies and procedures can easily rack up a 6000 labor hours in the first year.
On average CISP complaince can double the turn around time of a production fix (say 20-60 hours of labor) into 40-80 hours for turn around. YOu have an entire chain of events that fire off and kicking out certain staff due to the existence of customer information takes time with SAPs, VPN connectivity, etc... Great for the customer, I cannot argue it, but expensive.
HIPPA I can speak to growing up in hospitals and clinics as well as painting in those locations part time. Part of the requirement that I see directly is, if I have to paint a clinic or office the clinic staff (not I the painter) has to go through and ensure that ANY AND ALL patient documentation is out of sight prior to me starting. HIPPA has too many "reasonable" language mistakes in it as who defines "reasonable"? The judge? Lawyers? JACO? Who? So paranoia is high with patient data (as it should be.) But getting staff to lock all that up prior to maintenance adds time.
Another hidden factor is space. A clinic now has to try and keep other patients out of ear shot pushing the lobby out farther.
Further segragation of roles and even something as simple as those privacy screens add up. In a typical hospital with 200 computers in it let us say, means at $10 bucks a screen you have $2000 in new expenses.
I've seen a few locations require the inter-office mail couriers to have locked boxes while moving around the facility. Those have to cost at least $350 bucks a box for those.
Now all those HIPPA forms are going to double if not triple the amount of paper you are ordering. Liability and insured communications also increase costs and add delays. More cerified mail goes out now as far as I can see since HIPPA also.
One thing to keep in mind is that ANY GOVERMENT COMPLIANCE that exists is disporotionally expensive to smaller organizations. SOX killed a lot of smaller corporations due to the cost of compliance. The smallest get exemptions, the largest can afford it, it's the mid-size businesses that get crushed.
-=[ Who Is John Galt? ]=-
If a company wants to reduce its costs for protecting private information, stop collecting the damn stuff in the first place. As a recent example, why do I need to register at a website just to listen to a few bird call recordings? Or give my (fictitious) name and address just to read an article?
So American's were completely brainwashed by the Reagan years
American's WHAT were brainwashed? Oh, I see, you simply don't understand how to use an apostrophe. Understandable since English is probably not your first language.
Not all of us are Reaganites. His slashing the capital gains tax hurt a LOT of ordinary, non-rich workers when it unleashed a flurry of corporate buyouts and sellouts, which resulted in workers being laid off or hours cut.
And wealth doesn't trickle down, it flows up. The programmer, bricklayer, songwriter, carpenter, laboror creates wealth. His employer simply aggregates and controls it. Cutting taxes on the poor and middle class helps the economy, cutting taxes on the upper class hurts it.
Free Martian Whores!
"Free market" is an oxymoron. Anyone who believes it can solve all the world's problems is just a moron.
On the other hand, a well-designed market is one of the most effective machines for achieving as close to Pareto-optimal results as anyone has ever found. Well-designed markets are actually able to achieve the state that socialist managers of the economy should be aiming for, and they do it much more reliably and cheaply than socialist managers have ever been able to achieve. And they do this despite having right-wing nitwits on one side who think that any regulatory or legal oversight is somehow a violation of their god-given right to screw people over, and left-wing nitwits on the other side who believe that markets are somehow the agents of satan, rather than just a particularly good social management tool.
It's unfortunate that so many on the left take the right-wing nutjob view of markets seriously, because if you adopt the view of markets as just an ordinary tool of neo-socialist economic management you can find a whole lot of ways to deploy them usefully to achieve efficient allocation of limited resources across the whole economy. Well-designed markets can't solve all the world's problems, but neither can anything else, and markets have a long history of solving problems more effectively than most of the alternatives.
Blasphemy is a human right. Blasphemophobia kills.
I see rationalization for government and business intrusion into private lives. 90% of the information requested and/or demanded by any given government agency or business is totally unnecessary. It is none of my phone company's business how many people live in the house, or might use the phone. It is none of my ISP's business how many computers I own, or how many of them might connect through the gateway, or even HOW they might connect. The government's preoccupation with the precise identification leads to requirements for fingerprints, DNA samples, and more. I once ordered a pizza, in person, with cash in hand, and the cashier insisted that she needed my phone number and address!! The stupid broad doesn't even need to know my NAME to trade a pizza for a twenty dollar bill!
In the article, a baker was entrusted with financial information of her clients. HOW FREAKING BOGUS!! To bake a wedding cake does NOT require storing my credit card information, or any other personal details.
Totally unnecessary information is harvested for the most trivial dealings. And, it's WRONG.
No government agency, and no business should request information that is not absolutely essential to perform the business at hand. Nor should they request any more information than they are willing and capable of storing in a SECURE manner. It is their RESPONSIBILITY to safeguard that information, it isn't some "expense", or an "option", it shouldn't be considered a "burden". If and when safeguarding information becomes an "expense", then it should be obvious that they are collecting unnecessary and trivial information.
TFA is bogus rationalization, and an attempt to get people to sympathize with some perceived need to dump privacy laws. Forbes and Lee Gomes should be slapped silly for even writing and printing the article.
"Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
I agree, with additions. When I say that wealth flows upwards, I mean that the wealthy do not create wealth. The poor and middle class create wealth.
And luck has more to do with poverty and riches than any other cause. Look at Bill Gates - his parents were lawyers working for IBM. If he'd been born in poverty, there would never have been a Microsoft. If the guy IBM was going to buy their OS from hadn't gotten sick of IBM's BS and told them where to shove it, PC/M would have been the dominant OS, rather than DOS.
My uncle was rich. He was wounded in WWII, and several lucky things caused his wealth. First, creativity and eye-hand coordination runs in the family. Second, he was in the right place at the right time. If his ship hadn't been bombed, he wouldn't have wound up in the hospital with his future partner, who had lost a leg. When the guy showed his new artificial leg to my uncle, my uncle said "that's a piece of shit, I can make a better leg than that", and did.
His partner was a born salesman. He'd walk into the hospital to talk to the new amputees, who would say something to the effect of "what the fuck would you know about it?" and he'd just roll his pants leg up. Instant sales.
Sure, there was a lot of hard work and sacrifice involved, but if it hadn't been for luck he'd never gotten rich.
The same goes with poverty. Few people are born rich and wind up poor. Even if they squander all their money, they still have contacts. A while back there were radio commercials about Donald Trump's "how to get rich" book, what would he know about getting rich? He was born into wealth!
Do you think anyone would have ever heard of Paris Hilton if her parents weren't the billionaires who owned the hotel chain? What chance does a kid born of illiterate drug addled parents who is shuffled between foster homes have?
If you give rich people money, they'll just squirrel it away -- they already have plenty. But give it to a waitress and she'll spend it, because she has to. Only money that's spent helps the economy.
Free Martian Whores!