Slashdot Mirror

← Back to Stories (view on slashdot.org)

Germany Demands Google Forfeit Citizens' Wi-Fi Data

Posted by kdawson on from the forfeited-trust dept.

eldavojohn writes "Germany has ordered Google to give up hard disk drives used to store German data collected during their Street View operations in that country. This follows Google's admission last week (after prodding from the Germans) that it had collected the data from unsecured wireless area networks from around the entire world as its roving cars collected the photo archive for Street View. Google says they've offered to just destroy the data, in cooperation with national regulators, but the German government wants to know what they've collected. They do not think that destroying the drives suffices for compliance with the laws. Officials went so far as to say of the situation, 'It is not acceptable that a company operating in the EU does not respect EU rules.' Germany has certainly been keeping their eye on the search giant." The Ars coverage notes that the US FTC may be looking more closely at Google's collection as well.

12 of 318 comments (clear)

  1. Great News! by e2d2 · · Score: 4, Funny

    Oh good. I was worried it would end up in the wrong hands.

  2. Hmmm by WrongSizeGlass · · Score: 4, Insightful

    Google [has] until May 26 to hand over one of the hard drives that it had used to collect and store information in Germany, where Street View is not yet available.

    Through a spokesman, Google reiterated its offer to destroy the WLAN data in conjunction with regulators, but stopped short of saying it would hand over a hard drive, which would allow regulators to see for the first time what kind of data had been collected.

    So they're happy to "destroy" is but don't want to turn it over so Germany can see exactly what they were gathering? Smells fishy to me.

  3. Re:Privacy laws by AltairDusk · · Score: 5, Insightful

    Hate to say it but if you have an unsecured wireless network you are freely broadcasting your data over the airwaves for anyone to listen. Laws are not the solution to this, proper security is. I can't walk out on my porch and yell sensitive information then fine you for having heard it.

  4. Re:Privacy laws by Monty845 · · Score: 5, Insightful

    You want the data turned over to the government? That is the absolute last thing I would want if google inappropriately collected my wifi activity. The government should supervise the destruction, not be given the data set to do with as they please...

  5. Re:Privacy laws by gstoddart · · Score: 4, Insightful

    I seriously hope more EU countries will demand the same thing. It's outrageous

    Actually, I kind of agree with Google's position about destroying it.

    I mean, it boils down to "you have collected something which is illegal and invasive to have ... why don't you give it to us and we'll, er, keep it safe."

    I agree that if Google is actually scraping people's email and stuff from unsecured wireless that's a huge invasion of privacy and is a very bad thing. But, handing the same information over to a government who wouldn't be allowed to have it either doesn't seem any better.

    --
    Lost at C:>. Found at C.
  6. A few things. by chaboud · · Score: 4, Insightful

    1. If you run an unencrypted 802.11 network, expect your data to get pwned.
    2. It was an accident of code reuse (seriously, guys, code-reuse accidents happen quite often).
    3. If people were just casually using the internet, https saved their stupid little asses from letting their data out in the wild.
    4. Why do we trust the German government (or any EU government, for that matter) with this data more than we trust Google? I know that the EU is better about not giving companies a blank check, but let's not forget about the kind of crap that governments pull. This is a surveillance freebie, provided that the illicit persons being surveilled are professional idiots (i.e. had an open network).

    Google screwed up, but has the Google-hatred here risen to such a high degree that we're okay with just handing over even accidentally-collected data to the government? I'd at least insist on an independent auditor, to make sure that government abuses of the data didn't take place. With Google's resources, I'd go so far as to take it to the (largely impotent) EU court of human rights.

  7. Oh i get it. by blair1q · · Score: 4, Insightful

    Google collected broadcast data by accident, but as yet has not violated my privacy.

    So the German government wants Google to violate my privacy by giving my data to the German government.

    Which is (as many have pointed out) exactly who i want to be protected from when I decide to consider my data private.

    Germany needs to be sat down in the back of the EU with a tall, cone-shaped hat on its head. Again.

    1. Re:Oh i get it. by abigsmurf · · Score: 5, Insightful

      They accidentally collected this data? Yeah right.

      Lets assume the quality control for code vital for a project costing many millions was slack enough to let this kind of feature slip by test.

      Would they have failed to notice them filling dozens of HDDs a week when they should've only needed a small number for a country?

      When they went home and looked over the data, you think they didn't notice that they were capturing significant amounts of data alongside SSID, IP and location information?

      They knew all about this and did nothing to stop it. Heck they probably saw it as a bonus (must've kept doing it for a reason, the data storage would eat up valuable budget money)

  8. Re:Privacy laws by chaboud · · Score: 5, Insightful

    There's a massive difference between wired communication and wireless. If you honestly can't see that (which I truly doubt is the case), you could be in the parliament of an EU member state!

    Seriously, security is the answer to security. Making it illegal to detect and record open-air RF is like making it illegal to see things.

  9. Re:Getting punished for "doing the right thing" by Johann+Lau · · Score: 5, Insightful

    Google: Oops! We accidentally collected all this data we weren't supposed to. Sorry, but we thought you should know.

    But that's not what has happened *at all*. From the article of the slashdot story this story links to:

    The Internet giant said it would stop collecting Wi-Fi data from its StreetView vans, which workers drive to capture street images and to locate Wi-Fi networks. The company said it would dispose of the data it had accidentally collected.

    Alan Eustace, senior vice president of engineering and research for Google, wrote in a blog post that the company uncovered the mistake while responding to a German data-protection agency's request for it to audit the Wi-Fi data, amid mounting concerns that Google's practices violated users' privacy.

    They're basically saying "let's just forget anything happened" by offering to delete the data. Uh-nuh, not really how it works. If they didn't pay attention and ran software that violated privacy laws, they should be punished. THEN we can delete the data...

    it's exactly this sort of persecution which creates a culture where companies never admit anything, ever.

    What are you talking about? What "persecution"? If they violated laws, they get punished. Where's the problem? I'd rather have corporations involuntarily investigated, than then "admitting their wrongdoings" and there being no consequences for it.

  10. Re:Privacy laws by Aqualung812 · · Score: 4, Insightful

    And as it is, it's currently unlawful.

    What Google did to the data is exactly the same thing you have done if you've ever recorded video or audio in a public place. You have data (sound and images) of people in public. If these people had unsecured wireless, they were sending their data into the street for the world to hear.

    --
    Grammer Nazis - I mod you "troll" unless you actually add something on-topic. Yes, I know I have mispellings in my sig.
  11. Re:Privacy laws by Anonymous+Brave+Guy · · Score: 5, Insightful

    Who's track record is better?

    In recent years? EU governments (or Germany in particular) vs. US corporations (or Google in particular)? Seriously?

    Europeans have learned some hard lessons from history, some of them still within living memory. One of them is a healthy distrust of government; you may have noticed that we have removed several formerly powerful administrations from office in recent years. But another is that the US does not hold its businesses to account very effectively. Thus, we tend to take a rather stricter line with big business in many respects, privacy and data protection among them.

    As long as it is the privacy/data protection authorities who are arranging the destruction of the data (and potentially bringing legal action against Google), and not any other branch of government who have no more legitimate right to access that data than Google, I would far rather the drives were removed from Google's hands.

    --
    If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.