| Recommendations |
|||||
Main    Info About You    Past Problems       Usage       Accuracy       Access       Profiling    Current Trends       Who Has Access?       Technologies       Use of Information    Future Policy       Statistics       Case Studies       IITF Policy       Recommendations    Relevant Links    Bibliography    About the authors |
Options for Protecting PrivacyIn the previous section on IITF Policies we outlined the Privacy Principles suggested by the Privacy Working Group of the IITF. These principles address most of the issue very well, but leave out two key details:
If these two issues were to be amalgamated with the Privacy Principles, they would form a strong foundation upon which to build policy regarding database privacy. However, the implementation of any such policy raises more questions, most importantly who is responsible for the implementation? There are two main choices for implementing the Privacy Principles. One, referred to as the Sectoral approach, where government activity enhances the likelyhood of success of industry-led, market-based reforms in the information gathering field. At the other end of the spectrum are those who suggest that the federal government create a central government body to impose the Privacy Principles, or a similar set of guidelines across the entire economy (public and private sectors), and enforce these regulations vigorously.
Sectoral Approach
Those in favor of the sectoral approach identify four main steps the government should take
to aid the protection of privacy. First, it could formally adopt the Privacy Principles. It
has chosen not done so in the three years since their publication. Second, it should get its
own house in order, and ensure that current government collection of data is consistent with
the Privacy Principles. Thirdly, government should live up to its role of educating the people
on the issue. Without increased consumer awareness of the issue, any measures are bound to fail.
Lastly, the government should consider enhancing the enforcement of self-regulated issues
like privacy policies.
Creation of a Private Entity
For these reasons, we felt that we must maintain a sector, self-regulatory approach to the issue of privacy. In no way are we suggesting that this issue is not serious, or that it is acceptable to maintain the status quo -- it is NOT. However, the creation of a separate entity in a government that is already bogged down by overwhelming bureaucracy would not be an acceptable solution yet. We recommend adopting the principles outlined above for a sectoral appraoch, and only if those fail should a special government body be consiered.
|