Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Establishing Trust in Electronic Commerce With Special Reference to Consumer Data Protection and Privacy Trevor R. Stewart New Orleans, August 1998.

Published byMakayla Foster Modified over 10 years ago

Similar presentations

Presentation on theme: "1 Establishing Trust in Electronic Commerce With Special Reference to Consumer Data Protection and Privacy Trevor R. Stewart New Orleans, August 1998."— Presentation transcript:

1 1 Establishing Trust in Electronic Commerce With Special Reference to Consumer Data Protection and Privacy Trevor R. Stewart New Orleans, August 1998

2 2 175018001850190019502000IndustrializationTransportationComputerizationVirtualizationCommunication Beyond... Technological Shaping Forces 1750-2000

3 3 Phenomenal growth Total bandwidth increasing 300% annually Internet traffic doubling every 100 days Amount of e-business on the Internet doubling annually Internet community growing 50% annually 130 million people on-line as of June 1998 Web adopted faster than any previous technology E-business on the Internet could exceed $1 trillion by 2002

4 n Exploding connectivity is n Revolutionizing interaction, which will n Force fundamental change in business, and n Precipitate the transformation of entire industries, which will n Make possible new ways to serve, sell, buy and organize A Revolution in Interaction

5 Trust in the new cyberspace frontier 4 Security 4 Privacy 4 Assurance Trust, but verify Ronald Reagan

6 6 Privacy and data protection are major concerns

7 7

8 8

9 9

10 10 Consumer concerns online n Violations of privacy (snooping) n Misuse of private information by an organization to whom it has been entrusted n Theft of personal information from organization to whom it has been entrusted n Corruption of personal information n Theft of identity n Fraud, theft n Harassers, stalkers, pedophiles, and other sundry weirdoes

11 11 Useful feature or invasion of privacy?

12 12 Approaches to Privacy and Data Protection 1980, OECD, Guidelines on the Protection of Privacy and Transborder Flows of Personal Data; 1998, Focus on the Internet 1974, U.S., Privacy Act of 1974 Legislative Approach 1995, European Union, Directive on Data Protection Also: n Hong Kong n New Zealand n Taiwan n others... Self-regulatory Approach 1997, U.S., Framework for Global Electronic Commerce Also: n Canada n Japan n Australia n others...

13 13 The self-regulatory approach

14 14 Principles of Fair Information Practices Awareness. Consumers should be informed about what information is being collected, who is collecting it, and how it will be used Choice. Consumers should be allowed to choose whether and how their personal information is used, and choices should be easy to exercise Data Quality. Companies should ensure that the information they collect is accurate Data Security. Companies must protect the information they collect Consumer Access. Consumers should have reasonable access to information about them and be able to correct it

15 15 Effective Self-Regulatory Enforcement Mechanisms Consumer recourse. Companies should offer consumers readily available and affordable mechanisms for resolving complaints Verification. Companies assertions about privacy practices and their implementation should be independently verified Consequences. Failure to comply with fair information practices should have consequences that are stiff enough to be meaningful and swift enough to assure consumers that their concerns are addressed in a timely fashion

16 16 The Internet Industry is getting involved n The Internet Alliance (IA) n Commercial Internet Exchange (CIX) n Information Technology Association of America (ITAA) n Interactive Industry Association n Software Publishers Association n Direct Marketing Association n Online Privacy Alliance

17 17 Platform for Privacy Preferences (P3P) n Complements regulatory and self-regulatory approaches to privacy n P3P is a specification of syntax and semantics for describing both information practices and data elements n Enables consumers to: n Profile themselves once n Choose what information may be collected about them, and how it may be used and disclosed

18 18 1. Web site declares privacy practices and makes a data request through a machine-readable P3P proposal 2. Users Web browser parses the request and compares it with the privacy preferences set by the user 3. If there is a match, the transaction proceeds seamlessly 4. If not, the user is informed about the data request and the Web sites privacy practices and given an opportunity to agree or exit the site P3P draft published May 1998 How P3P Works

19 19 Seal programs Compliance with WebTrust criteria including data protection Membership of Better Business Bureau Compliance with privacy statement

20 20

21 21 Customer assurance, the WebTrust seal of approval The WebTrust Service n CPA provides assurance that website complies with criteria for good business practice n Seal of Assurance visible on the website n Seal refreshed every 3 months n Work performed under professional attest standards n VeriSign controls issuance, expiration, revocation Chartered Accountants of Canada Comptables agréés du Canada The WebTrust Criteria n Business Practices Disclosure n Business terms and conditions n Warranty, complaints, claims, etc. n Transaction Integrity Controls n Order and billing accuracy and completeness n Information Protection n Secure transmissions over Internet n Protection of private information n Permission to perform activities on customers computer

22 22WebTrust

23 23 WebTrust

24 24 The legislative approach

25 25 n 1400 Web sites sampled March 1998 n 85% collect personal information n 14% have information practice statements n 2% have comprehensive privacy policies n …industrys efforts to encourage the most basic fair information practice principle - notice - have fallen far short of what is needed to protect consumers Privacy Online A Report to Congress JUNE 1998 n Recommend legislation to protect children n This summer will recommend an appropriate response to protect the privacy of all online consumers

26 26 Accordingly, the Commission believes that, unless industry can demonstrate that it has developed and implemented broad-based and effective self- regulatory programs by the end of this year, additional governmental authority in this area would be appropriate and necessary. July 21 Testimony to the House Subcommittee on Telecommunications, Trade and Consumer Protection, n Encouraging signs that the private sector is attempting to address consumer concerns about online privacy. n Considerable barriers to be surmounted for self-regulation to work. n An effective enforcement mechanism is crucial. n It will be difficult for self- regulatory programs to govern all or even most commercial Web sites. continued...

27 27 European Union Directive on Data Protection n Requires all 15 member states to enact strict privacy laws n Prohibits transfer of personal information to other countries that the EU determines lack adequate protection of privacy (Article 25) n Effective October 25, 1998 n Question 1: Is privacy adequately protected in the U.S? n Question 2: If not, so what?

28 28 Stay Tuned... n Increasing public awareness of and concern about issues n Increased private sector activism n Showdown with European Union in 1998? n U.S. privacy legislation in 1999?

29 29 Establishing Trust in Electronic Commerce With Special Reference to Consumer Data Protection and Privacy Trevor R. Stewart New Orleans, August 1998

Download ppt "1 Establishing Trust in Electronic Commerce With Special Reference to Consumer Data Protection and Privacy Trevor R. Stewart New Orleans, August 1998."

Similar presentations

June 27, 2005 Preparing your Implementation Plan.

June 27, 2005 Preparing your Implementation Plan.
Regional Economic Integration Chapter 8

Regional Economic Integration Chapter 8
Cost Management ACCOUNTING AND CONTROL

Cost Management ACCOUNTING AND CONTROL
Assurance Services Independent professional services that “improve the quality of information, or its context, for decision makers” Assurance service encompass.

Assurance Services Independent professional services that “improve the quality of information, or its context, for decision makers” Assurance service encompass.
Chapter 1 The Study of Body Function Image PowerPoint

Chapter 1 The Study of Body Function Image PowerPoint
EU Privacy Directive. What is a directive? A piece of European legislation, passed by bureaucrats, addressed to member states Member states must ensure.

EU Privacy Directive. What is a directive? A piece of European legislation, passed by bureaucrats, addressed to member states Member states must ensure.
2 Session Objectives Increase participant understanding of effective financial monitoring based upon risk assessments of sub-grantees Increase participant.

2 Session Objectives Increase participant understanding of effective financial monitoring based upon risk assessments of sub-grantees Increase participant.
© fedict 2008. All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.

© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
ASYCUDA Overview … a summary of the objectives of ASYCUDA implementation projects and features of the software for the Customs computer system.

ASYCUDA Overview … a summary of the objectives of ASYCUDA implementation projects and features of the software for the Customs computer system.
Hamid Dom Reg WS March 04 1 INTRODUCTION THE GATS and DOMESTIC REGULATION.

Hamid Dom Reg WS March 04 1 INTRODUCTION THE GATS and DOMESTIC REGULATION.
1 Regulatory Reform of Domestic Regulations in the Telecommunications Sector - Japanese Experience- FURUICHI, Hirohisa Senior Advisor General Affairs Division.

1 Regulatory Reform of Domestic Regulations in the Telecommunications Sector - Japanese Experience- FURUICHI, Hirohisa Senior Advisor General Affairs Division.
© Copyright 1998-2001 International Telecommunication Union (ITU). All Rights Reserved page - 1 Alexander NTOKO Project Manager, ITU Electronic Commerce.

© Copyright International Telecommunication Union (ITU). All Rights Reserved page - 1 Alexander NTOKO Project Manager, ITU Electronic Commerce.
ILO Convention N o. 189 ILO Recommendation N o. 201 DECENT WORK FOR DOMESTIC WORKERS.

ILO Convention N o. 189 ILO Recommendation N o. 201 DECENT WORK FOR DOMESTIC WORKERS.
Implications for the Regions EU-Regional Policy 1 Governance White Paper Introduction Adoption of White Paper on European Governance, July 25, 2001 Aim:

Implications for the Regions EU-Regional Policy 1 Governance White Paper Introduction Adoption of White Paper on European Governance, July 25, 2001 Aim:
The Managing Authority –Keystone of the Control System

The Managing Authority –Keystone of the Control System
Mr. ALI GORKEM & Mr. BURAK KEMERCI MARITIME EXPERTS PRIME MINISTRY UNDERSECRETARIAT FOR MARITIME AFFAIRS Ship Recycling Technology & Knowledge Transfer.

Mr. ALI GORKEM & Mr. BURAK KEMERCI MARITIME EXPERTS PRIME MINISTRY UNDERSECRETARIAT FOR MARITIME AFFAIRS Ship Recycling Technology & Knowledge Transfer.
Module N° 7 – Introduction to SMS

Module N° 7 – Introduction to SMS
E-Marketplaces.

E-Marketplaces.
Public B2B Exchanges and Support Services

Public B2B Exchanges and Support Services
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Similar presentations

Ads by Google