Search
Content type: Long Read
In 2024, Privacy International (PI) continued to produce real change by challenging governments and corporations that use data and technology to exploit us.Since the beginning of the year, we’ve achieved some wins and would like to share the most recent ones with you.Creating change is hard, and takes time. We have to uncover problems, draw attention to them, and pressure for change. In the latest quarter, we've been able to push regulators for stronger standards on generative AI systems, draw…
Content type: Long Read
What happened?On 19 July 2024, American cybersecurity company CrowdStrike released an update to its CrowdStrike Falcon software that ultimately caused 8.5 million computers running Microsoft Windows to crash. The damage done was both deep and wide: deep because the computers affected were unable to recover without direct user intervention. Wide because a whole range of companies - from airlines to healthcare to media - across a whole range of countries - from Sweden to India to New Zealand -…
Content type: Long Read
In August 2021, PI published the report An unhealthy diet of targeted ads where we uncovered how personal data was shared by diet companies through their online ads and online testing. Our findings were quite grim, with highly sensitive personal data shared with third parties without consent.
Following this initial report, we performed follow-up research with the same methodology and by September 2021 we reported a number of positive changes from two of these websites: BetterMe and VShred.…
Content type: Long Read
Last update: 26 April 2023
In 2022, Privacy International continues to produce real change by challenging governments and corporations that use data and technology to exploit us.
We know life moves quickly. So, we wanted to keep you in the loop and ensure you don’t miss out on how we’re changing the world for the better.
That’s why we’ve created this highlight reel of our wins in the past year.
Take a look below!
PS: To continue to do this, and more, into 2023, we need your support. We…
Content type: Long Read
In the UK, successive government ministers and members of parliament have made emotive proclamations about the malaise of "public sector fraud".
This year, former Work and Pensions Secretary Therese Coffey said that the welfare system "is not a cash machine for callous criminals and it’s vital that the government ensures money is well spent...[and] fraud is an ever-present threat."
In 2013, the UK's minister for the disabled made numerous claims that there were "vast numbers of bogus disabled […
Content type: Examples
During the Black Lives Matter protests of summer 2020, US police took advantage of a lack of regulation and new technologies to expand the scope of people and platforms they monitor; details typically emerge through lawsuits, public records disclosures, and stories released by police department PR as crime prevention successes. A report from the Brennan Center for Justice highlights New York Police Department threats to privacy, freedom of expression, and due process and the use of a predator…
Content type: Long Read
This article was written by Sameet Panda and Vipul Kumar.
Over the last couple of years, there has been a push towards digitising the PDS, which includes linkage with the Aadhaar (India’s biometric identification system) and maintenance of digital records at Fair Price Shops that distribute the ration, among other initiatives. Without taking into account the availability of appropriate digital infrastructure and access among beneficiaries, these initiatives have been unable to solve…
Content type: Examples
Numerous US colleges are forcing students to download location-tracking apps or wear symptom-tracking devices, many of them similar to tracking systems student athletes are often required to install on their phones. Tracking athletes did little to help them gain either an education or a professional career and backfired when they bypassed the system to reclaim some privacy. Tracking the student body at large is likely to follow suit, with dangerous consequences for public health. In addition,…
Content type: Examples
Article extract:
"A meaty first report by the UK parliamentary committee that’s been running an inquiry into online disinformation since fall 2017, including scrutinizing how people’s personal information was harvested from social media services like Facebook and used for voter profiling and the targeting of campaign ads — and whose chair, Damian Collins — is a member of the UK’s governing Conservative Party, contains one curious omission.
Among the many issues the report raises are privacy…
Content type: Examples
Article extract:
"Ireland's two largest anti-abortion campaigns are facing questions over privacy after a BuzzFeed News analysis found that personal user data gathered by both of their apps can be shared with an international network of conservative and religious groups that includes the US National Rifle Association.
The Save the 8th campaign and the LoveBoth Project are at the forefront of the campaign to prevent the repeal of the Eighth Amendment of Ireland's constitution – which makes…
Content type: Examples
While countries like New Zealand, Singapore, and South Korea publish detailed near-real-time data on local coronavirus outbreaks, the US offers very few details on how the disease is spreading due to political meddling, privacy concerns, and long-time neglect of public health surveillance systems. CDC reports are often delayed until after they can influence outcomes, a problem that has not been helped by the Trump administration’s decision to divert data from the CDC to a new $10 million system…
Content type: Case Study
amaBhungane is an independent, non-profit newsroom based in South Africa. amaBhungane plays a key role in exposing corruption, promoting transparency and accountability at all levels of government. In recent years, amaBhungane has been at the forefront of privacy litigation in amaBhungane Centre and Sole Stephen v. Minister of Justice and Correctional Services and others, a challenge to South Africa’s expansive surveillance laws.
Qn: Please briefly describe your work and the issues/…
Content type: Case Study
Ananda Badudu is an activist, musician and former journalist. In September 2019, he started a crowdfunding campaign page to support student protesters taking part in demonstrations against the Indonesian House of Representatives.
Qn: Please briefly describe your work and the issues/topics you work on.
I’ve been full-time musician for 2 years. Before that I was a journalist from 2010 to 2016, first at Tempo, then at Vice. In late September 2019, I took part in a crowd-funding campaign…
Content type: Case Study
Centro Prodh is a non-profit civil association which promotes human rights, and has been involved in some of the most emblematic cases in Mexico. The impact of their work is only matched by the severity of surveillance threats they face. In his end-of-mission statement after a visit to Mexico, the former Special Rapporteur on the situation of human rights defenders expressed specific concern about Centro Prodh in light of its being targeted for its work on enforced disappearances,…
Content type: Examples
As part of efforts to make returning to campus safer, US universities are considering or implementing mandates requiring students to install exposure notification apps, quarantine enforcement programs, and other unproven new technologies, risking exacerbating existing inequalities in access to both technology and education. In some cases, such as Indiana University, UMass Amherst, and the University of New Hampshire, universities are requiring students to make a blanket commitment to install…
Content type: Examples
US epidemiologists are complaining that secrecy is interfering with public health efforts to curb the coronavirus. Beginning in April, California state and county health authorities have refused requests from scientists from Stanford University and several University of California campuses for detailed COVID-19 and contact tracing data for research they hope will find more effective approaches to slowing the epidemic. The agencies have cited reasons such as workload constraints and privacy…
Content type: Case Study
The Peruvian government has a history of collaboration with the private sector in developing technology with the alleged purpose of providing greater security to citizens. The most recent example, the smartphone application "Peru En Tus Manos" launched in the context of the Covid-19 crisis, has been developed in a similar fashion and currently collects geolocation data on more than a million users. Although Peru has a proper legal framework for public private partnerships, developments are…
Content type: Case Study
Como is one of the most advanced cities in Italy in the use of facial recognition technology (FRT). An investigation for the Italian Wired magazine published in June 2020 exposed how the system had been bought, installed and tested for months with little transparency and despite the lack of a clear legal framework.
The investigation was entirely based on tools available to everyone, such as Freedom of Information requests (FOI requests. Similar to PI’s campaign 'Unmasking policing, inc', it…
Content type: Examples
Brazil’s Federal Supreme Court has struck down a government order forcing telecommunications companies to provide access to the user information relating to the country’s 200 million citizens to enable the government to conduct phone interviews to determine the economic response to the COVID-19 pandemic. In the process, the ruling established that data protection is a fundamental right. However, privacy advocates warned that the lack of established data protection law in the country opened the…
Content type: Examples
Thermal temperature scanners, software keystroke monitors, and wearable location trackers are proliferating in US workplaces, with the data they collect outside of any of the country's electronic privacy laws. Companies report that employers are being asked to form part of the front line of contact tracing for COVID-19 and share data on a wholly new level. Even before the pandemic, employers sought to keep employee data exempt from the CCPA; privacy activists eventually won a one-year…
Content type: Examples
Many of the steps suggested in a draft programme for China-style mass surveillance in the US are being promoted and implemented as part of the government’s response to the pandemic, perhaps due to the overlap of membership between the National Security Commission on Artificial Intelligence, the body that drafted the programme, and the advisory task forces charged with guiding the government’s plans to reopen the economy. The draft, obtained by EPIC in a FOIA request, is aimed at ensuring that…
Content type: Case Study
Facial recognition technology (FRT) is fairly present in our daily lives, as an authentication method to unlock phones for example. Despite having useful applications, FRT can also be just another technology used by those in power to undermine our democracies and carry out mass surveillance. The biometric data collected by FRT can be as uniquely identifying as a fingerprint or DNA. The use of this technology by third parties, specially without your consent, violates your right to privacy.
The…
Content type: Case Study
Well into the 21st century, Serbia still does not have a strong privacy culture, which has been left in the shadows of past regimes and widespread surveillance. Even today, direct police and security agencies’ access to communications metadata stored by mobile and internet operators makes mass surveillance possible.
However, a new threat to human rights and freedoms in Serbia has emerged. In early 2019, the Minister of Interior and the Police Director announced that Belgrade will receive “a…
Content type: Long Read
Introduction
In August 2019, when Facebook announced a few new features for advertisers such as ads in search, PI decided to take an in-depth look at what features the company offers its users when it comes to understanding its advertising practices. One of these features, which caught our attention is Facebook Ads Preference, a tool that among other things, lists businesses/advertisers that have uploaded your personal data to target you with (or exclude you from) ads on the platform.
Content type: Examples
Cameras repurposed as "fever-detecting" aren't designed for and are not very good at detecting infections, but businesses, airlines, major employers, and public officials are nonetheless reacting to the coronavirus pandemic by spending large sums to buy them without understanding their limitations. The systems can detect elevated skin temperatures, but aren't precise enough to be able to identify the cause. In addition, many people who develop COVID-19 don't have fevers. The scanners have not…
Content type: Examples
It's been two months since the launch of "Perú en us manos", the mobile app promoted by the Peruvian government amidst the Covid-19 pandemic. Until now the app did not accomplish the ambitious goals it set out to.
On its first month the app had detected 1400 risk zones while there where already 36,000 confirmed infection cases. There is little transparency on how those risk zones are estimated. Developers of the app state that only one fifth of the data provided by the Health Ministry is clean…
Content type: Examples
The state of Utah gave the AI company Banjo real time access to state traffic cameras, CCTV, and public safety cameras, 911 emergency systems, location data for state-owned vehicles, and other data that the company says it's combining with information collected from social media, satellites, and various apps in order to detect anomalies in the real world and alert law enforcement to crimes as they are happening. The company claims its algorithm can do all this while stripping all personal data…
Content type: Examples
Our partners from IPANDETEC in Panamá wrote about privacy and personal data in the context of the COVID-19 response, stating that throughout Central America, data protection laws and patient privacy lean towards respecting their privacy before the scientific interest of their cases.
Link: https://www.ipandetec.org/2020/03/18/coronavirus-privacidad-datos/
Content type: Examples
Two million people downloaded Australia's COVIDSafe app in the first four days it was available; the government's goal is to reach 10 million, or about 40% of the population. Users are asked for a (not necessarily real) name, age, mobile number, and postal code. The app exchanges a Bluetooth handshake when it comes within 1.5 metres of another app user, then logs the handshake and encrypts the exchange.
The data is used to notify users if they have come within close contact for 15 or more…