Chapter 3: Violations

Question 1

Solove’s Taxonomy of Privacy

Answer 1

1) Information Collection
2) Information Processing
3) Information Dissemination

4) Invasions

Question 2

Information Collection Violations (2)

Answer 2

1. Surveillance
2. Interrogation

Question 3

Information Processing Violations (5)

Answer 3

1. Aggregation
2. Insecurity
3. Identification
4. Secondary Use
5. Exclusion

Question 4

Information Dissemination Violations (7)

Answer 4

1. Breach of Confidentiality
2. Disclosure
3. Exposure
4. Increased Accessibility
5. Blackmail
6. Appropriation
7. Distortion

Question 5

Invasion - Privacy Violations (2)

Answer 5

1. Intrusion
2. Decisional Interference

Question 6

Information Collection - Surveillance

Answer 6

Watching, listening to, or recording of an individual’s activities.

1. Tracking mouse movements around a webpage
2. Security cameras in a store
3. Recording user app activity in mobile phone
4. Tracking GPS locations of a fitness application user

Question 7

Information Collection - Interrogation

Answer 7

Questioning or probing individuals for personal information.

1. Asking a female job candidate if she’s pregnant
2. Nudging social media users to complete their profiles
3. Probing for sensitive sources of income, such as alimony or child support

Question 8

Information Processing - Aggregation

Answer 8

Combining of various pieces of personal information

1. Aggregating a user’s searches to better interpret interests
2. Aggregating shoppers’ purchasing habits
3. Aggregating patients’ doctor visits

Question 9

Information Collection - Insecurity

Answer 9

Carelessness in protecting information from leaks in improper access

1. A web developer allowing web visitors to see customer records
2. A company hiring an unlicensed individual with a criminal record to handle customer sensitive data
3. A company’s developer accidentally uploading company creds on Github

Question 10

Information Processing - Identification

Answer 10

Linking of information to a particular individual.

1. Using computer device fingerprinting to tie a person to other websites or apps that do not require fingerprinting.
2. Correlating timestamps in 2 databases, one that has been “anonymized” and the other not to re-identify individuals.

Question 11

Information Processing - Secondary Use

Answer 11

Using personal information for a purpose other than for which it was collected.

1. A company sends spam emails about all their product after you ordered 1 product.
2. WhatsApp sharing your name and phone number to Facebook so businesses can advertise you.
3. Facebook using phone numbers provided for two-factor authentication to spam users to use their platform.

Question 12

Information Processing - Exclusion

Answer 12

Failing to let an individual know about the data that others have about them or participate in its handling or use.

1. Using information about previous calls to constantly kick “Problem callers” to the back of the queue without them knowing
2. Denying services or products based on information about customers without them knowing or giving them the ability to dispute it, e.g. denying a mortgage loan because of ethnicity.

Question 13

Invasions - Intrusion

Answer 13

Disturbing an individual’s tranquillity or solitude.

1. A game that invites people to go to individuals’ houses without the owners’ permission.
2. Email spam.
3. A political surveyor calling at 6 p.m. while you’re trying to have dinner.

Question 14

Invasion - Decisional Interference

Answer 14

Intruding into an individual’s decision making regarding their private affairs.

1. A government dictating family planning decisions.
2. Hackers/ other countries interfering in a country’s presidential elections.
3. A payment processor preventing a user from spending money on certain products or services on moral grounds.

Question 15

Information Dissemination - Breach of Confidentiality

Answer 15

Breaking a promise to keep an individual’s information confidential

1. Disclosure of a patient’s HIV condition in a lawsuit for an unpaid bill.
2. Doctors releasing patient information that might change how they are treated or their credibility in a court case.
3. Banks divulging a customer’s financial information to law enforcement without following a legally proscribed process (court order, subpoena)
4. Requesting your medical records and instead of receiving the medical records for someone with the same name.

Question 16

Information Dissemination - Disclosure

Answer 16

Revealing truthful information about an individual that impacts their security or the way others judge their character.

1. Newspapers disclosing an individual’s private sexual preferences.
2. Criminals purchasing information/addresses of domestic abuse victims
3. Crime witness’s identities being revealed.

Question 17

Information Dissemination - Exposure

Answer 17

Revealing an individual’s nudity, grief or bodily functions.

1. Photos of a mother grieving about a school shooting
2. Newspaper posting pictures featuring a celebrity doing private matters in their home.
3. Posting mature content of ex-significant others that they wouldn’t be comfortable going public.

Question 18

Information Dissemination - Increased Accessibility

Answer 18

Amplifying the accessibility of personal information

1. Court records being put online and in searchable format.
2. Social media accounts that include GPS meta-tag information posted photos
3. Webcams from public locations being broadcast on the internet.

Question 19

Information Dissemination - Blackmail

Answer 19

Threatening to disclose personal information.

1. Charging customers to delete their accounts.
2. Recording an individual in unlawful acts to try to persuade them not to continue with the case.
3. Threatening to disclose a celeb’s use of drugs to obtain money

Question 20

Information Dissemination - Appropriation

Answer 20

Using an individual’s identity to serve the aims and meaning of another.

1. An individual creating a book using your life as a reference.
2. A magazine using your image to increase their sales.
3. A plastic surgery office using your before and after pictures without your consent to promote their servicers.

Question 21

Information Dissemination - Distortion

Question 22

Privacy Dark Patterns

Answer 22

Recurring solution that is used to trick individuals into giving up their privacy.

Question 23

Privacy Dark Patterns (8)

Answer 23

Privacy Zuckering

Bad Defaults

Forced Registrations

Immortal Accounts

Address Book Leeching

Shadow Profiles

Information Milking

Question 24

Privacy Zuckering

Answer 24

Making changing the default privacy settings difficult

Question 25

Bad Defaults

Answer 25

Default option in a system encourage or ease the sharing of personal info

Question 26

Forced Registration

Answer 26

One is forced to register for an account to use part of the functionality a service though the registration is technically unnecessary

Question 27

Immortal Accounts

Answer 27

Service provider prevents or complicate the deletion of user accounts.

Question 28

Hidden Stipulations

Answer 28

T&C hide malicious stipulations

Question 29

Address Book Leeching

Answer 29

A service provider urges a user to upload their contacts to provide a certain service function.

Question 30

Shadow Profiles

Answer 30

Creating hidden profiles of non-users or hidden profiles of users

Question 31

Information Milking

Answer 31

A webpage is requesting more information than necessary for providing a service.