Welcome to p2pnet.net - The original daily p2p and digital news site. Always First!
REGISTER | LOGIN
Cool Stuff
MPAA News
Games / Consoles
News
Music
Movies
Reviews
Open Source
Mobiles
Advertising
Products
P2P
Off Topic
Freedom
Politics
Interviews
Security
DRM
Links
Kids and Kartels
Scroogle Search: 
Search
 
Web p2pnet   
   Search: 
Search
Torrent Site Tracker
    Sponsored by
Frostwire
 
p2pnet
 


mp3rocket
 
Add real-time p2pnet headlines to YOUR site ! Click here to download our newsfeed code

38 states in Google Street View probe

p2pnet view P2P | Advertising:- Thirty-eight US states say they’ll take legal action of they don’t get “complete, comprehensive answers” from Google on alleged privacy violations by its Google’s Street View product.

The AGs have all joined an investigation launched by Connecticut attorney general Richard Blumenthal (right), says Deutsche Presse-Agentur.

The group “sent a letter demanding information from Google about the Street View software, which Google has already admitted collected data from open wi-fi networks without authorizations — possibly including passwords, emails, browsing history and other confidential information”, says the story.

The attorneys general want information about Google’s testing of the program, the types of data the program had been designed to collect and whether Google sold or otherwise used any of the unauthorized data that it collected, it says, quoting Blumenthal as stating:

“Google’s responses continue to generate more questions than they answer.

“We are asking Google to identify specific individuals responsible for the snooping code and how Google was unaware that this code allowed the Street View cars to collect data broadcast over wi-fi networks. We will take all appropriate steps – including potential legal action if warranted – to obtain complete, comprehensive answers.”

Meanwhile, “Google’s sneak view Street View advertising hook has been a major centre of controversy ever since it reared its ugly head”, said p2pnet in June, going on:

“But there are so many reports and so much Google counter-spin, there’s a distinct danger of not being able to see the wood for the trees.

“However, “Epic seems to have a semi-decent time line of events on gargoyle streetview and it’s mass invasion of communications privacy”, says a Reader’s Write.”

Below is the long, and comprehensive, EPIC – Investigations of Google Street View as of today >>>

Summary

When Google began the Street View project in 2007, many privacy concerns were raised, but the debates focused almost exclusively on the collection and display of images obtained by the Google Street View digital cameras. It turns out that Google was also obtaining a vast amount of Wi-Fi data from Wi-Fi receivers that were concealed in the Street View vehicles. Following independent investigations, Google now concedes that it gathered MAC addresses (the unique device ID for Wi-Fi hotposts) and network SSIDs (the user-assigned network ID name) tied to location information for private wireless networks. Google also admits that it has intercepted and stored Wi-Fi transmission data, which includes email passwords and email content. As of June 18, 2010, investigations are going forward in 18 countries and five states in the US.

Latest News

  • Scotland Yard Commences Probe of Google Street View: In the midst of a flood of investigations worldwide into Google’s collection of private Wi-Fi data, London’s Metropolitan Police Service is reviewing a criminal complaint filed against Google. The Police Service estimates that it will spend eight to ten days conducting an initial inquiry, during which time it will determine basic facts. If it determines that Google has broken any laws, the case will be referred to a specialist team working at the national level. The complaint was brought by London-based Privacy International under two UK laws: the Regulation of Investigatory Powers Act and the Wireless Telegraphy Act. The filing of a criminal complaint in London echoes similar actions undertaken in Spain, where criminal complaints have been filed against Google in two courts. For more information, see EPIC – Investigations of Google Street View. (Jun. 23, 2010)
  • Several States Launch Investigations of Google Street View, Connecticut Attorney General Calls Activity “Pernicious Invasion of Privacy”: Several state attorneys general have opened investigations of Google, following disclosures that the company captured and stored Wi-Fi data in addition to digital images. These states include Connecticut, Illinois, Massachusetts, Michigan, and Missouri. Maryland and New York are also reported to be pursuing investigations. Connecticut AG Richard Blumenthal described the “driveby data sweeps” of WiFi networks as “deeply disturbing, a potentially impermissible, pernicious invasion of privacy.” In a subsequent statement, the Connecticut Attorney General said he will determine the legality of Google’s WiFi collection practices. Earlier, EPIC sent a letter to the Federal Communications Commission urging the FCC to determine whether Google may have violated the Wiretap Act and the Communications Act. Google has since grounded its entire Street View fleet and ceased all WiFi data collection. For more information, see EPIC – Investigations of Google Street View. (Jun. 18, 2010)
  • French Privacy Officials Find that Google Captured Email Passwords, Private Email Content: The French National Commission on Computing and Liberty (CNIL) has released preliminary results (French) (English) of the Google Street View investigation in France. According to the CNIL, Google “saved passwords for access to mailboxes” and obtained content of electronic messages. The CNIL is pursuing the investigation to determine whether Google engaged in “unfair and unlawful collection of data” as well as “invasion of privacy and individual liberties.” Investigations are now underway in at least 18  countries and five states in the US. EPIC has prepared a preliminary survey of Investigations of Google Street View. (Jun. 18, 2010)
  • Privacy International Launches System to Shed Light on Controversial Technologies: International watchdog Privacy International has announced the launch of a new website for bringing transparency to “technical mysteries” behind controversial systems. Cracking the Black Box identifies key questions regarding mysterious technologies and asks experts, whistleblowers, and other concerned parties to “help crack the box” by anonymously contributing ideas and input. The organization responsible for the technology in question is then invited to provide an official response. The first two issues addressed on the PI site are the Google Wi-Fi controversy and the EU proposal to retain search data. (Jun. 16, 2010)
  • FCC Consumer Bureau Chief Says Google Street View “Clearly Infringes on Consumer Privacy,” Charges Company with “Cyber Snooping”: The Chief of the Consumer and Governmental Affairs Bureau for the Federal Communications Commission warned consumers that Google’s “behavior” raises important privacy concerns and said that the collection of Wi-Fi data, “whether intentional or not . . . clearly infringes on consumer privacy.” Mr. Gurin further stated that the FCC Public Safety and Homeland Security Bureau is “now addressing cyber security as a high priority.” EPIC recently wrote to the FCC Chairman Jules Genachowski and urged the Commission to open an investigation of Google Street View. EPIC said, “The Commission plays a critical role in safeguarding the integrity of communications networks and the privacy of American consumers.” (Jun. 14, 2010)
  • Investigation of Google “Spy-Fi” Expands, Congress to Hold Hearings: In the expanding probe of the “Spy-Fi” matter, Google admitted in a letter to the House Energy and Commerce Committee that Street View cars were purposefully downloading and capturing Wi-Fi data. Google claimed that the practice was legal, though it also said it “would stop Street View cars from collecting WiFi data entirely.” The response comes two weeks after House members Henry Waxman (D-CA), Joe Barton (R-TX), and Edward Markey (D-MA) wrote to CEO Eric Schmidt demanding answers about Google’s Street View vehicles. Google’s responses to lawmakers have raised new questions, most notably why didn’t Google reveal the full scope of its Street View activities? Representative Barton said, “this matter warrants a hearing, at minimum” and commented that Google’s conduct is “ironic in view of the fact that Google is lobbying the government to regulate Internet service providers, but not Google.” Representative Markey said, “We will continue to actively and aggressively monitor developments in this area.” (Jun. 14, 2010)
  • Privacy International Charges Google with Criminal Intent in “Spy-Fi” Matter: International privacy watchdog Privacy International asserts that an audit of Google’s Street View data collection shows that Google separated out and systematically stored network content obtained from private Wi-Fi devices. According to PI, this establishes that Google’s Wi-Fi data collection was intentional, despite Google’s assurances to the contrary. The audit follows an investigation which revealed that Google Street View vehicles were secretly capturing and recording private Wi-Fi data in addition to photographic images. Street View vehicles operated in 30 countries over a three-year period until Google was forced to suspend the program. In the US, EPIC has sent a letter to the Federal Communications Commission, urging the FCC open an investigation to determine whether Google violated US wiretap laws. (Jun. 11, 2010)
  • Congressional Leaders Write to Google’s Schmidt About “Spy-Fi”: Congressmen Henry Waxman (D-CA), Joe Barton (R-TX), and Ed Markey (D-MA) have sent a detailed letter to Google CEO Eric Schmidt about the reports that Google Street View vehicles scarfed up Wi-Fi data in thirty countries, including the United States. The letter follows a complaint that EPIC has sent to the Julius Genachowski, chairman of the Federal Communications Commission, suggesting that Google may have violated federal wiretap laws. For more information, see Congress Urges FTC to Investigate Google. (May. 26, 2010)
  • EPIC Urges Federal Communications Commission to Open Investigation Into Google Street View: EPIC wrote today to FCC Chairman Julius Genachowski to recommend that the Commission open an investigation into the consumer data collected from wi-fi hotspots by Google Street View.  In its letter, EPIC stated that Google routinely and secretly intercepted and stored user communications data and routinely and secretly intercepted and stored private communications hotspots. EPIC said that this conduct appears to violate federal wiretap laws as well as the Communications Act and asked the Commission to begin an investigation. EPIC noted that “The Commission plays a critical role in safeguarding the integrity of communications networks and the privacy of American consumers.” For more information, see Congress Urges FTC to Investigate Google. (May. 21, 2010)
  • Congress Urges FTC to Investigate Google Following Revelation that “Street View” Scarfed Wi-Fi Data: Congressmen Joe Barton (R-TX) and Edward Markey (D-MA) wrote to FTC Chairman Liebowitz about Google’s collection of consumer’s private Wi-Fi transmissions. The House members asked the FTC Chairman to investigate whether Google’s actions violate federal privacy laws or consumer protection laws. Google has admitted to collecting email and internet surfing data, but has not clarified the extent or nature of the data collection. The letter from Congress follows an investigation in Europe which revealed that Google’s “Street View” vehicles in 30 countries collected not only digital images, but also data transmitted on private wireless networks. EPIC has several privacy complaints pending at the FTC, including one on Cloud Computing. (May. 19, 2010)

Google Street View Timeline

  • May 29, 2007 – Google announces launch of Street View, initially available in San Francisco, New York, Las vegas, Denver, and Miami.
  • May 30, 2007 – Internet publication BoingBoing discusses emerging privacy concerns associated with Street View, after a reader notes with alarm that it features her living room window with enough detail to render her pet cat clearly visible.
  • June 1, 2007 – The New York Times reports on the emerging Street View privacy debate.
  • September 11, 2007 – Canada issues a press release noting that the Privacy Commissioner had written to Google “to seek further information [regarding Street View] and assurances that Canadians’ privacy rights [would] be safeguarded if [Street View were] deployed in Canada.”
  • September 11, 2007 – Canada writes to Google, seeking assurances about privacy.
  • September 25, 2007 – Canadian news service CanWest reports that Google’s global privacy counsel Peter Fleischer promises Google will “try not to have identifiable faces and identifiable licence plate numbers in any Street View images in Canada.”
  • December 11, 2007 – The Boston Globe quotes Stephen Chau, product manager for Google Maps as saying, “We take privacy concerns seriously . . . All these images are taken on public streets. It’s exactly what you could see walking down the street.”
  • April 2, 2008 – A Pittsburgh couple files suit against Google for invasion of privacy after Street View makes photographs of the couple’s home available online without their consent.
  • May 12, 2008 – Google announces that it has begun testing face-blurring technology to automatically recognize and blur faces in Street View photographs.
  • March 23, 2009 – International privacy watchdog group Privacy International addresses a complaint to UK Information Commissioner Richard Thomas regarding Google Street View.
  • April 1, 2009 – Residents of Broughton, Buckinghamshire, England force a Street View recording vehicle spotted in their neighborhood to turn around, citing privacy and safety concerns.
  • May 11, 2009 – Greece halts Street View operations, pending investigation.
  • May, 2009 – Google Japan agrees to lower the height of the cameras on its Street View vehicles amidst concerns that the vehicles may be capturing images from above the height of fences and walls intended to keep homes concealed.
  • July 28, 2009 – The London Times publishes a letter from Google’s Global Privacy Counsel Peter Fleischer rebutting allegations that Google flouts privacy concerns and stating, “We work hard to make sure our users understand what data we collect and how we use it, because we are committed to transparency and user choice.”
  • August 21, 2009 – The Office of the Privacy Commissioner of Canada writes a letter to Google summarizing Street View negotiations to date and reminding Google of “the need for [citizens'] knowledge and consent” in Street View operations.
  • November 13, 2009 – Switzerland announces that it is taking Google to Federal Administrative Court over Google’s Street View practices.
  • April 23, 2010 – Germany announces that Street View vehicles have been collecting data from Wi-Fi networks.

United States

Under federal and state laws, Google may be both civilly and criminally liable for the unauthorized capture of data from private Wi-Fi networks in the United States. Google’s conduct may constitute violations of the federal Wiretap Act and the federal Pen/Trap Act. Google may also be liable for deceiving consumers and violating individuals’ privacy.

Potentially Relevant Federal Statutes

Under the federal Wiretap Act, it is illegal to “intentionally intercept[] . . . any wire, oral, or electronic communication.” Moreover, even if an interception is not intentional, anyone who, “having reason to know that the information was obtained through the interception of a wire, oral, or electronic communication,” uses such information is also guilty of a violation of the Wiretap Act. However, it is not illegal to intercept electronic communications that are “readily accessible to the general public.”

The federal Communications Act makes it illegal for anyone receiving any interstate radio communication to “divulge or publish the existence, contents, substance, purport, effect, or meaning thereof, except through authorized channels of transmission or reception, to any person other than the addressee.” Additionally, “[n]o person having received any intercepted radio communication or having become acquainted with the contents, substance, purport, effect, or meaning of such communication (or any part thereof) knowing that such communication was intercepted, shall divulge or publish the existence, contents, substance, purport, effect, or meaning of such communication (or any part thereof) or use such communication (or any information therein contained) for his own benefit or for the benefit of another not entitled thereto.”

The Pen/Trap Act, enacted as part of the Electronic Communications Privacy Act, makes it criminal to “use a pen register or a trap and trace device without first obtaining a court order.” A pen register is defined as “a device or process which records or decodes dialing, routing, addressing, or signaling information transmitted by an instrument or facility from which a wire or electronic communication is transmitted . . . .” A trap and trace device is “a device or process which captures the incoming electronic or other impulses which identify the originating number or other dialing, routing, addressing, and signaling information reasonably likely to identify the source of a wire or electronic communication . . . .” Both definitions are subject to the limitation that captured “information shall not include the contents of any communication.”

Under 18 U.S.C. §1030, it is unlawful to “intentionally access[] a computer without authorization or exceed[] authorized access, and thereby obtain[] (A) information contained in a financial record of a financial institution; . . . (B) information from any department or agency of the United States; or (C) information from any protected computer . . . .”

Congressional Investigations

On May 26, 2010, Representatives Ed Markey (D-MA), Joe Barton (R-TX), and Henry Waxman (D-CA) of the House Committee on Energy and Commerce sent a letter to Google CEO Eric Schmidt. The letter expressed particular concern that Google’s collection of payload data was not disclosed until long after the fact. The Congressmen also asked Schmidt to answer a number of important questions about Google’s conduct, including how many networks were logged, how many consumers were subject to its data collection, and how Google intended to use the data it captured. Google sent a response dated June 9.

On May 28, 2010, Congressman John Conyers (D-Mich.) also wrote to Schmidt. Conyers’ letter expressed concern about Google’s conduct and requested that Google “retain the data collected by its Street View cars, as well as any records related to the collection of such data, until such time as review of this matter is complete.”

On June 11, 2010, Congressmen Markey, Barton, and Waxman issued a press release. Markey pledged to “actively and aggressively monitor developments in this area.” Barton called Google’s behavior “deeply troubling” and called for a hearing on the matter.

Federal Trade Commission

As the federal agency responsible for protecting consumers, the FTC works to prevent fraud, deception, and unfair business practices in the United States. The FTC’s Bureau of Consumer Protection is responsible for enforcing federal consumer protection laws and educating consumers.

On May 19, 2010, Representatives Ed Markey (D-MA) and Joe Barton (R-TX) wrote to FTC Chairman Jon Leibowitz. Among other things, the letter asked the Commission whether Google had violated the public’s reasonable expectation of privacy, whether its actions were unfair and deceptive, and whether it had broken federal law.

On May 20, 2010, Leibowitz, in response to questioning from Senator Susan Collins (R-ME) during a Senate Appropriations Subcommittee hearing (video link; question at around 101:35), said that his agency is “going to take a very, very close look” at Google’s conduct. Leibowitz further noted: “Obviously this is just one example . . . of why consumers have very serious privacy concerns about data that’s being collected. So we are going to take a look at it. Absolutely.”

Federal Communications Commission

The FCC is the federal agency that regulates interstate and international communications by radio, television, wire, satellite, and cable. The seven Bureaus of the FCC are responsible for, among other things, analyzing complaints, conducting investigations, enforcing the Communications Act, and protecting consumers in communications matters.

On May 21, 2010, EPIC wrote to FCC Chairman Julius Genachowski, asking the Commission to launch an investigation into Google’s conduct. In particular, EPIC asked the Commission to determine whether Google’s collection of Wi-Fi communications may have violated the Wiretap Act or the Communications Act.

On June 11, 2010, the FCC’s Chief of the Consumer and Governmental Affairs published a blog post reminding consumers how to protect their Wi-Fi networks and stating that “collecting information sent over Wi-Fi networks clearly infringes on consumer privacy.”

Department of Justice

The DOJ enforces a wide range of federal laws by investigating and prosecuting violations.

News:

State Attorneys General

On June 4, 2010, Missouri Attorney General Chris Koster’s office announced that the Attorney General had sent a letter to Google asking it to provide details on information collected from Missouri residents, including the nature of the data, how the data was used, to whom the data was disclosed, and what protections Google had put in place to ensure the data would not be improperly utilized. The letter further requested that Google preserve all data collected from Missouri residents pending further investigation.

On June 8, 2010, Connecticut Attorney General Richard Blumenthal’s office issued a press release stating that it was investigating Google’s collection of data from private networks. The office indicated that it was considering whether Google engaged in illegal conduct, stating in part, “Google grabbed information — which could include emails, passwords and web-browsing — that consumers rightly expect to be private. Google needs to better explain how this practice happened, exactly when, where and why.”

On June 16, 2010, Illinois Attorney General Lisa Madigan’s office issued a press release announcing the commencement of an official investigation in Google’s conduct. According to the release, Madigan and Massachusetts Attorney General Martha Coakley sent a joint letter to Google on June 9, 2010, requesting answers to several questions. Madigan stated, “My office takes issues concerning privacy and the security of personal information very seriously, and we are investigating Google’s actions to determine whether any laws were broken and what steps must be taken to protect the privacy of Illinois residents.”

On June 17, 2010, Michigan Attorney General Mike Cox announced that his office had requested information from Google regarding its interception of information from private Wi-Fi networks. Cox stated, “We want to ensure that Michigan citizens’ privacy rights were not violated.”

On June 17, 2010, Virginia Attorney General Ken Cuccinelli’s office issued a press release regarding Google’s collection of private Wi-Fi data. Cuccinelli said, “These incidents serve as a reminder of the vulnerabilities of unsecured computer networks and the potential for breaches of privacy and even for criminal conduct.” He has reportedly requested that Google provide details regarding its conduct in the state of Virginia.

On June 21, 2010, Connecticut Attorney General Richard Blumenthal’s office issued a press release announcing that Blumenthal plans to lead a multistate investigation into Google’s unauthorized collection of personal data from wireless computer networks. More than 30 states participated in a recent conference call to discuss the investigation. Blumenthal stated, “Street View cannot mean Complete View — invading home and business computer networks and vacuuming up personal information and communications . . . . Google must come clean, explaining how and why it intercepted and saved private information broadcast over personal and business wireless networks.”

Private Litigation

On May 17, 2010, two individuals, one from Oregon and one from Washington state, filed a class action lawsuit against Google in a Portland, Oregon federal court. In the complaint, the plaintiffs stated they had “an expectation of privacy with respect to the . . . data collected . . . by Google” and argued that Google’s conduct constituted an invasion of their privacy. The plaintiffs requested statutory damages, punitive damages, an attorney’s fee, and an injunction barring Google from destroying collected data. On May 24, the court issued an order requiring Google to turn over a copy of the hard drive containing the network content data collected in the United States. On June 2, the plaintiffs filed an amended complaint alleging that a patent application filed by Google in November 2008 establishes that Google intended to collect vast amounts of data from individuals’ Wi-Fi networks.

On May 20, 2010, two Californians and a resident of Ohio filed a class action lawsuit against Google on Google’s home turf in the Northern District of California. The complaint alleges that “Google purposefully equipped its [Street View] Vehicles with, among other items, devices designed to intercept, capture and store wireless signals and data of the sort transmitted by wireless networks such as plaintiffs’ and those of millions of other Americans.” The complaint asserts that Google intercepted personal and confidential communications in violation of the federal Wiretap Act. The plaintiffs seek statutory damages, punitive damages, and costs and attorneys’ fees.

On May 25, 2010, an internet service provider, Galaxy Internet Services, Inc., filed a class action lawsuit in the District of Massachusetts against Google regarding its collection of data from private Wi-Fi networks. The complaint claimed that Google’s conduct constituted the tort of invasion of privacy. The plaintiffs asserted that Google’s unauthorized access of wireless networks “invade[d] the objectively reasonable expectation of privacy of both the plaintiff, and the customers they serve.” Plaintiffs requested nominal compensatory damages, punitive damages to prevent similar conduct in the future, statutory damages, and an injunction barring Google from destroying or altering data collected in Massachusetts.

On May 26, 2010, a Washington, D.C. resident filed a class action lawsuit against Google in a federal court. The complaint alleges that Google “intentionally sought, intercepted and collected the electronic communications of the Plaintiff and the class” and that as a result, it succeeded in unlawfully intercepting private communications. The plaintiff requests statutory damages and an order preventing Google from “any act to intercept electronic communications” and from “disclosing to anyone the communications intercepted.”

On May 28, 2010, three individuals in Illinois filed a class action lawsuit against Google in the Southern District of Illinois. The complaint requests a declaration that Google violated the Wiretap Act, an award of statutory damages, costs of suit, and attorneys’ fees.

On May 28, 2010, two Washington, D.C. residents and one Virginia resident filed a class action lawsuit against Google in the District of Columbia. Their complaint alleges that Google collected, without consent, data that “is not reasonably accessible by the general public” because some of the data collected “is not readable by members of the public absent the acquisition and use of sophisticated decoding and processing technology.” The plaintiffs assert that Google’s “mission, and the means . . . used to accomplish it . . . have raised serious privacy concerns.” They further allege that Google’s engineers designing the Street View data collection system “intentionally included wireless sniffers” to capture and analyze data traveling over private Wi-Fi networks. The complaint accuses Google of fraudulently concealing its conduct in an attempt to avoid legal conflict. The plaintiffs request statutory damages, punitive damages, and fees and costs.

On June 2, 2010, a married couple residing in Philadelphia filed a class action lawsuit against Google in the Eastern District of Pennsylvania. The complaint argues that Google violated the Wiretap Act and engaged in fraudulent concealment of its activities. The plaintiffs request, in part, award damages, including statutory damages, and expenses and fees.

On June 8, 2010, Google filed a motion to consolidate eight private actions against it pending in six federal judicial districts and to transfer the actions to the Northern District of California. In a memo supporting the motion, Google asserts that “[w]hile there are variations among these cases, they are all rooted in the same basic alleged facts and theory.”

Canada

On September 11, 2007, the Privacy Commissioner of Canada, Jennifer Stoddart, wrote a letter to Google expressing concern that its Street View photograph-taking activities may not have been in compliance with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA). In response, Google began automatically blurring faces and license plates.

On August 21, 2009, Stoddart wrote another letter, this time regarding Google’s data retention policy for the Street View images it captured. The letter called Google’s one-year retention policy “reasonable,” but called on Google to remain cognizant of the requirement for knowledge and consent and to be “be sensitive about the areas [Google chooses to photograph.]“

On June 1, 2010, Stoddart, launched an investigation to determine whether Google’s Wi-Fi data collection violated PIPEDA. The Privacy Commissioner noted that her office is “very concerned about the privacy implications stemming from Google’s confirmation that it had been capturing WiFi data in neighborhoods across Canada and around the world over the past several years” and has “a number of questions about how this collection could have happened and about the impact on people’s privacy.”

Resources:
News:

Back to top

Europe

Since even before Street View was launched in Europe, privacy organizations were wary of the service. Officials at the European Union level have grown increasingly impatient with Google’s practices that compromise user privacy in building its Street View service. Most of the European states discussed on this page are members of the European Union; as such, they are subject to EU privacy laws in addition to any national laws they have on the subject.

Resources:
  • March 23, 2009 complaint from Privacy International to UK Information Commissioner Richard Thomas.
  • March 25, 2009 open letter from Privacy International to Google CEO Eric Schmidt.
  • April 19, 2010 letter to Schmidt from international privacy authorities.
  • May 18, 2010 open letter from Privacy International to EU privacy commissioners.
News:

European Union

Most of the European states discussed on this page (all except for Switzerland) are members of the European Union; as such, they are subject to the EU Data Protection Directive. Under EU law, a “directive” places an obligation on each EU member state to enact national legislation implementing standards that conform to those defined in the directive. The Data Protection Directive requires states to implement laws that restrict the use of data with a focus on three principles: notice, fidelity, and proportionality. Under the notice aspect of the Directive, states must require data controllers to tell consumers why they want to collect personal data and to receive “unambiguous” consent before collecting such data. Under the fidelity aspect of the Directive, states must require data controllers to use personal data only for stated purposes, and prohibit controllers from redirecting such data to other purposes. Under the proportionality aspect of the Directive, states may allow the collection of personal data only where such data has a reasonable relationship to the purposes for which it is collected.

Article 29 of the Data Protection Directive establishes a Working Party comprising representatives of the EU’s 27 member states. On May 26, 2010, Jacob Kohnstamm, Chairman of the Article 29 Working Party, wrote a letter to Google stating, in part, “Given the predominant role of the Google search engine in the daily lives of all citizens of the European information society, the apparent lack of focus on privacy in this area is concerning.” The letter to Google urged it to employ an outside auditor to ensure that data which Google pledged to purge of individually identifiable details was truly made completely anonymous. Kohnstamm sent a copy to the U.S. Federal Trade Commission along with a letter addressed to FTC Chairman Jon Leibowitz. The letter to Leibowitz noted, “We respectfully offer our assistance in any possible steps you might want to take in finding a constructive solution to protect the private life of everybody that conducts searches on the Internet.”

Officials at the EU level have grown increasingly impatient with Google’s practices that compromise user privacy in building its Street View service. EU Justice Commissioner Viviane Reding has reportedly criticized Google for failing to cooperate with privacy officials. She stated, “It is not acceptable that a company operating in the EU does not respect EU rules.”

Resources:
News:

Austria

Austria has placed a temporary ban on Google Street View cars so that government regulators can take time to investigate privacy concerns. Austria’s data protection commission has ruled that the cars are not allowed to collect data until it has evaluated whether personal data were wrongfully obtained. The Data Protection Commission (DSK) confirmed that an investigation is taking place. The Commission said: “To clarify the matter, we are asking Google… to present a precise technical description of its data-collection activities by June 7, 2010, as well as to answer a detailed questionnaire.” The probe could take about two months, according to commission member Waltraut Kotschy. Once the Commission has received the requested information, the Commission will then decide on further steps to take.

Resources:
News:

Czech Republic

In April, the Czech Office for Personal Data Protection (ÚOOÚ) began investigating Google’s Street View activities. “We initiated the administrative action April 21. by sending Google a formal notice and the procedure began three days ago when Google received the letter in the U.S.,” Hana Stepankova of the ÚOOÚ told news reporters. Like France, the Czech Republic imposes “conditions of registration” on companies that collect personal data, and the ÚOOÚ alleges that Google did not satisfy these conditions. The Office may fine Google up to €392,000.

Resources:
News:

Denmark

Denmark requested that the Wi-Fi data be destroyed, and Google confirmed that it destroyed the data as requested: “Following requests from the Irish, Danish and Austrian data protection authorities, we can confirm that we have deleted payload data identified as coming from those countries.”

News:

France

Companies in France must file a declaration with the French National Commission on Computing and Liberty (CNIL) “describing personal data they intend to store in computer systems and the use they plan to make of it.” Google never filed such a declaration. The CNIL confirmed on their website on May 19 that they are “currently conducting a review of Google, in order to obtain all the information on this case and decide what action to take.” Google subsequently handed copies of the data over to CNIL.

On June 17, 2010, CNIL issued a press release (French) providing updated information regarding its investigation into Google’s conduct. CNIL announced that preliminary analysis of the data Google collected showed that Google “saved passwords for access to mailboxes” and obtained content of electronic messages.

The CNIL is continuing to pursue the investigation to determine whether Google engaged in “unfair and unlawful collection of data” as well as “invasion of privacy and individual liberties.”

Resources:
News:

Germany

German authorities have been suspicious of Google Street View since 2008, when Street View vehicles first began photographing German streets. In a press release dated July 16, 2008, Data Protection Commissioner Peter Schaar expressed his office’s concerns regarding the service and noted that Google promised to blur out license plates and individual people.

In April 2009, Google agreed with German data protection officials to allow individuals whose faces or license plates showed up in Street View pictures to register complaints with Google Germany to have those images blurred. The German data protection agency insisted that Google delete the images permanently. Google, however, wanted to retain them, claiming that it needed to do so to improve its technology.

Johannes Caspar, the data protection supervisor for Hamburg, threatened to “investigate the possibility of sanctions” if Google did not delete the offending data by May 20, 2009. In addition, agency spokesman Dietmar Mueller announced on May 5 that private citizens would be allowed to sue Google in German courts to a limited extent for privacy breaches.

Caspar later discovered in an inquiry that “all vehicles used for the Internet service of Google Street View are equipped with technological devices for mapping” Wi-Fi networks. This revelation was first disclosed publicly on April 23, 2010, by Peter Schaar, the Federal Commissioner for Data Protection and Freedom of Information. At that time, Google had not yet provided a written answer to Shaar’s questions about the technological specifications, nor allowed an inspection of the Street View cars. Said Caspar of Google’s collection of Wi-Fi data, “The procedure of Google is unacceptable. This illegal scanning has never been the subject matter of discussions about Google Street View.” Schaar remarked, “I am shocked for which purposes these tours were used without the third parties being aware of them..”

Google steadfastly refused to hand over the data through the May 26 deadline, citing concerns that doing so could impose criminal liability. On May 27, Google agreed to allow experts from the German Data Protection Agency to examine one of the Street View vehicles as well as the software Google used to collect the payload data. Google stated on June 3 that it is “close to resolving the legal issues” that it previously claimed prevented it from handing it over. It has since confirmed in an email statement that the data will be handed over to German government authorities.

On June 9, a third-party audit exposed the precise technological mechanisms by which Google’s Street View vehicles collected the payload data. Privacy International stated that the audit proved Google or its employees had acted with criminal intent and that German prosecutors would be virtually certain to file criminal charges.

Resources:
News:

Greece

In May 2009, citing privacy concerns, Greece forced Street View to cease operations within its borders, pending further investigation of the service. Street View has not operated in Greece since.

Resources:
  • Law 2472/1997 on the Protection of Individuals with regard to the Processing of Personal Data.
  • Law 3471, amending Law 2472/1997.
  • May 11, 2009 press release from Greece’s Hellenic Data Protection Authority, requiring Google to suspend its Street View activities.
News:

Hungary

On June 4, 2010, the office of the Hungarian Parliamentary Commissioner for Data Protection and Freedom of Information issued a press release announcing the commencement of official activity undertaken by the Commissioner regarding Google Street View. The press release stated that Privacy Commissioner Jóri András had sent a letter (in Hungarian) (in English) to Google requesting more information about Google’s collection of data from private Wi-Fi networks.

Resources:
  • June 4, 2010 press release (Hungarian) from the office of the Hungarian Parliamentary Commissioner for Data Protection and Freedom of Information.
  • June 2, 2010 letter (in Hungarian) from Privacy Commissioner Jóri András to Google.
  • June 2, 2010 letter (in English) from Privacy Commissioner Jóri András to Google.

Ireland

In its 2009 annual report, the office of the Data Protection Commissioner of Ireland stated that it had meetings with Google to “confirm that the system would operate in accordance with data protection law.” In response to the announcement that Google had been collecting Wi-Fi payload data, the Irish Data Protection Commissioner requested that Google delete the data. An independent third party confirmed that it had deleted the data.

Resources:
News:

Italy

Italy has launched its own investigation into Google over its collection of payload data. Italy’s data protection authority, the Garante per la Pertezione dei Dati Personali, is requiring the company to “disclose to the authority the date it started collecting information, how it collected the data and for what purpose, and where and for how long it stores the information,” and “clarify what data it collected from Wi-Fi networks, and whether any of that information has been sold.” The data protection authority confirmed in a press release on its website that they had “launched a prosecution against Google to verify the legality and fairness of the processing of personal data under the Street View service.”

This is not the first time Google has had trouble with Italian privacy law. Just this February, three Google executives were found gulity of defamation and violating Italy’s privacy code.

Resources:
  • May 19, 2010 press release from Italy’s Office of the Privacy Regulator.
News:

Spain

On May 19, 2010, in a press release on its website, the Spanish Agency of Data Protection confirmed that its director, Artemi Rallo, ordered an investigation to determine whether Google had infringed Spanish data protection laws and citizens’ rights by capturing and storing private Wi-Fi data without consent.

On June 13, 2010, Spanish data protection watchdog group APEDANICA filed a criminal complaint against Google in the Police Court of Madrid. In the complaint, APEDANICA president Miguel Gallardo rejects Google’s assertion that private Wi-Fi data collection resulted from a mistake, arguing that something carefully programmed and done in thirty countries could not have been a mistake.

On June 15, 2010, Spanish consumer organization FACUA issued a press release announcing that it, too, had filed a criminal complaint against Google. FACUA filed its complaint in the National Court. FACUA asserted that Google’s conduct may have violated Article 197 of the Spanish Penal Code.

Resources:
News:

Switzerland

Google has been facing conflict with Swiss authorities since spring of 2009, when the Federal Data Protection and Information Commissioner informed Google that under Swiss law it was required to anonymize Street View images before publication. The FDPIC further warned Google that it would take legal action if the company failed to comply. Following activation of Street View in Switzerland in August, the FDPIC received numerous referrals and complaints regarding Google’s failure to adequately anonymize personally identifiable details. In response, the FDPIC intervened, demanding substantial improvements.

In October 2009, the FDPIC issued a recommendation to Google. Google refused to follow the majority of the recommended measures; the FDPIC took Google to court in November. In a press release on the matter, the FDPIC criticized Google for failing to be forthcoming about its image captures, stating “the advance information that Google gave to the FDPIC was incomplete: for example, Google announced that it would primarily be filming urban centres, but then put comprehensive images of numerous towns and cities on the Internet.”

In December 2009, the FDPIC announced that he had reached a temporary agreement with Google regarding Street View pending a forthcoming decision from the Federal Administrative Court.

On May 22, 2010, the FDPIC told Sonntag, a Swiss newspaper, that he was working with European data protection authorities to investigate Google’s collection of personal data from Wi-Fi networks.

Resources:
  • The FDPIC’s summary page regarding Street View
  • November 13, 2009 press release from the FDPIC explaining why it is taking Google to Federal Administrative Court
  • December 17, 2009 press release from the FDPIC summarizing an agreement it has reached with Google
  • May 22, 2010 Sonntag article reporting the FDPIC’s reaction to reports that Google collected private wi-fi data
News

United Kingdom

On April 23, 2009, in response to a complaint from Privacy International, the UK’s Information Commissioner’s Office (ICO) issued a press release stating its position that Street View’s picture-taking activities did not violate the Data Protection Act.

The ICO has decided not to pursue Google for its Wi-Fi snooping activities after Google promised to delete the payload data. The ICO has said it is reviewing the third party source code analysis released on June 9, but that it had no plans to pursue the matter under formal investigation.

On June 22, 2010, London’s Metropolitan Police opened crime reference number 2318672/10, commencing an investigation into Google’s Wi-Fi sniffing activities. The police will begin by conducting an investigation into the underlying facts. This investigation could lead to further inquiries and potentially, prosecution.

Resources:
News:

Asia-Pacific

Australia

In May 2010, Australian Privacy Commissioner Karen Curtis confirmed that an investigation into Google is underway, but she noted that the Privacy Act prevented her from commenting on the specific details. Ms. Curtis confirmed that the Assistant Privacy Commissioner met with Google representatives on May 17, 2010 in order to discuss what action to be taken by Google in respect of any information it has collected before launching an investigation.

At a forum on Internet security on June 6, 2010, Australian Attorney General Robert McClelland informed reporters that the matter has been handed over to the Australian Federal Police. The legal basis of this investigation will be based on whether Google violated the country’s Telecommunications Interception Act, which “prevents people from accessing electronic communications other than for authorized purposes,” according to the Attorney General.

Google said on June 6, 2010 that it will cooperate with the Australian police probe. Australian Communications Minister Stephen Conroy on May 24, 2010 accused Google of invading privacy by photographing streets and using software to intercept wireless data and has also accused Google of purposely capturing the Wi-Fi data noting that this could possibly be “the largest privacy breach in history across Western democracies.”

On July 9, 2010, Australian Privacy Commissioner Karen Curtis announced that her office has completed an investigation of Google’s Street View activities, finding that Google had violated Australia’s Privacy Act. Although the Act does not empower the Commissioner to impose sanctions, Google has agreed to: (1) publish an apology; (2) conduct a Privacy Impact Assessment (PIA) on any new Street View data collection activities in Australia that include personal information; (3) provide a copy of these PIAs to the Commissioner’s Office; and (4) regularly consult with the Commissioner about personal data collection activities arising from significant product launches in Australia.

Resources:
News:

Hong Kong

In 2009, Hong Kong’s Privacy Commissioner for Personal Data inquired into Google’s Hong Kong Street View operations, but did not announce the results.

On May 18, 2010 The Commissioner, Roderick B. Woo, met with Google’s Asia Pacific’s Head of Government Affairs. The Commissioner asked for an account of Google’s collection of personal Wi-Fi traffic during its Street View operation in Hong Kong. On May 19, The Commissioner sent a form of Undertaking, seeking assurances from Google. When Google failed to respond, the Commissioner threatened to sanction Google by “resort[ing] to a more assertive action.”

On June 8, 2010 the Commissioner’s Office stated that had Google ceased operating its Street View cars in Hong Kong and when the cars commence driving again in the city they will not collect Wi-Fi data. The Commissioner confirmed that Google delivered a written Undertaking on June 7, 2010 to assure that future Street View car operations carried out in Hong Kong will comply with the requirements of Hong Kong’s Personal Data (Privacy) Ordinance.

Resources:
News:

Japan

Since its launch in August 2008, Street View Japan has faced complaints about invasions of privacy. These complaints eventually led Google to re-shoot the entirety of the photographs shot in Japan. Since Google has admitted collecting Wi-Fi data, however, Japan has been largely silent.

News:

Korea

On June 8, 2010, it was confirmed that Korean regulators are investigating whether Google collected sensitive private information from wireless networks. The Korea Communications Commission (KCC) said that Google Korea has reported its collection of personal information to the members of the KCC. “We requested additional data (in late May) and we will go forward with internal reviews once we receive it,” a KCC official said.

Resources:
News:

New Zealand

Under Section 216B of the New Zealand Crimes Act, it is a crime to intercept private communication by means of an interception device.

On May 14, 2010, in response to initial reports that Google Street View vehicles had secretly collected Wi-Fi data in New Zealand, Privacy Commissioner Marie Shroff stated in a press release she was “surprised that the public was not more clearly told beforehand.” Shroff reported that her office was in conversations with Google to obtain more details regarding its conduct.

On June 10, 2010, the office of the Privacy Commissioner issued another press release regarding Google’s interception of wi-fi data. Assistant Privacy Commissioner Katrine Evans reported that the office had referred the matter formally to the New Zealand Police to investigate whether Google committed a criminal offense. According to New Zealand news outlets, the investigation will be conducted by the National Response Center for Cyber Crimes.

Resources:
  • May 14, 2010 press release from the office of the New Zealand Privacy Commissioner regarding reports that Google’s Street View vehicles collected Fi-Fi data.
  • June 10, 2010 press release from the office of the New Zealand Privacy Commissioner regarding ongoing investigations into Google’s collection of data from Wi-Fi networks.
  • New Zealand Crimes Act Section 216B, Prohibition on use of interception devices
News:

Singapore

On June 12, 2010, Singapore newspaper Straits Times reported that the Infocomm Development Authority, an office of the Singapore government, had begun discussions with Google regarding its collection of data from private Wi-Fi networks.

Resources:
News:

(Cheers, RW)

Follow p2pnet on Twitter..

… and identi.ca

Deutsche Presse-Agentur – More states join Google privacy probe, July 21, 2010
p2pnet – EPIC Google Street View roundup, June 21, 2010

Use free p2pnet newsfeeds for your site. It`s really easy!

Subscribe to p2pnet.net | | rss feed: http://p2pnet.net/p2p.rss | | Mobile – http://p2pnet.net/index-wml.php

Net access blocked by government restrictions? Use Psiphon from the Citizen Lab at the University of Toronto. Go here for details.

This entry was posted on Thursday, July 22nd, 2010 at 1:49 pm and is filed under Advertising, P2P. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 3529 times

« previous Dear Jon: PLEASE re-join Facebook!
Bourne Music shoots down girl’s hospice video next »

4 Responses to “38 states in Google Street View probe”

  1. Reader's Write Says:
    July 22nd, 2010 at 2:12 pm

    Damn. Well done.

  2. Reader's Write Says:
    July 22nd, 2010 at 3:11 pm

    It get’s worse:

    Google Helping U.S. Army To Launch Missiles From Their Phones
    http://www.androidpolice.com/2010/07/21/google-helping-u-s-army-to-launch-missiles-from-their-phones/

  3. Reader's Write Says:
    July 22nd, 2010 at 6:42 pm

    Go for it guys! With a little luck, we can still kill this thing and maybe even even get the entire Google site taken offline!

  4. Reader's Write Says:
    July 22nd, 2010 at 8:30 pm

    The RW appears to be trying their skills at being sarcastic.

Leave a Reply

ONLY items referencing the post at hand, please. No links to personal sites, no personal attacks, trolling, freebie advertising, or off-topic posts. Thanks. And Cheers!

    Sponsored by
tek savvy