There is no such thing as privacy on the internet. In light of recent news coverage of Edward Snowden and National Security Agency (NSA) spying, we must ask ourselves: What has facilitated mass monitoring online, and how can we best protect ourselves?
The nature of internet communication enables spying. If you have ever spent time on Facebook stalking your alleged friends, then you’re an accomplice.
In most of Canada, online data is legally protected by the Freedom of Information and Protection of Privacy Act (FIPPA). Beginning with the most benign privacy threat online, consider the right of access by an app developer or your email provider.
SFU’s Fair Use Policy for Information and Communications Technology (ICT) governs all online services and other university computers. This policy states that “most activities performed using university’s ICT resources are logged . . . [and] . . . routinely examined by ICT support staff to monitor the performance, reliability and security of ICT. ICT support must not disclose information learned from or contained within these log files except when authorized . . .” I do not question SFU’s integrity regarding this policy, I only mean to highlight that anything stored on SFU servers is accessible, and therefore, isn’t private.
Information technology (IT) support services for corporations with an online presence have the same access to data as SFU, but this data is also analysed for the purpose of targeted advertising, which is akin to spying. The clever programming of analytics responds to key words in emails, web pages visited, type of web browser, the brand of computer, your IP address and much more.
If you’re browsing on a smartphone, these analytics monitor where you are. Check the terms of apps and determine what they demand access to. The dictionary.com app requires geographic location. Looking up the definition of “absurd” online should not require my location.
Location monitoring is unnecessary, arbitrary and an invasion of privacy. Location data is a type of “metadata” and is argued by its proponents not to be a form of spying. The metadata of a phone call doesn’t include conversation topics, but details who you called, for how long, and from where. All things considered, if you consistently monitor a person’s digital activity, you would likely know more about them than if you searched their home.
The NSA has applied all of these online monitoring techniques, and more. This form of spying generates a comprehensive, constantly updating digital record of everything a person has done using communication technology. This isn’t simply following someone in a crowd; if an agent deems you suspicious, your digital fingerprint, backed-up across multiple servers, can be thoroughly scrutinized.
Over the last 15 years, the Government of Canada has made repeated attempts to remove the necessity for law enforcement agencies to possess a warrant to monitor a person’s online activity. A warrant is presently required, but this provides only limited online privacy, which may be eliminated with a change to the law.
What can we netizens (citizens of the internet) do about our lack of privacy online? For starters, read the terms and conditions when you agree to use apps or online services. If people refuse to use apps and communication devices because of invasive monitoring, developers will change the product.
Opt out of unnecessary data monitoring. For the dictionary.com app, I have disabled “location services.” For email, use a fully encrypted service, or one that isn’t actively analysing your correspondence. SFU email accounts are considerably more private than Gmail accounts.
For a comprehensive list of encrypted and open source online services visit prism-break.org. Finally, when any of your liberties are challenged, make noise, scream, yell and sign petitions. Government lawmakers really do notice.
