Blink

by | Jul 6, 2005 | Uncategorized

<p>I have just started reading [l:http://www.gladwell.com/books.html|Blink] by Malcom Gladwell (first read about it on [l:http://edbatista.com|Ed Batista's blog] and so far I am blown away. I love it.</p> <p>I may post some impressions about it. I also still have to post some impressions from [l:http://free-culture.org|Free Culture] by Larry...

Specter-Leahy Data Security Bill

by | Jul 5, 2005 | Uncategorized

<p>If I were more informed on the matter, i would offer my analysis or opinion, but at this point I am not, however i think this email fwdd by a [l:http://fen.net|coworker (Fen)] seems pretty on point.</p> <p>From Fen:<br /> <cite><br /> I've included some of my commentary on the bottom, sent earlier to the Identity Commons Developers list.<br /> </cite><br /> ——– Original Message ——–<br /> Date: Thu, 30 Jun 2005 01:13:55 -0400 From: Declan McCullagh [Politech] Preliminary analysis of new Specter-Leahy data security bill: opinions? [priv]</p> <p>It's worth taking a close look at the new Specter-Leahy security breach bill — introduced Wednesday — because it's the most comprehensive so far and the leading candidate to be enacted into law this year. It's even, at least in theory, going to be voted on in the Senate Judiciary committee on Thursday: <a href="http://judiciary.senate.gov/meeting_notice.cfm?id=1555" title="http://judiciary.senate.gov/meeting_notice.cfm?id=1555">http://judiciary.senate.gov/meeting_notice.cfm?id=1555</a></p> <p>The sections dealing with government use of databases seem generally useful (though some loopholes exist, like the requirement that a database is "primarily" of Americans before its use is covered — look for the FBI to start inserting random Mexican names to get around the "primarily" requirement). So let's look at the private sector components.</p> <p>Bear with me as we get a little technical here…</p> <p>Title III of the bill erects a complex regulatory scheme around any "data broker." That's defined as a "business entity" that it's in the regular business of "collecting, transmitting, or otherwise providing personally identifiable information" of 5,000 or more people that are not "customers" or "employees." Business entity is defined as any organization, including a sole proprietorship, that's in the business...