Sunday, March 13, 2005

A Model Regime of Privacy Protection

Chris Hoofnagle of the Electronic Privacy Information Center and I have written a short paper that makes specific proposals for protecting information privacy.

The paper is called
A Model Regime of Privacy Protection.

After the ChoicePoint security debacle, and in light of the recent security breaches at LexisNexis, there has been considerable legislative interest at both the state and federal level in regulating the data broker industry as well as information privacy more generally. Having frequently been asked for specific proposals and ideas, we decided to try an experiment -- set forth some specific legislative recommendations and solicit comments and reactions. Our
paper makes 16 specific proposals for regulating the databroker industry, grappling with identity theft, and regulating government access to private sector information. We aimed to keep it as short as possible -- it is less than 15 pages, so it shouldn't be a burdensome read.

We aim to update and revise the proposals. We also aim to develop a commentary section where we discuss comments or criticisms that raise problems or issues that are worth addressing and thinking about. We will acknowledge those suggesting ideas we incorporate and will discuss comments in the commentary section. I often have debates about privacy issues on a rather abstract level, so this endeavor is an experiment for me. Chris and I hope it will be useful to starting a fruitful discussion, one that will be of help to policymakers.

So if you want to share your thoughts, please either post comments here or email


At Wednesday, April 20, 2005 2:02:00 AM, Blogger YC said...


I stumbled on your blog after a little investigating that started from Bruce Schneier's blog on your papers.

Why not blog on a specific aspect of the paper that you'd like feedback on? That would keep the comments and discussions more focused.


Post a Comment

<< Home