by Robin Wilton | March 31, 2011 | Comments Off on US Federal Trade Commission takes action over Google Buzz
The US Federal Trade Commission (FTC) has announced (March 30th) the details of a settlement order with Google over alleged privacy violations arising from the launch of the Buzz service. I wasn’t actually a Gartner analyst when Buzz was launched, but by a strange co-incidence I was attending a European conference on Trust in the Information Society – at which a speaker that morning had been Alma Whitten, since appointed as Google’s Director of Privacy. Alma actually did a good job on stage that day, but she can have had little idea of the hornet’s nest which was starting to buzz [sorry…] as a result of her employer’s most recent (at the time) foray into networked interaction.
Back at the time (11th Feb 2010, to be exact) I blogged my initial reactions to Buzz here. I have included some subsequent blog posts for completeness, but the 11th Feb entry is the one in question. What most struck and irritated me at the time was that even though I said “no thanks, just take me to my inbox”, Google went ahead and turned Buzz on anyway. This opt-in – not only by default, but also in the face of an explicit indication that I did not want it – seemed to me to violate my immediate preferences and potentially my subsequent privacy.
The FTC agrees. This specific point is one of the elements of today’s enforcement notice against Google. They further find that, as a consequence of the implicit opt-in, Google was using personal information for purposes other than those stated at the time of collection, and therefore was failing to meet its obligations under the EU/US Safe Harbour agreement.
The FTC also says that Google did not inform users adequately about the extent to which they were enrolled in Buzz, the effect that would have in terms of exposing personal information to others, or the controls for limiting such exposure.
Although Google are the subject of the current FTC ruling, they were not the only example we considered in our paper. The three points set out above do not represent an unattainably high bar, but the research so far suggests that many organisations still have plenty of scope for improvement. Let’s hope that the FTC’s action encourages them to try.
Read Complimentary Relevant Research
Predicts 2017: Artificial Intelligence
Artificial intelligence is changing the way in which organizations innovate and communicate their processes, products and services. Practical...
View Relevant Webinars
How to Protect Mobile Apps
Securely enabling applications on corporate- or employee-owned devices is key to protecting enterprise data from misuse. From containers...
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.