12 privacy tips online |
This data mining 101 article by Tom Owad shows just how much information is available and easily accessible online. He takes a few lines of custom code, a bunch of free scripts, a Mac and his home DSL line to do the mining and then closes with an unsettling thought:
… imagine if one had access to Amazon’s entire database - which still contains every sale dating back to 1999 by the way. Under Section 251 of the Patriot Act, the FBI can require Amazon to turn over its records, without probable cause, for an “authorized investigation . . . to protect against international terrorism or clandestine intelligence activities.” Amazon is forbidden to disclose that they have turned over any records, so that you would never know that the government is keeping records of your book purchases. And obviously it is quite simple to crossreference this info with data available in other databases.
Privacy — or the lack thereof — is one of the reasons I try my best to not follow patterns online. I’ve bought some books at Amazon, but I tend to spread purchases around. I’m a firm believer in avoiding predictability and patterns with buying habits, schedules and road travels. Structure is unavoidable with some things, but adding some unpredictable activity is wise. Eventually everything becomes a pattern, I suppose with a large enough data set — or wide enough popularlity — there is a point at which it becomes futile to try and protect your privacy but along the way if you try and do the following the leaks will at least be minimized:
- spread online purchases around and be careful about what’s shared publically, specifically purchase history
- if you blog it or share it with someone else who blogs it, then it’s no longer personal, always keep that in mind. Since I blog a lot of my new purchases here (they often become detailed reviews), I’m already making a lot of my purchase data well known. At least I know what I’m doing with this information and how it’s archived instead of wondering what Company ABC is doing with it.
- watch out for public RSS feeds of your own data. Share only what you want to share when you fully realize the ramifications of sharing. Assume the FBI, your best client, parents and grandparents will be able to find and read anything you share and/or publish on the web.
- do include privacy message in your emails if you don’t want this information shared. Yes, it should be obvious that email information is inherently private and personal, but some folks need it in their face next to your names to drive this home
- robots.txt and .htaccess can be useful for helping to prevent third party access to data but they are not fullproof solutions.
- always edit your profile — if you have one — after you register online. Sometimes information you fill out during registration is made public by default. Don’t be caught in this privacy trap.
- do not use mother’s maiden name or other personally identifiable information for password retrieval. Choose vague options like favorite food or create your own unique and vague fact that only you and people very close to you would ever know.
- don’t auto-save credit card information unless there’s no other way. It’s not that big of a hassle to retype a credit card number but it’s a big hassle if the company’s card database is breached.
- always, always, always ensure sensitive information is being transferred over an https:// secure connection. Look for the lock in the browser. If you don’t see it, don’t shop there.
- don’t link to your email address unencrypted in profiles, web pages, blog entries or otherwise.
- use your nick/handle, not your legal name whenever possible online
- read, yes, really read the privacy and terms of service (TOS) policy of sites you sign up. I’m guilty of not doing this sometimes and those are usually the sites that end up whoring out my information
Got other online privacy tips/tricks to share?
Did this post make you go hmm?
(1 votes, average: 5 out of 5)
Loading ...Related Posts
- Not a scam: free online credit report checking begins Dec 1, 2004 in Western states
- Bill Me Later
- What popular websites give you the privacy creeps?
- IBM exploring data randomization
- How does Bill Me Later work?
- Teens with Visa cards online
I rarely read those privacy & terms either. They are just tooooo loooong. I have tried to read them in the past but by the time I’m finished, I forgot what the heck I was buying.
I’ve only had one bad experience buying something online at a place called CD Universe. It was years ago. If I remember correctly, someone hacked their system and took a bunch of customer info (addresses and credit card numbers) and then created a webpage displaying all of the customer information.
I remember getting a letter from CD Universe approximately 3 or 4 months after the fact but I had already closed my credit account after learning about the hack job online.
I heard on the news recently (within the past month) about a couple of computers taken from Ford Motor Co. that contained all personal/private data on thousands of employees–both working and even some no longer working for the company. The info contained their social security numbers, adresses, banking info (if they had direct deposit), etc…. Wonder whatever happened with that? I never heard a follow-up story.
Comment by Janine — January 7, 2006 @ 3:40 pm PST
[…] you are concerned about privacy I wrote a post with 12 tips for protecting privacy that might be of interest. My personal take on privacy and search engines remains that I […]
Pingback by Nobody scores well but Google the worst according to controversial report » Make You Go Hmm — June 11, 2007 @ 7:48 am PST