Worcester Polytechnic Institute, Worcester, MA 01609, USA.
Science. 2015 Jan 30;347(6221):504-6. doi: 10.1126/science.aaa4961.
Massive data collection by businesses and governments calls into question traditional methods for protecting privacy, underpinned by two core principles: (i) notice, that there should be no data collection system whose existence is secret, and (ii) consent, that data collected for one purpose not be used for another without user permission. But notice, designated as a fundamental privacy principle in a different era, makes little sense in situations where collection consists of lots and lots of small amounts of information, whereas consent is no longer realistic, given the complexity and number of decisions that must be made. Thus, efforts to protect privacy by controlling use of data are gaining more attention. I discuss relevant technology, policy, and law, as well as some examples that can illuminate the way.
企业和政府的大规模数据收集对传统的隐私保护方法提出了质疑,这些方法基于两个核心原则:(i)通知,即不应该存在其存在是秘密的数据收集系统,以及(ii)同意,即未经用户许可,不得将为一个目的收集的数据用于另一个目的。但是,在收集大量小额信息的情况下,通知作为一个不同时代的基本隐私原则意义不大,而鉴于必须做出的复杂性和数量的决策,同意也不再现实。因此,通过控制数据使用来保护隐私的努力受到了更多的关注。我讨论了相关的技术、政策和法律,以及一些可以说明问题的例子。
