Google to anonymise personal data after 18 months

Privacy bodies have welcomed Google’s decision to anonymise personal data it receives from users’ web searches. The firm previously held information about searches for an indefinite period but will now anonymise it after 18 to 24 months.

“This is an extremely positive development,” said Ari Schwartz, deputy director of the Center for Democracy and Technology, a US-based watchdog.

However, governments could still force Google to hold onto data or hand it over to authorities.

“By anonymising our server logs after 18 to 24 months, we think we’re striking the right balance between two goals: continuing to improve Google’s services for you, while providing more transparency and certainty about our retention practices,” a statement from the search giant said.

It added: “Unless we’re legally required to retain log data for longer, we will anonymise our server logs after a limited period of time.”

Peter Fleischer, Google’s privacy counsel for Europe, said the decision has been taken after consulting with privacy bodies in the US and Europe. He said: “We believe that privacy is one of the cornerstones of trust. We will be retroactively going back into our log database and anonymising all the information there.”

Google collects and stores data from each query. It holds information such as the search term itself, the unique address of the PC being used, known as the IP address, and details of how a user makes searches, such as the browser used and previous queries to Google. That information can contain private data about a user, and could be used to build a detailed picture of the user’s habits or lifestyle. Google says it was using this information to help improve its different services and to monitor how its search engine was functioning.

Privacy groups are concerned about how the data collected by Google – and other web firms – could be used to monitor people’s online habits. Richard Clayton, a researcher at Cambridge University specialising in web traceability, said Google’s announcement was positive but had not gone far enough.

“It’s a step forward but I would like to see them anonymising data in a much shorter period.

“There is no justification for holding on to the data for two years.”

Mr Clayton said the data Google collected was useful to the firm in improving its services only in the short term. He said that Google was hiding behind the European directive in setting time limits on how long it should hold on to the data.

“There is no sense of whether this directive even applies to web search logs,” he said.

He said the real reason Google was holding on to the data was because of the cost involved in anonymising it. He said he also had concerns about how the firm was ensuring that held data could not be traced back to individual users.

Google has said it will alter the data so that users’ searches cannot be traced back to an individual’s computer. But Mr Clayton said the recent row over search data released by AOL showed that identification of users could still be made even without a machine’s unique IP address.

AOL released data to academics last year relating to millions of search queries carried out by its users. While there was no direct identifying data, there was enough information in the searches to build profiles of users.

It is not yet clear if other search engines will follow suit.

Yahoo said that it would hold onto web data for as long as EU law required – but the firm did not say what it would do with the information beyond the 24 months demanded by the law. In a statement the firm said: “Our data retention practices vary according to the diverse nature of our services.

“We are reviewing the European Data Retention Directive as it comes into force across Europe. Our services covered by the directive will comply with the laws as they are enacted in each country that we have a presence.”

Read the rest of this entry »

Posted in Google, Internet | No Comments »

Open-Xchange (Partially) Embraces GPL

Open source isn’t always synonymous with collaborative community development, even when it comes to open source collaboration applications.

Open-Xchange is hoping to change that for its open source collaboration suite with the launch of a new community project partially licensed under the GPL .

The new collaboration project comes on the heels of Open–Xchange’s recent big ISP win with 1&1 Internet and will see an open source project being set up around the Open-Xchange 1&1 MailXchange server.

The server will be released under the GPL, while the AJAX user interface for the server is being made available under the Creative Commons Attribution-NonCommercial-ShareAlike 2.5 license.

Just don’t expect to be able to take the newly available components and be able to directly clone what 1&1 has.

“Open-Xchange makes a clear distinction between the source code related to the program and digital content/trademarks/Java browser script code,” Paul Sterne, CFO and general manager of Americas for Open-Xchange told internetnews.com.

“The source code of the project, program and digital content, are freely available to use, share and change/remix.”

Sterne added that right now, Open-Xchange has released the source code to two program components — the collaboration server and the administration module. The third and fourth program components, the installer for Ubuntu and the Wiki OXtender, will be released as soon as they have been vetted by the community.

The source code for the digital content related to Web access to the server is also available.

“The digital content related to Web access to the administration module is still being developed and vetted by the community,” Sterne explained. “So the application currently works via a standard browser with the server, but the admin module can only be activated via scripting.”

The collaboration project will be hosted in Olpe, Germany at Open-Xchange’s development lab, while communication with the project maintainers will be managed via Bugzilla. Developers must enter into an attribution and assignment before they can contribute code via Bugzilla to the maintainers.

The code will be subjected to peer review in the wiki or the forums. Once a code module is ready for release, the Open-Xchange maintainers will enter it into the CVS version control system.

The licenses that Open-Xchange has chosen are also intended to help facilitate collaboration while still providing the protections that software-as-a-service (SaaS) vendors need.

“They wanted protection that their OX-branded and private label SaaS offerings would not be copied by other commercial SaaS providers,” Sterne said. “GPL didn’t offer any protection, so we innovated and put the digital content under the Creative Commons: Attribution, Noncommercial, ShareAlike” license.

On the GPL side, Open-Xchange’s choice of license stands in contrast to that of its competitor Zimbra, which offers its namesake collaboration suite under a modified Mozilla Public License, plus attribution.

Sterne noted that while he could not speculate on why other companies select MPL versus GPL, his company likes GPL because it is the standard and the most people understand it.

“We like it because it conforms to the basic principles of the open source movement: Freedom to use, share and change.”

Read the rest of this entry »

Posted in Internet, Software | No Comments »

Digg Down

14:20 PM GMT on Thursday, March 8th 2007 – Digg is down! I don’t know what to do with myself…

digg_down.png

Posted in Internet | No Comments »

Previous
Next
  • Search


Copyright © 2009 Red Canyon Ltd. All rights reserved.

Company Registration No. 6688868



Find us on Facebook! Find us on twitter! Read our blog! Bookmark us on delicious! Bookmark us on Stumbleupon!

We are listed on the FreeIndex.co.uk Web Designers directory