Hey! Alexa, Are You Snooping?
By C. Naseer Ahmad
Technological advances nowadays bring us a lot of conveniences and, perhaps momentary, joys. However, not all of us might realize that much of the data resides in the “cloud” where jurisdiction and protection of privacy is murky and contentious. So a cloudy overcast in downtown Washington on Friday April 7, 2017 was perhaps by design to address the developments and challenges in data privacy law.
Microsoft Corporation hosted an intellectually challenging as well as trailblazing symposium at its Innovation and Policy Center in the heart of Washington. The event was presented by the American University Law Review bringing together some of the sharpest legal minds and practitioners to discuss the legal nuances, intellectual and jurisdictional issues surrounding data privacy. Ms Susan Mann, a Microsoft Executive and a graduate of American University’s Washington School of Law, delivered brief remarks.
To whom does the data belong? Who can see it? Under which circumstances? And … by whose authority? These are some of the questions in lay persons’ terms. Both, the moderators and the panelists did their best to educate the legal students and the public interest professionals attending this important and timely exchange of ideas.
Debates and serious discussion on sensitive issues like privacy need the right setting. Often people like to present the ‘30,000 feet view’. Unfortunately, too much generality can lead to misleading conclusions. At the same time, focus on minutia can also lead to one missing the point. So in this perspective the collaborative effort of the Microsoft Corporation and the American University Law Review struck the right balance.
The symposium venue itself provided an ideal setting. From the 11th floor, looking east one could clearly see the Capital and the broad avenues leading towards the legislative body that makes laws and sometimes is caught struggling doing so. But, immediately adjacent to the conference center is a historic house of worship. Then a street away is the historic Carnegie Library perhaps embodying the repository of shared knowledge. A bit to the left is Washington’s new Convention Center – where businesses meet and establish rules of behavior and best practices. Heading east are then different avenues and streets that provide direct and indirect path toward the legislative center of this vibrant and sometimes chaotic democracy. Symbolic checks and balances in a Nation governed by laws still matter.
Similar to the different streets and broad avenues in Washington, the symposium provided panel discussions covering different perspectives. For instance, after the opening remarks, Professor Michael W. Carroll, Director, Program on Information Justice and Intellectual Property, American University, Washington College of Law, moderated a very lively panel discussion on “how far should the long arm of the law reach?” Referring to the Microsoft Ireland Case, this discussion cited the “Second Circuit has held that when a US citizen commits a crime in the United States, a US warrant supported by probable cause reaches stored communications, such as email, only if the data is physically stored in the United States.”
Many interesting quotes came out from this discussion. For instance, “Let’s start with the facts; email account lives in the cloud; it’s in data center in certain countries; some of your gmail might be in one country while other parts in other country.” And, “What does it mean to set up the cloud? There is no such thing as the cloud; it just sits on some other people’s computers.”
The second panel discussion moderated by Kirk Nahra, Partner and Chair, Privacy & Cybersecurity Practice, Wiley Rein – “An Ocean Apart: Can the Privacy Shield Bridge the Gap between the EU and the US Privacy Regimes” - sought to explain the “differences in the European and US approaches to privacy and explore current issues surrounding the latest attempt to bridge the gap between the two.”
The third panel discussion moderated by Hillary Brill, Practitioner in Residence, Glushko-Samuelson Intellectual Property Clinic, American University Washington College of Law, focused on the latest privacy concerns of the Internet of Things (IoT). Panelists with real world experience and deep insights into the privacy issues and examples explained that “IoT surrounds us, watches us, listens to us – we often do not even realize that it is here.” They were very effective in communicating and exploring the recent enforcements trends and the impact on traditional privacy framework’s ability to deal with novel IoT issues.
Looking into the future, the “Next Frontier” was moderated by Elizabeth Grossman, Director of Civic Project, Tech & Civic Engagement Group, Microsoft Corporation. This discussion dealt with rapid development of new technology with probing questions such as: “What is the next frontier for data privacy law, and are we ready for it?”
The lively discussion and the questions asked during the symposium should give the fans of Alexa some food for thought when they ask it to play Eurythmics - “Sweet Dreams”
Sweet dreams are made of this
Who am I to disagree?
I travel the world and the seven seas
Everybody's looking for something
Some of them want to use you
Some of them want to get used by you
Some of them want to abuse you
Some of them want to be abused