By Erika Morphy E-Commerce Times
08/16/06 3:35 PM PT
It is not unusual for research organizations to possess such query data. AOL and other search engine providers have disclosed their practices of providing search query data to research organizations like the Illinois Institute of Technology in their privacy policies. However, the World Privacy Forum's filing indicates that this data is available simply upon request to almost anyone who wants it.
eMarketer Whitepaper: Optimizing the E-Commerce Experience
From the Web to the Contact Center, are you prepared to proactively engage and keep your savvy customers? Read how e-commerce leaders are optimizing their sites with ratings, reviews, live help, Web analytics, mobile and more.
In separate filings, the Electronic Frontier Foundation and the World Privacy Forum have asked the Federal Trade Commission to investigate AOL's release earlier this month of search term queries that had been made by 650,000 of its users over a three-month period. "This release was a violation of section 5 of The FTC Act," Pam Dixon, president of the World Privacy Forum, told the E-Commerce Times.
AOL has apologized for the release of this data on its public research page, explaining that the data had been posted unintentionally. While the search terms were not correlated to specific names or user IDs, many of them did reveal enough personal data to make identification easy. Also, AOL organized the search terms using the same numeric ID for each request a particular user made.
Privacy Policy Violation
Both the EFF and World Privacy Forum say that AOL's actions were a violation of its privacy policy -- and was cause for an investigation by the FTC. AOL has responded that while the release was a violation of internal policies, it did not violate the privacy policy provided to its members.
The organizations have also asked that AOL notify users of the query release who can be identified through their search requests, and provide them with credit monitoring insurance for a year.
Andrew Weinstein, a spokesperson for AOL, told the E-Commerce Times that AOL is unable to contact the users who may have been impacted by this issue. "We have no way of telling which accounts were included in the data," he said in an e-mail statement. "We cannot unscramble, or decode, which identifier is attached to which account, and thus we have no way of knowing which accounts were involved."
Previous Release
The World Privacy Forum maintains in its filing to the FTC that AOL has released users' search data before, when similar data was provided to the Illinois Institute of Technology in 2004.
It is not surprising to find a research organization in possession of such data. Indeed, AOL and other search engine providers have disclosed their practices of providing search query data to research organizations like the Illinois Institute of Technology in their privacy policies. However, the World Privacy Forum's filing indicates that this data is available simply upon request.
It is unclear from the IIT's Web page what guidance or controls have been established to ensure that its data is released only to researchers, and not the general public.
According to the IIT's Web page, the data at the heart of the World Privacy Forum suit consists of 20,000 Web queries randomly sampled from AOL Search data. The WPF's Dixon said the group has not requested this information and is unsure whether it is organized the same way it was in AOL's more recent query data release.
AOL declined to comment on this aspect of the filing to the FTC.
The IIT did not respond to a request for comment in time for publication, and an e-mail sent to an address included in the World Privacy Forum's court filing also went unanswered.
US Begins Rollout of RFID Passports August 16, 2006
The United States this week announced that it has begun to issue passports that employ RFID technology to store holders' personal information. The U.S. State Department said it has developed a multi-layered security approach for using the passports, which are aimed at protecting citizens from identity theft and privacy breaches.
Related Stories
Related News Alerts
More by Erika Morphy
Ballmer Gives Shareholders - and Dell - Cause for Optimism November 20, 2009
Microsoft CEO Steve Ballmer was all smiles at the company's shareholders meeting, as he touted the early success of Windows 7. Ballmer's cheer may have been contagious; after posting a massive earnings decline for the third quarter, Dell needed some good news to latch onto, and the prospect of broad enterprise adoption of Windows 7 could spur PC sales.
AA.com Sucks the Fun Out of Trip-Planning November 20, 2009
Using AA.com to book a flight was a painful experience. Densely packed, disorganized information was displayed in an unattractive format. On the plus side, it did seem as though the deals American Airlines advertised were real and not mere bait-and-switch lures. For anyone who wants a travel-planning Web site to inject a little pleasure into the experience, though, I say look elsewhere.
Salesforce.com Pumps Up Volume of Workplace Chatter November 19, 2009
Salesforce.com has developed a collaboration platform that puts social networking to work. Salesforce Chatter facilitates employee collaboration on projects through Facebook-like profiles, status updates, feeds and groups. The question remains whether employees will be as open to social networking in the workplace as they are in their personal lives.
Headline Feeds
Talkback: 
