The dominant approach in privacy theory defines information privacy as some form of control over personal information. In this essay, I argue that the control approach is mistaken, but for different reasons than those offered by its other critics. I claim that information privacy involves the drawing of epistemic boundaries—boundaries between what others should and shouldn’t know about us. While controlling what information others have about us is one strategy we use to draw such boundaries, it is (...) not the only one. We conceal information about ourselves and we reveal it. And since the meaning of information is not self-evident, we also work to shape how others contextualize and interpret the information about us that they have. Information privacy is thus about more than controlling information; it involves the constant work of producing and managing public identities, what I call “social self- authorship.” In the second part of the essay, I argue that thinking about information privacy in terms of social self- authorship helps us see ways that information technology threatens privacy, which the control approach misses. Namely, information technology makes social self- authorship invisible and unnecessary, by making it difficult for us to know when others are forming impressions about us, and by providing them with tools for making assumptions about who we are which obviate the need for our involvement in the process. (shrink)

Privacy concerns involving data mining are examined in terms of four questions: What exactly is data mining? How does data mining raise concerns for personal privacy? How do privacy concerns raised by data mining differ from those concerns introduced by traditional information-retrieval techniques in computer databases? How do privacy concerns raised by mining personal data from the Internet differ from those concerns introduced by mining such data from data warehouses? It is argued that the practice of (...) using data-mining techniques, whether on the Internet or in data warehouses, to gain information about persons raises privacy concerns that go beyond concerns introduced in traditional information-retrieval techniques in computer databases and are not covered by present data-protection guidelines and privacy laws. (shrink)

This article aims to explore the attitudes and behaviors of persons with intellectual and developmental disabilities (IDD) related to their information privacy when using information technology (IT). Six persons with IDD were recruited to participate to a series of 3 semistructured focus groups. Data were analyzed following a hybrid thematic analysis approach. Only 2 participants reported using IT every day. However, they all perceived IT use benefits, such as an increased autonomy. Participants demonstrated awareness of privacy concerns, but (...) not in situations involving the use of technology; their awareness is not transferred to the abstract context of IT use. Privacy breaches were revealed to be a major risk for persons with IDD, who did not seem to understand how their personal information was used. Most protection mechanisms and tools reported were those suggested and implemented by caregivers and close relatives who had a great influence on the participants’ attitudes and behaviors toward IT and privacy. Our findings suggest that when using IT, persons with IDD often experience the consequences of a trade-off between autonomy and privacy. Further research and action is needed to support persons with IDD to understand and balance the benefits of IT use and the inherent threats to information privacy. (shrink)

Solutions to the problem ofprotecting informational privacy in cyberspacetend to fall into one of three categories:technological solutions, self-regulatorysolutions, and legislative solutions. In thispaper, I suggest that the legal protection ofthe right to online privacy within the USshould be strengthened. Traditionally, inidentifying where support can be found in theUS Constitution for a right to informationalprivacy, the point of focus has been on theFourth Amendment; protection in this contextfinds its moral basis in personal liberty,personal dignity, self-esteem, and othervalues. On (...) the other hand, the constitutionalright to privacy first established by Griswoldv. Connecticut finds its moral basis largelyin a single value, the value of autonomy ofdecision-making. I propose that an expandedconstitutional right to informational privacy,responsive to the escalating threats posed toonline privacy by developments in informationaltechnology, would be more likely to find asolid moral basis in the value of autonomyassociated with the constitutional right toprivacy found in Griswold than in the varietyof values forming the moral basis for the rightto privacy backed by the Fourth Amendment. (shrink)

Purpose Employees may feel overwhelmed with information privacy choices and have difficulties understanding what they are committing to in the digital workplace. This paper aims to analyze the role of different thinking styles for effort reduction, such as the use of intuition, when employees make decisions about the credibility and trustworthiness of workplace information privacy issues in Slovakia. While the General Data Protection Regulation sets precise requirements for valid consent, organizations are classified as data controllers and are subject (...) to credibility judgments by their employees. Design/methodology/approach Data was collected from 230 employees in Slovakia using a survey questionnaire. Quantitative analysis using SPSS was conducted to describe employees thinking preferences when judging the credibility of information privacy in their organizations. Findings The survey participants revealed their perceived credibility and trust in personal data protection and thinking preferences. Unconscious thinking is the type of effort reduction often reported by participants, who perceive high credibility and trust in personal data protection. This study can help managers and data controllers in small- and medium-sized enterprises in reflecting about the way in which people use different thinking processes for decision-making about information privacy in their organizations. Research limitations/implications This study set out to explore how decision-making processes at the workplace relate to credibility of data practices. Focusing on the use of different types of intuition, the authors explored whether the preference for a specific decision-making style can explain the perceived credibility of data practices. The part of the workforce in the sample did not have a strict predisposition to use either intuitive or rational thinking. Practical implications The contribution provides scholars with an overview of the field of intuition, a field that is likely to grow given the challenges of digitalization for organizations, such as shitstorms, cyberattacks and whistleblowing. Originality/value The most well-known concepts from intuition research, e.g. the dual process theory, and practice are tested simultaneously, therewith contributing to the applied literature on domain-specific preferences for intuition and deliberation in decision-making. (shrink)

This Note will address the salience of a simple analogy: will privacy law be for the information age what consumer protection law was for the industrial age? At the height of industrialization, the United States market for consumer products faced instability caused by a lack of consumer competence, lack of disclosure about product defects, and advancements in technology that exacerbated the market's flaws. As this Note will show, these same causes of market failure are stirring in today's economy as (...) well. The modern economy is not one of goods but of information, and although consumers have long been aware that their personal information may have marketing value, the Internet has fundamentally changed the scope and depth of information collection, exposing more consumers than ever to injuries requiring not just a comprehensive remedy but a wholesale change in the level of care of the information industry. Just as the mass-production economy precipitated a wave of reforms in consumer protection (in part thanks to a kick-start by author Upton Sinclair), so too must the mass-information economy adapt. After demonstrating the parallels between the problems of today with those of yesterday, this Note will propose parallel solutions, particularly a consolidation of regulatory power and a new tort for breach of information privacy, which draws its inspiration from general products liability. These proposals show that rather than reinvent the wheel, modern lawmakers can (and should) answer today's problems with lessons from the last century. (shrink)

The paper outlines a new interpretation of informational privacy and of its moral value. The main theses defended are: (a) informational privacy is a function of the ontological friction in the infosphere, that is, of the forces that oppose the information flow within the space of information; (b) digital ICTs (information and communication technologies) affect the ontological friction by changing the nature of the infosphere (re-ontologization); (c) digital ICTs can therefore both decrease and protect informational (...) privacy but, most importantly, they can also alter its nature and hence our understanding and appreciation of it; (d) a change in our ontological perspective, brought about by digital ICTs, suggests considering each person as being constituted by his or her information and hence regarding a breach of one’s informational privacy as a form of aggression towards one’s personal identity. (shrink)

Despite their differences, the three most prominent accounts of informational privacy on the contemporary scene—the Control Theory, the Limited Access Theory, and the Narrow Ignorance Theory—all hold that an individual’s informational privacy is at least partly a function of a kind of inability of others to know personal facts about her. This common commitment, I argue, renders the accounts vulnerable to compelling counterexamples. I articulate a new account of informational privacy—the Broad Ignorance Theory—that avoids (...) the commitment by rendering an individual’s informational privacy exclusively a function of others’ ignorance ofpersonal facts about her. I then go on to answer four objections to the Broad Ignorance Theory: that it paradoxically renders private what is in the public domain, that it fails to explain the oddity of attributions of informational privacy to individuals unable to control whether others know various personal facts about them, that it conflates informational privacy and secrecy, and that it conflicts with intuitions about informational privacy losses stemming from false or unjustified beliefs. In the final section of the paper I consider the plausibility of expanding the Broad Ignorance Theory into an account of privacy in general. (shrink)

The first part of this paper is about the notion of privacy and its grounding in law. It discusses the tension between the right to privacy and the right to receive information. The second part of this paper explores how ICTs challenge and complicate privacy claims and satisfy the right to receive information.

Protecting the privacy of individually-identifiable health data and promoting the public’s health often seem at odds. Privacy advocates consistently seek to limit the acquisition, use, and disclosure of identifiable health information in governmental and private sector settings. Their concerns relate to misuses or wrongful disclosures of sensitive health data that can lead to discrimination and stigmatization against individuals. Public health practitioners, on the other hand, seek regular, ongoing access to and use of identifiable health information to accomplish important (...) public health objectives. The collection and use of identifiable health data by federal, tribal, state, and local health authorities support nearly all public health functions and goals.Identifiable health data are the lifeblood of public health practice. When aggregated, these data help authorities monitor the incidence, patterns, and trends of injury and disease in populations. Health data are acquired by public health authorities through testing, screening, and treatment programs. (shrink)

A case from 1996 in Oregon in which citizens' legally publicmotor vehicle information was disseminated on a World Wide Website is considered. The case evoked widespread moral outrageamong Oregonians and led to changes in the Oregon records laws.The application of either consequentialist ornon-consequentialist moral theories to this and otherinformational privacy cases is found to be inadequate.Adjudication of conflicting desires is offered as the appropriateanalytical model for moral disputes. The notion of adjudicationoffered here diverges from traditional moral theories in itsindeterminate (...) nature. (shrink)

Biobanks hold out the prospect of significant public and private benefit, as genetic information contained in tissue samples is mined for information. However, the storing of human tissue samples and genetic information for research and/or therapeutic purposes raises a number of serious privacy and autonomy concerns. These concerns are compounded when one considers the possibility that a biobank or its owner might go bankrupt. Insolvency impairs the ability of enforcement regimes, and liability-based regimes in particular, to enforce legal norms. (...) The goal of this essay is to develop guideposts for thinking about private and public enforcement of privacy imposed by donors on tissue samples and/or genetic information when a biobank becomes insolvent. (shrink)

Background: As a fundamental human right in healthcare, informational privacy creates the foundation for patient’s safety and the quality of care. However, its realization can be a challenge in prehospital emergency care, considering the nature of the work. Objectives: To describe patient’s informational privacy, its realization, and the factors related to the realization in prehospital emergency care from the perspective of paramedics. Research design: A descriptive questionnaire study was conducted. The data were analyzed with inductive content (...) analysis. Participants and research context: The participants (n = 26) were paramedics in one of the 22 rescue departments in Finland. Ethical considerations: The study received ethical approval from the ethics committee of the University of Turku (Finland). Permission for the study was given by the collaborating rescue department. Findings: Paramedics described patient’s informational privacy as patients’ right to their own health records, as protection of the patient’s health records, and as comprehensive respect of the patient’s privacy by the persons involved in the patient’s care. In general, informational privacy was described as being realized regarding confidentiality, reporting, and maintaining the patient’s health records. However, it was also described as being dependent on the context, and some areas in need of improvement were identified. Promoting and preventing factors related to the realization were also identified. The promoting factors were paramedics’ professional activity, environment, training, and guidelines. The preventing factors were the nature of the work, paramedics’ attitudes, and the lack of knowledge concerning informational privacy among paramedics, the collaborating authority, patients, and relatives. Discussion and conclusion: Paramedics had a multidimensional understanding of informational privacy and the factors related to its realization. However, its realization varies, and more research and education are therefore needed to enhance the realization and to provide equal and high-quality care for all the patients in prehospital emergency care. (shrink)

It seems obvious that informational privacy has an epistemological component; privacy or lack of privacy concerns certain kinds of epistemic relations between a cogniser and sensitive pieces of information. One striking feature of the fairly substantial philosophical literature on informational privacy is that the nature of this epistemological component of privacy is only sparsely discussed. The main aim of this paper is to shed some light on the epistemological component of informational (...) class='Hi'>privacy. (shrink)

The article provides an outline of the ontological interpretation of informational privacy based on information ethics. It is part of a larger project of research, in which I have developed the foundations of ideas presented here and their consequences. As an outline, it is meant to be self-sufficient and to provide enough information to enable the reader to assess how the approach fares with respect to other alternatives. However, those interested in a more detailed analysis, and especially in (...) the reasons offered in its favour, may wish to consult the other articles as well. (shrink)

Role-failure acts (Waters and Bird, 1989) have been described as a form of morally questionable activity involving a failure to perform the managerial role. The present study examined employee perceptions and reactions with regard to one form of role-failure act, failure to maintain adequate privacy of performance appraisal information. The study assessed employees' attitudes toward various performance appraisal facets as an invasion of privacy and determined the relationships between these privacy-related attitudes and employees' satisfaction with components of (...) their appraisal system, the system as a whole, and their jobs. Responses that organizations might take to counteract appraisal privacy concerns were also discussed. (shrink)

Online health communities have enjoyed increasing popularity in recent years, especially in the context of the COVID-19 pandemic. However, several concerns have been raised regarding the privacy of users’ personal information in OHCs. Considering that OHCs are a type of data-sharing or data-driven platform, it is crucial to determine whether users’ health information privacy concerns influence their behaviors in OHCs. Thus, by conducting a survey, this study explores the impact of users’ health information privacy concerns on their (...) engagement and payment behavior in OHCs. The empirical results show that users’ concerns about health information privacy reduce their Paid in OHCs by negatively influencing their OHC engagement. Further analysis reveals that if users have higher benefit appraisals and lower threat appraisals, the negative effect of health information privacy concerns on users’ OHC engagement will decrease. (shrink)

Rapid advances and exponential growth in computer and telecommunications technology have taken individual records and papers revealing the most intimate details of one’s life, habits, and genetic predisposition from the private sector into the public arena in derogation of privacy considerations. Although computerized medical information offers a means of streamlining and improving the health care delivery system through speed and enormous storage capacity, it also presents new challenges as it affects the right of privacy and expectation of confidentiality, (...) creating serious ethical and legal issues. Other considerations include constitutional matters such as loss of liberty when one is compelled to remain in an undesirable or unsuitable job so that insurance will not be canceled or the inability to secure another more suitable position due to genetic predisposition and denial of equal protection of the laws if one is stigmatized because one belongs to a certain ethnic or racial group that exhibits a particular genetic propensity. Collateral questions concern the propriety of disclosure of confidential health care information, including genetic data. This article also considers the proposed federal guidelines for a health information privacy law. (shrink)

My thesis is simple. The right of informational privacy, the great modern achievement often attributed to the classic Samuel Warren and Louis Brandeis article, “The Right to Privacy” , asserts an individual's right not to have private personal information circulated. Warren and Brandeis claimed that individual dignity in a modern society requires that people be able to keep their private lives to themselves and proposed that the common law should be understood to protect this dignity by making (...) dissemination of private information a tort. As broadly stated, this right not to have private information distributed directly conflicts with a broadly conceived freedom of speech and of the press. My claim is that, in cases of conflict, the law should reject the Warren and Brandeis innovation. Speech and press freedom should prevail; the privacy tort should be ignored. This conclusion requires a normative argument concerning the appropriate basis and status of speech freedom that this essay will not really provide but for which I have argued elsewhere. Here, instead, I will describe that theory of speech freedom, explore its implications for informational privacy, and finally suggest some reasons to think that rejection of the privacy tort should not be so troubling and is, in fact, pragmatically desirable. (shrink)

We analyse the contention that privacy is an alien concept within Japanese society, put forward in various presentations of Japanese cultural norms at least as far back as Benedict in The chrysanthemum and the sword: patterns of Japanese culture. Houghton Mifflin, Boston, 1946. In this paper we distinguish between information privacy and physical privacy. As we show, there is good evidence for social norms of limits on the sharing and use of personal information (i.e. information privacy) (...) from traditional interactions in Japanese society, as well as constitutional evidence from the late 19th century (in the Meiji Constitution of 1889). In this context the growing awareness of the Japanese public about problems with networked information processing by public sector and commercial organisations from the 1980s (when a law governing public sector use of personal information was first passed) to recent years (when that law was updated and a first law governing commercial use of personal information was adopted) are not the imposition or adoption of foreign practices nor solely an attempt to lead Japanese society into coherence with the rest of the OECD. Instead they are drawing on the experience of the rest of the developed world in developing legal responses to the breakdown of social norms governing interchange and use of personal information, stressed by the architectural changes wrought by networked information processing capabilities. This claim is supported by consideration of standard models of Japanese social interactions as well as of Supreme Court judgements declaring reasonable expectations of protection of privacy to hold in Japan. (shrink)

In this research we apply the Theory of Planned Behavior (TPB) to study decisions related to information privacy protection. A TPB-based model was proposed to investigate whether organization-based self-esteem and perceived deindividuation can be employed to measure the strength of the perceived behavioral control construct. In addition, we examined if the addition of a causal path linking subjective norms to attitudes and another causal path linking organization-based self-esteem to subjective norms enhanced our research model's predicting power. Our study shows (...) that information systems (IS) professionals' intentions to protect personal information privacy are influenced by their attitudes, subjective norms, perceived deindividuation, and organization-based self-esteem. It further shows that attitudes are influenced by subjective norms, which, in turn, are influenced by organization-based self-esteem. (shrink)

In this article, I summarise the ontological theory of informational privacy (an approach based on information ethics) and then discuss four types of interesting challenges confronting any theory of informational privacy: (1) parochial ontologies and non-Western approaches to informational privacy; (2) individualism and the anthropology of informational privacy; (3) the scope and limits of informational privacy; and (4) public, passive and active informational privacy. I argue that the ontological (...) theory of informational privacy can cope with such challenges fairly successfully. In the conclusion, I discuss some of the work that lies ahead. (shrink)

Are the sources of a combatant's knowledge in war morally relevant? This article argues that privacy is relevant to just war theory in that it draws attention to privacy harms associated with the conduct of war. Since we cannot assume that information is made available to combatants in a morally neutral manner, we must therefore interrogate the relationship between privacy harms and the acts that they enable in war. Here, I argue that there is ample evidence that (...) we cannot discount the analysis of privacy harms in war, and that analysis of such harms requires us to examine social goods. I develop this point to demonstrate the problems that this poses for aspects of revisionist just war theory; namely, reductivism and individualism. In order to evaluate the moral consequences of privacy harms in war, we must understand the unilateral and adversarial character of balancing privacy harms against social goods in the context of war, which, in turn, requires that we consider social goods and social institutions as objects of moral evaluation. Further, concepts drawn from privacy scholarship, such as Helen Nissenbaum's concept of contextual integrity, enable us to identify a range of moral problems associated with contemporary war that deserve further attention from just war theorists. (shrink)

Following the recent practice turn in privacy research, informational privacy is increasingly analyzed with regard to the “appropriate flow of information” within a given practice, which preserves the “contextual integrity” of that practice (Nissenbaum, 2010, p. 149; 2015). Such a practice-theoretical take on privacy emphasizes the normative structure of practices as well as its structural injustices and power asymmetries, rather than focusing on the intentions and moral considerations of individual or institutional actors. Since privacy norms (...) are seen to be institutionalized via the role obligations of the practice's participants, this approach can analyze structural and systematic privacy infringements in terms of “defective role performances and defective social relations” (Roessler & Mokrosinska, 2013, p. 780). -/- Unfortunately, it is still often somewhat unclear what this exactly means within the context of informational privacy, why these performances and relations are defective and for whom. This raises the common objection of a so-called “practice positivism” (Applbaum, 1999, p. 51), that is, the difficulty of practice–theoretical accounts to take a practice-independent standpoint, from which to normatively evaluate the existing practice norms themselves. For example, Nissenbaum herself initially argues for a “presumption in favor of the status quo” with respect to the appropriateness and flow of privacy norms within a practice (Nissenbaum, 2004, p. 127). Such a “practice conservatism” (Nissenbaum, 2010, p. 169) comes dangerously close to committing a naturalistic fallacy, if not undergirded by practice-external criteria (which is ultimately what she does). -/- Merely resorting to existing practice norms to assess what defective role performances amount to, only shifts the question from how to recognize an appropriate flow of information to the question of how to recognize those defective role performances and social relations. Against this backdrop, the central aim of this article is to shed light on this question without resorting to practice-independent first principles or far-reaching universalistic anthropological assumptions. For this, I will analyze the notion of “defective role performances and social relations” in terms of social pathologies.1 Doing so has two advantages: First of all, it can draw on already existing concepts and distinctions, which help to categorize the different levels of analysis that exist in informational privacy research and situate the notion of “defective role performances” within them (Section 1). Second, those concepts and distinctions can serve as a basis for establishing a typology of phenomena with regard to deficient practices of informational privacy (Section 4). (shrink)

This essay critically analyzes Luciano Floridi’s ontological theory of informational privacy. Organized into two main parts, Part I examines some key foundational components of Floridi’s privacy theory and it considers some of the ways in which his framework purports to be superior to alternative theories of informational privacy. Part II poses two specific challenges for Floridi’s theory of informational privacy, arguing that an adequate privacy theory should be able to: (i) differentiate (...) class='Hi'>informational privacy from other kinds of privacy, including psychological privacy; and (ii) distinguish between descriptive and normative aspects of informational privacy in a way that differentiates a (mere) loss of privacy from a violation of privacy. I argue that Floridi’s privacy theory, in its present form, does not explicitly address either challenge. However, I also argue that his ontological theory provides us with a novel way of analyzing the impact that digital technologies have had for informational privacy. I conclude by suggesting that Floridi’s privacy framework can be interpreted as containing the elements of a “personality theory of privacy,” which would be useful to examine in a separate study. (shrink)

Data protection law has a linear logic, in that it purports to trace the lifecycle of personal data from creation to collection, processing, transfer, and ultimately its demise, and to regulate each step so as to promote the data subject’s control thereof. Big data defies this linear logic, in that it decontextualizes data from its original environment and conducts an algorithmic nonlinear mix, match, and mine analysis. Applying data protection law to the processing of big data does not work well, (...) to say the least. This Article examines the case of big medical data. A survey of emerging research practices indicates that studies either ignore data protection law altogether or assume an ex post position, namely that because they are conducted after the data has already been created in the course of providing medical care, and they use de-identified data, they go under the radar of data protection law. These studies focus on the end-point of the lifecycle of big data: if sufficiently anonymous at publication, the previous steps are overlooked, on the claim that they enjoy immunity. I argue that this answer is too crude. To portray data protection law in its best light, we should view it as a process-based attempt to equip data subjects with some power to control personal data about them, in all phases of data processing. Such control reflects the underlying justification of data protection law as an implementation of human dignity. The process-based approach fits current legal practices and is justified by reflecting dignitarian conceptions of informational privacy. (shrink)

PurposeThe purpose of this paper is to reconsider the concept of the right to information privacy and to propose, from a Japanese perspective, a revised conception of this right that is suitable for the modern information society.Design/methodology/approachFirst, the concept of privacy and personal information protection in the information society is briefly explained. After that, confused situations in Japan caused by the enforcement of Act on the Protection of Personal Information are described followed by the analysis of the Japanese (...) socio‐cultural circumstances surrounding privacy. Based on these, the effectiveness of the concept of the right to information privacy in the Japanese socio‐cultural and economic context is examined and the need to rethink the concept of the right to information privacy discussed. Finally, a revised conception of the right is proposed.FindingsIn view of the circumstances in Japan, the concept of the right to information privacy, defined as “an individual's right to control the circulation of information relating to him/herself”, as well as the Organisation for Economic Co‐operation and Development's eight principles already become outdated in today's sophisticated information‐communication society. There is a need to control/restrict use of personal information so that individuals' autonomy and freedom is ensured in the current situation and to revise the concept of the right to information privacy based on this idea.Originality/valueThis paper proposes a revision of the concept of the right to information privacy focused on control of, not access to, use of personal information. The revised concept is defined so that individuals' autonomy and freedom is ensured even in the “informational transparent” society. (shrink)

Concerns with improper collection and usage of personal information by businesses or governments have been seen as critical to the success of the emerging electronic commerce. In this regard, computer professionals have the oversight responsibility for information privacy because they have the most extensive knowledge of their organization's systems and programs, as well as an intimate understanding of the data. Thus, the competence of these professionals in ensuring sound practice of information privacy is of great importance to both (...) researchers and practitioners. This research addresses the question of whether male computer professionals differ from their female counterparts in their self-regulatory efficacy to protect personal information privacy. A total of 103 male and 65 female subjects surveyed in Taiwan responded to a 10-item questionnaire that includes three measures: protection, non-distribution, and non-acquisition. The findings show significant gender differences exist in the subjects' overall self-regulatory efficacy for information privacy, and, in particular, that female subjects in this study exhibited a higher level of self-regulatory efficacy than males for the protection and non-acquisition of personal privacy information. The identification of the factorial structure of the self-regulatory efficacy concerning information privacy may contribute to future research directed to examining the links between privacy efficacy and psychological variables, such as ethical attitude, ethical intention, and self-esteem. Studies can also be extended to investigate how different cultural practices of morality and computer use in men and women may shape the different development patterns of privacy self-efficacy. Understanding the different cultural practices may then shed light on the social sources of privacy competence and the appropriate remedies that can be provided to improve the situation. (shrink)

Moore attempts to show that privacy, conceived as "control over access to oneself and to information about oneself" is "necessary" for human well-being. Moore grounds his argument in an analysis of the need for physical separation, which Moore suggests is universal among animal species. Moore notes, "One basic finding of animal studies is that virtually all animals seek periods of individual seclusion or small-group intimacy." Citing several studies involving rats and other animals, Moore points out that a lack of (...) such separate space frequently results in threats to survival. Moore goes on to suggest, quite plausibly, that since we evolved from such animals, we share some need for separation. I argue such reasoning involves a conceptual mistake, as a need for physical space and separation is not obviously tantamount to a need for privacy of any kind - much less a need for information privacy. (shrink)

People freely disclose vast quantities of personal and personally identifiable information. The central question of this Meador Lecture in Morality is whether they have a moral (or ethical) obligation (or duty) to withhold information about themselves or otherwise to protect information about themselves from disclosure. Moreover, could protecting one’s own information privacy be called for by important moral virtues, as well as obligations or duties? Safeguarding others’ privacy is widely understood to be a responsibility of government, business, and (...) individuals. The “virtue” of fairness and the “duty” or “obligation” of respect for persons arguably ground other-regarding responsibilities of confidentiality and data security. But is anyone ethically required—not just prudentially advised—to protect his or her own privacy? If so, how might a requirement to protect one’s own privacy and to display ethical virtues of reserve, modesty and temperance properly influence everyday choices, public policy, or the law? I test the idea of an ethical mandate to protect one’s own privacy, while identifying the practical and philosophical problems that bear adversely on the case. I consider “conceptual” and “libertarian” objections to the view that each individual indeed has a moral obligation to safeguard his or her own privacy. Government and industry are not off the hook if privacy is a duty of self-care and self-respect: they have responsibilities and are freshly viewed as partners in moral agents’ quest for ethical goodness. (shrink)

Protecting the privacy of individually-identifiable health data is a dominant health policy objective in the new millennium. Technological, economic, and health-related reasons substantiate the development of a national electronic health information infrastructure. Through this emerging infrastructure, billions of pieces of health data of varying sensitivities are exchanged annually to provide health care services and service transactions, conduct health research, and promote the public’s health. These multi-purpose, rapid exchanges of electronic health data, far removed from the typical disclosure of health (...) information through the doctor/patient relationship of yesteryear, contribute to heightened individual concerns about identifiable health data. Responding to American fears and perceptions of actual and potential privacy abuses, policymakers have recently developed new, modern privacy protections through legislative and regulatory laws, as well as ethical and industry codes.Modern health information privacy protections are reflected in federal regulations developed by the federal Department of Health and Human Services pursuant to the Health Insurance Portability and Accountability Act of 1996. (shrink)

This article examines the privacy of personal medical information in the health research context. Arguing that biomedical research in Canada has been caught up in the government's broader neoliberal policy agenda that has positioned biotechnology as a strategic driver of economic growth, the author discusses the tension between informational privacy and the need for medical information for research purposes. Consideration is given to the debate about whether privacy for medical information serves or hinders the “public good” (...) in respect of medical research and to discussions of informed consent as an element of “fair information practices” designed to safeguard the privacy of personal information, including attempts to subvert requirements for informed consent in the medical research context. (shrink)

Purpose Privacy has been understood as about one’s own information, information that is not one’s own is not typically considered with regards to an individual’s privacy. This paper aims to draw attention to this issue for conceptualizing privacy when one’s privacy is breached by others’ information. Design/methodology/approach To illustrate the issue that others' information can breach one's own privacy, this paper uses real-world applications of forensic genealogy and recommender systems to motivate the discussion. Findings In (...) both forensic genealogy and recommender systems, the individual’s privacy is breached by information that is not one’s own. The information that breached one’s privacy, by its nature, is beyond the scope of an individual, which is a phenomenon that has already been captured by emerging discussions about group privacy. This paper further argues that the underlying issue reflected by the examples of forensic genealogy is an extreme case even under the consideration of group privacy. This is because, unlike recommender systems that rely on large amounts of data to make inferences about an individual, forensic genealogy exposes one’s identity by using only one other individual’s information. This paper echoes existing discussions that this peculiar situation where others’ information breaches one’s own privacy reveals the problematic nature of conceptualizing privacy relying only on individualistic assumptions. Moreover, this paper suggests a relational perspective as an alternative for theorizing privacy. Originality/value This situation that others’ information breached one’s own privacy calls for an updated understanding of not only privacy but also the relationship between the person and their information. Privacy scholars need to renew their ethical language and vocabularies to properly understand the issue, which recent privacy conceptualizations are already doing (e.g. group privacy). (shrink)

This paper argues that individuals do, in a sense, own or have exclusive claims to control their personal information and body parts. It begins by sketching several arguments that support presumptive claims to informational privacy, turning then to consider cases which illustrate when and how privacy may be overridden by public health concerns.

Many attempts to define privacy have been made since the publication of the seminal paper by Warren and Brandeis (Warren & Brandeis, 1890). Early definitions and theories of privacy had little to do with the concept of information and, when they did, only in an informal sense. With the advent of information technology, the question of a precise and universally acceptable definition of privacy became an urgent issue as legal and business problems regarding privacy started to (...) accrue. In this paper, we propose a definition of privacy that is simple, yet strongly tied with the concepts of information and property. We show that privacy thus defined is not only useful in the context of the infosphere, but can also be successfully applied in its more traditional role as the ‘right to be let alone’. (shrink)

This doctoral thesis consists of five research papers that address four tangential topics, all of which are relevant for the challenges we are facing in our socio-technical society: information, security, privacy, and anonymity. All topics are approached by similar methods, i.e. with a concern about conceptual and definitional issues. In Paper I—concerning the concept of information and a semantic conception thereof—it is argued that the veridicality thesis is false. In Paper II—concerning information security—it is argued that the current leading (...) definitions suffer from counter-examples, and lack an appropriate conceptual sense. Based on this criticism a new kind of definition is proposed and defended. In Paper III—concerning control definitions of privacy—it is argued that any sensible control-definition of privacy must properly recognize the context as part of the defining criteria. In Paper IV—concerning the concept of privacy—it is argued that privacy is a normative concept and that it is constituted by our social relations. Final, in Paper V—concerning anonymity—it is argued that the threat from deanonymization technology goes beyond harm to anonymity. It is argued that a person who never is deanonymized can still be harmed and what is at stake is an ability to be anonymous. (shrink)

For more than thirty years an extensive and significant philosophical debate about the notion of privacy has been going on. Therefore it seems puzzling that most current authors on information technology and privacy assume that all individuals intuitively know why privacy is important. This assumption allows privacy to be seen as a liberal “nice to have” value: something that can easily be discarded in the face of other really important matters like national security, the doing of (...) justice and the effective administration of the state and the corporation. In this paper I want to argue that there is something fundamental in the notion of privacy and that due to the profoundness of the notion it merits extraordinary measures of protection and overt support. I will also argue that the notion of transparency (as advocated by Wasserstrom) is a useless concept without privacy and that accountability and transparency can only be meaningful if encapsulated in the context of privacy. From philosophical and legal literature I will discuss and argue the value of privacy as the essential context and foundation of human autonomy in social relationships. In the conclusion of the paper I will discuss implications of this notion of privacy for the information society in general, and for the discipline of information systems in particular. (shrink)

This article concerns the nature and limits of individuals’ rights to privacy over information that they have made public. For some, even suggesting that an individual can have a right to privacy over such information may seem paradoxical. First, one has no right to privacy over information that was never private to begin with. Second, insofar as one makes once-private information public – whether intentionally or unintentionally – one waives one’s right to privacy to that information. (...) In this article, however, we suggest the moral situation is more complicated than this. Rather, we argue that there is a class of public information – namely, once-private information that individuals have made public unintentionally – which remains within the scope of an individuals’ right to privacy, even when it has passed into the public domain. Significantly, this class includes any information rights-holders were unaware could be inferred from information they have made public and which they would not otherwise have wanted to be in the public domain. As we show, as well as clarifying several everyday dilemmas with regards to individuals’ privacy rights, this finding has elucidates a number of problems in the ethics of Big Data. (shrink)

When information is transformed from what has traditionally been a paper-based format into digitized elements with meaning associated to them, new and intriguing discussions begin surrounding proper and improper uses of this codified and easily transmittable information. As these discussions continue, some health care providers, insurers, laboratories, pharmacies, and other healthcare stakeholders are creating and retroactively digitizing our medical information with the unambiguous endorsement of the federal government.Some argue that these enormous databases of medical information offer improved access to timely (...) information, evidence-based treatments, and complete records from which to provide care. To the extent that these claims are true, it would seem that this is a valuable asset that offers immeasurable benefit to all. Others believe this digitization to be an egregious invasion of privacy. In this article, I investigate the broad research questions of whether the public good aspect of capturing private health information outweighs individual interests and whether it is ethical to mandate participation in health information exchanges by all individuals who use the U.S. health system. (shrink)

In recent years, educational institutions have started using the tools of commercial data analytics in higher education. By gathering information about students as they navigate campus information systems, learning analytics “uses analytic techniques to help target instructional, curricular, and support resources” to examine student learning behaviors and change students’ learning environments. As a result, the information educators and educational institutions have at their disposal is no longer demarcated by course content and assessments, and old boundaries between information used for assessment (...) and information about how students live and work are blurring. Our goal in this paper is to provide a systematic discussion of the ways in which privacy and learning analytics conflict and to provide a framework for understanding those conflicts. -/- We argue that there are five crucial issues about student privacy that we must address in order to ensure that whatever the laudable goals and gains of learning analytics, they are commensurate with respecting students’ privacy and associated rights, including (but not limited to) autonomy interests. First, we argue that we must distinguish among different entities with respect to whom students have, or lack, privacy. Second, we argue that we need clear criteria for what information may justifiably be collected in the name of learning analytics. Third, we need to address whether purported consequences of learning analytics (e.g., better learning outcomes) are justified and what the distributions of those consequences are. Fourth, we argue that regardless of how robust the benefits of learning analytics turn out to be, students have important autonomy interests in how information about them is collected. Finally, we argue that it is an open question whether the goods that justify higher education are advanced by learning analytics, or whether collection of information actually runs counter to those goods. (shrink)

Health information by its nature is personal and sensitive. At the same time, significant public value has resulted from research with health records about determinants of health and effective provision of health services. In Canada, certain legislation and processes have been established to balance the individual's right to privacy and the public good associated with analysis of health information.My purpose is to describe privacy and confidentiality practices in Canada with respect to access to health data for research purposes. (...) I provide an overview of the Canadian health care system and the legislative framework used to regulate research related to health information and Canada's major national data bases. Then I describe the confidentiality and privacy policies and procedures of Statistics Canada, of the Canadian Institute for Health Information, and of health policy research organizations in three provinces. I conclude with comments on some current issues in health information in Canada. (shrink)

The Internet of Things (IoT) is, in part, an information handling system that can remove humans from the information handling process. The particular problem explored is how we are to understand privacy when considering informational systems that handle personal information in ways that impact people’s lives when there is no human operator in direct contact with that personal information. I argue that these new technologies need to take concepts like privacy into account, but also, that we ought (...) also to take these technologies into account to reconsider and perhaps reconceptualise privacy. This paper argues that while an inhuman system like the IoT does not necessarily violate the interpersonal privacy of people, if the IoT is used as part of a state surveillance program, a political notion of privacy may be violated. (shrink)

The success of the health care system depends on the accuracy, correctness and trustworthiness of the information, and the privacy rights of individuals to control the disclosure of personal information. A national policy on health informational privacy should be guided by ethical principles that respect individual autonomy while recognizing the important collective interests in the use of health information. At present there are no adequate laws or constitutional principles to help guide a rational privacy policy. The (...) laws are scattered and fragmented across the states. Constitutional law is highly general, without important specific safeguards. Finally, a case study is provided showing the important trade-offs that exist between public health and privacy. For a model public health law, see www.critpath.org/msphpa/privacy. (shrink)

Motivated by advances in mass customization in business practice, explosion in the number of internet of things devices, and the lack of published research on privacy differentiation and customization, we propose a contextual information relevance model of privacy. We acknowledge the existence of individual differences with respect to unique security and privacy protection needs. We observe and argue that it is unfair and socially inefficient to treat privacy in a uniform manner whereby a large proportion of (...) the population remain unsatisfied by a common policy. Our research results provide quantifiable means to measure and evaluate the customized privacy. We show that with privacy differentiation, the social planner will observe increases in demand and overall social welfare. Our results also show that business practitioners could profit from privacy customization. (shrink)

Within a given conversation or information exchange, do privacy expectations change based on the technology used? Firms regularly require users, customers, and employees to shift existing relationships onto new information technology, yet little is known as about how technology impacts established privacy expectations and norms. Coworkers are asked to use new information technology, users of gmail are asked to use GoogleBuzz, patients and doctors are asked to record health records online, etc. Understanding how privacy expectations change, if (...) at all, and the mechanisms by which such a variance is produced will help organizations make such transitions. This paper examines whether and how privacy expectations change based on the technological platform of an information exchange. The results suggest that privacy expectations are significantly distinct when the information exchange is located on a novel technology as compared to a more established technology. Furthermore, this difference is best explained when modeled by a shift in privacy expectations rather than fully technology-specific privacy norms. These results suggest that privacy expectations online are connected to privacy offline with a different base privacy expectation. Surprisingly, out of the five locations tested, respondents consistently assign information on email the greatest privacy protection. In addition, while undergraduate students differ from non-undergraduates when assessing a social networking site, no difference is found when judging an exchange on email. In sum, the findings suggest that novel technology may introduce temporary conceptual muddles rather than permanent privacy vacuums. The results reported here challenge conventional views about how privacy expectations differ online versus offline. Traditionally, management scholarship examines privacy online or with a specific new technology platform in isolation and without reference to the same information exchange offline. However, in the present study, individuals appear to have a shift in their privacy expectations but retain similar factors and their relative importance—the privacy equation by which they form judgments—across technologies. These findings suggest that privacy scholarship should make use of existing privacy norms within contexts when analyzing and studying privacy in a new technological platform. (shrink)