Date: Wed, 04 Nov 92 13:00:02 EST Errors-To: Comp-privacy Error Handler From: Computer Privacy Digest Moderator To: Comp-privacy@PICA.ARMY.MIL Subject: Computer Privacy Digest V1#095 Computer Privacy Digest Wed, 04 Nov 92 Volume 1 : Issue: 095 Today's Topics: Moderator: Dennis G. Rears Information America Re: Litigation, SSN and IRS Re: ssn and traffic tickets Re: ssn and traffic tickets Re: Computer Privacy Digest V1#094 Re: Posting grades by SSN Clinton Endorses Right to Information Privacy Re: public access to state info (none) Cellular Snooping and Privacy Issues The Computer Privacy Digest is a forum for discussion on the effect of technology on privacy. The digest is moderated and gatewayed into the USENET newsgroup comp.society.privacy (Moderated). Submissions should be sent to comp-privacy@pica.army.mil and administrative requests to comp-privacy-request@pica.army.mil. Back issues are available via anonymous ftp on ftp.pica.army.mil [129.139.160.200]. ---------------------------------------------------------------------- Date: Thu, 29 Oct 92 16:49 EST From: wolit@mhuxd.att.com Subject: Information America Resent-From: _Brinton Cooper In the November, 1992, issue of ONLINE, is a horrifying article (pp. 103 - 105) in the "Legal Briefing" department by one Teresa Pritchard-Schoch, entitled, "Information America: A Tool for the Knight in Shining Armor." The author gushes on about what a wonderful boon the Information America database service is for lawyers (her "Knights in Shining Armor") and others. A few extended quotes: "In one interesting case we (the research staff at a law firm) investigated an entire jury's background before the members were even selected. The case involved three affluent plaintiffs. . . . Our goal was to find a jury who would not have any sympathy for the plaintiffs . . . . By checking a motor vehicles license database and real estate property records, we were able to compile a jury whose members all except one drove cars more than six years old. Moreover, no one on the jury owned any real estate. Online sources also revealed facts about the jury members' likes and dislikes which were subtly used to influence them at trial. The opposing counsel was completely unaware of the tactics our firm used and probably still wonders why he lost that case. . . ." "Information America databases for investigative services include Sleuth, Asset Locator, Executive Affiliation, People Finder, Business Finder, and Litigation Prep. "Sleuth searches millions of public records from both state and county sources, including corporate and limited partnership records, UCC and lien filings, . . . assumed and fictitious names. . . . The relationships between individuals and business would be almost impossible to duplicate manually. . . ." "Asset Locator search real property records, aircraft registration . . ., stock holdings . . ., and personal property locators. . . . A real property search for transfers, rather than holdings, is also available. . . ." "People Finder accesses 111 million names, 92 million households and 61 million telephone numbers. The profile obtained includes the current address, telephone number, residence type, length of residence, gender, date of birth, up to four household members and their dates of birth, and up to ten neighbors and their names and addresses. The sources of information . . . include telephone directories, the U.S. Postal Service's change of address file, direct marketing records, publishers' address files, driver's license files, voter registration records, birth and wedding announcements, etc." The author acknowledges that "many . . . feel somewhat unsettled" about her accounts, and that "Others are uneasy about increasing availability of private information about their personal lives." But, she argues, "this information has always been available." I know that commercial credit-reporting firms, such as TRW, must make individuals' files available to them for inspection and correction. Do such laws apply to database services such as Information America as well? Do any states provide individuals with rights concerning the commercial use of personal information identified with them? (In the case of credit services, you usually sign away any privacy rights when you apply for credit, but I wasn't aware that subscribing to a magazine resulted in the same forfeiture.) Are there any other services such as this that provide comprehensive access to a wide range of personal information about private citizens? Jan Wolitzky, AT&T Bell Labs, Murray Hill, NJ; 908 582-2998, wolit@mhuxd.att.com ------------------------------ Date: Fri, 30 Oct 92 11:55:03 EST From: Brinton Cooper cc: comp-privacy@PICA.ARMY.MIL Subject: Re: Litigation, SSN and IRS Organization: The US Army Research Laboratory The other side of the issue of privacy, dependent SSNs and the IRS is this: I should not have to shoulder a greater share of the federal tax burden because privacy considerations permit each member of a divorced couple to claim the same child as dependent on the tax returns of each, thereby paying less total tax than the law allows. _Brint ------------------------------ Date: Fri, 30 Oct 92 11:59:35 EST From: Brinton Cooper cc: comp-privacy@PICA.ARMY.MIL Subject: Re: ssn and traffic tickets Organization: The US Army Research Laboratory Why not just tell the cop that you're not carrying your Social Security card and don't have the number memorized? Law probably doesn't require carring of the card. _Brint ------------------------------ From: "Wm. L. Ranck" Subject: Re: ssn and traffic tickets Date: 30 Oct 92 19:59:40 GMT Eric Hunt (bsc835!ehunt@uunet.uu.net) wrote: : In Alabama, your SSN is printed on your driver's license. It's *not* the : DL#, but it is printed on the card itself. : How many other states also have the SSN printed on the license? I think I've mentioned this before, but since you asked . . . In Virginia your drivers license number *is* your SSN. -- ******************************************************************************* * Bill Ranck ranck@joesbar.cc.vt.edu * ******************************************************************************* ------------------------------ Date: Fri, 30 Oct 92 19:24:53 PST From: Dave Gomberg Subject: Re: Computer Privacy Digest V1#094 With respect to Harry Rubin's concern about anonymous access to "public" information: First, if it is truely public info, it is a breach of MY privacy to ask me to identify myself before you give it to me. But if the info is not that public (whatever that means), you can just ask me to identify myself by my driver's license number, then send the info to my home address as per your records. That should be pretty hard to fake. Dave Dave Gomberg GOMBERG@UCSFVM Internet node UCSFVM.UCSF.EDU (415)731-7793 Seven Gateview Court, San Francisco CA 94116-1941 ------------------------------ Date: Sun, 1 Nov 1992 13:18:37 -0600 From: jim thomas Subject: Re: Posting grades by SSN Organization: Northern Illinois University In article Michael Mogensen-Vermillion writes: >In article David Ratner writes: >> >>It seems much easier for all parties if grades can be posted. I personally >>don't care if my grade is posted by my ssn. In one class at Cornell a >>waiver was actually sent to all students, and if they signed it they >>authorized the posting of their grade by ssn --- otherwise they had to >>physically ask the prof. Why not have each student make up some random >>number to post grades by, if that's what it takes. >> > >When I taught at Middle Tennessee State University, my department was >advised by an attorney for the Board of Regents that it was illegal to >post by ssn. We were directed instead to ask each student to both grant >permission _and_ make up some random identifying phrase (not necessarily >a number) if they wanted his/her grade posted. If a student declined to >sign or to make up a code word, that student's grade was not to be >posted. One bonus of this method was that some of the students came up >with rather entertaining and illuminating phrases (some of which could >not be posted in a public place :^). > Our university (Northern Illinois U.) has the same policy, although it's s 's rarely enforced. If I intend to post final grades by SSN, I discuss it with the class in advance and then, on the final exam, include an "ungraded question" that requires a "YES/NO/Alternative #" response indicating whether the student gives/denies permission or prefers an alt number inserted. Jim Thomas ------------------------------ From: CPSR Subject: Clinton Endorses Right to Information Privacy Organization: Computer Professionals for Social Responsibility Date: Mon, 2 Nov 1992 17:49:43 GMT Apparently-To: comp-society-privacy@uunet.uu.net Excerpts from - Clinton/Gore Campaign Pledges Strong Consumer Protections; Blasts Bush/Quayle Record - Oct. 26 * * * A Clinton/Gore Consumer Bill of Rights will include: 1. The Right to Safety - To be protected against the marketing of goods which are hazardous to health or life. 2. The Right to be Informed - To be protected against fraudulent, deceitful, or grossly misleading information, advertising, labeling or other practices, and to be given the facts needed to make an informed choice. 3. The Right to Choose - To be assured, whenever possible, access to a variety of products and services at competitive prices; and in those industries in which competition is not workable and government regulation substituted, an assurance of satisfactory quality and services at fair prices. 4. The Right to be Heard - To be assured that consumer interests will receive full and sympathetic consideration in the formulation of government policy and fair and expeditious treatment in its administrative tribunals. 5. The Right to Consumer Education -- To help consumer education become an integral part of regular school instruction, community services and educational program for people out of school; to ensure that consumers have the assistance necessary to plan and use their resource to their maximum potential and greatest personal satisfaction. 6. The Right to Privacy - To not have information provided by consumers for one purpose used for a separate purpose without the consumer's knowledge and consent. ------------------------------ From: Jerry Marco Subject: Re: public access to state info Date: 2 Nov 92 18:48:10 GMT Organization: Reuters Client Site Systems, Oakbrook,IL In article harry@tenet.icsi.berkeley.edu (Harry I. Rubin) writes: >Maybe the bottom line is that it really is too dangerous to allow the >general public to get at data. I would hate to think that is really >true. And there will always be some people who can wangle access, then >they have an advantage over the rest of us. Great, that's all we need, a legally enforced level playing field for crooks. -- Jerry Marco, Manager jerry@cpg.trs.reuter.com Reuters Information Management Systems 1400 Kensington Rd Oak Brook, IL 60521 USA ------------------------------ From: elee@bonnie.ics.uci.edu Subject: (none) Date: 2 Nov 92 18:54:09 GMT From: Eric J. Lee This is part of the ICS 131 bboard posting requirement. In an article by Michael Mogensen-Vermillion, Michael responds to the idea of using a random phrase or number to identify students so that their grades may be posted out in the open without fear of anyone else finding out their grades. This seems like a good idea to me; as Michael stated, it gives students a chance to think up humorous catch-phrases or nicknames, while keeping themselves anonymous to everyone except the grader. They can even change their name from class to class to keep anyone from finding out who they are. I agree that everyone should have the right to keep his or her grade confidential. However, I wonder what most everyone's concern is with this matter. Who do you wish to hide your grade from? I personally don't care about who sees my grade. If another student, professor, or job seeker sees my grades, it won't make any difference to me. I don't see how someone else's knowledge about my grades could be used to my disadvantage or advantage; if anyone really wished to find out my grades and do me harm, I'm sure he or she could find my records some other way than seeing it posted. Eric J. Lee from John Tillquist's section, 9:00 - 9:50 am ------------------------------ Date: Mon, 2 Nov 92 9:49:24 PST From: "Peter G. Neumann" Subject: Cellular Snooping and Privacy Issues [Moderator's Note: This was forwarded by Monty Solomon from the risks digest. ._dennis] An article by John Flinn on the front page of the San Francisco Examiner, Sunday, 1 November 1992, listed several cases of inadvertent or advertent eavesdropping, in the midst of a fine story on the problems in general. * A supposedly private conference call among SF Mayor Jordan, real-estate magnate Walter Shorenstein, and several others discussing the then not public withdrawal of George Shinn from the effort to save the SF Giants was BROADCAST on a TV frequency. * "On the first day of the Soviet coup against Mikhail Gorbachev last year, a scanner buff overheard Vice President Dan Quayle making a call from Air Force Two to Sen. John Danforth about the unfolding crisis." * "In New Hampshire, an anti-nuclear activist picked up calls made from the control room at the Seabrook nuclear plant, including one real-life Homer Simpson saying, ``I've got a bad feeling about these valves.'' " * A Green Bay Packer football player was overheard calling a male escort service and making explicit requests. * A 23-minute conversation allegedly between Princess Diana and a man who called her ``my darling Squidge'' was taped by a retired bank manager in Oxford, and transcribed in The Sun. (The woman allegedly referred to the Royal Family as ``this ****ing family''.) After discussing privacy laws, legalities, and realities, Flinn notes that at Scanners Unlimited in San Carlos, CA, "about a quarter of the customers are interested in telephone eavesdropping." ------------------------------ ------------------------------ End of Computer Privacy Digest V1 #095 ******************************