What is
privacy, in the context of IoT?
Privacy is a key factor in trust relationships. When we disclose
data to others, we are (implicitly or otherwise) trusting them not
to use it in ways that conflict with our interests. As we will note
in the following section, privacy is linked to the context in which
we disclose data. In the context of IoT, privacy boils down to two
things: either we trust third parties not to abuse the data
generated by our use of connected objects, or we rely on the
ability to control the collection and use of that data. In the IoT
domain, privacy therefore carries strong implications of trust,
transparency and control:
- The ability for individuals to control how the information
collected by their IoT devices is shared, and determine who has
access to the data from devices in your home, in your car, and on
your person. This means easy ways to blind and mute devices, and to
have a say in how IoT data is analyzed or shared with third
parties.
- Clarity about how information about people is collected, used,
and shared with others. IoT devices and their applications should
enable the user to find out what information is collected and
shared, when and with whom.
- The ability to determine how identifiable one is when
undertaking online or offline activities. IoT devices should have
the option for pseudonymous or anonymous use.
- The ability to control one’s digital footprint especially from
IoT devices in intimate settings. The user should understand where
information about them has gone, and how long it is kept.
IoT is
characterised by a number of factors:
- Scale (the sheer number of devices, objects, sensors and
imbedded systems)
- Proximity (the intimacy of devices such as wearables and
implants)
- Ubiquity (the mass deployment of IoT in public and private
spaces)
- Connectedness (which is not the same as device
intelligence!)
These factors have an impact on privacy. They make it easier for
the individual to be:
- Identified
- Tracked
- Profiled
- Influenced