Future of Privacy Forum Letter to the White Office of Science and Technology Policy

Future of Privacy Forum Letter to the White Office of Science and Technology Policy





Following is the test of the letter we sent to the White House in response to the call for feedback on the President’s memo on Openness and Transparency

April 3, 2009

Dear Ms. Noveck:

The Future of Privacy Forum is providing the below suggestions to offer a roadmap for enabling use of analysis, site optimization and tracking technologies by government agencies.  Personalizing site content for users, enabling log term shopping carts and improving site usage are key to providing the public the best possible web experience and these functions are reliant on cookies and other technologies currently limited by various approval requirements.  As a result, agencies may end up either forgoing the use, or they seek approval but may not seek to establish additional necessary controls to ensure these technologies are used in the most privacy friendly manner.

We provide below practical guidelines that could enable the use of cookies to better serve the public as desired by many government web managers.  Some of these concepts are already in place at some of the most progressive private sector companies, and government leadership in this area would spur wider adoption of these practices that both optimize the user experience and ensure privacy and transparency in data use.

We propose that the current restrictions on cookies and similar technologies be abolished.  In their place should be requirements that establish leading practices for such technology practices.

Ensuring that Interactive Tools used by Government Provide Users with Enhanced Transparency and Controls for Data Collection and Retention

Analytics, Research or Others Using Cookies, Tracking Pixels or Other Tools

1. Delete log-files after a defined period of time.

a. Data retention periods for “non-personal” log-files vary widely across vendors, are not publicly disclosed and are rarely committed to contractually.

2. Cookies should have limited expiration periods and should not be used to store information unprotected.

3. IP addresses logged by vendors should be obscured or deleted as soon as possible.

a. Some vendors can use and then immediately scramble IP addresses as they log them.

4. The use of the tools and user options should be transparent and prominently explained.

5. Consider implications of use of “first party” White House domain for analytics, rather than “third party” domain, to avoid potential for unwanted correlation.

6. Contractual representations barring use of data for purposes other than services contracted, other than aggregate reporting.

We will be pleased to provide further detail about the above upon request.


Jules Polonetsky

Future Of Privacy Forum


Leave a Reply

Privacy Calendar

all-day 6th Biannual International Surveillance & Society Conference
6th Biannual International Surve…
Apr 24 – Apr 25 all-day
The 6th Biannual International Surveillance & Society conference hosted by the University of Barcelona and supported by the Surveillance Studies Network is currently calling for [...]
12:00 pm Data Privacy in Education: Ensuring Student Security while Encouraging Innovation in K-12 Education @ Rayburn House Office Building, Room B-354
Data Privacy in Education: Ensur… @ Rayburn House Office Building, Room B-354
Apr 24 @ 12:00 pm – 1:00 pm
The Congressional E-Learning Caucus in cooperation with Into and the National Coalition for Technology in Education and Training presents a luncheon to discuss “Data Privacy [...]
all-day IAPP Europe Data Protection Intensive 2014
IAPP Europe Data Protection Inte…
Apr 29 – May 1 all-day
The IAPP Europe Data Protection Intensive features timely programming centred on the top issues impacting the European data protection community, with a focus on addressing [...]
5:30 pm InSecurity: Race, Surveillance and Privacy in the Digital Age @ New America Foundation
InSecurity: Race, Surveillance a… @ New America Foundation
Apr 30 @ 5:30 pm – 7:30 pm
Now more than ever, digital tools sit at a precarious tipping point, and many question whether they will be used to address pre-existing disparities, [...]
all-day Foreign Intelligence Surveillance in an Era of “Big Data” @ Jacob Burns Moot Court Room, George Washington Law School
Foreign Intelligence Surveillanc… @ Jacob Burns Moot Court Room, George Washington Law School
May 2 all-day
Discussions: Panel 1: Why Do We Conduct Foreign Intelligence Surveillance? What Are the Requirements? Panel 2: Making the Trade-Offs Between Surveillance and Civil Liberties Panel [...]
all-day IAPP Canada Privacy Symposium 2014
IAPP Canada Privacy Symposium 2014
May 7 – May 9 all-day
The IAPP Canada Privacy Symposium is the leading conference for education, debate and discussion of issues that matter most to Canadian privacy and data protection [...]
all-day Privacy Law Scholars Conference (7th Annual) @ The George Washington School of Law
Privacy Law Scholars Conference … @ The George Washington School of Law
Jun 5 – Jun 6 all-day
  UC Berkeley School of Law and The George Washington University Law School will be holding the seventh annual Privacy Law Scholars Conference (PLSC) on [...]
all-day Computers, Freedom, and Privacy 2014 Conference @ Airlie Center
Computers, Freedom, and Privacy … @ Airlie Center
Jun 8 – Jun 10 all-day
Mark your calendars! The 2014 Computers, Freedom, and Privacy Conference will be held June 8-10 at the Airlie Center in Warrenton, Virginia. The Airlie Center [...]

View Calendar