Guest Blog on Privacy Safe Harbors

Guest Blog on Privacy Safe Harbors

The following is a guest post to the FPF Blog from Ira Rubinstein, a Senior Fellow at the Information Law Institute and Adjunct Professor at New York University School of Law

In early May, Reps. Rick Boucher (D-VA) and Cliff Stearns (R-FL) released a discussion draft of comprehensive privacy legislation. The draft bill would require companies that collect and use personal data to disclose their privacy practices and obtain consent for various uses of such data, including express consent for the collection or use of sensitive information. The bill also regulates online ads and specifically addresses targeted ads based on a user’s Web browsing history. Section 3(e) requires opt-in consent for third-party information sharing (e.g., with advertising networks) but offers a very narrow “safe harbor” exception for firms that follow certain defined practices (such as allowing a person to manage their preference profiles and to opt-out of receiving targeted ads).

Safe harbors are a very powerful regulatory instrument. In what follows, I offer some fairly radical ideas for greatly expanding the use of safe harbors in privacy law by adopting a regulatory approach sometimes referred to as “co-regulation.” I have written about these ideas at greater length in a law review article, Privacy and Regulatory Innovation: Moving Beyond Voluntary Codes, I/S: A Journal of Law and Policy for the Information Society (forthcoming Winter 2011) available at All page references below are to the draft version currently posted on SSRN…

To read Rubinstein’s full blog about this issue click here

Leave a Reply

Privacy Calendar

8:30 am Privacy as a Profit Center: Leve... @ Old Slip by Convene
Privacy as a Profit Center: Leve... @ Old Slip by Convene
Jan 26 @ 8:30 am – Jan 27 @ 4:15 pm
Learn how those on the leading edge of privacy governance and digital innovation from companies including Cigna, Cisco Systems, eBay Inc. Public Policy Lab, FocusMotion,Ghostery, Goodyear Tire & Rubber Company, Google, HP Enterprise Security Products, JPMorgan[...]
all-day Data Privacy Day
Data Privacy Day
Jan 28 – Jan 29 all-day
“Data Privacy Day began in the United States and Canada in January 2008, as an extension of the Data Protection Day celebration in Europe. The Day commemorates the 1981 signing of Convention 108, the first[...]
all-day Global Privacy Summit 2015
Global Privacy Summit 2015
Mar 4 – Mar 6 all-day
For more information, click here.
6:00 pm CDT Annual Dinner “TechProm” 2015
CDT Annual Dinner “TechProm” 2015
Mar 10 @ 6:00 pm – 9:00 pm
Featuring the most influential minds of the tech policy world, CDT’s annual dinner, TechProm, highlights the issues your organization will be facing in the future and provides the networking opportunities that can help you tackle[...]
all-day BCLT Privacy Law Forum
BCLT Privacy Law Forum
Mar 13 all-day
This program will feature leading academics and practitioners discussing the latest developments in privacy law. UC Berkeley Law faculty and conference panelists will discuss cutting-edge scholarship and explore ‘real world’ privacy law problems. Click here[...]
all-day PL&B’s Asia-Pacific Roundtable (...
PL&B’s Asia-Pacific Roundtable (...
May 27 all-day
PROFESSOR GRAHAM GREENLEAF, Asia-Pacific Editor, Privacy Laws & Business International Report, will lead a roundtable on the countries of most interest to business in the Asia-Pacific region. Click here for more information.
all-day PL&B’s 28th Annual International...
PL&B’s 28th Annual International...
Jul 6 – Jul 8 all-day
The Privacy Laws & Business 27th Annual International Conference featured more than 40 speakers and chairs from many countries over 3 intensive days. At the world’s longest running independent international privacy event participants gained professionally by[...]

View Calendar