Jeff Bullwinkel gfke 2014
•Download as PPTX, PDF•
0 likes•561 views
Jeff Bullwinkel session 5 gfke 2014
Recommended
More Related Content
More from innovationoecd
More from innovationoecd (20)
Jeff Bullwinkel gfke 2014
- 3.
Editor's Notes
- But let me start by saying a word about where we are today, in early October, thinking back on last year and a half. This is the image that comes to mind. It has been an extraordinary year. Extraordinary year because it was on June 6, 2013 that first documents released by this Snowden were published by The Guardian. Now his name a household word, and he sparked to spark a global debate. Mistake to link the entire debate to this single individual and the disclosures. This debate is not only important and necessary. It was inevitable. Question becomes how to think about privacy in the digital age. Three goals are clearly important: (1) public safety, need to investigate and prosecute crime; (2) right to privacy, be sure has meaning as did in centuries that preceded us; (3) use of technology, think of PC; start with desk drawer, to desktop, to Internet, to cloud. People need to trust IT they use. Need to find way to protect public safety, preserve fundamental freedoms, and promote trust all at same time. Should be achievable goal, something we have been thinking about for some time. What did we do? Encryption. Contract protections. Fight for openness and transparency and against overreach.
- In wake of Snowden revelations, we and other companies took a number of steps. Encrypted more data – basically for all of our services. Took steps to promote transparency and to increase contractual protection for our customers. We have also taken steps to challenge the limits of government authority, including (1) suing US government to allow us to disclose more about data demands; (2) promoting a review of existing practices; and (3) defending constitutional principles in actual court cases.
- One issue that is getting increasing attention all over the world is about geographic scope of warrants today that are pursued by USG. And that is because US government has been serving warrants on companies like MSFT with data centers. Giving us an account name. Telling us to go from building to building, and country to country, to pull information belonging to that customer and turn it over to government. Some say it is a new day, impossible for government to know where people store information. That is why we at MSFT have challenged warrant government issued, a warrant that is now being litigated in a federal courthouse in Manhattan. Because in this case, when we found out who the customer was, we found that it was a customer in Europe. Ultimately, as we look at NY case, we need to look for better solutions. Yes, times when LE in one country will need access to data held in a data center in another country. But LE should look in first instance for opportunities to do this in collaborative way with our allies. And even if government needs to act unilaterally, there must be limiting norms that respect sovereignty and international comity – norms that can exist on a worldwide basis.
- It’s worth stepping back and reflecting on the nature of the global discussion currently underway regarding privacy. In the US, the debate has fundamentally been about the relationship between government and citizens, and how governments access data. In Europe, there has been greater focus on how private companies access and use consumer data (e.g., Google). Here in Asia, we see a combination of the two, depending upon what market you’re in. But it’s worth emphasizing that “citizens” and “consumers” are really two halves of same whole. They’re called “people.” And we’re talking about the right of people to be secure when it comes to their personal information in the 21st century. As an industry, we’re creating terrific and powerful tools – but they can collect huge amounts of personal information. Every day, people around the world carry in their pocket a devices that shows where they are every minute of the day. Records what they write, what they read. We in the IT industry need to think about the broader implications of what we’re creating, otherwise we’ll put people privacy interests at risk.
- So, the IT industry is focused on the issues. But also interesting to think about this from perspective of another group of people who are charged with responding to the concerns of the public – and that is the government. There is a growing of wave of legislation.
- And this trend is global, as reflected here in this graph, which shows the growing number of countries with privacy laws. Singapore, the government recently enacted the Personal Data Protection Act, which as many of you will know went into effect just last month.] Japan looking at privacy reform. And we’re seeing similar legislative actions across the Asia region. As of now, the only major economies in Asia without comprehensive privacy laws are Indonesia and Thailand – and even in those countries the governments are actively looking to change that. Notably, most of these changes in privacy regimes occurred over last 5-10 years.
- Fundamentally, this is an issue that will grow in importance. Right now, if you look at the world, there are a billion PCs; two billion smartphones; seven billion people. By the end of the decade, there will be 50 billion devices in the “Internet of Things,” all connected to data centers around the world. We’re entering a world in which every thermostat, smoke detector, fire extinguisher, parking meter, traffic light, garbage man, you name it, will be a connected device. This issue is going to become more important, not less.
- Need to consider how the two halves of this issue come together. Questions are the same, but the answers may differ. But if consider relationship between citizens and government on the one hand, and consumers and companies on the other, there are four issues to grapple with: How to ensure transparency? People have right to know what governments/companies are doing. How to ensure public has appropriate control over information? How to we ensure accountability, both for governments and companies? How do we ensure international norms and collaboration, so information can cross borders when it should. These are the four questions we need to grapple with here and in capital after capital around the world. Technology is a tool, empowers and serves people. Gov’ts exist to serve people. We need to come together. Need to ensure that important principles of public safety are addressed, but in a way ensures that technology in 21st century continues to serve people. That is what this conversation is about.