Civil Society

Must Publish
Standards Documents
Roger Clarke, Xamax Consultancy, Canberra
Visiting Professor in Computer Science, ANU
and in Cyberspace Law & Policy, UNSW
Chair, Australian Privacy Foundation, 2006-10
Member, Advisory Board, Privacy International, 2000-

Human Choice & Computers

Brisbane, 21 September 2010

http://www.rogerclarke.com/DV/CSSD {.html, .ppt}

Copyright
1
2010
 Civil Society Standards Documents
Agenda
Standards Documents
The Politics of Standards
Exemplars
CCTV
PPS
eMarketing
Benefits
Prospects

Copyright
2
2010
 Origins of Standards Documents
Engineering Professions, esp. Construction
International Telecommunications
Union (ITU, since 1865)
Institute of Electrical and
Electronics Engineers
(IEEE, since 1884/1912/1963)

Copyright
3
2010
 Origins of Standards Documents
Engineering Professions, esp. Construction
International Telecommunications
Union (ITU, since 1865)
Institute of Electrical and
Electronics Engineers British Standards Institution
(IEEE, since 1884/1912/1963) (BSI, since 1901)
American National Standards
Institute (ANSI, since 1916)
Deutsche Industrielle Normen
(DIN, since 1917)
Standards Australia
(SA, since 1922)

Copyright
4
2010
 Origins of Standards Documents
Engineering Professions, esp. Construction
International Telecommunications
Union (ITU, since 1865)
Institute of Electrical and
Electronics Engineers British Standards Institution
(IEEE, since 1884/1912/1963) (BSI, since 1901)
American National Standards
Institute (ANSI, since 1916)
Deutsche Industrielle Normen
(DIN, since 1917)
International Organization for Standards Australia
Standardization (ISO, since 1947) (SA, since 1922)
Internet Engineering Task Force
(IETF, since 1986/1992)
Copyright
5
2010
 From Technical Standards
To Process Standards / Management Standards
ISO 9000 Quality (Assurance) Family, since 1987
BSI ==>> ISO
ISO 31000 Risk Assessment and Management
ISO/IEC 27000 Information Security Family
ISO 10002 Complaints Handling
SA ==>> ISO

Copyright
6
2010
 From Technical Standards
To Process Standards / Management Standards
ISO 9000 Quality (Assurance) Family, since 1987
BSI ==>> ISO
ISO 31000 Risk Assessment and Management
ISO/IEC 27000 Information Security Family
ISO 10002 Complaints Handling
SA ==>> ISO

Strong Emphasis on Process Audit

Copyright
7
2010
 From Technical Standards
To Process Standards / Management Standards
ISO 9000 Quality (Assurance) Family, since 1987
BSI ==>> ISO
ISO 31000 Risk Assessment and Management
ISO/IEC 27000 Information Security Family
ISO 10002 Complaints Handling
SA ==>> ISO

Strong Emphasis on Process Audit

Very Limited Output / Outcomes Audit

Copyright
8
2010
 The Politics of Standards
Institutionalisation and Scale
Influence = ( Meritocracy / Technocracy )
From Volunteer Professionals
To Corporations, Government Agencies,
Industry Associations

Copyright
9
2010
 The Politics of Standards
Institutionalisation and Scale
Influence = ( Meritocracy / Technocracy )
From Volunteer Professionals
To Corporations, Government Agencies,
Industry Associations

Consumers / Citizens / Reps / Advocates ?

Influence from muted to nil, due to:
Dominance of Meritocracy/Technocracy
Dominance of Corporate Power
Limited Resources for Analysis, Travel
Copyright
10
2010
 The Form of Process Standards
Aspirational
Loose principles
Diffuse declarations
Motherhead statements

The organisation is to set

targets for the speed of
response to complaints

Copyright
11
2010
 The Form of Process Standards
Aspirational
Loose principles
Diffuse declarations
Motherhead statements
The organisation is to set
targets for the speed of
response to complaints
Copyright
2010
Constructive and Specific
Action-oriented
Precise
Acknowledge complaint
within 30 minutes of receipt
Respond substantively
within 2 working days
Respond fully within 2 days
/ 1 week / 3 weeks,
depending on complexity
12
 QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright Exemplar CCTV 13

2010 http://www.privacy.org.au/Papers/CCTV-1001.html
 APF Policy Statement re CCTV
Key Features

Declaration of Scope

Declaration of Principles

Select Bibliography
Guidelines
Evaluations
Resources

Copyright
14
2010
 APF Policy Statement re CCTV
Key Features

Declaration of Scope 1. Justification

2. Proportionality
Declaration of Principles
3. Openness
Select Bibliography 4. Access Security
Guidelines 5. Controlled Use
Evaluations 6. Controlled Disclosure
Resources 7. Controlled Publication
8. Cyclical Destruction
9. Review
10. Withdrawal
Copyright
15
2010
 Principle 1. Justification
Because visual surveillance is highly privacy-invasive,
a Privacy Impact Assessment (PIA) must be
conducted before a scheme is commenced or
significantly changed
A PIA involves publication of a clear explanation,
demonstrating that it is expected on reasonable grounds
to have positive benefits sufficient to justify its
intrusiveness, followed by public consultation
The explanation must be based on evidence and
systemic reasoning, and not merely rely on assertions
The justification must make clear what
less privacy-invasive alternatives
have been considered, and why they are inadequate
Copyright
16
2010
 Exemplar Privacy Policy
Statements
http://www.rogerclarke.com/DV/PST.html

QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
17
2010
 Some Sites That Use the Template

Association for Information Systems http://www.aisnet.org

Deacro Industries Ltd. http://www.deacro.com
Delta Research Digital Productions http://www.delta-viz.com
Ghost Tours Pty Ltd http://bookings.ghost-tours.com.au
K1P1 Knitting Yarns http://www.k1p1.com.au
Kara Nursery http://karacactus.com
Orange Space [subject to a Malware Warning ...]
Serverus http://www.severus.com.au
Tactile Books http://tactilebookspublishing.com.au
Time Merchants Emporium http://www.timemerchants.com.au
World Hospitality Partners http://www.worldhospitalityllc.com
Zap Technology http://www.zaptechnology.com

Copyright
18
2010
 Some Sites That Use the Template
300-400 live-person hits per month
Association for Information Systems http://www.aisnet.org
Deacro Industries Ltd. http://www.deacro.com
Delta Research Digital Productions http://www.delta-viz.com
Ghost Tours Pty Ltd http://bookings.ghost-tours.com.au
K1P1 Knitting Yarns http://www.k1p1.com.au
Kara Nursery http://karacactus.com
Orange Space [subject to a Malware Warning ...]
Serverus http://www.severus.com.au
Tactile Books http://tactilebookspublishing.com.au
Time Merchants Emporium http://www.timemerchants.com.au
World Hospitality Partners http://www.worldhospitalityllc.com
Zap Technology http://www.zaptechnology.com

Copyright
19
2010
 QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
20
2010
 QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
21
2010
 Exemplar eMarketing
http://www.rogerclarke.com/EC/Collecter08.html#AppA

A Normative Template for Marketer-Prosumer Communications

Information
Terms of Contract
Security
Choice
Consent
Recourse
Redress

Copyright
22
2010
 QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
23
2010
 QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
24
2010
 Exemplar Australian Privacy
Charter

QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

QuickTime and a
TIFF (LZW) decompressor
are needed to see this picture.

Copyright
2010
http://www.privacy.org.au/apcc/ 25
 Civil Society Standards Documents
Benefits
An alternative voice to the
documents that are published
by and for industry,
and by and for governments
A counter-balance to
the power of industry
and governments
An antidote to civil society's
exclusion / weak voice in
industry standards processes

Copyright
26
2010
 Civil Society Standards Documents
Benefits
An alternative voice to the Public Expectations:
documents that are published Articulated
by and for industry, Communicated
and by and for governments Available in Advance
A counter-balance to Benchmarks:
the power of industry Established
and governments
Applied by Civil Society
An antidote to civil society's Applied by Others
exclusion / weak voice in
industry standards processes

Copyright
27
2010
 Civil Society Standards Documents
Benefits
An alternative voice to the
documents that are published
by and for industry,
and by and for governments
A counter-balance to
the power of industry
and governments
An antidote to civil society's
exclusion / weak voice in
industry standards processes
Copyright
2010
Public Expectations:
Articulated
Communicated
Available in Advance
Benchmarks:
Established
Applied by Civil Society
Applied by Others
Protection of the public
from badly conceived projects
Assurance for investments
both public and private
28
 Prospects for Civil Society Standards
National NGOs
==>> International NGOs
==>> National Standards Orgs
==>> Intl Standards Orgs

Copyright
29
2010
 Prospects for Civil Society Standards
National NGOs
==>> International NGOs
==>> National Standards Orgs
==>> Intl Standards Orgs

Choice ==>> SA
==>> FCO, CI ==>> ISO

Copyright
30
2010
 Prospects for Civil Society Standards
National NGOs
==>> International NGOs
==>> National Standards Orgs
==>> Intl Standards Orgs

Choice ==>> SA
==>> FCO, CI ==>> ISO
APF ==>> SA
==>> PI ==>> ISO

Copyright
31
2010
 Prospects for Civil Society Standards
National NGOs
==>> International NGOs
==>> National Standards Orgs
==>> Intl Standards Orgs

Choice ==>> SA
==>> FCO, CI ==>> ISO
APF ==>> SA
==>> PI ==>> ISO
ISOC-AU >> ISOC ==>> IETF

Copyright
32
2010
 Civil Society Standards Documents
Agenda
Standards Documents
The Politics of Standards
Exemplars
CCTV
PPS
eMarketing
Benefits
Prospects

Copyright
33
2010
 Civil Society
Must Publish
Standards Documents
Roger Clarke, Xamax Consultancy, Canberra
Visiting Professor in Computer Science, ANU
and in Cyberspace Law & Policy, UNSW
Chair, Australian Privacy Foundation, 2006-10
Member, Advisory Board, Privacy International, 2000-

Human Choice & Computers

Brisbane, 21 September 2010

http://www.rogerclarke.com/DV/CSSD {.html, .ppt}

Copyright
34
2010