Hi all,

Of course, when it comes to user data protection, we're lightyears ahead of a number of for-profit, commercial enterprises nedless to be mentioned here. And yes, the new proposed changes in the parliament are going in the right direction for us, so there's no need to panic.

What we need to take away from this is that we must keep our eyes open in the future for risky law proposals or ammendments (not just in the EU).

The issue with Wiki*edia is that we're neither a company, nor a citizen nor a traditional community, so we're very easily overlooked in the lawmaking process. Also, our problems and issues are so specific and unique that they are hardly ever fully addressed by traditional NGOs or anybody else for that matter. We're the odd kid on the block.

An while it is very easy to raise valid concerns at an early stage and have them reviewed by the decision-makers, at a later stage this becomes increasingly difficult. We must learn to monitor legislation proposals concerning us and to request legal analyses early on if we see something worrisome. After all better safe than sorry, right?

Dimi

 

2013/1/11 Jan Engelmann <jan.engelmann@wikimedia.de>
Hi James and Amgine,

nobody denies that Wikimedia already applies privacy by design and by default, as intended by the Commission. But we should read the draft through European lenses and that means: the intention to apply a new gold standard of privacy matters to all data controllers. For us as consumers this is very good news. Regarding the necessities of an open platform, we should accurately analyze if there are any requirements we can't comply with.

You will find the Art. 17.2 proposed by the EU commission on page 96 (left column)

http://www.europarl.europa.eu/meetdocs/2009_2014/documents/libe/pr/922/922387/922387en.pdf

It says:

"Where the controller ... has made the personal data public, it shall take all reasonable steps, including technical measures, in relation to data for the publication of which the controller is responsible, to inform third parties which are processing such data, that a data subject requests them to erase any links to, or copy or replication of that personal data. Where the controller has authorised a third party publication of personal data, the controller shall be considered responsible for that publication."

Many law experts (IANAL) went nuts when they read this particular paragraph. The new Art. 2a (same page, right column) proposed by the rapporteur brings freedom of expression into play. So this was the basic message I wanted to give: the proposal is getting better, but still has to go through several stages of the drafting process. The Parliament is bound to find a common position until end of february.

Regards, Jan


2013/1/11 Amgine <amgine@wikimedians.ca>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 11/01/13 10:06 AM, Jan Engelmann wrote:
> No, our concerns weren't paranoid at all. Have you even read the
> initial Draft Poposal? OK, let's shift the scenario from a
> WP-article about a public figure to personal data embedded in user
> pages or discussion pages. Then any erasure based on data
> protection claims would affect the consistency of the whole
> project. Aren't we worried about authors' retention all the time?
> Here is another reason why. And how do you judge the surveillence
> program deriving from Art 17.2? Do you think a volunteer community
> which is already concerned with maaany copyright and personality
> rights issues could handle that? And please, AGF. J


I believe it has already been mentioned: we already do this stuff. I
also mentioned I am not as familiar as I should be with the proposal,
but most likely the communities can (and will, if the proposal is
implemented) develop methods to comply with the surveillance program.
Again, we already do.

I wonder more if the proposal is balanced and implementable, if
compliance is measurable, and what incentives and disincentives it
provides. On the face of it, the synopses suggest it should be
supported by the WMF though it does not go as far as our communities
already do.

Amgine
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJQ8F8/AAoJECWEXpXQfyMwtk0IAKToA+e1LDKHuT069xSM7BL2
jUDBvY8IvbEHUjwvl0J6h2WIyvdx8T9V0VeSTmfNp1C2njgu/Uvhn2VtIzuZ1WxL
I4Ay6jxJbxsSCcpLffU4+t4kXTBMl39zHyCsy1/xE3dBvsjJ5sw1G00f+ym8ybt+
8uBU2wQqdLE8X0MDd9Cy3mqHvQHNAHT+8kgVGqt0ZVCcVIg30WExyR/p2gtmmfhp
JdBnojQ2kgJRbDelgE+uiXVUQ5lx1+OHvKHzvNzLMt+UIXXOZDvjWNmx4ACWjaTk
tlU1sRLVxKEMt5FXbd8EkjgqFlYjeU+VXu4BFxppVSIGA7xCOwJ9ySoH/XyPaCM=
=4pCb
-----END PGP SIGNATURE-----

_______________________________________________
Advocacy_Advisors mailing list
Advocacy_Advisors@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/advocacy_advisors



--
Jan Engelmann
Leiter Politik & Gesellschaft
-------------------------------------
Wikimedia Deutschland e.V.
Obentrautstr. 72
10963 Berlin

Telefon 030 - 219 158 26-0
www.wikimedia.de

Stellen Sie sich eine Welt vor, in der jeder Mensch an der Menge allen Wissens frei teilhaben kann. Helfen Sie uns dabei!
http://spenden.wikimedia.de/

**** Helfen Sie mit, dass WIKIPEDIA von der UNESCO als erstes digitales Weltkulturerbe anerkannt wird. Unterzeichnen Sie die Online-Petition! http://wikipedia.de ****

Wikimedia Deutschland - Gesellschaft zur Förderung Freien Wissens e. V.
Eingetragen im Vereinsregister des Amtsgerichts Berlin-Charlottenburg unter der Nummer 23855 Nz. Als gemeinnützig anerkannt durch das Finanzamt für Körperschaften I Berlin, Steuernummer 27/681/51985.

_______________________________________________
Advocacy_Advisors mailing list
Advocacy_Advisors@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/advocacy_advisors