David Carroll Profile picture
Mar 5, 2018 32 tweets 11 min read Read on X
Looks like another early-morning wake-up to catch Cambridge Analytica's regulator @ICOnews giving oral evidence to @CommonsCMS tomorrow. I might be livetweeting the livestream if Information Commissioner Elizabeth Denham offers any new revelations. parliament.uk/business/commi…
2/ Hopefully you've seen @Billbrowder give testimony about his Magnitsky Act campaign. Despite his accent, he's a British citizen, asked to talk about disinformation campaign waged against him. @DamianCollins jests that Russian Embassy and Brietbart have gone after @CommonsCMS
3/ @edwardlucas articulates how "fairness doctrine" in media coverage can be exploited by Kremlin propaganda mouthpieces that spray doubt over reasonable positions as media especially BBC oblige 'both sides' rather than understand that position as state propaganda.
4/ @edwardlucas argues that advertisers (especially political) give up their right to privacy and so Facebook should adhere to British election law and provide payment and targeting transparency and authenticated identity for propagated political messages on platforms.
5/ @edwardlucas argues for an opt-in identity authentication certificate, like the Twitter Verified "blue tick" more widely deployed across all internet infastructure, like license plates and flags on ships. Right of anonymous IDs must be preserved for political dissidents also.
6/ @Billbrowder argues tech platforms it has insufficient financial incentives to self-police imposter activity like banks bear responsibility for facilitating money laundering. @DamianCollins asks about false audiences and advertisers being defrauded as commercial incentives.
7/ @edwardlucas describing how DCLeaks was a counterfeit fake news site for weaponizing state intelligence operations as an asymmetric attack. They started out as quick and cheap experiments to see how they would work. Important to look forward toward the next asymmetric models.
8/ @Billbrowder asked about social media identity theft, the pervasiveness of the problem for him, responsiveness of platforms. YouTube is most difficult platform to contend with, while Facebook has been responsive, Twitter protects parody accounts. A high-profile figure though.
9/ Asked about privacy rights, data protection rights, noting the US has fewer rights in this regard, @edwardlucas describes benefits #GDPR model of data ownership. Describes photo tagging consent on Facebook as example of the complexity of privacy, ability to de-anonymize people
10/ As discussion drifts to emerging ability fabricate false images, sounds, video (fake fake media, deepfakes), @edwardlucas argues for need for cryptographic signature for images and recordings to certify their authenticity.
11/ @edwardlucas describes browser malware warning screens as an example of public health warning to propose that websites with obfuscated whois domain registrations could have user-facing warning
12/ @Billbrowder describing Putin's interest in dismantling the EU and NATO and "bringing the world down to them" by infecting other countries with corruption so he can stay in power and keep his money. But he can only wage asymmetric war with plausible deniability.
13/ @edward describes how Nordic nations, Estonia, the countries that have been warning us for a long time, those we patronized, now need to be held up for managing these threat models that aren't a new problem. Commercial vulnerabilities are being exploited by hostile actors.
14/ Session adjourned with Browder and Lucas. Next up Elizabeth Denham from @ICOnews
15/ Denham launched ICO investigation into voter analytics in May 2017. 10 full-time people working on investigation across 30 organizations, including Cambridge Analytica, and political parties and campaigns. She's working on "pulling back the curtain" and report for Spring 2018
16/ @DamianCollins asks Denham about cooperation with Facebook, Twitter, Google. She has served 7 legal information notices. 1 challenged by tribunal. Will be serving 5 more notices this week.
17/ Denham describes information notice due process and a legal requirement and fulsome response which can be penalized with monetary fine, as the "data cops" but @DamianCollins asks about ICO's authority to conduct investigative probes into company data.
18/ Denham sees deficiency in her powers in ICO, her ability to enforce cooperation. "People shouldn't be able to buy themselves out of compliance with our office."
19/ UKIP challenged their ICO information notice to the tribunal, to be heard in May 2018 (in the public domain). Denham asked if membership in Facebook Groups membership is accessible to third parties. (Reference to AggregateIQ news reported by CBC, Bannon's FB Groups tool?)
20/ Under GDPR and new UK DPA, Denham will have new tools and expanded sanctions to enforce data protection law (4% of global revenue) and ability to order to cease of data processing or enforced data deletion, compulsory audits, something ICO can't do now.
21/ Denham says how the model of a regulator sitting back, waiting for complaints isn't working anymore because data processing is so opaque and people can't understand it. Data protection is right up front in the discussions about democracy, not a back office issue anymore.
22/ Denham has run some focus groups on how people understand their personal data being used by campaigns to target them. She suggests that people do not understand, and so they could not have granted consent, nor does it indicate sufficient transparency.
23/ Denham asked about last week's @CommonsCMS session with Cambridge Analytica but she declined to offer a reaction citing the ongoing investigation of them.
24/ Denham does not have "derogation" concerns about GDPR and new UK Data Protection bill even considering Brexit.
25/ Denham asked if any other similar inquiries are underway in other countries. No, not to her knowledge, so the pending ICO report in the spring will be groundbreaking, hopefully before the end of May. Denham asked about ICO resources to take on deep pocketed litigation.
26/ Denham is "deeply curious" which is why their information notices have been issued again if necessary when answers have not been sufficient.
27/ @DamianCollins asks Denham about the "right to be forgotten", how it is applied in current law (UK DPA of 1998), ICO gets 100s of requests to enforce de-linking in Google results. GDPR provides more explicit right to be forgotten. Collins asks about data profiles and deletion
28/ @DamianCollins asks about data deletion beyond Facebook, such as Cambridge Analytica, how do you know who to go to? ICO policy report will stress importance of transparency, chain of data custody. Regulator's job to push companies toward solutions that work. Too opaque now.
29/ @DamianCollins asks Denham about my Subject Access Request! She says I'm interested in the provenance of the data sources, and it's part of their line of inquiry but their is broader than that.
30/ My Subject Access Request to Cambridge Analytica has been specifically mentioned at three @CommonsCMS sessions. "His concerns are in line with our concerns" "We're paddling in the same canoe."
31/ Denham describes the jurisdiction question: Because my data was processed in the UK, it is subject to the Data Protection Act and British jurisdiction. This position differs from Mr. Nix's assertion before @CommonsCMS last week that Americans do not have rights in the UK.
32/ Hearing is adjourned. I could not be more pleased with Commissioner Denham's responses, especially with regard to being aligned and supported by Cambridge Analytica's regulator on the basis of my complaint and legal challenge. We will #TakeBackOurVoterData /fin

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with David Carroll

David Carroll Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @profcarroll

Oct 8, 2018
The election of 2016 was a PSYOP. No, really. nyti.ms/2E6xgmD
Cambridge Analytica and Psy Group had a memorandum of understanding, reported in May. wsj.com/articles/israe…
Fact that Cruz’s Cambridge Analytica appears to have sought to team up with Psy Group, which sought to run a social media PSYOP against Cruz is…awkward.
Read 8 tweets
Oct 6, 2018
So many simultaneous Kavanaugh scandals, overloaded the system.
- sexual (how can he deny blackouts?)
- financial (how did he pay off debt?)
- hacking (how can he deny knowing about pilfered docs)
- surveillance (how can he deny his role?)
- perjury (how can he lie about it all?)
- financial scandal: the unexplained mystery of the impossible Kavanaugh family finances is nicely documented and explained here (although I do bristle at how it downplays the sexual scandal; again see above on scandal overload) medium.com/@gregolear/sup…
- hacking and surveillance scandal: this piece by @nycsouthpaw is a twofor in that you get deep coverage on both the surveillance FOIA revelation and the senate hacking scandal context yahoo.com/news/lawsuits-…
Read 4 tweets
Oct 4, 2018
Kavanaugh’s toxicity poisons an already reeling Facebook, enraging employees and flummoxing executives. nyti.ms/2CpoSwI
Facebook’s behavioral microtargeting political ad business unit is a moneymaker. They all shouldn’t be surprised when the chickens they hatched come home to roost.
Joel Kaplan was sitting behind Zuckerberg for his Congressional hearings. That too was a rather perjurious affair. (Zuck remains in contempt of UK parliament committee for failing to appear.)
Read 4 tweets
Oct 3, 2018
Defence entered a Not Guilty plea this morning in Westminster Magistrate Court. Trial is set for January 2019. #CambridgeAnalytica
It’s a criminal act in the UK to defy the Information Commissioner’s specific order to comply with data protection law. This order is from May 2018 and now we can confirm it will go to trial in the UK next year. wired.com/story/uk-regul…
A “defunct” company sure seems willing to spend its allegedly sparse resources going to trial against the data cops for refusing to hand over all the personal data it collected about me. What are they hiding? Will their creditors tolerate this?
Read 5 tweets
Oct 2, 2018
If you’re up for SCOTUS then yeah all your shit is gonna get dredged up. Welcome to the future.
Kavanaugh stands to be the most anti-privacy justice on the bench. His view of the 4th is as warped as his view of the 1st. He’s most likely to rule in favor of a Citizens United-type decision for Silicon Valley, ruling that business surveillance is protected commercial speech.
It’s hard to imagine a future where Kavanaugh is confirmed and we don’t find ourselves, a decade later, in some fucked up dystopia.
Read 6 tweets
Oct 1, 2018
I suspect one reason this mega-breach isn’t causing a bigger reaction is that it has no name. Usually hacks and breaches are quickly dubbed something catchy which catapults them thru the coverage and watercooler debates.
Cleverest I can come up is #ChuckE in reference to Chuck E Cheese’s where you get tokens for your birthday parties, in reference to how access tokens were hacked thru exploits in birthday video upload tool. But that’s quite a US-centric reference.
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

:(