Biometric Information Privacy

/

In early March, NNEDV was notified by the World Privacy Forum about an effort that is underway in Illinois to strip essential biometric privacy protections. NNEDV and the Illinois Coalition have since been coordinating efforts to oppose this move. The privacy protections being threatened are a model for other states and should be replicated, not undermined. You can learn more about biometric data and about what's happening in Illinois below. 

PROTECT SURVIVOR PRIVACY

In 2008, Illinois passed a landmark bill titled the Illinois Biometric Information Privacy Act. BIPA, as it is known, was specifically aimed at protecting critical biometric data such as “retina or iris scan, fingerprint, voiceprint, or scan of hand or face geometry.” Several states have followed Illinois’ leadership and passed similar laws, however Illinois still stands alone in not only protecting against the misuse of biometric information, but also providing a private right of action, which allows individuals to personally sue entities such as corporations for failure to inform and obtain consent before collecting, capturing, purchasing, or receiving biometric data.

BIPA is an important law for anyone who is interested in privacy and security, but it is especially important for vulnerable individuals like survivors of domestic violence. Many survivors of domestic violence are forced to flee abusive relationships and to change their identities in order to protect themselves and their children. While a name or social security number can be changed, there is no way for most individuals to change biometric information. It is unique and once compromised cannot be fully protected. For survivors of domestic violence who regularly experience identify theft and who may need to protect their information in order to stay safe, BIPA is an essential tool in helping survivors to make smart decisions about what information to share. BIPA requires entities to inform people about their collection practices, to obtain written consent before collecting, and to have processes to destroy biometric information that has been collected in a reasonable time. These safeguards are essential and can actually save lives.

BIPA is currently under attack. A new bill has been introduced in an attempt to peel back the protections afforded under BIPA in large part to protect companies from lawsuits for failure to comply with BIPA’s important privacy protections. The use of biometric data is increasingly common and we know that it will continue to be an important part of many aspects of commerce, including how companies oversee human resources. While there may be a way to balance the changing needs and practices of companies with essential privacy rights, the current bill to modify BIPA is far from reaching an appropriate balance. While the bill would still protect against the sale of the biometric information, it would otherwise completely gut BIPA exempting nearly every single business in Illinois.

TAKE ACTION

The National Network to End Domestic Violence (NNEDV) believes that BIPA is an essential law to protect biometric data and is especially important for survivors of domestic violence. If you agree, please contact Senators Bill Cunningham, Chris Nybo, and Napoleon Harris, III and file a witness slip in opposition to the bill. A link to the witness slip can be found here. When filling out the slip, make sure to check Record of Appearance Only, under the section entitled “IV. Testimony.”

 

 

NNEDV Resource Highlight: Technology Safety and Your Website

/
Safer Internet Day

February 6 is recognized as Safer Internet Day. We believe that survivors have the right to be safe at home, at work, on the streets, and online. Most domestic violence and sexual assault service providers have some type of online presence, whether it’s a website, social media page, or something else. 

The following steps can be taken to increase the safety and privacy of people who search for resources and reach out to agencies online:  

1.      Add a Safety Alert to Your Website: This can remind survivors that their online activity could be monitored or viewed by someone without the survivor’s knowledge.

2.      Create a Quick Escape Button: This allows survivors to be redirected to an innocuous webpage. Be mindful, this only prevents immediate over-the-shoulder monitoring (not spyware), and does not block browser history.

3.      Include Information about Internet Safety: Be upfront about safety risks of communicating online with survivors via email, website, or other platforms, and transparent about what information might be retained.

4.      Use a Web Form Instead of Email Addresses: Unlike direct email addresses, a web form does not leave a record of the email in the sender’s email sent folder.

5.      Posting Pictures & Videos: Be sure to get consent before you post any pictures or videos online. This includes permission from staff, board members, or speakers – don’t assume that because someone works for your agency or was invited to speak, that they are willing to have their images posted online. 

6.      Include Accurate Information: Make sure any information that pertains specifically to your area – county, state, or region – such as laws, processes, or services are made clear. Survivors who visit your site may be from a different area and should know if the information provided is applicable to them.

7.      Accessibility: Make sure your website is accessible for all viewers – including those living with disabilities or who are Deaf. You can increase accessibility by ensuring that the font you use is large enough, has strong contrast, and that the images on your website have alternative text descriptions (alt text).

Find more tips and technology safety resources in our Agency’s Use of Technology Best Practices & Policies Toolkit.
If you have additional questions about technology safety, please visit TechSafety.org or reach out to our Safety Net team: SafetyNet@NNEDV.org.

Privacy Risks and Strategies with Online Dating & Gaming

/

Both online dating and online gaming are fast-growing industries that are increasingly becoming a regular part of life. Online dating has rapidly gained in popularity as a common way to connect to potential dates or find a partner. And, contrary to popular perception, online gaming is not just a pastime for teenage boys. Many people have concerns about the safety of online dating, often due to widely publicized stories of assault and abuse, and unfortunately, online harassment is an all-too-common experience while playing games online, that can also cross into real life.

Everyone should be able to be online safely, free from harassment and abuse, and that includes dating and gaming. For survivors of domestic violence, sexual assault, and stalking, privacy and safety concerns may be even greater when trying to engage in online spaces. Fortunately, it is possible to increase privacy and safety when dating and gaming online.

Two new resources from Safety Net discuss both risks and strategies, for survivors who want to be active in online dating or gaming communities.

Harassment, threats, and abuse that happen “only” online should be taken seriously. Such experiences can be traumatizing, and may include financial crime or identity theft. Victims report efforts to ruin their reputations and drive them from the online community. If enough identifying information is known, the abuse can also quickly become an offline threat.

If you are concerned about online harassment or abuse, see our Survivor Toolkit for more information about Online Privacy & Safety Tips, guides to Facebook and Twitter, and for resources to assist in documenting abuse.

Online harassment and abuse may fall under a number of crimes, depending on what is happening. To learn more about laws in your state on online harassment, visit WomensLaw.org