FCC wants ISPs to get customer permission before sharing personal data

The proposed rules would also require broadband providers to report data breaches

Broadband providers would often be required to get customer permission to use and share personal data they collect under regulations proposed by the U.S. Federal Communications Commission.

Broadband providers have an unrivaled ability to track customers and collect personal data, and there currently are no specific rules covering broadband providers and customer privacy, FCC officials said Thursday.

The goal of the rules is to give broadband customers notice, choice and control over their personal data, FCC officials said during a press briefing.

"Your ISP handles all of your network traffic," FCC Chairman Tom Wheeler wrote in the Huffington Post. "That means it has a broad view of all of your unencrypted online activity -- when you are online, the websites you visit, and the apps you use."

On mobile devices, providers can track customers' physical locations, he added. "Even when data is encrypted, your broadband provider can piece together significant amounts of information about you -- including private information such as a chronic medical condition or financial problems -- based on your online activity," Wheeler said.

The proposed rules, to be debated during the FCC's March 31 meeting, would allow broadband providers to send information about new deals and deliver Web-browsing functionality without seeking further customer permission.

The proposal, which would go out for public comment if approved later this month, would allow broadband customers to opt out of data collection for the broadband providers' internal and affiliate marketing and other communications-related services. For all other purposes, including most sharing of personal data with third parties, broadband providers would be required to get customers' opt-in permission to use and share customer personal data.

The rules don't prohibit ISPs from using the personal information they collect, "only that since it is your information, you should decide whether they can do so," Wheeler wrote. "This isn’t about prohibition; it’s about permission."

Wheeler's proposal would also require Internet service providers to notify customers about data breaches of personal data, with affected users notified within 10 days of discovery of the breach. More than 40 U.S. states have data breach notification laws, but there's no national standard.

ISP trade groups have called on the FCC to avoid passing an extensive set of new rules that specifically target providers.

"Consumer information should be protected based upon the sensitivity of the information to the consumer and how the information is used -- not the type of
business keeping it, how that business obtains it, or what regulatory agency has authority over it," five ISP trade groups said in a letter to the FCC this month.

Some ISPs and trade groups have questioned the need for new rules by noting the that use of encryption and virtual private networks is growing among broadband users.

But broadband customers shouldn't have to rely on encryption or VPNs to protect their personal data against sharing by providers, FCC officials said.

The move of the FCC toward new privacy rules for ISPs is related in part to the agency's reclassification of broadband as a regulated, common-carrier service in new net neutrality rules passed in February 2015. Reclassification of broadband moved the authority for policing broadband privacy from the Federal Trade Commission to the FCC, privacy groups have said.

Under common-carrier rules, "the information collected by the phone company about your telephone usage has long been protected information," Wheeler wrote.  FCC rules "limit your phone company’s ability to repurpose and resell what it learns about your phone activity. The same should be true for information collected by your ISP."

Privacy advocate Jeffrey Chester, executive director of the Center for Digital Democracy, called the proposed rules a "major step forward" for privacy in the U.S.

"Today, Americans have really no privacy when they go online, use mobile phones, or stream videos," he said. "They face a growing threat to their privacy as cable and phone company broadband ISPs construct a powerful and pervasive data gathering apparatus."

Join the Good Gear Guide newsletter!

Error: Please check your email address.

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Grant Gross

IDG News Service
Show Comments

Cool Tech

Crucial Ballistix Elite 32GB Kit (4 x 8GB) DDR4-3000 UDIMM

Learn more >

Gadgets & Things

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >

Family Friendly

Lexar® JumpDrive® S57 USB 3.0 flash drive 

Learn more >

Stocking Stuffer

Plox Star Wars Death Star Levitating Bluetooth Speaker

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest News Articles

Resources

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?