The ‘forget me button’ idea Inspired by an idea from John Lyle
As of last week, proposed new regulations by the EU give web users new privacy rights – specifically a ‘forget me’ or the ‘right to be forgotten’ functionality
I had explored this idea under a blog post Mobile devices and privacy: Should we focus of changing behaviour of people OR changing behaviour of devices? – Which referred to the Silence of the chips regulation. Extending last week’s ‘forget me’ regulations to sensor networks, currently there is a discussion in the European parliament around a paper called The Internet of Things – An action plan for Europe (pdf). The document outlines a concept called ‘The silence of the chips’. In a nutshell, in a world of sensors, RFID chips etc, an individual should have the right to effectively disconnect from their networked environment at any moment.
Now, this idea is more relevant in a sensor environment.
How could it be implemented? I give an example using webinos
I explained the basic architecture of webinos in a previous post webinos – sensor based scenarios – managed service scenarios for sensor networks ..
So, to implement a right to be forgotten functionality at a sensor level, webinos could provide a ‘right to be forgotten’ button at the PZH level. Application developers would not retain the data since the data is at PZH which is owned and managed by the user and users make their own decisions about sharing information.
So, you could conceive of the idea of ‘webinos in a box’ which would cater for the functionality of ‘the right to be forgotten’ at a venue. The product would contain sensors and cloud based software that could be installed at a venue (which could be a university, a café, a museum etc) and possibly managed by third parties on behalf of a venue
You could have many devices within the venue each running a PZP connected to a PZH which runs on a PC or a home gateway (or the Cloud)
The steps are: (in this case, a managed third party could perform all the steps instead of the venue itself)
1) The venue installs PZH
2) The venue installs PZP for one or more of their devices monitoring the customer
3) Link between PZH and PZP is secured by webinos
4) each webinos API at PZP could be used in conjunction with household devices
5) there is no ‘widget’ – client interface except for a management interface
In this case, the venue stores data on behalf of the customer and the customer (through a mobile app which contains a ‘forget me’ button?) has the ability to manage the data held by the venue on behalf of the customer.
Image source: http://en.wikipedia.org/wiki/Forget-me-not