I'm surprised they ask for my personal physical address for signing the petition. An email with a first name last name should be enough. After all, how can i trust this website ?
As an initiative against mass surveillance, entering all your personnal information on a website isn't the smartest thing.
After they asked for the PESEL (Polish national identity number) I just stopped filling the form. It's sensitive personal data, you don't want to give it unless it's necessar and you have complete trust for requesting party.
This originates from what was at the time the least controversial part of the Patriot Act. If you want to be able to exchange cryptocurrencies to a Visa/Mastercard, the service needs your ID, regardless of where you're from.
I bought some crypto on one of the local_x sites and the guy made me write _by hand_ a letter about my ID being real. A "do you want the money or not" conversation ensued.
Yeah that’s really not OK. Though in some countries that number isn’t sensitive by itself, asking for it to sign a petition is incredibly creepy.
If you select Netherlands they’re at least informed enough to not ask for the Dutch equivalent, the BSN. It would be against the law for them to ask, process or store it.
How would you have an effective petition in the EU without verifying that petitioners are EU citizens? Then this petition would be reduced to a singular PR push.
You don’t need to ask for the social security number equivalent to verify citizenship. By itself it doesn’t help in that context since residents get one too.
If you try the form for different countries, in a lot of cases they don’t ask for that particular identifier, because they legally can’t, and ask for address information instead. That’s still a little creepy, but a whole lot less.
Residents in much of the EU get plenty of rights, including voting in local elections. So why not? They live there, and their biometrics are being collected too.
In some countries, like Poland, you don't have to have your address registered with the government. PESEL and your ID number are a sort of multi-factor authentication mechanism.
Can't each country have a platform where you kind of validate it in kind of this way.
- Select the country, get redirected to the sovereign identity auth platform
- There you can log in/provide the details in the sovereign run platform.
- The sovereign run platform validates and sends out a unique anyonymized hash for the user which the platform can store to keep count.
This can be used for other validation purposes as well which are not limited to just petitions and the data returned by the platform can be scoped to the requester sort of like Oauth.
To make it even better for privacy, you can introduce the concept of an application identifier which will be unique for petition/form etc. The hash will be unique with the application identifier scope, so outside platforms can't correlate individual identity through multiple petitions.
That’s interesting - I looked at what was required for my country of nationality and my country of residence, and neither asked for the national ID number. They still wanted the full street address, but no ID number.
Any idea why they would treat Poland differently? Austria, Belgium, Bulgaria all also seems to ask for a document number and not an address.
I guess it depends on how the petitions work in countries?
Where I'm from you never submit your national ID number (13 digit number given to each citizen once, never changes), but you do submit the "number" of your national ID (9 numbers and letters, changes when you move places or every 10 years, whichever comes first) when signing any petition.
From looking into it a bit, it looks like each country sets the requirements by themselves. In case of Finland, requirements are documented at least at https://dvv.fi/en/european-citizens-initiative ("The organisers must collect the family name, full first names, date of birth, country of permanent residence and nationality for Finnish citizens signing statements of support."). They seem to be also collecting full address when it's not required for Finnish citizens.
It depends on your country, some require personal information and some doesn't... For the latter you still have to provide your street address.
Check ANNEX III part A of EU regulation here: https://eur-lex.europa.eu/legal-content/EN/TXT/?qid=15733125...
I think this is an official petition, so, there are legal requirements to identify yourself as a citizen of an EU country.
Depending of your country they ask for different data. For instance, for Finland they ask the physical address but for Belgium only the national ID number. I suppose that there is not such number in Finland or it's illegal to ask for it.
There is a link in the form to the relevant regulation. So, the website looks legit. Of course, that doesn't mean that it's legit but my gut feeling it's that they are.
I understand your concerns and where you are coming from, but the privacy policy is refreshingly transparent, readable and clear: https://reclaimyourface.eu/privacy-policy/
Some key facts:
- "ECI signatories: your full first and last names, country of residence and date of signature. Depending on the signatory’s nationality, we will also collect a combination of the following data: residence (street, number, postal code, city, country), date of birth, national identity document type and national identity document number." This seems to indicate that the data requested is dependant on the country you live in. So blaming the organization is a bit unfair.
- "Your data will be stored by the group of organisers for a maximum retention period of one month after the submission of the initiative to the European Commission or 21 months after the beginning of the collection period, whichever is the earlier. It might be retained beyond these time limits in the case of administrative or legal proceedings, for a maximum of one month after the date of conclusion of these proceedings." They will remove your data whatever happens.
I've signed the petition and handed over my the equivalent of PESEL. I did that because I understand that if we want to enact change we have to be more than a signature on an online form, we have to be a living breathing person and not just another email-address in a database. They can sweep gme_diamondhands_6969@whatever.com under the rug rather easily but along with data that proves that I'm a citizen that becomes much harder to do.
It's weird, the old ECI website collected directly your personal information, the new one doesn't.[1] I don't understand why the EC would do that, I certainly trusted more the old system.
> It's weird, the old ECI website collected directly your personal information,
It still does: see, e.g., the "No Profit on Pandemic EU" initiative [1]. Not sure why this one does the signature collection on its own domain, it sounds suboptimal.
Looks like there were some complaints about the EC provided system and some people decided to roll out their own & get it certified. https://citizens-initiative.eu/openeci/
This is because they are using an EU petition (European Citizens' Initiative -> ECI) system that will submit the petition to EU athorita and will only count signatures from people who live in the EU state.
It's usual to ask for addresses, at least in the UK, and if the petition is aimed at being submitted according to a legal process there may be requirements that signatories be residents or constituents.
Sure faking addresses is not much more difficult than faking names but then I suppose there's also a trade-off with complexity and cost and they also ask for ID data.
I tried to fill it out in Firefox, and the "hcaptcha" field says "rate limited or network error. please retry". When I click "support" it says "sorry, we couldn't save your signature! The techies have been informed."
It's a pity, I support the initiative, but I fear they might get far fewer signatures as people who are willing to sign. Maybe their captcha service has decided not to support the initiative?
It's making a POST request to https://captcha.reclaimyourface.eu/getcaptcha so unless you're blocking all captcha URLs then I would have thought that it would work. You probably also need JS enabled.
Why are you using hcaptcha at all? It forces anyone who wishes to sign to support an external commercial service. That may limit the number of signatories you get.
And that's not even starting about it being a European initiative for European citizens and hcaptcha being a U.S. service.
It's already bad that it want's your complete name and address. Yet another data set with me in it that will get hacked and sold at some point. And, without knowing what else it's going to demand on the second page. What if it suddenly asks for stuff I don't want to give on page 2 (copy of passport or something)? Now I have already given my name and address, and that is already in that database, so if I quit at that point I've just put my personal info in a database for nothing.
I get why they make it so hard to participate as a citizen though, the EU isn't exactly democratic.
This was an implementation issue that bit them briefly at launch, and is now resolved. hCaptcha is quite a big supporter of privacy, and has been coordinating closely with ECI.
The petition is to regulate not to outright ban it, it’s in the first 2 paragraphs of the petition. Biometrics in a passport may be one of the cases allowed under that law.
Passports are not used to track me without me knowing about it. I can restrict the places where I present my actual physical passport to borders and interactions with my government.
Interactive ad billboards with a camera in them? Not much I can do about those except deface them with a sticker. CCTV? Can't do anything about that.
I'm not against security cameras per se, but I want them watched and judged by human beings, not algorithms (and ad billboards should not record me at all).
> Passports are not used to track me without me knowing about it.
except every hotel, every flight, ever trip outside your borders... you make it sound like it's OK for your movements to be identified as long as it's outside the borders of your original country?
I think this might come down to individual countries.
I've stayed in hundreds of hotels throughout the UK, and never been asked for ID. I've flown hundreds of domestic flight legs, and on the non-budget airlines (budget ones use name change fees and paid changes to tickets as a major revenue stream) I've never had to show ID, and nor is it required. Going overseas, it's only needed for entering the country (and a cursory glance from the airline to assure themselves you actually have it, due to the high penalties they're charged for a returned passenger).
I imagine therefore a lot of this is down to individual countries - in much of Europe they seem very keen to scan passports and ID documents at hotel check-in (often required by local legislation). I always felt this ironic given the (populist) view the UK is a surveillance heavy country, yet it was much of Europe that was being far more invasive in this regard in my experience.
I think UK is more capable and doing more surveillance than most EU counties, but people in UK don't have ID cards, so they can't be required for most services.
Within Europe standing advice from national governments is to have a copy of your ID prepared in advance for hotels to hang on to, with certain details blacked out (like the social security number if this is still present on the front of the passport) and the name of the hotel/camping/hostel/b&b written over it. The Dutch government even has an app that does this for you.
Handing over your actual passport is not required, and the last I've heard the only places where these are actually demanded are pretty shady or just downright ignorant. I haven't had a problem handing over copies anywhere in Europe though. The hotels do need your ID's document number, and a copy suffices for this. Most only jot down the actual number and immediately hand back the copy. Rarely someone might ask to see the actual passport as proof that you have it, but I have never been requested to hand it over (and you shouldn't).
Seems sensible. Interestingly, there's no persistent unique identifier on a UK passport (short of the personal details, which will be unique). But there's no SSN or equivalent on them, and no address. Passport number is a relatively infrequently used thing, on account of the fact it changes on any renewal or replacement. If you have two passports, they have two different numbers.
Having a "non-ID" culture is a nice thing though - in the US, people need to show ID to board even a domestic flight. Having an app to help redact ID is a nice idea, but in my view is a fairly poor solution to a non-technical problem. If you didn't insist on having these places collect ID info, you wouldn't need the app. For proof of age, that's a good scenario where you likely do need ID (today), but in future should be able to use attribute-based authentication to pove this without disclosing anything.
I don't know the details of the proposed law, but there is a difference between collecting biometric data for the purposes of identification and for the purposes of mass-surveillance. It's about how and when the data is used.
Biometric passports store a literal JPEG of your face, fingerprint, or iris on the chip, and it's up to the software on the entry gate/computer/phone to make the comparison between what's on your passport and your challenge. Even if both the original info on the passport and challenge data are sent to a central server for processing (or even if they are compared against the info in a centralized database), it's still being used to identify an individual. Besides that, the moment and circumstances of this identification are clear and regulated: a border crossing, a police stop, etc.
This is quite different then using a network of CCTV cameras to look for particular individuals... or keeping track of how all individuals move through an area with CCTV footage, so that you can analyze behavior (or look for individuals after at a later date).
OK, we ban it, now what? I think the cat is out of the bag there, and I believe that institutions that are driven to convict rather than to seek justice or attack terrorism rather than to preserve peace will still use all the tools they can with little or no regard for law, like they always have.
generally organizations that use tools that are illegal do so because they are criminal organizations or structurally placed in their bureaucracy to be above the law. If biometric surveillance is illegal on the EU level I believe it is clear that national police organizations will not be structurally above the law, and as such they will not be using those tools.
There is of course the fact that some police organizations will do so and try to hide it, but they will at that point be able to be punished when caught because they will not be above the law.
as I said "structurally placed in their bureaucracy to be above the law", the NSA and the CIA are very much placed to be above the law in the US. Obviously pious people proclaim every now and then that nobody is above the law, but pragmatically these agencies often are.
The Utah Highway Patrol is not placed to be above Federal law.
If the EU passes a regulation forbidding the use of biometric surveillance the Danish National Police will be very much under that regulation, in the same way that if the US government passed a law regulating highway stops of motor vehicles the Utah Highway patrol would be under that law.
There may be some EU agency that because of various things would be able to operate above the law on this issue, but not the national agencies.
as an example - most US police organizations are structurally placed to be above a lot of the law in their state, which is why we always hear about police officers killing people and getting a suspension with pay etc.
the most common structural placement of your organization above the law is to have the organization investigate its own wrongdoing.
For everyone that is worried about the data being collected:
This is not your regular online-petition. This is an European Citizens' Initiative. It is an official procedure and the only mechanism the European Union gives their citizens to directly put topics on the Commission's table without being mediated by their politicians.
The EU makes it extremely difficult to succeed even getting them to discuss something. Most ECIs attempts are striked off before they are even allowed to collect signatures. The fact that this initiative has been allowed to start collecting signatures is already a great success and means it may get somewhere.
Getting an ECI to qualify (1 million signatures or enough signatures in some countries) is very difficult, but achieving it sends a strong signal to EU leadership about what citizens worry about. Asking for your name and personal ID number is the minimum information needed to ensure the system is otherwise not abused, so that authorities can do minimal verification about the signers. Note that in the early days of ECIs, online collection was not even allowed. Authorities in each country are in charge of verifying the signatures from that country.
So please, if you are an European citizen and agree with the goals of this ECI, sign it and do something good with your data. You do not have to sign up for the newsletter or provide an email. Don't let 1 tree block the view of the forest.
Thanks for pointing this out, as it can be surprising to be asked one's address and full first names. This is not just a petition but actually a legal tool and it makes a big difference. Entirely worth it in order to stand united as citizens and demand the EU doesn't go the way of say, China, with mass surveillance and all the dystopian stuff that can arise from it (to remain with China's example: giving citizens social scores and giving them more or less rights depending on that).
> This is not just a petition but actually a legal tool and it makes a big difference
(Genuine question) what difference does it actually make?
I don't mean in terms of "sending a strong signal" or "issue will be debated in Parliament", or "the Commission publishes a paper/gives a press conference/say they really care", I mean in terms of something actually changing?
A successful ECI must be officially addressed by the Commission. I agree they can just sweep it under the rug, but that's true of any "citizens' initiative" process.
In German states, the citizen initiative process is to propose a law that can be voted on by the people if enough signatures have been collected. In some states, even changes to the constitution are possible this way. The federal and European government are quite undemocratic in that regard.
It's far easier for the Commission to simply not consider something that they don't want to deal with than to say no to something that is demonstrably popular, after having been forced to consider it.
> the Commission publishes a paper/gives a press conference/say they really care
That's not what the Commission does. After considering it, it can either do nothing, or introduce legislation. This would be an improvement on the current situation where it probably won't even consider it of its own initiative.
For the amount of bona-fide progress they pushed, the European Parliament has some un-democratic elements. Many of the votes are just decided with a show of hands, even though there's electronic system in place[1]. Sure it wouldn't change the outcome, but always voting electronically would ensure accountability of MEPs to people they represent.
I agree but there's also another side: voting by show of hands makes it more difficult for parties to enforce voting discipline. This in turn means MEPs have more of a choice.
All important votes are however anyway with electronic voting.
If I understand well they vet the petitions because many proposals don't relate to EU law. If it relates to EU law and has not been done in the past it should normally pass?
am i the only one who find their examples really bad? couldn't they find actual, real examples?
anyway, this is 50/50 for me.
i can see the issues, but i can also see the positive effects.
regardless, this tech has been in use for a while now and crimes still happen, terrorism still happens etc. nothing has really changed.
but i think the big potential changes might come from being a bit more pro-active and identifying individuals with issues and providing the necessary help. for example at risk youth or anti-social behaviour. if you could pre-empt that or quickly identify the people involved then this should be a great way to make society a better place.
How would cctv know what someone 'at risk' looks like? Facial recognition isn't magic you know. And why would we need some dystopian style technology to monitor your every move to know you're sick, when you can just tell people? Those aren't very good examples.
The potential for some well-meaning EU bureaucrat implementing "automatic fines when anti-social behaviour occurs via face recognition" or "identifying at risk youths via cctv and providing support" is exactly why this must be stopped.
There'd have to be better hypothetical examples than the ones mentioned to justify this assessment. Judging by these three, the potential for good is marginal to nonexistent, and this is with no technological feasibility or cost assessment.
The huge potential for evil is obvious. Just because I'm criticizing examples, I'll come up with one: tracking suspected homosexuals and all of their contacts, in order to find more. You might say that's unfair and a thing of the past, but I'd answer Hungary and Poland.
European parliament is the biggest translation engine in the world. Politicians speak in their home languages because they want soundbites for TV/radio etc. All the paper has long been in English and/or French.
This should've been handled by something like 2 way auth. Collect name and email of the person on website and email crypto secure unique code. The person can then send real mail to the government (designated address) referencing that unique code, the initiative being voted for and whatever personal data are required. May as well go back to website and indicate that the mail was sent so that someone can watch and make sure government does not hide the thing. Alternatively government can keep their own online secure form acting in the same capacity as that real mail.
These kind of mass data collections should be banned anywhere. Otherwise it enables any future Hitler or Stalin to select and locate any undesirable population and head them to camps.
Just a reminder that the 5G project is a biometric mass surveillance project, if you were missing the context on what that might look like in practice. Source: dozens of published articles about using mm wave antenna arrays to do stuff like gait recogition and "device free localization".
> Sorry, we couldn't save your signature!
Details: Argument "contact" has invalid value $contact. In field "birthDate": Expected type "Date", found false.
There isn't even a contact or birthdate field (Sweden)
103 comments
[ 2.8 ms ] story [ 183 ms ] threadAs an initiative against mass surveillance, entering all your personnal information on a website isn't the smartest thing.
weird
with the difference that the bank is relatively trusted entity backed by shitton of formality
meanwhile crypto exchanges seems to be more shady orgs with 30 yo CEOs
This originates from what was at the time the least controversial part of the Patriot Act. If you want to be able to exchange cryptocurrencies to a Visa/Mastercard, the service needs your ID, regardless of where you're from.
If you select Netherlands they’re at least informed enough to not ask for the Dutch equivalent, the BSN. It would be against the law for them to ask, process or store it.
If you try the form for different countries, in a lot of cases they don’t ask for that particular identifier, because they legally can’t, and ask for address information instead. That’s still a little creepy, but a whole lot less.
>>"By itself it doesn’t help in that context since residents get one too."
At least in my country that's not true. The resident but not citizen number is different.
- Select the country, get redirected to the sovereign identity auth platform
- There you can log in/provide the details in the sovereign run platform.
- The sovereign run platform validates and sends out a unique anyonymized hash for the user which the platform can store to keep count.
This can be used for other validation purposes as well which are not limited to just petitions and the data returned by the platform can be scoped to the requester sort of like Oauth.
To make it even better for privacy, you can introduce the concept of an application identifier which will be unique for petition/form etc. The hash will be unique with the application identifier scope, so outside platforms can't correlate individual identity through multiple petitions.
Any idea why they would treat Poland differently? Austria, Belgium, Bulgaria all also seems to ask for a document number and not an address.
Where I'm from you never submit your national ID number (13 digit number given to each citizen once, never changes), but you do submit the "number" of your national ID (9 numbers and letters, changes when you move places or every 10 years, whichever comes first) when signing any petition.
Depending of your country they ask for different data. For instance, for Finland they ask the physical address but for Belgium only the national ID number. I suppose that there is not such number in Finland or it's illegal to ask for it.
There is a link in the form to the relevant regulation. So, the website looks legit. Of course, that doesn't mean that it's legit but my gut feeling it's that they are.
Some key facts:
- "ECI signatories: your full first and last names, country of residence and date of signature. Depending on the signatory’s nationality, we will also collect a combination of the following data: residence (street, number, postal code, city, country), date of birth, national identity document type and national identity document number." This seems to indicate that the data requested is dependant on the country you live in. So blaming the organization is a bit unfair.
- "Your data will be stored by the group of organisers for a maximum retention period of one month after the submission of the initiative to the European Commission or 21 months after the beginning of the collection period, whichever is the earlier. It might be retained beyond these time limits in the case of administrative or legal proceedings, for a maximum of one month after the date of conclusion of these proceedings." They will remove your data whatever happens.
I've signed the petition and handed over my the equivalent of PESEL. I did that because I understand that if we want to enact change we have to be more than a signature on an online form, we have to be a living breathing person and not just another email-address in a database. They can sweep gme_diamondhands_6969@whatever.com under the rug rather easily but along with data that proves that I'm a citizen that becomes much harder to do.
[1] The direct link to this ECI: https://europa.eu/citizens-initiative/initiatives/details/20...
It still does: see, e.g., the "No Profit on Pandemic EU" initiative [1]. Not sure why this one does the signature collection on its own domain, it sounds suboptimal.
[1] https://eci.ec.europa.eu/015/public/?lg=en
It's usual to ask for addresses, at least in the UK, and if the petition is aimed at being submitted according to a legal process there may be requirements that signatories be residents or constituents.
Sure faking addresses is not much more difficult than faking names but then I suppose there's also a trade-off with complexity and cost and they also ask for ID data.
The only impact is for real people, that will have to disclose additional private information.
It's a pity, I support the initiative, but I fear they might get far fewer signatures as people who are willing to sign. Maybe their captcha service has decided not to support the initiative?
and if you pick for them not to email you, they try to trick you with dark pattern (all trust gone)
This website looks untested with Firefox and an ad-blocker, which really is not uncommon for people worried about privacy.
And that's not even starting about it being a European initiative for European citizens and hcaptcha being a U.S. service.
It's already bad that it want's your complete name and address. Yet another data set with me in it that will get hacked and sold at some point. And, without knowing what else it's going to demand on the second page. What if it suddenly asks for stuff I don't want to give on page 2 (copy of passport or something)? Now I have already given my name and address, and that is already in that database, so if I quit at that point I've just put my personal info in a database for nothing.
I get why they make it so hard to participate as a citizen though, the EU isn't exactly democratic.
(source: work on hCaptcha)
Interactive ad billboards with a camera in them? Not much I can do about those except deface them with a sticker. CCTV? Can't do anything about that.
I'm not against security cameras per se, but I want them watched and judged by human beings, not algorithms (and ad billboards should not record me at all).
except every hotel, every flight, ever trip outside your borders... you make it sound like it's OK for your movements to be identified as long as it's outside the borders of your original country?
I've stayed in hundreds of hotels throughout the UK, and never been asked for ID. I've flown hundreds of domestic flight legs, and on the non-budget airlines (budget ones use name change fees and paid changes to tickets as a major revenue stream) I've never had to show ID, and nor is it required. Going overseas, it's only needed for entering the country (and a cursory glance from the airline to assure themselves you actually have it, due to the high penalties they're charged for a returned passenger).
I imagine therefore a lot of this is down to individual countries - in much of Europe they seem very keen to scan passports and ID documents at hotel check-in (often required by local legislation). I always felt this ironic given the (populist) view the UK is a surveillance heavy country, yet it was much of Europe that was being far more invasive in this regard in my experience.
Handing over your actual passport is not required, and the last I've heard the only places where these are actually demanded are pretty shady or just downright ignorant. I haven't had a problem handing over copies anywhere in Europe though. The hotels do need your ID's document number, and a copy suffices for this. Most only jot down the actual number and immediately hand back the copy. Rarely someone might ask to see the actual passport as proof that you have it, but I have never been requested to hand it over (and you shouldn't).
Having a "non-ID" culture is a nice thing though - in the US, people need to show ID to board even a domestic flight. Having an app to help redact ID is a nice idea, but in my view is a fairly poor solution to a non-technical problem. If you didn't insist on having these places collect ID info, you wouldn't need the app. For proof of age, that's a good scenario where you likely do need ID (today), but in future should be able to use attribute-based authentication to pove this without disclosing anything.
Biometric passports store a literal JPEG of your face, fingerprint, or iris on the chip, and it's up to the software on the entry gate/computer/phone to make the comparison between what's on your passport and your challenge. Even if both the original info on the passport and challenge data are sent to a central server for processing (or even if they are compared against the info in a centralized database), it's still being used to identify an individual. Besides that, the moment and circumstances of this identification are clear and regulated: a border crossing, a police stop, etc.
This is quite different then using a network of CCTV cameras to look for particular individuals... or keeping track of how all individuals move through an area with CCTV footage, so that you can analyze behavior (or look for individuals after at a later date).
There is of course the fact that some police organizations will do so and try to hide it, but they will at that point be able to be punished when caught because they will not be above the law.
The Utah Highway Patrol is not placed to be above Federal law.
If the EU passes a regulation forbidding the use of biometric surveillance the Danish National Police will be very much under that regulation, in the same way that if the US government passed a law regulating highway stops of motor vehicles the Utah Highway patrol would be under that law.
There may be some EU agency that because of various things would be able to operate above the law on this issue, but not the national agencies.
the most common structural placement of your organization above the law is to have the organization investigate its own wrongdoing.
This is not your regular online-petition. This is an European Citizens' Initiative. It is an official procedure and the only mechanism the European Union gives their citizens to directly put topics on the Commission's table without being mediated by their politicians.
The EU makes it extremely difficult to succeed even getting them to discuss something. Most ECIs attempts are striked off before they are even allowed to collect signatures. The fact that this initiative has been allowed to start collecting signatures is already a great success and means it may get somewhere.
Signature collection is certified by the German authorities (https://sign.reclaimyourface.eu/api/d/certification.pdf) and needs to follow strict data compliance rules (another hurdle).
Getting an ECI to qualify (1 million signatures or enough signatures in some countries) is very difficult, but achieving it sends a strong signal to EU leadership about what citizens worry about. Asking for your name and personal ID number is the minimum information needed to ensure the system is otherwise not abused, so that authorities can do minimal verification about the signers. Note that in the early days of ECIs, online collection was not even allowed. Authorities in each country are in charge of verifying the signatures from that country.
So please, if you are an European citizen and agree with the goals of this ECI, sign it and do something good with your data. You do not have to sign up for the newsletter or provide an email. Don't let 1 tree block the view of the forest.
If you want to read about the process and how it can be useful or useless, and what hurdles organizers need to go through, check the actual regulation: https://eur-lex.europa.eu/legal-content/en/TXT/PDF/?uri=CELE... .
(Genuine question) what difference does it actually make?
I don't mean in terms of "sending a strong signal" or "issue will be debated in Parliament", or "the Commission publishes a paper/gives a press conference/say they really care", I mean in terms of something actually changing?
> the Commission publishes a paper/gives a press conference/say they really care
That's not what the Commission does. After considering it, it can either do nothing, or introduce legislation. This would be an improvement on the current situation where it probably won't even consider it of its own initiative.
[1] https://www.europarl.europa.eu/sides/getDoc.do?pubRef=-//EP/...
All important votes are however anyway with electronic voting.
anyway, this is 50/50 for me.
i can see the issues, but i can also see the positive effects.
regardless, this tech has been in use for a while now and crimes still happen, terrorism still happens etc. nothing has really changed.
but i think the big potential changes might come from being a bit more pro-active and identifying individuals with issues and providing the necessary help. for example at risk youth or anti-social behaviour. if you could pre-empt that or quickly identify the people involved then this should be a great way to make society a better place.
automatic fines when anti-social behaviour occurs via face recognition.
here’s another one: identifying individuals with potential diseases via cctv and providing pre-emptive care.
and the last one: identifying at risk youths via cctv and providing support. in real time.
the tech is not the problem. it’s how we use it.
right now we use it for ads and the occasional terrorist. but the potential for good is huge.
There'd have to be better hypothetical examples than the ones mentioned to justify this assessment. Judging by these three, the potential for good is marginal to nonexistent, and this is with no technological feasibility or cost assessment.
The huge potential for evil is obvious. Just because I'm criticizing examples, I'll come up with one: tracking suspected homosexuals and all of their contacts, in order to find more. You might say that's unfair and a thing of the past, but I'd answer Hungary and Poland.
where did i mention the police?
One of the reasons I'd wanted to remain in the EU is that, where privacy regulations are concerned, I trust the EU more than our own government.
MIT repurposed a router to look through walls for people. Does that mean that 2.4 GHz routers are spycraft tools?
But yeah go ahead and check out some of these articles: https://news.ycombinator.com/item?id=22480444
There isn't even a contact or birthdate field (Sweden)