427 comments

[ 3.2 ms ] story [ 287 ms ] thread
(comment deleted)
> Brave Search's index there will be informed the activities of participating Brave users, in terms of the URLs they search for or click on, and adjacent web resources that don't require extensive crawling.

> Brave also envisions users taking a more active role in their search results through a filtering mechanism.

"It allows different groups to run their own sort of Turing complete filter rules, sort of like ad blocking rules in the search service and not in the browser, to have a community moderated view of the global index," he [Brendan Eich, Brave founder] explained. "It's called 'Goggles.'"

I'd love to be able to filter out, for instance, pinterest.

I'd actually pay nominal amounts of money for a search service that had my interests in mind; as opposed to advertisers and thought police.

> and thought police

Copyright interests pay large cash to make sure you know is truly best for you. You could show a little gratitude.

Indeed. I'll keep that in mind.
I was pretty sure that it could be done in Google with operators in the search box (going back a few years), but I don't use Google any more and one reason I stopped was that it kept incrementally degrading the ability to refine individual searches manually. Anyhow, I just did a DDG search and came across this [1], which looks interesting for your use case (although that Pinterest is mentioned is a coincidence). I've not tried it out, so I can't recommend, comment or anything.

[1] https://www.techsupportalert.com/content/how-remove-pinteres...

Shameless plug, but I've been working on a project [0] that does exactly this. Currently it just has a few filters I've created for myself and only supports web search (and a few !bang like re-directs), but I'm working on implementing user accounts that will be able to create their own filters.

[0] https://hadal.io

Pretty cool. It filters by URL?
Yup, that's exactly it. I've found that there are certain websites that I have basically no interest in seeing. Eventually I might incorporate more granularity to get sub-domains or something like that, but for now it's just whole websites based on URL.
You can just add -site:pinterest.com in DuckDuckGo. I think you can do the same in Google.
I'm well aware of the various search flags. I can also think of at least 10 domains I'd like to permanently obviate from every search. Adding flags for all of these every time is unwieldy. I have toyed with browser extensions to achieve this, but I quickly learned that using many of these flags will compromise search results. A good solution will require a search engine that anticipates this use case.
Me too — most image searches need a "-pinterest" term added.

   google.*##.g:has(a[href*=".pinterest."])
   
   google.*##a[href*=".pinterest."]:nth-ancestor(1)
Add to uBlock Origin 'My Filters' Section :)
Turing incomplete. Thanks, will get a correction to the reporter.
I don't know much about Brave - What is their position on censorship (other than instances when it is legally required)?
The Register article mentions it in passing, pointing to the "Goggles" paper [1] that Brave has published. But the Brave paper actually gives no more information than that quoted in the article; it seems not to address its stance on censorship, but merely to pass the buck in the Goggles use case:

There will be Goggles created by creationists, anti-vaccination sup- porters or flat-earthers. However, the biases will be explicit, and therefore, the choice is a conscious one. We do not anticipate any need for censorship in the context of Goggles. Clearly illegal and sensitive content like child pornography or extreme violence should already be filtered out by the host search engine at the index layer. Consequently, such content should not be surfaced by any Goggle.

[1] https://drive.google.com/file/d/1-B3ZvHpbnxsT2OdnUH8vS3-tvTv...

Likely the same as Google, no policy on censorship until they feel like censoring something.
Glad to see more interest in privacy focused search, but why not just not contribute to something like duckduckgo that's already doing good work in that space?
Duck duck go simply proxies other search engines. While they have been gaining traffic, they will never be as good as google/bing etc.

Good privacy focused search requires novel innovations and a solid attempt to "solve" the problem rather than simply wrapping some other engine.

They should have some small team working on their own search engine. A handful of skilled programmers can accomplish a lot over a couple of years.
(comment deleted)
Because DDG merely uses Google and so under the covers.

Plus, we don't know DDG respects privacy, it's just some generic statement they make.

I believe it's a legally binding statement. Which is not as good as a mathematical proof, but better than nothing.
As generic as Brave's then. What's your point?
That both are worth ziltch.
As many mentioned, DDG is Bing and Google under the hood. That being said, DDG is great and I’m very thankful it exists.

Shameless Plug: I’m involved in a project called Private Search [1], and we are always interested in partnerships with browsers. Feel free to contact me directly. My email is in my profile!

[1] https://private.sh

DDG is the wolf disguised as the sheep. If you consider the vast possibilities a company is able to trace you over the internets it's largely irrelevant where are you coming from, as long as you hop once over a server operated by BigCorp.

And in the case of DDG the results come from Bing. From the rain in the eaves.

I hope it will be able to find relevant results like google did last decade.
For the love of BOb, we desperately need a search engine that obeys booleans (DDG doesn't) and isn't Google. Please let this be it.
I wish them the best of luck. DuckDuckGo is my go to, but it leaves a lot to be desired.
> DuckDuckGo is my go to, but it leaves a lot to be desired

I have a fantasy where a lone basement nerd storms DDG HQ and teaches them about quotes at gunpoint.

They won’t be alone, I’m coming with them :(
That also my reaction when reading the title.

More than a privacy focus search engine I want a equally good search engine as Google. Google has some defects but it's by far better than the competition.

can we trust brave? They have become too shady in my opinion like inserting referral etc?
I tried brave a year ago because I heard good things. I stopped using it within a month. The cryptocurrency and referral stuff told me all I needed to know: their motives are not aligned with the user. If you let your monetization strategy alienate your users then you won’t be getting far. Early adopters need clear messages of trust.

When the messaging is “we’re desperate for money” and I don’t trust you, why would I expect you to value my privacy? I won’t be trying brave again until they at least try to address this.

What is the referral stuff? The crypto is optional.
They got caught with the fingers in the cookie jar and quickly backtracked:

"Brave Software's co-founder and CEO, Brendan Eich, said on Twitter that he didn't believe there was anything wrong with injecting affiliate codes into web addresses. However, it seems the backlash worked, as Brave's developers are introducing a toggle for the suggestions, and the functionality will be disabled by default starting with the next stable release."

https://www.androidpolice.com/2020/06/07/brave-browser-caugh...

We fix bugs we didn't know about as soon as they're reported. To assert malice not stupidity needs more evidence, or else it's just based on your ill will. ICYMI, thread:

https://twitter.com/BrendanEich/status/1367161348166017024

If it were a bug then why say it is fine? I'm not saying it wasn't but normally I don't see people calling something a bug and at the same time defending it?
The only defense from me was for refcoded keywords (all browsers do this).
As someone new to Brave, threads like this only increase my trust in Brave. Any comment negative about Brave is voted up here on HN, any comment in favour of it is voted down, and as soon as someone asks for evidence of Brave's negative behaviour, they backtrack and shift to a different argument or share something flimsy and intentionally misportrayed. At this point I'm not sure if it's intentional FUD or just some people's knee-jerk reaction to anything crypto-related (along with political biases), but I've learnt that criticism of Brave should never be taken at face value here.
Yes listening to the CEO who earn money from good pr is smarter than listening to smart people on HN. Try that life philosophy out elsewhere too.
Should we not fix bugs? As for “smart people”, if you are flattering yourself, give it a rest. I just replied to your misguided comment that we should switch engines and go out of business to fight Chromium monoculture. Not smart!
Seems to me that you're a small minority, and that most Brave users feel that the company IS aligned with them. The cryptocurrency was a key aspect for early user adoption, and the referral stuff is something that I only ever see mentioned on HN by clearly-biased commenters.

The messaging is not 'we're desperate for money', it's 'we're not funded by selling our users' personal data and are working to make a browser product that can self-sustain', something that, as of now, no other browser has been able to do.

Does Firefox/Mozilla sell users' personal data? They claim not to.
Not sure, I don't use Firefox. I'd assume they don't, given that a lot of the privacy ethics in Brave carried over from Mozilla.
I personally trust Firefox way more than Brave.
User data mostly has short shelf life so what happens is API renting, not selling. That's what Google does via its ad exchange, which is fed by many signals but notably by search. Search ads also make Google the most money, but all their businesses use a single ad exchange.

Firefox has a default search deal with Google that makes most of their revenue. So does Safari (edit: the Safari deal of course does not make most of Apple's revenue, but it is rumored to be big, multiple $B/yr). These are how personal data flows to Google for big money back. (Chrome is worse: if you log into a Google account in any tab, then unless you opt out via your account settings, your navigation is tracked by the mothership.)

Brave doesn't have such a Google deal, and Brave Search won't collect personal or re-identifiable data.

When someone flags legitimate concerns you can’t dismiss them with them being “clearly biased” and saying “most people don’t feel that way”.

When I ask, “why should I trust brave?”, the response I get is biased gaslighting. I guess that means I shouldn’t trust them.

The amount in which I've experienced this exact scenario on Hacker News is quite disheartening.

When I provided a cite wherein Brave was caught whitelisting trackers, I was responded to with basically "those who are so quick to criticize Brave" don't give the same scrutiny to other browsers. Whelp, other browsers don't position themselves as the Privacy King like Brave and its adherents do.

Whataboutism isn't a defense.

Your description of it being gaslighting is very apt.

People are so desperate to like Brave that they can't see the bad things. I wouldn't trust Brave, especially when there are better options like Mozilla that isn't part of the monolith that is Chrome. It's the new Internet Explorer no matter what skin you theme it with.
Mozilla depends almost entirely on Google for revenue. As Firefox loses share, it gets less. This looks likely to spiral down until a collapse of some sort. I was stunned to learn that Apple has hired 35 people (almost all engineers) from Mozilla over the last few years.
And when Firefox dies what do you think will happen to chromium? Suddenly APIs will be removed if needed by Brave or adblockers (already happening). Brave is helping keep chrome as the defacto standard, IE. helping nailing the coffin shut above Firefox. Brave is part of the problem, not the fix. The better Brave gets the worse it is.

Edit: Spelling.

Engine monoculture is a problem requiring deep pockets to fix. Servo was spun out but I don't think it has a single sponsor who will gut it through to market. Blaming us at Brave for not dying on this hill is deeply wrong. We don't have the funding or people to do it. You should save your ire for Mozilla, for mismanaging Firefox and Servo.

I doubt Google will mess more than they have with Chromium, with Microsoft, Samsung, and Opera (not to mention Yandex) all using it. This is the way evolutionary kernels work (see Constantine Dovrolis's work). Get over it, and stop blaming the little browsers!

I blame all browsers based on Google's work. No-one forces anyone to use blink in their product. I'm no fan of Mozilla either btw. But it's the best option we got.
If we switched engines, we’d fail. You say you care about Chromium/Blink monoculture but your advice to us, all else equal, makes it worse by cementing it via Chrome’s monopoly. Please reconsider.
You never could trust Brave. Their business has been unethical since its founding.
"The service will, eventually, be available as a paid option..."

How my viewpoint has shifted over the years. 10-20 years ago this would have instantly turned me off, but now this is the most exciting line in the entire thing to me. As long as we all expect free, we can't expect privacy.

@Brave team, who I rather expect will be reading this, I can't believe that Cliqz doing tracking on me to improve its results for free will be in my interests if it's free. But if I'm a paying customer, you might be able to convince me that you're doing some semi-invasive tracking but not actually selling it to anyone, because it wouldn't be worth losing me as a customer.

I'm actually excited about the idea of a search engine that I pay for. Been waiting for DDG to do it but last I knew there's still no option there.

There is a cost in order to be free(ed).

Would be a nice study to determine the monthly rate one is willing to pay in order not to the be the service.

Perhaps the going rate could be established in "units of text editor subscription".

How much time do you spend in search bar and results versus one of several non-coding text editors that you subscribe to? Price accordingly.

100% this. There is a glass ceiling to the quality of a search engine if it's free; it starts with G.

The paid option hasn't been explored yet, and for good reason I think: in principle, you need training data for it to be any good. And, again in principle, the only way to amass user data is for the service to be free, leveraging that to sharpen the tool.

So in principle, I reckon this is doomed to fail. But I might be wrong. I HOPE I'm wrong. And that's enough.

What kind of training are the users providing that makes G better? I thought their secret was that they have better infrastructure to crawl and organize information?

I don't see how a paid search engine has a disadvantage here.

Every time you click a result link, and every time you bounce back from that link, probably also scroll position and hovering, you are providing potentially useful training data.
One very simple metric to improve search results is testing how long a user visits a site. When users search for something, click a link and return to google seconds later you can assume that the result did not match what the user was searching for.
Then why aren’t Google results any better (arguably worse) than search engines that don’t do this?
They are better IME - I use DDG but still need to switch to Google for many searches to find what I'm looking for.
They are better. Maybe not to you but there's a reason Google is as big as it is. DDG, Bing, etc. are just awful.
Because they're so dominant they can make changes to the system that make it worse. Haven't you noticed the decline in quality of Google search results over these past few years?
What makes you think Google's results are worse?
i find google is useless at this. They throw out irrelevant results that the Wise Men of Google think you want to see, or that they'd like you to see. DDG pay more attention to your wording. The drawback is they have fewer indexed pages.
I'd also wager this is probably the most useful or close to the most useful metrics you can use. With this metric, plus the user's persona (male or female, teen or elderly, and so forth), you have a fairly accurate user driven ranking system.
Why can't search engine just ask the user if this site was relevant instead of using tracking to do it?
because the underlying assumption is that what they'll tell you is the truth, and that's not necessarily the case. Think of a Firefox plugin in, AdNauseam style, that always says NO.
But there's nothing stopping the same people from gaming existing logic that tracks user behavior except security through obscurity. But you also get dirty data via tracking where it's indistinguishable from backend if user found what they want or just gave up on trying for example.
Because then SEOs would write bots to keep clicking that their site is relevant to everything.
But you can get SEOs to fake metrics, too.
It's a good point. I'm no expert, so take this with a grain of salt, but assuming that it's just a matter of infrastructure, then Bing wouldn't suck so much. Microsoft has the means, the engineering power and the incentive to crush a direct competitor. And yet, it sucks.

So in practice, the more data you have, the better the engine is. I don't have a theoretical reason for why that is the case, but thing is I don't actually need it.

Personally, I don't have a problem with a service using aggregated usage data to improve their algorithms, even if that is technically "tracking" me. It's the selling of personalized segment data that bothers me.
You can't have one without the other. The economic incentives are just too intense.
I don't understand. Why can't you have one without the other?
ohduran probably means that there is no a priori logical reason for the two to go together. In theory they could be separated. However, it is far too enticing of a profit opportunity to use aggregated data if one has it en masse to sell personalized data.

I happen to disagree; almost any for-profit business is going to be doing some sort of aggregated usage data. I mean at the most basic level they've got to be tracking the number of customers they have. That doesn't mean all for-profit businesses ultimately devolve into data selling businesses.

Although perhaps ohduran is advancing a more nuanced argument. In particular perhaps the more detailed usage data you track, the more likely the siren call of selling that data is to be attractive. In order to compete with Google on search quality, perhaps you do need sufficiently detailed usage data that the call becomes irresistible.

I'm still not convinced that's true, but I could see how it plays out.

Oh wow, perhaps I was too terse and left too much room for interpretation. I meant that there is no way for a for-profit company to eventually sell personalized segment data once it has it, even if there were initial promises not to do so.

In that regard, the "siren call", as dwohnitmok says, it's a very appropriate way of encapsulating what I meant. You can be bold and not do it, but as soon as you have investors, they are going to demand it , pressure you into doing it, and if you do not comply replace you with someone who will not be sitting in a potentially profitable line of business and do nothing.

That's not really true. Google & Facebook only sell targeting for a reason: it's more profitable than selling the data itself. Why would you sell the user data you worked so hard to collect when you can sell targeting on it again and again? It's actually in Google & Facebook's interest that no one except them have data on you.
One possible upside is the Metafilter principle: If you charge $5, you get a higher quality signal by excluding a lot of chaff. The probability that your search engine user is human gets much closer to 1, and you save a lot (but not all) of the anti-abuse effort. This gives you better signal on which websites are interesting, so you need possibly orders of magnitude less data to do a good job.
Simply paying for a service doesn’t remove the economic incentive for the service provider to add tracking. It will always be more profitable to track users, except in cases like DDG or Brave that stake their reputation on privacy. For instance, I pay for groceries, yet my grocery store tracks my purchases and sells that information. We can’t rely on the market to protect our privacy. Government regulation is needed.
It is necessary, but not sufficient. But you are correct. This is part of why I phrased this in terms of my belief, rather than absolute truth. There's no way to convince me you aren't tracking if it's free. If it is not free, and significantly larger in magnitude than the virtue of tracking, then you at least stand a chance of convincing me.

Grocery stores track you because they can use it to analyze and increase sales, a fairly direct benefit that is difficult to "compete" with as a consumer. Internet companies use it to sell you ads, which is pretty much just about the money, barring exciting conspiracy theories. We can put a decent number on how much money that is, and it really isn't that much money. Facebook makes on the order of $20-40 per year in revenue from a user [1], and the nature of the business is they do better per user than most other people. For something like Cliqz we could easily be "competing" with a revenue of less than $1/year/user, at which point the business case of that extra dollar vs. the catastrophic loss in business if they get caught is a plausible set of incentives I can believe for them to not do it. Not proof, but plausible.

[1]: https://news.ycombinator.com/item?id=19462402

> It is necessary, but not sufficient

Doesn't DDG contradict that?

I'm not sure DDG can be considered an example of the default position in the search market.

Granted, OP didn't explicitly state they were discussing the most common behaviour in the market, but it remains a stretch to take them to be be stating a law that must be strictly true for any social construct that could be called a market.

'tracking' is a broad term but websites do track what you click on and if you return to the search results and click another link after clicking on the first link - this indicates that the first link didn't give the searcher the correct answer they were looking for. Whether or not that's tracking is up to you. DDG also of course does tracking for security purposes - scraping their search results doesn't go over well unless you also have a financial stake in outwitting their anti-abuse stuff.
> 'tracking' is a broad term

Right, in this context though it's referring to users themselves being tracked. Tracking how well the results to a specific query did doesn't require any sort of user-specific data. You're just logging stats about the results themselves, not the user.

DDG makes me nervous because I don’t actually understand their business model. Which isn’t to say they don’t have a well-known and viable one but I haven’t personally looked into it and as a result my gut feeling is that they are probably not an exception to this.

I use them anyway because they at least claim to be private and haven’t yet given me specific reason to doubt it. I probably should at some point take the time, though, to try to actually understand how they can viably exist in a way that isn’t going to succumb to the same corrupting incentives as google.

DDG does have ads, but with a limited scope, your search patterns are only used for a limited time.
Don't they have ads? In reality, tracking doesn't do much when it specifically comes to search engine ads, since the user is literally giving you their intent in the search query itself. Tracking is more useful for showing ads as you browse the web in general. DDG can do effective search ads without any actual tracking, and that's their business model, which is very similar to Google Search.
Their business model is simple:

- build a useable search engine

- show ads to users

User acquisition is based on word of mouth and a bit of guerrilla marketing: they are a search engine with decent quality that doesn't spy on you.

Not spying and not selling tracking data to others cost them some opportunities but gives them "free" users that would otherwise have stayed with Google.

The last few years Google has been busily lowering their quality so even if DDG haven't improved much they feel very close to Google these days. (Also, retrying in Google takes 2 seconds from DDG, while retrying in DDG after trying in Google first takes 15 seconds and more thinking.)

My worry with that business model is that people concerned about privacy enough to switch to DDG probably are really likely to use adblock
My worry is that if they ever achieved a dominant, Google-like position in the marketplace, that they would eventually lapse and go for greed. Even if the current DDG leadership is principled in this respect, companies go through turnover. Can't be evil > don't be evil.
If/when that happen the HN crowd should look at it as a business opportunity.

I can be an early customer.

Given that Google owns that position, and is being evil in order to maintain it, that is very, very unlikely. I'll stick with DDG and take that risk.
If it ever leaked that DDG was tracking user data, they would lose their only competitive advantage and lose all their users
Personally, I don’t mind an ad or two. It’s not ads, per se, that have me using an ad blocker... it’s the “bad UI impact of tons of ads and pop-ups” that keep me in ad block mode. When a site wants me to turn off the ad blocker and it doesn’t look insane, I’m happy to comply. Same with DDG.
DDG lets you turn off their ads in their own settings, so I don't think they're worried about it.
I use an ad blocker and DDG, but I still see ads when I search for something. The ads appear like Google search ads, but clearly labeled, so I doubt my ad blocker is going to be able to detect them without a feature to specifically target DDG.

I don't have a problem with those ads, since they're not overly intrusive, they're clearly labeled, and they're not targeted to me based on my personal information. Plus, DDG actually gives me the option to disable ads completely.

That's what "don't be evil" should look like.

DDG is registered as a Brave creator, so they can get some revenue from Brave users without ads.
One of their core tenants (privacy) is unprofitable. There will be internal pressure to drop it.

Note how their predecessor, Google, started out lovable and quirky but then that facade crumbled under the weight of success.

I like DDG, I use DDG, I recommend DDG. And I don't even care about the privacy. All that matters to me is my search habits, emails and business-related-data are controlled by different entities.

But at some point I expect the privacy aspect of DDG will be a memory rather than a current talking point. The incentives are pretty simple.

When DDG does that we move on to the next option. It seems like the only way to not be eventually screwed over is to periodically move on from what you use.

This is why it's important to have replacements around. Particularly smaller and newer businesses that aren't yet interested in squeezing out every drop from you.

As others have mentioned, they run ads — based on the search query of the page they appear on. They also (not unlike Brave) participate in affiliate programs. They get referral commissions when they funnel people to Amazon or eBay, whether through their shopping carousels or through !bangs.

> use them anyway because they at least claim to be private

Me too, at least there's probably some chance they get sued if they’re as terrible as Google. But

> haven’t yet given me specific reason to doubt it

I do doubt they’re as private as they could be, because they act a lot like I imagine a honeypot does, hide their source code, and have had serious past privacy problems in other products (https://news.ycombinator.com/item?id=23708166 ‘We’re not collecting your info, our servers are receiving it but just trust us we just throw it away’).

Well, since the thing it is "necessary but not sufficient" for is me to be convinced you aren't tracking me, it does not. I use them as the best current alternative, but as I alluded to in my first comment, I'd be much more comfortable with them if I could give them some money.
But paying for a service connects your real world credit profile to this transaction. I feel privacy is already broken with the credit card companies selling this information.

When someone tracks you and you don't pay they will try to link your online activities and identify other activities online to tailor an ad to you.

I can confuse and lie to the second group but I can't hide from the first group.

Anything that requires you to pay by credit card means you are already being tracked. For privacy I'm against pay services.

Services like Privacy.com offer single purpose credit cards which can help mitigate the linking of an account to a payment source.
Now you have to trust privacy.com and still worry about the others.
True, although it does shift some of the parties you need to trust. It’s not a perfect solution but, I think, it’s a good solution given what’s currently available. At least privacy.com is a central company which bases its reputation on privacy and as such has an incentive to avoid reputational harm.

“Don’t let perfect be the enemy of good”

I'm not worried about a company knowing I am their customer, with some name and credit card number.

I'm worried about them participating in the global privacy free for all where they sell my info everywhere and abusively correlate it with the info others have to learn things about me.

Search terms are a particularly rich source of this sort of thing.

I don't think "privacy" is much about keeping all info away from people, I think it's about the correlation. Keeping info away is a natural and sensible precaution in an environment of rampant correlation, but if that didn't exist I wouldn't need to resort to complete information starvation.

YMMV.

The credit card company is the one selling your relationships and purchase habits and they know exactly who you are and can connect you to everything else important in your life.
What about Wikipedia? Do you consider the minimal logging they claim to do to be “user tracking” in the bad sense? Or do you think they’re doing more bad user tracking in secret?
Wikipedia is a special case for me because it's owned by a non-profit which has thoroughly proven it can sustain itself on donations and grants.
I'm sure reasonable people can disagree about how much money Wikipedia needs to raise and what projects are essential, but the main point stands.

Although, I'm not sure it's reasonable to call linear expense growth "cancerous".

The author of that certainly has a point, but the cancer analogy feels SO forced and is really off-putting.
Yeah… I almost didn't link it because of that.
That article doesn't seem to account for actual traffic growth.
Grocery stores do not just use the data internally but also sell their Point of Sale data to third parties that analyze it and then sell their analysis to anyone willing to pay for it (mostly that is CPG companies). Point is: it isn't necessarily a direct benefit to the end customer.
I have never looked this up, but anytime I'm checking out at a brick and mortar store, I'm asked, casually, "Phone number?" Or "Zip code?" As if thats information that is necessary to check out. My response is always, politely, "you don't need that information." It annoys my wife because she thinks I'm being rude, but frankly the question I'm being asked is uncouth. Would you ask a stranger how many children they have or what time they get off work? Not unless you had some intention to use that information!
Just poison the data.

Phone number? 212 555 1212. (You could change to the local area code if you feel like it.)

ZIP code? 90210, in Beverly Hills, of course. Or 01234, which is Pittsfield, Massachusetts.

The problem is that this info is tied to warranty information sometimes.
for expensive purchases maybe that's important

for my weekly purchase of bread, bacon and ketchup it's definitely not

I don't know what I'd do without the feeling of security I get from my comprehensive ketchup warranty.
I had a massive ketchup blow-out recently. It took out my entire refrigerator. There was leftover lasagna and broken beer bottles everywhere.

I'm just glad I'd bought the extended warranty.

Local area code plus Jenny's number has worked everywhere I've ever tried
Smart. Years ago I registered the number 500-5000 everywhere I could in my neighborhood. Just from word of mouth, the number got so popular they banned it at the local grocery store!
Give the phone number and zip of the store asking for the information. This way if there is data leak it is theroretically possible to track who originally asked for the data. This self-reference trick can be done with email address as well. The idea is that, in the event of unwanted data sharing, the consumer needs some way to know where the personal data came from originally.
I actually requested a card at Safeway (wanted for convenience, not privacy), but apparently they are not giving those out anymore. You have to give them your phone number or else accept the additional costs for your food and lack of benefits at the gas station.

The rewards card is a much better model in my opinion because while it gives them quite a bit of data, it does provide some anonymity. I'm sure it is possible to reconstruct from that data who I am (i.e. convert it into direct PII like name and address), but that at least takes a lot more effort and processing than if they have my phone number.

Most people are ok giving up SOME privacy for the sake of convenience/cost savings. I doubt most people are truly willing to give up all privacy for said benefits once they understand what they are actually giving up.

Rewards cards offer zero anonymity. Their entire purpose is to keep track of your purchase activity so you can be profiled by data brokers.
Is there anything stopping you from getting a card for 555-867-5309?

They need a phone number. I've never heard of any store actually trying to use it to contact you.

PS: If you ask nicely the cashier will almost always punch in a working number for you. They want the reward points.

Not at most places and often times that number will have a large reward points pool already built up because others are also using it to avoid giving out their number.
The typical model that I'm familiar with on those rewards cards is that they just ask for that same info for you to get the card in the first place, so it's of basically no benefit privacy-wise. I suppose this can differ from place to place, and you could always supply a different number or one not strongly linked to you, I guess.
You use your reward card when paying with a credit card? Or have you only ever paid cash?

Because if you have, your reward card has probably already been linked to your credit card, phone number, email, etc. by now.

That at least takes extra processing and data sets. I think that does matter as far as privacy is concerned. We tend to think of privacy and security as all or nothing, but it really doesn't have to be that way and may be impossible to achieve if you go down that route.
How do tourists react to those questions, or how does your wife react to stores not asking such questions in other countries?
Just say "no thanks" and you get the same result while sounding less rude.
I hope you realize that grocery stores track you in other ways than just your zip code or phone number [1]. You have a beacon in your pocket that is always searching for SSIDs or Bluetooth IDs, which is more than enough to uniquely ID you. You can combine that with facial rec now and link a face, sex and estimated age to the SSID combo. Who names their phone “<Your name>’s iPhone”? They can get your name too.

If you truly wanted to be paranoid, set your device to airplane mode (don’t forget your smartwatch or wallet Tile), cover your face (this shouldn’t be hard these days) and only then venture into a store. Oh, and pay your groceries with cash.

[1] This article is from 8 years ago, so just imagine how far we came from that time: https://lifehacker.com/how-retail-stores-track-you-using-you...

> It annoys my wife because she thinks I'm being rude

You are being rude. The innocent cashier is forced to ask you that question and has no power to change the rules. Why not be polite to them? If you really want to change things, try asking to speak to the manager (after you're done checking out, of course!).

How is not giving personal information rude? He is just telling them the truth that they don't need that information which is correct. If a cashier were to ask you your bra size would you be okay with it? Why is it okay to ask for phone number which will give you all that and more.
politeness and truth are orthogonal concepts. You can be both right and rude. Watching the Big Bang Theory can provide a feel for this.

you can be both honest and polite.

Politeness is also relative to whom you are speaking to.

> You are being rude. The innocent cashier is forced to ask you that question and has no power to change the rules.

Then the person being rude is the person forcing the cashier to do this. The customer should push back, so the cashier can push back.

Both are rude.

The cashier and customer should both realize that neither of them want to do this, and be polite about it.

The cashier has to do that all day, every day though, so I feel like they get a pass.

If you push back, nothing happens to you.

If the cashier pushes back, they may be punished (up to and including getting fired — there's more competition for cashier-level jobs than you think).

Internet companies outside of the ad space also track you because they can use it to analyze and increase sales, much like grocery stores. They use it to inform product decisions by answering questions such as: Which features are our users using the most? Which features are the most profitable users using the most? How do we get more people to the end of the sales funnel? etc.

Are you ok with this kind of tracking? Genuinely asking... Personally I see it as "less bad" than straight up selling my data to another company, but I would still prefer companies didn't automatically track me at all, and instead relied on interviews with real users. Or at least make the tracking opt-in, Nielsen style.

I'm on the fence about this. From personal experience I'll nearly always opt-out just because I can. However I think this kind of user tracking is a better way to inform product decisions than user interviews.

Asking a user for their opinion about something doesn't generally provide as much valuable insight as monitoring their usage of a product.

I don't subscribe to magazines because if I subscribe to one, suddenly I'll get dozens of ads to subscribe to different magazines in the mail.

I'm not ok with that data being sold at all. I'm not signing up to receive advertisements

Agreed, however thats a poor example. Your purchases are tracked via loyalty programs, which you are compensated for with a reduced price on goods.
But, they hiked prices when the loyalty programs started in my area. At the very least, there’s a moral hazard of double dipping (charge normal margins for loyalty card users, double margins for everyone else).
You don't have access to the alternate universe where they didn't introduce a loyalty program to compare prices. Grocery prices go up naturally due to inflation so it's impossible to disentangle.

Groceries are also one of the most price sensitive items people buy and grocery stores run on incredibly thin margins so it's dubious to believe that a grocery story has much control over their pricing, independant of a loyalty card. If they could raise prices after the introduction of a card to increase total profits, why couldn't they have done it before then?

Far more likely is that they're using the extra revenue from the card to lower prices for you and gain market share from their competitors but the lower prices are swallowed up by general price increases.

People who don't sign up loyalty programs and other similar schemes have shown that they aren't price sensitive. They're the ideal segment to fleece via price discrimination.
I don't understand why that makes it a poor example?
The original comment I was referring to mentioned that paying for a service does not free you from tracking, and used groceries as an example. That is a poor example because you are being compensated for your opting in to tracking.

A better example would be something you pay for, and you’re still tracked with no compensation.

Does that answer your question?

>Government regulation is needed.

Hopefully not the kind of regulation that puts a breaking burden on companies like Brave, while letting big tech do whatever they want after a token fine.

The grocery store sells everything I buy to who, and is that information personally identifying? This seems insane that me buying a brand of toothpaste could be fed back into Google for more surveillance, but here we are.
It certainly is if you use any kind of reward or "points" card .
Yep. That's why "loyalty cards" exist. Since they're not allowed to associate your purchases (or really any data) with your CC number to build a profile they give you a separate ID number that you key-in/scan when you buy things.

"Oh but you don't have to use your loyalty card."

Technically true but it's not "get a discount if you use your loyalty card" it's now "pay really inflated prices if you don't."

For what it's worth, I know people share loyalty cards across large groups to mess this up. Me, I just eat the cost. Developing a "I will not play your games" has been great. I know people who absolutely obsess over gamified consumption (e.g., airline miles) and I'm glad to have the brain space for things that matter.
I have to say I think loyalty cards are a distraction, why can’t they just track my via my card info/Apple Pay? I mean the thing is literally a kind of unique identifier...
This is already happening, only it's the credit card company doing the tracking and not to grocery store.
Not sure I follow your logic. Targeted ads are profitable because consumers continue to use services that track and then target them.

If consumers didn't use these services because of such behavior, it would no longer be profitable to do so.

It's not the job of the market to protect your privacy, that's your job. Don't use a search engine that tracks you if you're worried about being tracked. It really is that simple.

As for guarantees about not being tracked, that's agreed upon in the ToS – so if the ToS says "we can track you however you want" (e.g. Googles) then don't use it. If it says "we won't track you" (DDG's) then do.

> Targeted ads are profitable because consumers continue to use services that track and then target them.

Demand based systems aren’t always a good measure. Human trafficking has demand and people use those services. And there’s a, sadly, large number of people who want and purchase if available. No it needs to be fought on the supply side by stopping traffickers and protecting trafficked.

Companies use targeted ads because they work and are available. Not because they are moral.

Pretty wild comparison.

Tracking is amoral, human trafficking is immoral.

They certainly aren’t equivalent by any means. But disproving GP’s point that targeted ads are used because people want them, therefore should be allowed.

Targeted ads and the data slurping involved is immoral to me. Not human trafficking bad, but probably as bad as working for coco cola.

I didn't say that people want them, merely that they are choosing to participate in the system. People being sex-trafficked are not, which is why it's an apples-to-orangutans comparison.
While the magnitude is different I think the relationships are similar.

I don’t choose to have my data included for targeted. Victims don’t choose to be trafficked. Marketers choose to buy ads using the data. Perverts choose to buy sex from victims.

Each has people choosing to use, and not choosing to be victims. Both have an intermediary selling the ads or the humans.

You are choosing to have you data included for targeting.

That is what you are agreeing to when you agree to the ToS.

There is no "victim" here, because you have agency.

I don’t think so. Aside from frequently being included into Google’s data by sites that use GoogleAnalytics without ever asking me anything, these TOS click throughs aren’t honest agreements as they are long and confusing and change over time.

Even if I never log in and go to Google.com without an account they are using data on me and I never clicked anything.

I don’t have agency to avoid Google collecting data on me unless I stop using the internet. Perhaps if I always use TOR or something.

And that’s me who works in this area day in and day out. “Average users” definitely don’t have agency and can’t be expected to give informed consent to these data collections.

In medical research before informed consent [0] was law, experiments would have “click through TOS” that patients would accept without understanding, often with some token offering.

I don’t think it’s accurate or fair to say that random users clicking through agreements in exchange for free services have agency.

[0] https://www.ama-assn.org/delivering-care/ethics/informed-con...

> We can’t rely on the market to protect our privacy.

You don't get from your first point to here.

The cause of the market failure is that once you give your data to someone, you can't know what they do with it. The solution is for them to never have it in the first place.

This has technical solutions. Your data stays on your device, not their servers, or if it is on their servers then it's encrypted. Don't do anything client-server that could be federated or P2P etc. Publish the source code.

This needs a business model. But "you pay money to fund development and then get software including source code that you run on your device" is a business model. If people want this they can have it. Go stuff cash into some open source projects by subscribing to their Patreon or Substack or whatever people are using now, and then use them.

The alternative doesn't actually solve the problem. You give your data to Google, the government says Google can't do X with it, but you still have no way to verify that they're not doing X because once they have your data, X happens entirely at Google where you have no way of observing it.

It also fails to protect against covert defections by both parties where the government gets all your data in exchange for looking the other way while the corporation does whatever they want with it too. You need to be able to prove that it's not happening, or it is.

Seems to me that depends on the kind of regulation. If it's just "trust the regulator to keep ahead of Google" than that's one thing. But we can add other constraints on top of that. E.g., we could require that Google's privacy-relevant code be open source, and that they must give you data all data related to you, such that individuals could audit things and prove or disprove that Google's behavior matches their claims.

Especially if we add bounties for catching Google's transgressions, I expect we could do quite well open-source, personalized regulation.

> E.g., we could require that Google's privacy-relevant code be open source, and that they must give you data all data related to you, such that individuals could audit things and prove or disprove that Google's behavior matches their claims.

What happens if they lie? They have the data, they give you the code that does the user-facing thing with the data, then they copy the data to some other system where some unspecified foreign subsidiary uses it for arbitrary nefarious purposes without telling anybody.

And as much as it might help to have a law requiring cloud services to publish all their source code so people can verify that they're doing at least that part of what they say they're doing, do you really expect that to be enacted?

I think the right regulatory fix depends a lot on which particular service we're talking about and what the threats are. But the general goal of mandatory transparency reporting is to minimize the size of the possible lie. And I think that works even better when individuals and civil society groups have the opportunity to verify that. E.g., look at how many companies have been caught hoovering up data thanks to individual investigators looking at app behavior.

I don't think a law requiring all code to be published would get passed. But key code for, say, personalization algorithms? That seems doable. Places like health departments, ag inspectors, and workplace safety agencies get to inspect the physical machinery of production all the time. No reason we can't start extending that in to the virtual realm. Companies won't be excited for it, but they might prefer it to some of the more heavy-handed proposals going around now. (E.g., section 230 reform, antitrust concerns.)

(comment deleted)
Agreed. Just look all other paid software, computer services, and even computing machines.

Microsoft charges you for a Windows license and still tracks you. I have little doubt Adobe, et al, are selling your data. Amazon surely makes money when I buy something from their site, but they track me anyway. Etc, etc.

(comment deleted)
At least you can probably take them to court if you pay for the service and not being tracked but they still do.
I would assume it would be mediated.
Unless they have a carefully-worded Terms of Service and Privacy Policy.
> We can’t rely on the market to protect our privacy. Government regulation is needed.

Oh yeah? How about if you sign a contract that says you'll never sell my info? Do I still need the government to protect me?

Depends on the goal of the organization, really. For organizations that follow the current business dogma (maximize short-term profit/increase shareholder value) then yes, they always have an incentive to screw over whomever they can.

But that's not how everybody thinks. The Craigslist leaders, for example. From 2006: "She recounts how UBS analyst Ben Schachter wanted to know how Craigslist plans to maximize revenue. It doesn’t, Mr. Buckmaster replied (perhaps wondering how Mr. Schachter could possibly not already know this). 'That definitely is not part of the equation,' he said, according to MediaPost. 'It’s not part of the goal.'" [1]

I do agree that privacy regulation is necessary to set a floor, though. Since our current system over-rewards juicing short-term metrics, we have to compensate by blocking the worst of the exploitative behaviors.

[1] https://dealbook.nytimes.com/2006/12/08/craigslist-meets-the...

Craigslist is the exception, not the rule.
Did I give you some reason to think I was suggesting otherwise?
Until the situation improves, maybe we can just pay cash for groceries?
>> Simply paying for a service doesn’t remove the economic incentive for the service provider to add tracking.

No, but it can remove the necessity.

Some people can be satisfied with a business of X profitability, but once it goes public there is really no hope IMHO.

Exactly. We could end up like cable television where we pay for the service and STILL get shown ads and in the Internet's case, tracked.
We already have enough regulations and we still have so much problems. For one thing, it is selective enforcement. Secondly, the penalty is peanut. If penalty is a percentage of total revenue, it will change the behavior of the executive of the tech giant. Add some jail time for repeating offenders is a good idea too.

Lastly, the reason why regulations don’t work is regulations is written by lobbyists here in the US. Guess who these lobbyists represented?

Simply paying for a service doesn’t remove the economic incentive for the service provider to add tracking.

In fact it does the opposite. People with a demonstrated willingness to pay for stuff are more lucrative to track.

> As long as we all expect free, we can't expect privacy.

Not if the project is a non-profit. Wikipedia is free and privacy friendly (or pay what you want through donation if you want).

(comment deleted)
My views similarly changed on email. It would have been inconceivable for me to pay for email 10 years ago. Now I'm happy to pay for a service that does the basics well, is primarily considering my interests, and will have competent customer service if something goes wrong.
What if it's less profitable to run a paid search engine? Will they run both free/paid side-by-side? And how can one be certain they won't profit off the query data on the backend anyways?

Is there any reason I should think Brave won't prioritize profit motives first in 5, 10 years when investors or markets expect returns?

(comment deleted)
Paid services have the real name and credit card. It's too risky to assume they won't turn evil in the future.

I barely trust my ISP.

Back in the day (late 90s) there was a company called Copernic that had a good search engine with a REALLY good desktop client. I remember being able to do all sort of filters, sorting and crazy searches. IIRC It was paid, and it was really way ahead of the simple search operations you can even currently do with Google (actually, Google has constantly removed search abilities as time goes by, like for example, anyone remember when Google Search could show tweeter search results? or that you could "block" domains from search results)
On that last point, searches like `-site:example.com` looks like they still work.
Honestly, there should be some sort of never-forget meme about Google removing the + operator when they started up their stupid social network that failed and then never put it back >:(

Just checked wikipedia, and it seems it'll be ten years ago this June that google stole + and forced quoting upon us for pure vanity reasons.

If someone is wondering (like I did) what the + operator was for:

foo +bar +baz

was equivalent to

foo "bar" "baz"

It stood for logical AND, so really your search term would be read as:

foo AND bar AND baz. It would be more accurate to type it as foo + bar + baz.

They've unfortunately conflated "must have" and "spelled exactly", which aren't the same thing.
This explains so much. I thought they were distinct operators. I thought quoting meant must match exactly, and the plus meant must be present. So +"baz" meant it must be exactly baz, and it must be present. +baz meant baz, or some variant like bazzes must be present.
So basically a search engine that is worse than Google and that I will have to pay for. Sign me right up!!
I've really 180'd on this over the past two years. I've always loved business models that allowed free access, but now I'm very much focused on a business models that are sustainable, and without relying on being able to sell my data to keep the lights on. A service I can pay for access, in a sustainable business arrangement, is my new preferred model.
There was no tracking on Cliqz, nor it will be any in Brave. To know more about the underlying tech of Cliqz there are interesting posts at https://0x65.dev, some of them covering how signals are collected, data, but no tracking. I did work at Cliqz and now I work at Brave. I can tell for a fact, that all data was, is and will be, record-unlinkable. That means that no-one, not me, not the government, not the ad department can reconstruct a session with your activity. Again, there is no tracking, full anonymity, Brave would not do it any other way.
Please let us know if that changes.

Brave buying Cliqz is the first corporate acquisition that's actually made me feel better about the acquirer, ever. I have no idea how to react to that. Keeping up the dev blog would probably make me start recommending Brave, where before I recommended against it.

Incidentally, do you know what's happening to the Cliqz browser?

give me the option to block certain sites from results and prioritize others, I would pay a monthly fee just for that level of customization. I hate searching to download something and only finding spam in the top 5 results.
I was going to say something similar.

I'm convinced that it's possible to build a better search engine than Google by using community-influenced results, rather than try to do magic.

I'd definitely pay for a search engine where we can collectively downvote to hell any SEO spam. That would be the only way to incentivize sites to provide actual quality rather than cheating the algorithms.

Consider that it’s not just the changing times but also your own changing economic situation. Would you have had a spare $20/month foe a search engine subscription as a 16 year old? I sure had better uses for my money back then than something like this, privacy be damned.
bat tokens will eventually make sense to everyone we’re probably just 10 years too early into the private browsing space
> I'm actually excited about the idea of a search engine that I pay for.

Right now you can pay to host an instance of the internet meta-search engine SearX: https://searx.github.io/searx/

I do think that fewer things need to be free. But there’s no reason to believe that free means we must lose our privacy.

OTA television, for example, had been providing decades worth of extremely expensive programming for free. And this lost us absolutely no privacy.

There is no reason that ads have to invade our privacy. They can go back to targeting based on broad geographical and age demographics.

Let’s do a thought experiment. Let’s say the government passes a law that says that ads cannot be based on any factors more privacy invasive than your zip code and 10 year age range. It’s not like companies would stop paying for ads. They would pay less, but probably still enough to maintain free services, like Google did in its initial days.

there's also lots of smaller niche platforms/services that don't, sometimes even funded exclusively by donations. I think the size of the organization has a lot to do with the likelihood that your data is getting harvested as well.
I don't really even want to think what I would pay Google to access their search engine if they made it a paid service tomorrow.
i would probably just switch to bing or duckduckgo (aka bing) at this point. google used to be unparalleled in finding what you're actually looking for but their search results have steadily been getting worse.
> I'm actually excited about the idea of a search engine that I pay for. Been waiting for DDG to do it but last I knew there's still no option there.

I wonder if that's because they're using Bing search results rather than crawling the web themselves?

have you heard of greed? Do you think they care about loosing customers in that scenario? Where will they go? Dont be soo naive... they might start with honest and clean intentions but that will most likely change, or the pople running the company will change, people are soo easily corupted, especialy in a world filled with vice
I would not get too excited until you read the agreement they present you with. If you are a paying customer and they make promises, such as privacy-related ones, then those could theoretically be enforceable, with quantifiable damages at least equal to what you have paid. Will they accept that potential liability. Google won't. If Brave breaks their privacy promises to millions of paying end users, will they try to prevent the possibility of class-actions when potentially hundreds, maybe thousands or more of them all simultaneously "ask for their money back". Does paying by itself magically transform empty promises into kept ones What if the promisor can break the promise and keep the payments.
I don't really mind the ads on search engine as long as they aren't tracked and are based on the search. This is the way startpage does it.
It's still kinda not private, because GTM/GA/ etc on 3rd party sites are going to track where your click came from.
We block all those. Were you thinking of other browsers?
Many things are free, such as Linux kernel and Debian distro.

However if someone's expenses grow with userbase, everything you said is right.

> As long as we all expect free, we can't expect privacy.

Paid is still centralized. Decentralization isn't an answer, because people make their own decisions and a collective decision contains a lot of power. The only way to achieve true decentralization is to eliminate communication entirely. I believe it is referred to "Babel's tower". Centralization means we have no freedom and no privacy. With decentralization, 51% could conspire to murder the 49%. That experiment, taken after a few iterations, would quickly turn us extinct.

The idea is interesting. My view on the economics side is that the flaw is that this is a for profit company trying something new to make more profit. There's nothing wrong with that except that what they are selling is a commodity (bing, google, duck duck go, ..).

So, that doesn't sound like a sound plan. In fact it sounds a lot like everything Mozilla tried and failed to make money with in the last few years. Maybe users will pay for X .... nope they won't pay for X either. Ironically, Mozilla's main business remains reselling Google's search.

What's Brave's business model at this point? I'm assuming that the attention token business is at this point not really delivering substantial revenue.

Anyway, a couple of weaknesses here with both these business models (search and BAT):

- They are tied to Brave the browser, which while popular has a tiny market share. So, both solutions are cut off from the vast majority of users, including the fraction of a percent likely to be an early adopter of this (i.e. by actually paying). Fractions of fractions don't add up to a whole lot of revenue.

- That browser happens to be built by Google and also depended upon by Apple & Microsoft (i.e. Chromium). Between those three, they control access to most of the users via their apps stores and operating systems. They also control the main contenders Cliqz is supposed to compete with: Google, Bing & DDG (which is Bing). That sounds like an uncomfortable place to be as a would be competitor. Also, there's the Apple and Google tax to worry about with any kind of revenue: Brave users putting more cash in the coffers of Apple and Google basically.

- Users might pay for quality. That raises the question how you will get that. DDG is popular but a key reason for people to not use it remains that sometimes they just aren't good enough. And it's basically Bing, which depends on MS putting loads of cash and resources in it. I found myself reaching for Google a lot in the half year I used it until ultimately I decided that I did not have time for too many fruitless searches where I wasted time before ending up finding what I needed on Google. I reverted back to Google. And that's not because I enjoy being tracked or in their clutches: they are just that good.

- Brave as a walled garden for exclusive paid features does not make sense: it's too small. Both BAT and search as commercially offered features would have more users (and thus paying users) if they weren't tied to Brave the browser. IMHO both would actually need to be structured under a non profit organization for long term success (for users, not for Brave).

My opinion has definitely changed over the last 10 years from I'll use anything if it's free, to I'm willing to pay for a better service.

Spotify is something I'll gladly pay for because it just works and is less hassle than ads and playlists and searching for youtube videos.

I would like to say, paying customers have even more valuable tracking data, since it signals that you have good disposable income.
Excited to see how long it takes for them to be outed on yet another controversy, say it was "accidental" and rollback on this new service. Their MO is pretty clear at this point.
I am good with ecosia.org ;-)
In my understanding what Cliqz did, at least in the beginning, was to buy clickstream data and then build an index on top of that. So in a sense they just scraped Googles' search index, as almost all users rely on Google for finding stuff on the web. The clickstream data gives you both the search query and the website(s) users visit after searching, so it's pretty easy to build a search index from that, at least for popular searches (it might be more difficult for the long tail of search queries).

A lot of the clickstream data you can buy comes from browser extensions btw, and often gets collected without users knowing about it (looking at you, "Web of Trust"). I think their reliance on such data was the reason Cliqz acquired Ghostery, which also collects a copious amount of "anonymous" data from its users. On one hand it's a neat idea since you're basically standing on Googles' shoulders, on the other hand it's at least questionable for a "privacy-first" company as the generation of the search index is based on personal data mined from (often unwitting) users.

That said I don't know how their system evolved, so maybe today they have another way to build their index.

Bing might have also done this to improve their index https://searchengineland.com/google-bing-is-cheating-copying...
That's one side of it. The ironic thing is they probably used exactly the same tactic as the search engine in the article:

https://www.quora.com/Did-Bing-intentionally-copy-Googles-se...

No, Brave Search won't copy search results that users do not click on. You own your queries and clicks. Only users who opt into anonymous logging to help Brave Search send unlinkable records up, and those records are not scraped from unclicked links in SERPs.
I was referring to this bit in the top level comment:

> In my understanding what Cliqz did, at least in the beginning, was to buy clickstream data and then build an index on top of that

I don't know if that's what cliqz actually did, but if they did do that it sounds very similar to what bing did.

From https://www.siliconfilter.com/hiybbprqag-google-claims-bing-... it seems Google engineers laid a trap by using IE with Bing Toolbar and Bing Search Suggestions enabled. Not clear what was gathering the data, but this article doesn't say whether the Google engineers clicked on the bogus-keyword's result link. If they did, then clickstream as you say. If they didn't, something in the IE+Bing mix scraped links from whole Google results pages.
As mentioned in my previous comment:

There is a better way to service users interests; initially it was "keywords" - but now it can be more structured;

"I want to learn [topic]" and the response may be a step-by-step how-to on how to learn [topic]

TBH this was a subject addressed on NPR this morning.. People staying at home are talking about the old infra of edu where people cant be in person - but nobody is talking about the opportunity on changing the structure of learning at all - there should be seen the opportunity on changing the way in which we learn something.

I work at Ghostery. Yes, Cliqz bought Ghostery for the Human Web data, since we have so many more users than Cliqz ever did. What gives you the impression that any data we are collecting is not appropriately anonymous?

The Ghostery extension is open source, so feel free to link to anything in the code that looks suspect to you

I'm not saying it's not anonymous, just that it's impossible to assert the anonymity.

Also, I saw a lot of "anonymous" clickstream data offered by other companies, which was often trivial to de-anonymize. We did a DEF CON 25 talk about it, just google "Dark Data DEF CON 25". Robustly anonymizing high-dimensional data like user clickstreams is practically impossible, and often knowing a combination of 4-7 websites a user regularly visits is enough to identify him/her in a pool of millions of users (see the talk for details), so I'm highly doubtful about any company that claims it can robustly anonymize such data. If you're confident your data is anonymous why not release a large sample and have researchers look at it?

So while I'm not saying Ghostery is also doing that I don't have a lot of good faith in these data collection practices in general (also, I think before Cliqz acquired Ghostery it collected a lot of data like cookies from the users). Again, it's a smart way to collect data but I wouldn't call it very privacy-friendly.

It is trivial to de-anonymize if records are linkable, which is the case you mention on Dark Data DEFCON25. Another famous case was the de-anonymization of the Netflix data set.

However, you are assuming that HumanWeb data collection is record-linkable, which is not the case, precisely to avoid this attack.

If what is being collected is linkable: e.g. (user_id, url_1), ... (urser_id, url_n). No matter how you anonymize user_id, it will eventually leak. A single url containing personal identifiable information, e.g. a username, will compromise the whole session. No matter how sophisticated the user_id generation is. The real problem, privacy-wise, is the fact that record can be linked to the same origin. An attacker (or the collector) has the ability to know if two records have the same origin.

The anonymization of HumanWeb, however, ensures that linkability across data points is not present. Hence, an attacker cannot know if two records come from the same origin. As a consequence, the fact that one url might give away user data, for instance a username, it would not compromise all the urls sent by that person.

If you are interested in more details I recommend this article: https://0x65.dev/blog/2019-12-03/human-web-collecting-data-i...

[Disclaimer I'm one of the authors]

I still see a lot of ways in which users could be de-anonymized, sometimes a single URL is already sufficient and side channels like the quorum mechanism might leak information as well. Maybe it's really anonymous, but personally I don't trust any mechanism that doesn't have a statistical anonymity guarantee, differential privacy being the preferred one as it's the only anonymity model that hasn't been broken yet.

Anyway, it's great that Cliqz did this work and I don't want to diminish it, I'm just very cautious when companies claim they're only collecting anonymous data, there were just too many cases in which promises have been broken.

Brave has earned the trust and respect of the community by fixing several high profile bugs. They have also dinged themselves by pushing their crypto ad system. How will this pan out?

"We'll see" said the zen master.

The crypto ad system is their best feature. You get browser ads instead of website specific ads and so any website can get money simply from users using brave. Also you can choose which websites get some of your specific ad money. It feels more like the money being made off of you is also being spent by you. Taking power away from big tech.
I feel that ads are a terrible way to pay for stuff. I think the future is paying for stuff I use, directly.
I mean who does like ads but if you do get ads, wouldn’t you prefer you choose who profits from them
I see the industry moving away from ad based services. We’ve known for awhile it’s a terrible transfer of value.
I think one issue with this is you would probably have to identify yourself. Many companies would only offer credit card / paypal to pay for the stuff you use. With BAT (or an alternative) you can pay without identifying yourself (more than say IP).
"The service will, eventually, be available as a paid option..."

This is the future of services on the internet. The 'cult of free' should die off as people realize they don't want to be bought and sold like digital cattle.

I wonder if payment in BAT will be an option?
Probably, but you'll probably have to KYC as well...
> payment in BAT

payment in Basic Attention Token... isn't that exactly how the Google, Facebook, Twitter, etc advertising business models work. BAT is basically a reward for watching adds right?

I like the idea of paying my content producers directly better, see for example https://coil.com. Cut out the middleman

It's an optional reward, and that is the key difference in my opinion.
The SaaS project I'm working on won't have a free tier. We think it's unfair to make paying customers support free customers.
Does the customer on the $40 plan think it unfair he pays for more resources than the customer on the $20 plan?
That's different, they're both paying.
As a paying customer I don't care about customers on the free plan. I don't think anyone has time to consider such things.
Wouldn't you prefer to pay less?
If you're setting prices based on cost shouldn't the prices be astronomically higher during the first few years of the business?
Irrelevant. You're changing the subject.
As long as your crusade against free doesn't impact our free public libraries, free healthcare, free education.

(All of which are not really free because we pay for them with taxes. )

I have been developing a simple mantra: Pay for stuff I use. Mostly software so far. As far as “free stuff” provided by the government, I feel there is a baseline that a government should provide, as that should be their purpose. Where that line is, and what services are provided is a source of intense debate. “Pay for stuff I use” is a great starting point, but hardly a hard and fast rule.
(comment deleted)
The Brave browser already has tracking itself, so even if the search engine doesn't..
Brendan Eich is doing some very important work. I hope this succeeds!
Goggles sounds cool at first, but it's very hard for me to imagine goggles that I'd be interested in actually using. Maybe clever people will come up with something awesome, but the fact that I can't come up with an example that I would want is a bit of an alarm bell.
Remove Pinterest results, remove Quora, remove blogspam...
Love the audacity of building back better multiple dimensions of our internet experience.

However:

> end the debate about search engine bias by turning search result output over to a community-run filtering system called Goggles

Not sure why something "community-run" would automatically/necessarily solve bias... So looking forward to deeper thinking by the Brave team.

Excited that Brave is playing a pioneering role here with leveraging cryptocurrencies and distributed tech (including Web3) who's time, it looks like, will come. It helps that a Browser is close to a perfect environment from which to challenge the incumbents heavily dependent on ad revenues.

> Brave Search's index there will be informed the activities of participating Brave users, in terms of the URLs they search for or click on, and adjacent web resources that don't require extensive crawling.

This is quite similar to Amazon's now-defunct A9.com which, iirc, had some form of hybrid search engine that was built on search / ad results from Google and the data Amazon collected via the Alexa toolbar.

> The Brave Search team has written a paper explaining its use of the term, titled "GOGGLES: Democracy dies in darkness, and so does the Web." The browser upstart aims to replace the tyranny of Google's inscrutable, authoritative index with a multiverse of indices defined by anyone with the inclination to do so.

Again, very similar to WAIS. Has Eich been speaking to Brewster Kahle? :)

[0] https://en.wikipedia.org/wiki/A9.com#History

[1] https://en.wikipedia.org/wiki/Wide_area_information_server

It's very exciting. So far Brave is not so popular in the cryptocurrency space compared to its peers. That will change I'm sure.
> Brave is not so popular in the cryptocurrency space compared to its peers.

KYC-hostage demands from a company that claims to be "privacy focused"...

https://twitter.com/fluffypony/status/1065594144796610560

You do understand it's based on regulation, right? That there is no way to do what they are doing legally without KYC for withdrawals? What exactly does your implying use of the word "hostage" mean? That you don't like the laws of the countries Brave is operating in?
I understand that's what they're claiming. If they were serious about their principles, like Lavabit, they would have simply discontinued the "custodial wallet service" that they claim is subject to anti-privacy regulation. Nobody is claiming that the Brave browser software itself is subject to any anti-privacy regulations. They wouldn't have to sacrifice their entire business on the altar of principles like Lavabit did -- they'd only have to sacrifice one feature.

But they don't have nearly the same level of integrity that Lavabit did.

And, of course, if they're exaggerating the "but but muh regulations" aspect, then none of the above applies.

I don't understand your criticism, it doesn't seem to make much sense.

They have done exactly what you are proposing, in that they don't require users to provide KYC to use the browser. KYC is only required to use an additional, optioal feature inside the browser. It works well without any private information, and it even allows some wallet features like redistributing your tokens to content creators you like.

> They have done exactly what you are proposing,

No.

They haven't done this:

> like Lavabit, they would have simply discontinued the "custodial wallet service" that they claim is subject to anti-privacy regulation

No, I haven't been talking with Brewster. The Goggles paper is from the Tailcat team.