A number of companies have a curious clause in their website terms of use that prohibits anyone from linking to their websites. I wrote about one example of this a while ago when I mentioned provisions in Standard Bank's conditions of access (I'm afraid you are going to have to find the terms yourself, I am not permitted to link to them although I have quoted them in my post). Standard Bank is by no means the only company that does this and this tendency continues to both puzzle and frustrate me both as a blogger and a social media lawyer. It just doesn't make much sense to me.

I recently came across a post by Jeff Jarvis titled "The right to link" which got me thinking about this issue again, this time in the context of the freedom of expression enshrined in our Bill of Rights which states the following:

16 Freedom of expression

(1) Everyone has the right to freedom of expression, which includes-

(a) freedom of the press and other media;

(b) freedom to receive or impart information or ideas;

(c) freedom of artistic creativity; and

(d) academic freedom and freedom of scientific research.

(2) The right in subsection (1) does not extend to-

(a) propaganda for war;

(b) incitement of imminent violence; or

(c) advocacy of hatred that is based on race, ethnicity, gender or religion, and that constitutes incitement to cause harm.

The section of the right that interests me for the purposes of this post is article 16(1)(b) which protects the freedom to "receive or impart information or ideas". A hyperlink (that typically blue link you click on in your browser which takes you to a web page or location on a web page) is a reference of sorts. Wikipedia defines a "hyperlink" as follows:

In computing, a hyperlink (or link) is a reference to a document that the reader can directly follow, or that is followed automatically. The reference points to a whole document or to a specific element within a document.

One of the definitions of a "reference" which I found on Google is the following:

A reference is something such as a number or a name that tells you where you can obtain the information you want.

So one way of thinking about a hyperlink is as a reference to information. Surely part of receiving or imparting information or ideas is making reference to them, as article 16(1)(b) seems to contemplate? Hyperlinking has become a contentious issue in the context of online news sites, particularly Rupert Murdoch's online News Corp properties. Murdoch has linked (excuse the pun) the issue to a copyright issue because the contention that Google is stealing already pressured newspaper publishers' content is a particularly emotional one. In his op-ed piece in the Wall Street Journal last year, Google's CEO, Eric Schmidt, presented a very different perspective. The whole article is worth reading but this extract stood out for me:

Google is a great source of promotion. We send online news publishers a billion clicks a month from Google News and more than three billion extra visits from our other services, such as Web Search and iGoogle. That is 100,000 opportunities a minute to win loyal readers and generate revenue—for free. In terms of copyright, another bone of contention, we only show a headline and a couple of lines from each story. If readers want to read on they have to click through to the newspaper's Web site. (The exception are stories we host through a licensing agreement with news services.) And if they wish, publishers can remove their content from our search index, or from Google News.

This brings me to a myth one of the fathers of the Internet, Tim Berners-Lee, dispelled in April 1997 on a webpage titled "Links and Law: Myths":

Myth: "A normal link is an incitement to copy the linked document in a way which infringes copyright".

This is a serious misunderstanding. The ability to refer to a document (or a person or any thing else) is in general a fundamental right of free speech to the same extent that speech is free. Making the reference with a hypertext link is more efficient but changes nothing else.

When the "speech" itself is illegal, whether or not it contains hypertext links, then its illegality should not be affected by the fact that it is in electronic form.

Users and information providers and lawyers have to share this convention. If they do not, people will be frightened to make links for fear of legal implications. I received a mail message asking for "permission" to link to our site. I refused as I insisted that permission was not needed.

I added the emphasis to the first paragraph of the response to the myth because I believe that encapsulates what it means to link to something on the Internet - it is an exercise of a right to free speech. In the context of the South African Bill of Rights, this equates to the broader freedom of expression.

Jarvis expressed the point in privacy terms and this makes a lot of sense too:

Right. Linking is not a privilege that the recipient of the link should control – any more than politicians should decide who may or may not quote them. The test is not whether the creator of the link charges (Murdoch’s newspapers will charge and they link). The test is whether the thing we are linking to is public. If it is public for one it should be public for all.

...

In the end, this fight is over control. News Corp is desperately trying to maintain its control over access to and packaging and pricing of information that now flows freely from many sources. Thanks to the internet, it is losing it – in more than one sense.

Clauses in terms of use that prohibit links to otherwise publicly accessible web pages is an affront to the freedom of expression and makes about as much sense as newspaper publishers turning away "100,000 opportunities a minute to win loyal readers and generate revenue—for free", even if it is on a smaller scale. Reading the response Standard Bank sent to me and which I published in my post, it seems that News Corp isn't the only organisation obsessed with controlling the hyperlink. Any organisation which attempts to control who may or may not link to publicly accessible web pages is in the same boat.

What does this mean in real terms? Well, a clause prohibiting hyperlinking, perhaps even deep-linking, may be unconstitutional if it does, as I suggest, unjustifiably infringe the freedom of expression. That being said, I don't see a case reaching the Constitutional Court any time soon, if at all. Another question which you may ask is whether the terms of use have any significance where crawlers and other electronic agents traverse the Web automatically linking to these websites? The short answer is that in terms of the Electronic Communications and Transactions Act, an electronic agent can bring its principal into a contractual relationship with a site owner. The underlying contract would be the terms of use.

In real terms it may just mean that organisations which incorporate these linking prohibitions into their terms are starving themselves of oxygen online when they deny visitors the opportunity to link to their sites and develop a connection to the organisation or brand behind the site. As Jeff Jarvis put it in his post titled "The link economy v. the content economy":

... Let’s say that the real value in this equation is not content and information — both of which are now quickly commodified — but links, which are the new currency of media. Links can be exploited and monetized; get links and you can grab audience and show ads and make money. Content is becoming a cost burden, what you have to have to get the links, but in and of itself, content can’t draw value without an audience, without links.

Postscript: I would like to just point out that the purpose of this post was not to single Standard Bank out as a fundamental rights violator. I have previously written about its terms of use so it was a convenient example to use in this story.

Google is doing some very interesting work in the privacy space. I have already talked about the Google Dashboard which gives users a detailed and, perhaps, frightening overview of all the personal information Google has collected about its users. One important realisation which users should take from the Dashboard is one which I have referred to in the past, namely that privacy as secrecy is virtually non-existant if you engage with the social Web in much detail. The only real variable is the degree to which your personal information is shared online.

I came across a set of new features in Google's Latitude (its location-based service that ties in with Google Maps) which present an interesting perspective on how Google is dealing with privacy issues, particularly when it comes to privacy-sensitive services like Latitude. Google Latitude has a number of applications you can add to your Latitude service which both enhance your location-based experience and create more opportunities for your personal information to be exposed.

One of the reasons why location information is so sensitive is that location-based services like Google Latitude track your movements revealing not only information about where you work and live; where your children go to school as well as where you shop and the other places you frequent. Particularly sensitive Latitude applications like the Location History are not publicly available (although Location Alerts, the Public Location Badge and Google Talk Location Status do share your current location to a degree based on your Latitude location sharing preferences).

Of course you can disable Latitude on your device but you may leave it active for a variety of reasons including the ability to keep family members apprised of your location; keeping track of friends and so on. Given that you could build up quite a detailed location-based history it is important to have meaningful control over that history and it appears that Google has developed tools to help you do just that.

Google's Location History privacy tools give you the ability to decide whether to track your location history or not. If you are tracking your location history you can delete individual items, whole sections of your history or all of it.

You can also disable any of the other Latitude applications on the website too (they are set to "disabled" by default). In addition to this you can also elect whether to run Latitude when you are using Google Maps and thereby effectively prevent all Latitude applications from operating.

While Latitude is a useful service and users do appear to have control over whether to use the service and how much of their location-based personal information they share with Google and their contacts, this service is not offered for purely altruistic reasons. As with other Google services like Search and Gmail, ads presented on those sites are customised based on keywords on the page (automatic filters pick up text in your emails and present ads based on those keywords too). In fact, virtually all of Google's free services are geared to keep you using the services and clicking on more relevant ads.

At the same time its services are incredibly useful to its users, vital even, even as they are replaceable if push came to shove. Enter the Data Liberation Front: a pseudo political/public service/advocacy Google initiative which has an admirable goal:

The Data Liberation Front is an engineering team at Google whose singular goal is to make it easier for users to move their data in and out of Google products. We do this because we believe that you should be able to export any data that you create in (or import into) a product. We help and consult other engineering teams within Google on how to "liberate" their products.

Data Liberation shows users how to migrate to competing services. It is a tool Google provides its users with to leave Google. The challenge is that there aren't that many competing services of comparable quality or flexibility and few competitors are taking similar steps to help you safeguard your personal information or retain the ability to keep your data portable.

If you are cynical you may be thinking that this is just elaborate PR speak designed to keep Google's users quiet. It is tempting to wonder what the catch is and what is going on behind the scenes. Eric Schmidt, Google's CEO, has said that the foundation of Google's relationship with its users is trust and Google is also renowned for its motto "Don't Be Evil" which has apparently shaped its culture and its decisions about how it does business. I still wonder how deep this sentiment runs and Google's apparent missteps (such as its questionable Books Settlement due to be assessed by a US court in early 2010) do seem to contradict its seemingly pure motives and fuel its critics.

Just how sincere Google is about protecting its users' rights to informational self-determination and other aspects of their privacy remains to be seen in time but what is clear is that Google is making a far bigger and overt effort to place control over users' personal information in users' hands. The complex controls in Google Latitude illustrates this, as does the Dashboard itself.

I've written about various aspects of terms and conditions for a little while now and I thought it would be helpful to present an overview of a website terms of use. This is hardly the only way to frame a website terms of use but it is a way that makes sense to me at least.

It is important to bear in mind that a fair amount of thought and planning should go into a website terms of use, especially where the website takes advantage of complex elements like 3rd party authentication mechanisms and so on. Clients often ask me for a simple 1 page terms of use at the beginning of a project. The difficulty with that is that a 1 page terms of use generally won't cover the basics, let alone afford my clients with the level of protection they would be comfortable with.

My preference for a website terms of use is to rather focus on accessibility at the expense of brevity rather than brevity at the expense of effectiveness. If your terms aren't as comprehensive as they should be, you're probably wasting your money on what you are getting because the resulting terms will have holes big enough to drive a lawsuit through.

I was taking a look at various website terms of use a few days ago as part of my process of keeping up to date on what goes into these documents in different contexts and I came across this section of Standard Bank's Conditions of Access (apologies, I can't include the link to the page for reasons which will soon become apparent) which intrigued me:

Nobody may establish a hyperlink, frame, metatag or similar reference, whether electronically or otherwise (collectively referred to as linking), to this site or any subsidiary pages before receiving our prior written approval, which may be withheld or granted subject to the conditions we specify from time to time.

An application for linking must be submitted to webmaster@standardbank.co.za. Once received we will do our best to respond and enter into further discussions with you. If you don't get a written response from us within five business days, consider your request as having been rejected.

Breach of these conditions entitles us to take legal action without prior notice to you and you agree to reimburse the costs associated with such legal action to us on an attorney and own client scale.

This didn't really make a lot of sense to me so I posted the first paragraph on my Posterous blog (which automatically re-posted to Twitter - I have since removed the link to the Standard Bank page). My resulting tweet was re-tweeted a couple times by people who also thought this was a little silly (the tweets also appear in FriendFeed).

I received an email this morning from Standard Bank online reputation management agency, Brandsh (an excellent company by the way), with the following feedback from Standard Bank:

We are very happy to have permanent links to our site provided that the website owner signs a linking agreement with us. This is for a few reasons…

1. We need to make sure that the information they are linking to is relevant to their website and that they have a reputable website (we are currently having a problem with a gambling website that has linked to us which is not very reputable… not good for our customers to be misled like that)
2. That the information on our site that they will be linking to is at least up to date
3. That the information they are linking to is not syndicated or licensed and that, by sharing it, we are not breaking any contracts/laws (we can’t risk that kind of bad press)
4. We need to have a record of who is linking to us so if we decide to move content we can tell them so their links don’t break (this just causes frustration and a bad experience of the “linkers” and our brand)
5. We also like to ensure that our logo is applied correctly. It’s just part of good brand management really

We are actually very happy to have as many other sites link to our as possible (it’s great for SEO) but we just try to manage things properly… hence the written consent…

While I appreciate the need to protect a brand, this approach assumes that it is preferable to prevent people from linking if there is a risk they will do so incorrectly and that the bank has complete control over its brand. I don't believe that the first assumption is correct, generally speaking, although I am not a marketer so I'll leave that determination to the professionals. As for the second assumption, there are numerous examples of how companies are no longer in complete control of their brand and their customers or critics have the power to boost or trash those brands. The fact that my tweet merited a response is an indication of the potential value of that sort of feedback and my tweet was only re-tweeted a few times.

As a Standard Bank customer myself I have complimented and criticised the bank a few times on Twitter and elsewhere. My intention is to provide some form of feedback in the hope that problematic service could be improved and excellent service recognised and evangelised. Not being able to link to the bank is almost like not being allowed to mention the bank by name. I probably won't link to the site any further but I will still talk about the bank when I have something to say about it. So will the bank's other customers and critics. Even if those people don't link to the bank or use its logo, they retain the ability to impact on the bank's reputation. This is why the bank has appointed Brandsh to monitor what is being said about it. If anything, being told that you need to sign a linking agreement to be able to link to the bank dissuades people from linking in the first place and, worse still, simply not talking about the bank as much as they would have. I've been banking with Standard Bank for about a decade now and this leaves a bad taste in my mouth.

Bringing this back to a semblance of a legal discussion, these sorts of restrictions are typical of the disconnect between conventional legal protectionist thinking and the sort of thinking we should see more of when building legal infrastructures for the Web. Lawyers really need to understand the groundswell when they draft for the Web because the Web requires a different approach that takes customers into account and recognises that they wield a fair amount of influence over the brand.

I criticised FNB for its terms on its How Can We Help You site a while ago. I had an opportunity to chat to FNB's people about the terms at the FNB Connect product launch and they showed me a revised set of terms which I felt were more comprehensive but just not very user friendly. They have since done a much better job formatting the terms so they are more readable and intelligible to the average person who reads them (I wasn't involved in this process, I just gave some feedback). This is important because you have to consider who is accessing your site and how important it is that they understand what they are reading. FNB's response is also a great example of how to respond to feedback and make great improvements (I'm almost kicking myself for moving my business account away from FNB to Standard Bank a while ago).

Bottom line here is that while there isn't any really wrong with Standard Bank's linking restrictions, legally speaking, it just isn't appropriate for the social Web where people are accustomed to talking about the brands they love and dislike.