One aspect of the seemingly free services we use every day (Facebook, Twitter, Google Search and many more) which people tend not to pick up on is that these services really are not free at all. While we don’t part with currency to use these services, we do part with our personal information in exchange for meaningful access to these services and what they can do for us. This isn’t necessarily bad but it is a reality on the social Web.
A number of local online services are similarly offered, ostensibly for free to users, and they leverage personal information in similar ways and for similar reasons. The anticipated Protection of Personal Information Bill deals with how personal information may be “processed” by various parties and is organised around a number of Information Protection Principles:
- Processing limitation;
- Purpose specification;
- Further processing limitation;
- Information quality;
- Security safeguards; and
- Data subject participation.
These principles can be unpacked further to reveal a fair amount of specificity about what personal information can be processed, by whom and to what end. I’ll probably unpack many of these principles in the coming months and it will be interesting to see how the Protection of Personal Information Act will interface with the Consumer Protection Act when it is eventually passed and implemented.
What local companies offering “free” online services will need to bear in mind that is that they will have to cater for an increasingly complex legal framework if they rely on personal information to make their service offerings worthwhile from their perspective. This paradigm is also something users should understand and bear in mind when they use these services.