> In twenty years, at current rates of progress, it will be feasible for the Chinese government to use face recognition to track the public movements of everyone in the country.
When this note was published in 2001, I didn't expect the tech to become that good that fast. I was wrong. (Not that I thought it wouldn't happen, just that there'd be more time.)
Can you explain this? I’ve always been of the opinion that some solutions proposed over the years have tried
to do this but fail because the trusted entity is unknown a priori. I don’t see how you can invent a trust model that is basically “trust me the user and whatever choices I have made.”
No trust model is going to be perfect, but this type of solution has already seen widespread success with: drivers licenses, event tickets, username+password, etc.
This is a trap. You can't just say "well the wins are worth it at the moment" and not consider what happens when someone else - possibly with antithetical values to yours - inherits that power.
Your argument is an appeal for more personal liberty. And that's an honorable argument to make.
If, however, crime reduces your personal liberty to the point where you are uncomfortable walking outside, then cameras (and facial recognition software) will seem to add more liberty than it takes away. People buy products like Ring and security cameras for this very reason, they want to feel safe.
You might say, "Okay, but that's security theater. The real issue is because Donald J Trump, or an unchecked NSA might use them for more nefarious reasons. And it's not even clear they work to reduce crime..."
At which point the average person says, "I just want to feel safe at night when I walk the dog. And frankly, the investment in cameras are worth it if they help catch Russian spies..."
> A free society is a society in which there are limits on what the police can do. If we want to remain a free society then we need to make a decision
I think the amount of legislation that effectively limits privacy / freedom in the past years shows that western societies no longer want to. It includes increased bank regulations / attempts to abolish cash / hate speech regulations / surveillance regulations / GDPR etc. The question is no longer whether the private information of people should be owned by others, but about who should own it, businesses or the State.
There's always a reason for expanding government bureaucracies. Some worthy problem, which the government plausibly could solve if it had just a little bit more power to intervene.
That doesn't change the direct consequence of the intervention, that there's now yet another area where the government sits there telling everyone what to do. If we believe that government ought to be limited, at some point we have to balance against that.
In my country, EU privacy laws applied by our National Data Protection Commission have prevented and pushed back against multiple governmental plans (cameras on the street, sensitive questions in the census, mandatory reporting of certain personal banking data, etc). Is that an increase or a decrease in the reach and size of government?
Well, when they were talking about it becoming fully active not too long ago there was a lot of talk of fines being "the last resort" after warnings and whatnot -- then you have multi-billion euro lawsuits on the very first day the regulators could go after the corporations.
Governments are exempt from GDPR. Further it is regulators, not individuals, who determine which data processing activities are lawful. GDPR certainly takes power away from companies, but it transfers that power to the state, not to individuals.
The GDPR does apply fully to government agencies, some requirements are even stricter (e.g. they always need a Data Protection Officer). Most agencies had to alter their policies because of that. What is true that there can be special purpose laws giving a government agency the power to process some data (e.g. by tasking them with collecting some information, such as say your income for tax levying). Member states can also pass laws to overwrite portions of the GDPR for some listed purposes, such as public security but those don't apply to the vast majority of governmental data processing. Naturally, that makes the government more powerful than private companies but certainly not more powerful compared to a time before there were data protection laws.
While those are valid points, it does also empower the individual. Being able to ask a company for their data on me is a huge boon that's gonna change the game.
When this note was published in 2001, I didn't expect the tech to become that good that fast. I was wrong. (Not that I thought it wouldn't happen, just that there'd be more time.)