PogoWasRight.org

Menu
  • About
  • Privacy
Menu

What does “sensitive data” mean?

Posted on July 8, 2009July 3, 2025 by Dissent

Douglas MacMillan blogs about the definition of “sensitive data” over on BusinessWeek.  As pointed out previously,  at least some privacy advocates have noted that the online behavioral advertising industry’s proposal for self-regulation does not go far enough in restricting what types of information would not be collected and used.

The definition in the self-regulatory program is:

The Principle calls for entities not to collect financial account numbers, Social Security numbers, pharmaceutical prescriptions, or medical records about specific individuals for Online Behavioral Advertising purposes without Consent.

MacMillan quotes Pam Dixon of the World Privacy Forum as saying:

“That is quite literally the worst definition of sensitive data I have ever read in any privacy statement.”

What do you think of the definition that a coalition of privacy groups offered in 2007:

Advertisers should not collect, use, disclose, or otherwise process personally identifiable information about health, financial activities, sexual behavior or sexual orientation, social security numbers, insurance numbers, or any government-issued ID numbers for targeting or marketing.

Also notice the use of “or” in the above definition. As Ryan Calo highlighted, the proposed guidelines talk about “collect and use” instead of “collect or use,” and that is a huge difference.

No related posts.

Category: BusinessOnlineU.S.

Post navigation

← 31st Intl. Conference on Data Protection and Privacy
Obama’s cyber plan raises privacy hackles →

Now more than ever

Search

Contact Me

Email: info@pogowasright.org

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

Categories

Recent Posts

  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure
  • Idaho agrees not to prosecute doctors for out-of-state abortion referrals

RSS Recent Posts on DataBreaches.net

  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
©2025 PogoWasRight.org. All rights reserved.
Menu
  • About
  • Privacy