[WSIS CS-Plenary] [Survey] Surveillance Society Status as of July 13 2003

[YJ Park]

Dear all,

Surveillance Society Status Survey is "work in progress" and 
your responses to this survey will be appreciated. If you have
further suggestion or proposal, please feel free to share it. The
collected responses will be used for "Surveillance Society Status
Report" session on July 16th.

I thank E.W. Lee who has contributed to especially Survey 
Part II. 

Regards,
YJ

------------- 
Background 
------------- 

Surveillance Status Survey as of July 12, 2003 is composed of 
three parts; the first part is prepared to gauge the level of Civil 
Society's understanding about surveillance society in general and 

the second part is prepared to categorize each community into the 
following four divisions; Red alert(Matrix), Orange alert, Yellow alert, 
Green(human-friendly) according to Civil Society's responses to 
their current situations.

Finally, the third part needs more work and it at least tried to specify action 
plans on the international basis.

-------------- 
Survey Part I 
-------------- 

Q1. When it comes to online registration, how often are you asked to 
provide your real names, real addresses, real telephone numbers? 
a. every time 
b. more than 50 % 
c. less than 50 % 
d. never 

Q2. When you are asked to provide your details, do you usually 
provide  your real names, real contact details as requested? 
a. Yes, all the time 
b. No, all the time 
c. It depends on the web site's nature 

Q3. Do you think this kind of authentication or surveillance tools 
are "necessary evils" to build  a stable and trustworthy cyberspace 
for all? 
a. Yes 
b. Partly Yes, but the mandatory approach is too dangerous 
c. No 

Q4. How many "surveillance tools" are you aware of? 
a. more than 10 
b. 5 - 10 
c. 1 - 4 
d. none 

Reference List of "Surveillance Mechanisms" Proposals 
1. National ID Smart card 
2. Real name registration in the online activity  
3. Real name registration for Whois, global policy 
4. Bio Data/DNA data recognition 
5. NEIS, Education administration database network setup  
6. CCTV 
7. Surveillance at work 
8. RFID and other Location Determination Technology 
9. GIA 
10. Carnivore
11. Echelon
12. etc 

Q5. Out of listed 9 tools, which do you think are acceptable 
when they are proposed in your country and which do you 
think are unacceptable? 
Please, list them up. 
Acceptable tools: 
Unacceptable tools: 

Q6. Do you believe your governments or business entities can 
protect your own privacy and those proposed surveillance 
tools will be used for the specific purposes such as cybercrime 
reduction as they propose? 
a. Yes 
b. Partly, but such tools should be used at the minimum level 
c. Skeptical, but it is necessary to introduce such tools for security 
d. No 

--------------- 
Survey Part II 
--------------- 

I. Government's Surveillance in your country 

1) National ID system 

(i) Registration (Please, mark) 
a. Voluntarily 
b. Obligatory 

c. Register to Goverment 
d. Local Government 

e. Non-applicable ( Then, please go to 2. e-Government)

(ii) Number usage

Do you think the ID card's number is protected well?  

when is it used? 
a. in public areas 
b. in private areas  

Is it used in the database which is electonicaly processed? 

(iii) ID card 
what kind of informaion does it contain? 
any other function? 

(iv) Does your government have any plan to improve the National ID 
system in the future? 
ex) Smart Card. 

(v) What is people's opinion about this? 

(vi) What do you think about the national ID system? 
a. useless 
b. necessary evil but refrain it(especially the number) from using as an index 
c. necessary 
d. etc 

(vii) What do you think about the improvement of ID system(smart card  
which contains a variety of information, biological information, and electronic 
authentification function...) 

2) e-Government 

(i) What is the most important part in your Government's plan of 
e-Government? 

(ii) Is this process open to people? 

(iii) Do people or parliament have the right to participate in the process of 
introducing e-Government at early stage, and do they have the power of 
determination of the projects/ structure of the system? 

(iv) Is the structure of the e-Government system briefed to people?  

(vi) Do you think people should control the e-Government system 
in your country? If you think improper, why? 

3) Wiretaping, Data retention in the Internet 

(i) In your country, is the wiretaping, data retention (if any) well-balanced? 

(ii) What do you think about the tendency of introducing new legislations that 
lessen the condition, widen the areas, means...of wiretaping, data retention in 
the Internet. 

(iii) How can we cope with the new surveillance technique? 

4) Internet Content Regulation 

(i) How does your Government regulate the Internet contents? 
Is it proper? 

(ii) What do people think about the Government's regulation on the 
Internet contents? 

(iii) Do you think your country's regulation on the Internet contents is proper? 

5) Independent Supervisory Authority 

(i) In your country, does Independent Supervisory Authority exist? 
(If yes -> ii, iii, v, If not -> iv, v) 

(ii) Does an Independent Supervisory Authority work well? 

(iii) If not, what's the problem? 

(iv) Do you think an Independent Supervisory Authority is necessary 
in your country? 

(v) What kind of functions the Independent Supervisory Authority shall 
have in order to control the Surveillance implemented by Government, 
Business Entities, Employers?

II. Business Entity 

1) Online profiling 
(i) Usually what kind of information is collectled by business entities? 

(ii) Is your contry's regulation on Cookie proper? 

(iii) What are the consumer's rights in your country in online profiling 
by business entities? 

(iv) Do you think the consumer's rights are properly set? If not, why? 

2) Telecommunication Service (including Internet service) 

(i) Is telecommincation service user's traffic data protected properly? 

(ii) Do you know what kind of telecommunication user's traffic data are 
collected? 

III. Surveillance at Work 

1) What kind of surveillance techniques are used at work? 

2) Employee or trade union has the right to determine whether they introduce 
new surveillance system or not? 

3) What is the effects of information system at work? 

----------------
Survey Part III. 
----------------

International co-work(work in progress)

1) Privacy protection Principles 

(i) Are the guidelines on the Protection of Privacy and Transborder Flows 
of Personal Data(1980, 'OECD guideline') and EU Directive 95/46/EC 
The Data Protection Directive(1995, '1995 EC Directive') sufficient to 
control the surveillance and to protect human rights, democracy and freedom 
in the information society?

(ii) If it is unsufficient, what shall be added or amended? 

(iii) What do you think about the necessity of upgraded or amended 
guidelines(post OECD guideline or post 1995 EC Directive)?

2) Please, share your suggestion or proposals. 

Thank you,