Today we’ll be discussing rights to privacy. The rights to have your personal matters undisclosed or publicized without your permission; the right to be left alone. It is the right to keep government undue intrusion into your hallowed fundamental personal issues and decisions. Consideration will be given to some of the reasons why right to privacy is important, it’s history, it’s legality in different jurisdictions of the world.
Right to privacy is one of the legal principles that intends to restrain governenmnt and private actions that threaten the privacy of individuals. More than 150 national constitutions mention the right to privacy. On December 1948, the United Nations General assembly adopted the Universal Declaration of Human Rights (UDHR), originally written to guarantee individual rights of everyone everywhere; while right to privacy does not appear in the document, many interpret this Article 12, which states: “No one shall be subjected to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honor and reputation. Everyone has the right to the protection of the law against such interference or attack”.
With regard to Global surveillance disclosure of 2013, initiated by ex-NSA employee Edward Snowden, the right to privacy has been a subject of international debate. Government agencies, such as the NSA, CIA, R&AW and GCHQ, have engaged in mass, global surveillance. Some current debates around the right to privacy include whether privacy can co-exist with the current capabilities of intelligence agencies to access and analyze many details of an individual’s life; whether or not the right to privacy is forfeited as part of the social contract to bolster defense against supposed terrorist threats; and whether threats of terrorism are a valid excuse to spy on the general population.
However, Private sector actors can also threaten the right to privacy – particularly technology companies, such as Amazon, Apple, Meta, Google, Microsoft, and Yahoo that use and collect personal data. These concerns have been strengthened by scandals, including the Facebook-Cambridge Analytica data scandal, which focused on psychographic company Cambridge Analytica which used personal data from Facebook to influence large groups of people.
Why is right to privacy important?
- Prevents illegal spy by government on people
The government has a duty to protect its subjects, but it often crossed the line when it comes to surveillance. In 2013, Edward Snowden blew the whistle on the NSA’s spying program, bringing the issue of privacy into the spotlight. The balancing act between national security, freedom of expression, surveillance and privacy rights is tricky. It’s generally agreed upon that if the government doesn’t have a reason to spy on someone, it shouldn’t. No one wants to live in a Big Brother state.
- Privacy rights prevents corporations from using personal data for their benefits
When privacy is recognized as a basic human right, there are consequences for those who disrespect it. While there are many “soft” examples of personal data use, like targeted ads, established privacy rights draw a line in the sand. without these restrictions, corporations and governments are more likely to steal and misuse data without consequences. Privacy laws are necessary for the protection of privacy rights.
- With Privacy rights social boundaries are maintained
Having the right to establish boundaries is important for healthy relationships and careers. Everyone has things they don’t want certain people to know. In the past, putting up boundaries simply choosing to not talk about specific topics.
However, the amount of personal information kept online makes the process more complicated. Social media can reveal a lot of information we don’t want certain people (or strangers) to know. Media platforms are obligated to offer security features. Having control over who knows what gives us peace of mind.
- It helps build trust
Trust is central in every relationships, the most important thing. When it comes to the personal data given to a doctor or a bank, people need to feel confident that the information is safe. Respecting privacy rights builds up that confidence. Privacy rights also give a person confidence that if the other party breaks that trust, there will be consequences.
- Privacy rights assures our control over our data
You ought to have control over your data. Privacy rights dictate that your data can only be used in ways you agree to and that you can access any information about yourself. If you didn’t have this control, you would feel helpless. It would also make you very vulnerable to more powerful forces in society.
Privacy rights put you in the driver’s seat of your own life.
- Freedom of speech and thought are protected by privacy rights
If privacy rights weren’t established, everything you do could be monitored. That means certain thoughts and expressions could be given a negative label. You could be tracked based on your personal opinions about anything. If privacy rights didn’t let you keep your work and home life separate, “thought crimes” or what you say off the clock could get you in trouble. Privacy rights protect your ability to think and say what you want without fear of an all-seeing eye.
- Privacy rights let you engage freely in politics
There’s a reason that casting your vote is done confidently. You are also not required to tell anyone who you voted for. Privacy rights let you follow your own opinion on politics without anyone else seeing.
This is important in families with differing worldviews. It also protects you from losing your job because of your political leanings. While you can’t control what people think about you because of your views, you do have the right to not share more than you’re comfortable with.
- Privacy rights protect your reputations
We’ve all posted something online that we regret or done something foolish. It can come back to haunt us and ruin our reputations. Privacy rights help protect us and can give us the power to get certain information removed. The EU specifically addresses this with the “right to be forgotten” law. This lets people remove private information from internet searches under some circumstances by filing a request. Revenge porn, which is a violation of privacy, is a big example of personal data that can destroy a person’s reputation.
- It protects your finances
Companies that store personal data should protect that information because of privacy rights. When companies fail to make security a priority, it can have devastating consequences. You can have your identity stolen, credit card numbers revealed, and so on. When you give your financial information to a specific entity, you are trusting them to restore them to respect your privacy rights.
Historical analysis OF Right to Privacy
The notion of a “right to privacy” began when the Latin word is expanded from meaning ‘what is fair’ to include ‘a right’ – an entitlement a person possesses to control or claim something, “by the Decretum Gratiani in Bologna, Italy in the 12th century.
An article on 15 December 1890, in the United States issue of Harvard Law Review entitles “The Right to Privacy”, written by attorney Samuel D. Warren II and future U.S. Supreme Court Justice Louis Brandeis, is often cited as the first explicit finding of a U.S. right to privacy. Warren II and Brandeis wrote that privacy is the “right to be let alone”, and focused on protecting individuals. This approach was a response to recent technological developments of the time, such as photography and sensationalist journalism, also known as “yellow journalism”.
Privacy rights are inherently intertwined with information technology. In his widely cited dissenting opinion in Olmstead v. United States (1928), Brandeis relied on thought he developed in the article “The Right to Privacy”. In that dissent, he argued that personal privacy matters were more relevant to constitutional law, going so far as to say that “the government was identified as a potential privacy invader”.
He writes, “Discovery and invention have made it possible for the government, by means far more effective than stretching upon the rack, to obtain disclosure in court of what is whispered in the closet. “At that time, telephones were often community assets, with shared party lines and potentially eavesdropping switchboard operators. By the time of Katz, in 1967, telephones had become personal devices with lines not shared across homes and switching was electro-mechanical. In 1970s, new computing and recording technologies raised more concerns about privacy, resulting in the Fair Information Practice Principles.
In recent years there have been few attempts to clearly and precisely define the “right to privacy”.
Individual right alteration
The new technologies according to Alan Westin alter the balance between privacy and disclosure and that privacy rights may limit government surveillance to protect democratic processes. Westin defines privacy as “the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is communicated to others”.
Westin describes four states of privacy: solitude, intimacy, anonymity, reserve. These states must balance participation against norms:
Each individual is continually engaged in a personal adjustment process in which he balances the desire for privacy with the desire for disclosure and communication of himself to others, in light of the environmental conditions and social norms set by the society in which he lives.
Under liberal democratic systems, privacy creates a space separate from political life, and allows personal autonomy, while ensuring democratic freedoms of association and expression. privacy to individuals is the ability to behave, think, speak, and express ideas without the monitoring or surveillance of someone else. Individuals exercise their freedom of expression through attending political rallies and choosing to this their identities online by using pseudo names.
David Flaherty believes networked computer databases pose threats to privacy. he develops ‘data protection’ as an aspect of privacy, which involves “the collection, use, and dissemination of personal information”. This concept forms the foundation for fair information practices used by government globally. Flaherty forwards an idea of privacy as information control, “individuals want to be left alone and to exercise some control over how information about them is used”.
Marx Rotenberg had described the modern right to privacy as Fair Information Practices: “the rights and responsibilities associated with the collection and use of personal information:. Rotenberg emphasizes that the allocation of rights are to the data subject and the responsibilities are assigned to the data collectors because of the transfer of the data and the asymmetry of information concerning data practices.
Richard Posner and Lawrence Lessig focus on the economic aspects of personal information control. Posner criticizes privacy for concealing information, which reduces market efficiency. For Posner, employment is selling oneself in the labor market, which he believes is like selling a product. Any ‘defect’ in the ‘product’ that is not reported is fraud. For Lessig, privacy breaches online can be regulated through code and law. Lessig claims “the protection of privacy would be stronger if people conceived of the right as a property right”, and that “individuals should be able to control information about themselves”. Economic approaches to privacy make communal conceptions of privacy difficult to maintain.
A collective value and a human right
Attempts have been made to reframe privacy as a fundamental human right, whose social value is an essential component in the functioning of democratic societies.
Priscilla Regan believes that individual concepts of privacy have failed philosophically and in policy. She supports a social value of privacy with three dimensions: shared perceptions, public values, and collective components. Shared ideas about privacy allow freedom of conscience and diversity in thought. Public values guarantee democratic participation, including freedoms of speech and association, and limits government power.
Collective elements describe privacy as a collective good that cannot be divided. Regan’s goal is to strengthen privacy claims in policy making: “if we did recognize the collective or public-good value of privacy, as well as the common and public value of privacy, those advocating privacy protections would have a stronger basis upon which to argue for its protection”.
Leslie Regan Shade argues that the human right to privacy is necessary for meaningful democratic participation, and ensures human dignity and autonomy. Privacy depends on norms for how information is distributed, and if this is appropriate. Violations of privacy depend on context. The human right to privacy has precedent in the United Nations Declaration of Human rights. shade believes that privacy must be approached from a people-centered perspective, and not through the marketplace.
Jurisdictional laws and applications on privacy
The Constitution is the highest law in China. Privacy rights have been applied throughout China. The constitution provides direction for all states in China and it further stipulates that “all states must abide by and be held accountable for any violation of the Constitution and the law; the law specifically protects civil rights of a citizen’s personal dignity and confidentiality of correspondence’. China has a new standard and the first of its kind for the country coming into effect 1 January 2021, the Civil Code is the first of its kind sweeping law replacing all laws covering general provisions, real property, contracts, personality rights, marriage and family, inheritance, tort liability, and supplementary provisions.
In many cases raised in the legal system, these rights have been overlooked as the courts have not treated each case with the same legal precedent for each case. China sees human rights as a threat and regularly spies on its citizens, largely through mass surveillance and CCTV. China is also known to censor historical events that put the government of China in a bad light and control the amount of information citizens can see beyond the country firewall.
Australia does not have a constitutional right to privacy. However, the Privacy Act 1988 (Cth) provides a degree of protection over an individual’s personally identifiable information and its usage by the government and large companies. The Privacy Act also outlines the 13 Australian Privacy Principles.
Australia also lacks a tort against invasions of privacy. In 2001 case of Australian Broadcasting Corporation v Lenah Game Meats Pty Ltd, 2008 CLR 199, the High Court of Australia explained that there stood the possibility of “a tort identified as unjustifiable invasion of privacy”, but that this case lacked the facts to establish it. Since 2001, there have been some states-based cases-namely the 2003 case of Grosse v Purvis, QDC 151; and the 2007 case of Doe v Australian Broadcasting Corporation, VCC 281-that attempted to establish a tortious invasion of privacy, but these cases were settled before decisions could be met. Further, they have received conflicting analysis by later cases.
Compared to the United States, the European Union (EU) has more extensive protection laws.
The General Data protection regulation (GDPR) is an important component of EU privacy law and of human rights law, in particular Article 8(1) of the Charter of Fundamental Rights of the European Union.
Under GDPR, data about citizens may only be gathers or processed under specific cases, and with certain conditions. Requirement of data controller parties under the GDPR include keeping records of their processing activities, adopting data protection policies, transparency with data subjects, appointing a Data protection Officer, and implementing technical safeguards to mitigate security risks.
Council of Europe
The Council of Europe’s gathers to discuss the protection of individuals, during the Convention Treaty No.108 was created and opened for signature by members States and for accession by non-member States.
The Convention closed and the was renamed Convention 108: Convention for the Protection of individuals with regard to Automatic Processing of Personal Data. Convention 108 has undergone 5 ratifications with the last ratification 10 January 1985 officially changing the name to Convention 108+ and providing the summary stating the intent of the treaty as:
The first binding international instrument which protects the individual against abuses which may accompany the collection and processing of personal data, and which seeks to regulate at the same time the transfrontier flow of personal data.
Increase use of the internet and technological advancement in products lead to the Council of Europe to look at Convention 108+ and the relevance of the Treaty in the wake of the changes.
In 2011 the modernization of Convention 108+ started and completed in 2012 amending the treaty with Protocol CETS N0223.
This modernization of Convention 108+ was in progress while the EU data protection rules were developed, the EU data protection rules would be adapted to become the GDPR.
The new data sharing policy of WhatsApp with Facebook after Facebook acquired WhatsApp in 2014 has been challenged in the Supreme Court. The Supreme Court must decided if the right to privacy can be enforced against private entities.
The Indian Supreme Court under JS Khehar, ruled on 24 August 2917, that the right to privacy is a fundamental right for Indian citizens per Article 21 of the Constitution and additionally under Part III rights. Specifically, the court adopted the three-pronged test required for the encroachment of any Article 21 right-legality – i.e. through an existing law; necessity, in terms of a legitimate state objective and proportionality, that ensures a rational nexus between the object of the invasion and the means adopted to achieve that object.
This clarification was crucial to prevent the dilution of the right in the future on the whims and fancies of the government in power. The court adopted a liberal interpretation of the fundamental rights to meet the challenges posed an increasing digital age. It held that individual liberty must extend to digital spaces and individual autonomy and privacy must be protected.
This ruling by the Supreme Court paved the way for decriminalization of homosexuality in India on 6 September 2018, thus illegalizing same-sex sexual intercourse between two consenting adults in private. India is the world’s biggest democracy and with this ruling, it has joined United States, Canada, South Africa, the European Union, and the UK in recognizing this fundamental rights.
In Israel privacy protection is a constitutional basic right and is therefore protected by the Basic Law. Basic Law: the Knesset passed on 12 February 1958, but the Third Knesset. The Twelfth Knesset update to the Basic Law occurred on 17 March 1992. This update added to the law Human Dignity and Liberty by defining:
Human freedom in Israel as being the right to leave the country and enter it, as well as the right to privacy and intimacy, refrainment from searches relating to one’s private property, body and possessions, and avoidance of violations, and avoidance of violations of the privacy of one’s speech, writings and notes.
October 2006 Israel established a regulatory authority, the PPA, part of the Ministry of Justice. PPA defined the Privacy Law and associated regulates based on two principles: general right to online privacy and the protection of person data stored in databases.
The Constitution of the Russian Federation: Article 45 states:
- State protection of human and civil rights and freedoms in the Russian Federation shall be guaranteed.
- Everyone shall have the right to protect his (her) rights and freedoms by all means not prohibited by law.
The Russian Constitution specifically articles 23 and 24, institutes individual citizens the right to privacy. Russia, a member of the Strasbourg Convention, ratified processing of personal data against automatic processing and afterwards adopted a new convention. The new Russian Federal Law No.152-FZ R implemented on 27 July 2006, was updated to cover Personal data and this law extends privacy to include personal and family secrets. It main target is to protect individuals’ personal data.
Privacy entered the forefront of Russian legislature in 2014 when the approach to privacy turned to the goal of protecting privacy of government operations and the people of Russia. The amendments originally modified the Personal Data Law which has since been renamed The Data Localization Law. The new law requires business operators who collect any information on Russian citizen’s must maintain the collected data locally. This means that data transmission, processing, and storage must be in a database in Russia. 1 March 2021, the new amendment came into effect. Consent from the data subject is required if the data operator wants to use the data publicly.
The Constitution of the United States and United States Bill of Rights do not explicitly include a right to privacy. Currently no federal law takes a holistic approach to privacy regulation.
In the U.S, privacy and associated rights have been determined via court cases and the protections have been established through laws.
The Supreme Court in Griswold v. Connecticut, 381 U.S. 479 (1965) found that the Constitution guarantees a right to privacy against governmental intrusion via penumbras located in the founding text.
In 1890, Warren and Brandeis drafted an article published in the Harvard Law Review titled “The Right to Privacy” that is often cited as the first implicit finding of a U.S. stance on the right of privacy.
Right to privacy has been the justification for decisions involving a wide range of civil liberties cases, including Pierce v. Society of Sisters, which invalidated a successful 1922 Oregon initiative requiring compulsory public education; Roe v. Wade, which struck down an abortion law from Texas ,and thus restricted state powers to enforce laws against abortion, and Lawrence v. Texas, which struck down a Texas sodomy law, and thus eliminated state powers to enforce laws against sodomy. Dobbs v. Jackson Women’s Health Organization later overruled Roe v. Wade, in part due to the Supreme Court finding that the right to privacy was not mentioned in the constitution, leaving the future validity of these decisions uncertain.
Legally, the right of privacy is a basic law which includes:
- The right of persons to be free from unwarranted publicity
- Unwarranted appropriation of one’s personality
- Publicizing one’s private affairs without a legitimate public concern
- Wrongful intrusion into one’s private activities.
In 2018, California set out to create a policy promoting data protection, the first state in the United States to pursue such protection. The resulting effort is the California Consumer Privacy Rights (CCPA), reviewed as a critical juncture where the legal definition of what privacy entails from California lawmakers’ perspective. The California Consumer Protection Act is a privacy law protecting the residents of California and their Personal identifying information. The law enacts regulation over all companies regardless of operational geography the six Intentional Acts included in the law.
Intentions of the CCPA Act
The intentions included in the Act provide California residents with the right to:
- Know what personal data is being collected about them
- Know whether their personal data is sold or disclosed and to whom
- Say not o the sale of personal data
- Access their personal data
- Request a business to delete any personal information about a consumer collected from that consumer.
- Not be discriminated against for exercising their privacy rights.
Government organizations such as the National Security Agency (NSA), CIA, and GCHQ amongst others are authorized to conduct public surveillance throughout other nations of the world. Programs such as PRISM, MYSTIC, and other operations conducted by NATO-member states are capable of collecting a vast quantity of metadata, internet history, and even actual recordings of phone calls from various countries.
Domestic law enforcement at the federal level is conducted by the Federal Bureau of Investigation, so these agencies have never been authorized to collect US data.
After the September 11 attacks, the NSA turned its surveillance apparatus on the US and its citizens. In March 2013, James Clapper, the Director of National Intelligence at the time, testified under oath that the NSA does not “wittingly” collect data on Americans. Clapper later retracted this statement.
The governments own Privacy and Civil Liberties Oversight Board (PCLOB) reviewed the confidential security documents, and found in 2014 that the program did have “a single instance involving a threat to the United States in which the program made a concrete difference” in counterterrorism or the disruption of a terrorist attack.
It is often claimed, particularly by those in the eye of the media, that their right to privacy is violated when information about their private lives is reported in the press. The point of view of the press, however, is that the general public has a right to know personal information about those with status as a public figure. This distinction is encoded in most legal traditions as an element of freedom of speech.
Publication of private facts
Publication of private facts speaks of the newsworthiness of private facts according to the law and the protections that private facts have. If a fact has significant newsworthiness to the public, it is protected by law under the freedom of the press. However, even if the fact is true, if it is not newsworthy, it is not necessarily protected. Digital Media Law Report uses examples such as sexual orientation, HIV status, and financial status to show that these can be publicly detrimental to the figure being posted about. The problem arises from the definition of newsworthiness.
According to Digital Media Law Project, the courts will usually side with the press in the publication of private facts. This helps to uphold the freedom of the press in the US Constitution. “there is a legitimate public interest in nearly all recent events, as well as in the private lives of prominent figures such as movie stars, politicians, and professional athletes”.
Digital Media Law Project supports these statements with citations to specific cases. While most recent events and prominent figures are considered newsworthy, it cannot go too far and too deep with a morbid curiosity. The media gain a lot of leverage once a person becomes a prominent figure and many things about their lives become newsworthy. Multiple cases such as Strutner v. Dispatch Printing Co., 442 N.E.2d 129 (Ohio Ct. App. 1982) show that the publication of a person’s home address and full name who is being questioned by the police is valid and “a newsworthy item of legitimate public concern”. The last part to consider is whether this could be considered a form of doxing. With the court upholding the newspaper’s right to publish, this is much harder to change in the future. Newsworthiness has much around it that is held up by court rulings and case law.
However, this is not in legislation but is created through the courts, as many other laws and practices are. These are still judged on a case-by-case basis as they are often settled through a lawsuit of some form. While there is fair amount of case law supporting newsworthiness of subjects, it is hardly comprehensive and, news publications can publish things not covered and defend themselves in court for their right to publish these facts.
Private sector actors can also threaten the right to privacy – particularly technology companies, such as Amazon, Apple, Facebook, Google, and Yahoo that use and collect personal data.
In some American jurisdictions, the use of a person’s name as a keyword under Google’s AdWords for advertising or trade purposes without the person’s consent has raised certain personal privacy concerns.
The right to privacy and social media content laws have been considered and enacted in several states, such as California’s “online erasure” law protecting minors from leaving a digital trail. However, the United States is still far behind that of European Union countries in protecting privacy online. For example, the “right to be forgotten” ruling by the EU Court of Justice protects both adults and minors.
Protection of minors in United Kingdom
Laws and courts in the UK uphold the protection of minors in the journalistic space. The Independent Press Standards Organization (IPSO) in the UK have shown that the usage of footage of a 12-year-old girl being bullied in 2017 can be retroactively taken down due to fears of cyber-bulling and potential harm done to the child in the future. This was after the Mali Online published the video without any attempt to hide the identity of the child. Following the newsworthiness point, it is possible that content like this would be allowed in the united States due to the recentness of the event. Protection of minors is a different matter in the United States with new stories about minors doing certain things and their faces are shown in a news publication. The Detroit Free Press, as an example, chose to do a hard-hitting story about prostitution and drugs from a teenager but never named her or showed her face, only referring to her and the “16-year-old from Taylor”. In the UK, during the case of Campbell v MGN, Lord Hope stated that the protection of minors will be handled on a case-by-case basis and affected by the child’s awareness of the photo and their expectation of privacy. many factors will be considered such as the age of the children, activity, usage of real names, etc.
The protection of minors and children in the United States often falls on the shoulders of The Children’s Online Privacy Protection Act (COPPA). This protects any children under the age of 13 from the collection of their data without the parent’s or guardian’s permission. This law is the reason why many sites will ask if you are under 13 or require you to be 13 to sign up. While this law is good for protecting children’s information, it fails to protect the information of anyone older than 13. It also begins to overlap with other privacy protection laws such as the Health Insurance Portability and Accountability Act (HIPAA).
Privacy rights in Nigeria
In order to establish the right to privacy, common law sought to explore whether the individual could establish whether there is a breach of confidentiality. It is them most surprising that the Nigerian courts being strongly connected to the English common law have found it increasingly difficult to find an adequate definition of the concept. The Nigeria courts have interpreted the law relating to privacy as enshrined in international, regional documents and national (Nigeria) legislation. However, I must give kudos to the Nigerian courts for the extent gone ensuring the right to privacy of Nigerians are protected.
Right to privacy cases
- Strutner v. Dispatch Printing Co., 442 N.E.2d 129 (Ohio Ct. App. 1982)
- Roe v Wade
- Dobbs v. Jackson
- Lawrence v. Texas
- Pierce v. Society of Sisters
- Griswold v. Connecticut, 381 U.U. 479 (1965)
- Grosse v. Purvis, QDC 151
- Doe v. Australian Broadcasting Corporation, VCC 281
- Australian Broadcasting Corporation v. Lenah Game Meats Pty Ltd, 2008 CLR 199
- Campbell v. MGN
Right to privacy act
- Health Insurance Portability and Accountability Act (HIPAA)
- The Children’s Online Privacy Protection Act (COPPA)
- The Independent Press Standards Organization (IPSO)
- Digital Media Law Project
- Privacy and Civil Liberties Oversight Board (PCLOB)
- The California Consumer Protection Act (CCPA)
- Convention Treaty No.108
- The General Data Protection Regulation (GDPR)
- The Privacy Act (Australian Privacy Principles)