Navigating the Incoherence of Big Data Reform Proposals

Terry N. , “Protecting Patient Privacy in the Age of Big Data,” UMKC Law Review 81 (2013): 385–415; Terry N. , “Big Data Proxies and Health Privacy Exceptionalism,” Health Matrix 24 (2014): 65–108.

Consumer Data Privacy in a Networked World: A Framework for Protecting Privacy and Promoting Innovation in the Global Digital Economy (2012), available at <http://www.whitehouse.gov/sites/default/files/privacy-final.pdf> (last visited February 12, 2015).

Id., a t 13.

Federal Trade Commission, Protecting Consumer Privacy in an Era of Rapid Change: Recommendations for Businesses and Policymakers (2012), available at <http://www.ftc.gov/reports/protecting-consumer-privacy-era-rapid-change-recommendations-businesses-policymakers> (last visited February 12, 2015).

Id., at vii.

Id., at iv-v, 73.

See “Data Proxies,” supra note 1.

See e.g., “The NSA Files,” The Guardian, available at <http://www.theguardian.com/world/the-nsa-files> (last visited February 12, 2015).

The White House, Big Data: Seizing Opportunities and Preserving Values, available at <http://www.whitehouse.gov/sites/default/files/docs/big_data_privacy_report_5.1.14_final_print.pdf> (last visited February 12, 2015).

The White House Blog, “Big Data and the Future of Privacy,” January 23, 2014, available at <http://www.whitehouse.gov/blog/2014/01/23/big-data-and-future-privacy> (last visited February 12, 2015).

See White House, supra note 9, at 48, 51, 60.

FTC, Data Brokers: A Call for Transparency and Accountability, May 2014, available at <http://www.ftc.gov/system/files/documents/reports/data-brokers-call-transparency-accountability-report-federal-trade-commission-may-2014/140527databrokerreport.pdf> (last visited February 12, 2015).

Id., at viii–ix.

FTC § 5(a)(1) “Unfair methods of competition in or affecting commerce, and unfair or deceptive acts or practices in or affecting commerce, are hereby declared unlawful.” F.T.C. v. Wyndham Worldwide Corp., (D. NJ 2014) (FTC had authority to regulate companies' failure to maintain reasonable and appropriate data security).

See, e.g., In Re LabMD, available at <http://www.ftc.gov/system/files/documents/cases/140520labmdmotion.pdf> (FTC asserts jurisdiction notwithstanding defendant may be subject to HIPAA) (last visited February 12, 2015).

President's Council of Advisors on Science and Technology, Big Data and Privacy: A Technological Perspective, available at <http://www.whitehouse.gov/sites/default/files/microsites/ostp/PCAST/pcast_big_data_and_privacy_-_may_2014.pdf> (last visited February 12, 2015).

Id., at 40–50.

FTC, Enforcing Privacy Promises, available at <http://www.ftc.gov/news-events/media-resources/protecting-consumer-privacy/enforcing-privacy-promises> (last visited February 12, 2015).

Letter from FTC Commissioner Jessica Rich to National Telecommunications and Information Administration, August 1, 2014, available at <http://www.ftc.gov/system/files/documents/public_statements/573301/140801bigdatacomment.pdf> (last visited February 12, 2015).

Edith Ramirez, Chairwoman, FTC, Keynote Address at the Technology Policy Institute Aspen Forum: The Privacy Challenges of Big Data: A View From the Lifeguard's Chair (August 19, 2013), at 7, available at <http://ftc.gov/speeches/ramirez/130819bigdataaspen.pdf> (last visited February 12, 2015).

Case C-131/12 Google Spain SL v. Agencia Española de Protección de Datos, 2014, available at <http://curia.europa.eu/juris/document/document.jsf?text=&docid=152065&pageIndex=0&doclang=EN&mode=req&dir=&occ=first&part=1&cid=19683> (last visited February 12, 2015).

Information Commissioner's Office, “Big Data and Data Protection,” at 41, 2014, available at <http://ico.org.uk/for_organisations/data_protection/topic_guides/big_data> (last visited February 12, 2015). See also Le Conseil d'État, “Le numérique et les droits fondamentaux,” September 9, 2014, available at <http://www.ladocumentationfrancaise.fr/rapports-publics/144000541/> (last visited February 12, 2015).

White House Consumer Privacy Bill of Rights, 2015, available at <http://www.whitehouse.gov/sites/default/files/omb/legislative/letters/cpbr-act-of-2015-discussion-draft.pdf> (last visited March 4, 2015). Based loosely on the 2012 White House framework the draft bill suggests an over-reliance on industry codes of conduct while preempting more protective sate laws.