Reason Magazine

In April 1990, Lotus Development Corp. proudly announced the release of Marketplace:Households, "a new desktop information product for Apple Macintosh personal computers thatallows any business person to perform sophisticated sales prospecting and market analysis."Marketplace: Households combined information about 120 million U.S. consumers, stored oncompact disks, with software that would have allowed users to select lists of names and addressesbased on nine marketing criteria.

Priced at $695 (plus additional fees for lists), the data base would have provided small businessesand nonprofit organizations with information that had previously been available only to largecompanies. For example, the owner of a trendy new restaurant could get a list of young, affluentpeople living near his establishment. A local political organization could target older, marriedhomeowners in a given neighborhood. Marketplace: Households was scheduled to hit computerstores in the fall.

It didn't. After unveiling the product, Lotus received some 30,000 letters of complaint, many ofthem by electronic mail. Privacy advocates, including the American Civil Liberties Union,condemned the data base. "It simply shouldn't be allowed on the market," said Marc Rotenberg,Washington director of Computer Professionals for Social Responsibility. In January 1991, Lotusannounced that it was canceling the information package.

Meanwhile, Equifax Inc., which provided the data for Marketplace: Households, was doing somerethinking of its own. Last August, the credit-reporting giant announced that it was getting out ofthe marketing-data business, except for credit-related purposes. "Continuing the business justwouldn't be consistent with a socially responsible position," Equifax senior vice president JohnBaker told The Wall Street Journal. Equifax urged its competitors to follow suit. In fact, inOctober it urged Congress to force its competitors to follow suit.

Underlying these two dramatic reversals is the amorphous concept of informational privacy,variously described as a right, a concern, an interest, and a preference. In the broadest sense, yourinformational privacy has been violated when someone knows something about you that you don'twant them to know. Traditionally, the "someone" has been the government, as represented infiction by Big Brother and in real life by J. Edgar Hoover. But in recent years, the focus of publicdebate has shifted to the private sector, especially large businesses and organizations. Privacyadvocates voice concern about a wide range of commercial activities, including credit reporting,job screening, direct marketing, insurance and medical record keeping, debit-card purchases, andelectronic toll collection.

For the most part, these activists are not talking about clearly illegal invasions of privacy, such aswire tapping or unauthorized access to computer files. They are more alarmed by the standardoperating procedures of credit bureaus, direct marketers, retailers, and others who deal incomputerized information. They complain that you can hardly engage in a business transactionthese days without leaving electronic footprints, often without realizing it.

Judging from press coverage, the commercial collection and dissemination of personalinformation, fueled by faster, cheaper computers and new software, have created a privacy crisis."Personal privacy is currently endangered, not because the information is available, but because itcan be accumulated, massaged, maybe even changed, with astonishing ease," an article in StudentLawyer reported in 1983. "If widely adopted, computer systems now in use experimentally couldcreate electronic records for the food we eat, the brand of toothpaste we buy, the newspaperarticles we read, and the routes we drive to work. Improperly used, these data banks coulddestroy the last vestiges of personal privacy in the United States....Both the private sector and thegovernment have shown themselves anxious to amass files that might allow them, ultimately, toknow more about us than we know about ourselves."

Nearly a decade later, such warnings are still common: "Privacy in the United States isincreasingly being invaded in today's world of computers and interconnected databanks" (TheChristian Science Monitor); the nation is moving "closer to the day when all the informationavailable on one person could be gathered in one place and then easily retrieved, sold ormanipulated by anyone" (The Washington Post); direct marketing "has been instrumental in theerosion of personal privacy" (The Wall Street Journal); "the combination of invasive technologiesand lax laws threatens to make the U.S. a nation of people who live in glass houses" (Time).

Even privacy advocates admit that much of the press coverage is speculative and overwrought."It's disappointing to me that all the stories in the press on this issue are what I call 'view withalarm' stories," says Robert Ellis Smith, publisher of Privacy Journal. "A large part of thepopulation probably thinks that there is a central data bank with all sorts of information aboutpeople in it. That's not the truth, but a lot of people think that. The rhetoric in the storiesreinforces that."

But the issue of informational privacy is not entirely a media creation. The letters protestingMarketplace: Households indicate that many Americans are worried that strangers withcomputers know too much about them. One consumer, under the misimpression that the Lotusdata base would include actual salaries, complained that "people's salaries are their ownbusiness....I could be fired for telling the person I sit next to what I make, and yet these peopleplan to publish it." Writing in The New York Times shortly after Marketplace: Households wascanceled, Mary J. Culuan, an associate professor of business administration at GeorgetownUniversity, compared discovering that a private data base has information about you to "learningthat you are being filmed secretly in the shower."

According to Lou Harris polling data, the percentage of Americans who said they were"concerned" about privacy increased from 33 percent to 79 percent between 1970 and 1991; thepercentage who were "very concerned" went from 25 percent to 48 percent. This dramatic riseprobably has a lotto do with the advent of computer-driven direct marketing, which has brought aflood of junk mail and junk phone calls into American homes.

Frustration with annoying solicitations has prompted some paradoxical responses. In November,Congress approved legislation that requires the Federal Communications Commission to maintaina list of people who say they don't want to receive telemarketing calls. Marketers are forbidden tocall anyone on the list. Thus, in the name of privacy, the government will keep a central record ofpeople with certain attitudes. How long will it be before a bureaucrat decides that taxpayers whoare especially concerned about privacy are also more likely to be hiding income from the IRS?

Still, the move to regulate telephone solicitations indicates growing hostility toward directmarketers. "It's the first thing that people think of when they think of privacy," says Smith. "It'sthe tip of the iceberg, the one time they can see the result of the pooling of computer data withouttheir knowledge to create information about them....It's symbolic, I guess, to a lot of people."

Just what it's symbolic of, though, is hard to get a handle on. When they discuss the perceivedthreat represented by the collection and dissemination of computerized information, consumers,business people, and privacy advocates are often talking about quite different things. Publicconcerns are vague, a mixture of annoyance at direct marketing, worries about data collection,and fear of computer technology. Business people tend to view these feelings as consumerpreferences, something to take into account along with concerns about cholesterol, aging, bodyodor, and the environment.

But privacy advocates generally consider expectations about how information will be handled amatter of right that should be enforced by law. "Our current laws are inadequate," declares a 1991report from Computer Professionals for Social Responsibility and the U.S. Privacy Council. "Nocitizen can be assured that information disclosed for one purpose will not be used for anotherpurpose...or that private companies will not exploit collections of personal information forcommercial gain." CPSR and the Privacy Council support legislation that would create a nationalData Protection Board, restrict the flow of computerized information, and ban some transfers,such as the sale of marketing data by credit bureaus.

Janlori Goldman, director of the ACLU's Privacy and Technology Project, would like to see aseparate statute for every business that deals with information about people. Congress has alreadypassed a number of laws covering specific industries, including the Fair Credit Reporting Act(credit bureaus), the Cable Communications Policy Act (cable TV), the Right to Financial PrivacyAct (banks), and the Family Educational Rights and Privacy Act (schools). Goldman saysCongress should strengthen these laws and add more as needed.

Others are leery of such a top-down approach. "It's a very bad solution," says Alan F. Westin, aprofessor of public law and government at Columbia University who has studied privacy issuesfor more than 40 years. "It would be horrendous for the flow of goods and services in theAmerican marketplace." Westin, who has done consulting work for Equifax, argues that a batchof complex legislation is unnecessary and undesirable, that concerns about informational privacycan be addressed through market mechanisms and established common-law principles.

When you consider the right to informational privacy in the abstract, the call for more laws andregulations may seem sensible. But once you try to define the right and apply it to real situations,the advantages of Westin's more flexible approach become apparent. Privacy expectations varyfrom person to person and depend heavily on the type of information involved. Rather thanimposing a one-size-fits-all solution, the law should allow people to attach enforceable conditionsto the disclosure of information about themselves. In the final analysis, the right to informationalprivacy is nothing more than a variation on the right of contract.

The contract model is a vital safeguard against the excesses of well-meaning but overzealousprivacy advocates. The power to control information about you is the power to control the speechof others. Based on contract, such control is strictly limited. Based on nebulous concerns aboutprivacy, it is open ended. Thus, a concept intended to protect individual dignity and autonomycould become a new rationale for censorship.

The controversy over Marketplace: Households shows how informational privacy relies on theidea of implicit contracts. When pressed, privacy advocates say the crucial problem with the database was that Equifax used information from its credit files to put it together. Equifax got namesand addresses directly from its files, determined sex from first names, identified married peoplethrough joint credit-card accounts, and placed people into age ranges based on dates of birth. Itused other information from its files, such as occupation, to help decide what sort of people (forexample, "successful singles") lived in which neighborhoods (identified by nine-digit zip codes).

Equifax supplemented information from the credit files with data from public sources such as theU.S. Census, the Bureau of Labor Statistics, and the U.S. Postal Service. It also purchased datafrom R.L. Polk & Co., a Detroit firm that compiles lists based on publicly available information,such as wedding announcements and vehicle registration records. Using these data, informationfrom its credit files, and results from consumer surveys, Equifax linked extended zip codes toshopping habits (for example, "plays tennis" or "buys do-it-yourself products"), enhancing itsneighborhood profiles.

When all was said and done, though, Marketplace: Households offered very little specificinformation about individuals. Instead, it included them on lists of people sharing certain broadcharacteristics (including income ranges), mostly based on where they lived. Lotus and Equifaxboth emphasized that the data base was not designed to allow a user to get even this roughinformation by typing in a name. The data base included other safeguards as well: no phonenumbers, no lists of single women, no lists of people over the age of 65.

Still, in the eyes of most privacy advocates, Equifax had broken a promise. "Credit informationought to be held in trust," Smith says. "It's the clear intention of the Fair Credit Reporting Actthat credit information be used only for credit, insurance, or employment. It was nevercontemplated that the information would be used for marketing purposes." Credit bureaus notethat the law also allows use of the information for any other "legitimate business need," and theyhave argued that this covers the sale of marketing data.

But Smith is making a broader point as well. When you apply for a credit card or a bank loan, youexpect that the information you divulge will be passed on to a credit bureau, which will then keeptrack of your purchases and payments. You know that other providers of credit, insurers,prospective employers, and perhaps landlords will have access to your file. (Indeed, in many casesyou explicitly authorize this access when you apply for a loan, insurance, a job, or an apartment.)But you probably don't expect that some of the information in your credit file will be sold to directmarketers. And you can't possibly consent to something you don't know about.

So by using information in its credit files for a purpose other than that intended by the originalsource, Equifax

violated an implicit contract. More precisely, the banks, department stores, and other businessesthat give Equifax information broke a tacit agreement with their customers by failing to stop thecredit bureau from sharing the information with direct marketers. The violation could haveoccurred with written records as well as electronic information; computers just made it easier.Moreover, the violation did not hinge on how sensitive the information in Marketplace:Households was or how effective the "privacy safeguards" built into it were, although most of thecomplaints from consumers focused on these issues.

Critics of Marketplace: Households agree that Equifax's chief sin was breaking the first rule ofinformational privacy: Information disclosed for one purpose should not be used for anotherpurpose without the subject's consent. First suggested in the early '70s, this principle is embodiedin the European Community's proposed privacy regulations and endorsed by virtually everyprivacy advocate. But although the rule seems quite reasonable, nailing down its implications inthe real world is tricky.

Much depends on how you define "consent" and what you think constitutes "another purpose."Under a loose interpretation, your information would be fair game once you revealed it to anyone,unless you explicitly indicated otherwise. Under a strict interpretation, you would have tospecifically authorize every transfer of information. At one extreme, you might find total strangersprivy to sensitive and perhaps embarrassing information about you)your salary, the movies yousee, the self-help books you buy. At the other extreme, investigative reporters might have to giveadvance notice to the subjects of their exposes, and many common business practices)such asrenting customer lists and soliciting orders by mail)could become prohibitively expensive.

Businesses with operations in Europe are worried that they will soon be at the mercy of E.C.bureaucrats charged with making such decisions. As proposed, the E.C. privacy regulations wouldrequire businesses to get explicit permission for secondary uses. For example, a magazine withEuropean subscribers would have to obtain consent from each one before selling or renting theirnames and addresses to direct marketers. The standard practice now is to notify subscribers thatthey can ask to be removed from such lists. If they don't, it's assumed that they have consented.By reversing that assumption, the E.C. would effectively ban the rental of subscription lists bymaking them too costly to be worthwhile.

Another troubling aspect of the proposed regulations is a ban on the transfer of computerizedinformation between the E.C. and any country without "adequate" privacy protection. This couldstop international businesses from sending personnel files or customer records from the UnitedStates to Europe, and vice versa. Smith suggests that the E.C. may distinguish betweeninformation, such as that in credit files, that is regulated by U.S. law and information, such as thatin personnel records, that is not. In the latter case, he says, the E.C. may be satisfied by a strictcompany policy, rather than insisting on a law. He acknowledges, though, that the bureaucraticcosts will be heavy.

The main problem with the European approach)which CPSR and the Privacy Council endorse)isits rigidity. As proposed, the rules do not recognize that different standards may be appropriatefor different situations. For example, when you subscribe to a magazine, you probably expect thatyour name and address will end up on a mailing list that marketers will use to try to sell you othermagazines, books, music, sweaters, and electronic gadgets. If this bothers you, you can readilyhave your name removed from the list. But most people, although they occasionally complainabout junk mail, also occasionally respond to solicitations.

"Prior-consent legislation is not in the best interest of consumers," argues Lorna Christie, vicepresident for ethics and consumer affairs with the Direct Marketing Association. "If I had toauthorize every transaction before it could happen, I probably would not get a great number ofthe catalogs and marketing promotions that I receive and that I use because I don't have time togo to the mall." In this context, it seems perfectly reasonable for magazines to assume consentunless they are notified otherwise.

When you rent movies, on the other hand, your expectations are quite different. You would besurprised, perhaps mortified, if the video store put you on a list of people who like pornographicfilms or Jean Claude Van Damme movies and rented the list to companies selling related productsby mail. In 1987, when a City Paper reporter obtained information about Supreme Court nomineeRobert Bork's movie rentals, members of Congress were so shocked that they passed a law, theVideo Privacy Protection Act of 1988, specifically banning such disclosures. Yet the incident wasstriking precisely because it was so unusual. Even though there is definitely a market for thenames and addresses of people who like certain types of movies, selling such lists would be verybad for the video-rental business. It would violate an implicit contract of confidentiality.

Problems arise, however, when the expectations of the person disclosing information differ fromthose of the person receiving it. This is the case with regard to the sale of marketing data by creditbureaus. Until recently, most people didn't even know that this was going on, primarily becauseconsumers usually do not deal directly with credit bureaus. Hence it was the responsibility of thebusinesses that provide information to credit bureaus to notify their customers that some of thedata might be sold to direct marketers. The credit bureaus, for their part, should have insisted oninformed consent. They blew it.

"Too many businesses really don't give a damn about this issue," says Rotenberg. "They'd reallyrather not be bothered." But if people do care how information about them is handled, a businesswith that attitude will not survive long. To the extent that informational privacy matters,customers will insist upon assurances)assurances that the courts should enforce, if necessary."What the consumer wants today is to redefine the information contract between the businesswanting to use personal information and the individual," Westin says.

At the same time, consumers will have to pay attention to what they consent to. Rotenbergrecently complained to Time about "warranty registration" cards that include marketingquestionnaires. "People fill out product cards because they want the warranty," he said. "But theyend up on the mailing lists of stereo and record companies. Was that part of the stated bargainwhen they filled out the card?" In a word, yes. The card that came with my new coffee maker, forexample, says that the warranty applies whether or not you fill out the questionnaire, and it has abox you can check to keep your name and address off mailing lists.

Similarly, some privacy advocates have objected to frequent-shopper programs, which allow retailcustomers to get special discounts in exchange for using magnetized cards when they make theirpurchases. The cards enable the store to record what the customer buys; this information can laterbe used for marketing purposes. For example, someone who buys Minute Maid orange juicemight get a coupon for Citrus Hill. But if this is an intrusion on privacy, it's one that the shopperhas voluntarily agreed to. People who value informational privacy should learn to read the fineprint.

Contracts only work if they bind both parties. Unfortunately, the ACLU, which is very concernedabout informational privacy in the abstract, is chipping away at the most practical means forprotecting it. The ACLU recognizes the right to withhold information or attach conditions to itsdisclosure, but it denies the reciprocal right to require information as a condition of participatingin a transaction. For example, Goldman argues that employers should not be permitted to askprospective employees for information that is irrelevant to job performance)except, perhaps, ifthey are prevented from making hiring decisions on that basis. Not only should things like religionor sexual preference be off limits, she says, so should personal habits such as smoking or hobbiessuch as skinny dipping. Otherwise employers might abuse their economic power.

"Applicants are routinely requested to sign waivers of confidentiality that permit the employer...toobtain information and records from virtually any source," says the ACLU handbook Your Rightto Privacy. "Unless the applicant is in a strong bargaining position) which of course mostapplicants are not)he has no realistic choice but to sign the waiver." Hence the ACLU argues thatthe question of how much information to disclose should be resolved by legislation rather thannegotiation.

Similarly, Goldman doesn't think banks should be allowed to require credit-card applicants tosign a waiver permitting the sale of their data to direct marketers. It's not enough that those whodon't want to sign the waiver can take their business elsewhere. "Then what you're saying is thatthey have a right, but you're not going to enforce it," she says. "You're going to leave it to themarketplace."

Such reasoning undermines everyone's liberty to enter into voluntary business arrangements.Instead of getting the amount of privacy they want, people get the amount the government thinksthey should have.

So long as the right to informational privacy remains vague, the mandate for this sort of stateintervention is unbounded. Goldman resists attempts to define informational privacy. Sheacknowledges that information contracts can be helpful, but she says the right goes beyond suchagreements. Asked repeatedly whether the mere collection of information by a private party couldviolate someone's right to privacy even without breaking an agreement, she equivocates. "Wedon't like hard-and-fast rules," she says.

A paper that Goldman co-authored in 1989 describes the task of protecting informational privacythis way: "Statutory standards should incorporate a balance between the sensitivity of theinformation at stake and the institutional justification or need for the information)the moresensitive the information, the more compelling the need must be for its collection, and the higherthe standard must be for its disclosure to others."

Since different people will assign different weights to these conflicting interests, such balancingcan easily become a shield for arbitrary restrictions. For example, some people object to"electronic blacklists." A 1990 article in The Christian Science Monitor, part of a series on"Privacy in the Computer Age," sounds the alarm over data bases that are used to screen tenants,employees, and policyholders. Landlords can consult a data base that lists tenants who haveskipped out on their rent, been evicted, or damaged their apartments. The information is based oncourt records and landlords' reports. Other data bases list employees who have filed workers'compensation claims and people charged with violent crimes or drug offenses.

There are legitimate questions about the usefulness and reliability of these data bases, but thearticle focuses instead on the unfairness of maintaining them at all. Yet none of this informationwas collected in a way that violated an agreement of confidentiality. In the case of landlord-tenantdisputes, for example, both parties are free to reveal the information to anyone they choose. Justas the tenant may complain to a friend, the landlord may complain to the company that compilesthe data base. In the absence of an agreement to the contrary, neither party can reasonably assumethat the other will keep the matter a secret)especially if the dispute ends up in court.

Although some privacy advocates tend to equate damaging information with confidentialinformation, the issues are distinct. Even Goldman acknowledges that one of the most damagingkinds of information around)criminal records) ought to be publicly available. On the other hand,anyone who believes in keeping promises would agree that an utterly innocuous piece ofinformation)say, your favorite color) should be treated confidentially if everyone you reveal it toagrees to do so.

The hazards of abandoning the contract approach to informational privacy are illustrated in PaulSieghart's 1976 book, Privacy and Computers. Sieghart suggests that enforcing the right toprivacy could mean preventing people from gathering published information. He offers theexample of a John Smith who committed some petty crimes as a teenager that were reported inthe local newspaper. As an adult, Smith moved to a new town where no one knew about hisyouthful indiscretions. In this context, Sieghart writes, to publicize Smith's crimes might very wellviolate his right to privacy.

The impulse behind Sieghart's desire to shield Smith is readily understandable. All of us value thefreedom to move where we choose and make a fresh start, creating a new identity in a new locale.It seems unfair for someone to interfere with that freedom by bringing up unsavory facts. Yet wealso value freedom of speech, which includes the freedom to research information in publiclyavailable records and communicate it to whomever we like. Computers)more specifically, theability to collect and process information readily and quickly) have brought these two values intoconflict.

Nevertheless, the underlying rights remain intact. The right to construct your own identity isbased on more fundamental rights, such as freedom of conscience, freedom of travel, freedom ofassociation, and freedom of contract. It has never included the right to control the speech orthoughts of others)to dictate to them how they should perceive you. Yet that is the implication ofextending privacy rights in the way that Sieghart suggests.

There remains a special class of cases where the contract approach will not work)cases in whichone party can use force to get its way. If you want to drive a car legally, for example, you have toregister it with the Department of Motor Vehicles. In many states, the DMV then sellsinformation gleaned from registration forms to direct marketers; names and addresses for ownersof new luxury cars are especially valuable. At least 26 states sell information from driver'slicenses, including height, weight, and use of corrective lenses, to list merchants such as TRW,Donnelly Marketing, and I Rent America. (The main buyers of such lists are clothing merchants,particularly those who specialize in unusual sizes.)

Similarly, you are legally obligated to respond to the U.S. Census, which collects information thatgoes far beyond its original mandate of counting citizens for purposes of electoral apportionment.The U.S. Census Bureau then turns that information, much of which would be very costly for aprivate party to obtain, into statistical reports that are a gold mine for direct marketers.

Such government collection of information, backed by the threat of fines and imprisonment forfailure to comply, is qualitatively different from private efforts. Direct marketers do not hold agun to your head when they ask about your tastes in clothing or entertainment. But they dobenefit from data that is collected coercively. Conversely, information collected by businesses maybe used by the government: The Wall Street Journal reports that Farrell's, an ice-cream parlorchain, once sold a list of 18-year-olds, gleaned from its birthday club records, to the SelectiveService System.

"It may well be the sharing of information between government and business...that is themegathreat," Westin says. "If ...there are no boundaries between private and public, then it seemsto me you're getting into deep yogurt."

A related issue arises from government-supported monopolies. If the federal government alloweda competitive market in mail delivery, for example, some companies might offer no junk-mailservice. For an extra fee, all solicitations and advertisements would be filtered out of your mail. Ifantipathy toward junk mail were great enough, some delivery companies might not accept it at all.By contrast, the U.S. Postal Service has no incentive to tailor deliveries.

The local telephone monopoly also complicates privacy issues. Consider caller ID, a new servicethat allows subscribers to see the telephone numbers of callers. Caller ID is a powerful tool forbusinesses that want the home addresses of people who call to ask questions, place orders, ormake reservations Privacy advocates acknowledge that caller ID, especially linked to areverse-directory data base, can also help people protect their privacy by screening out unwantedcalls. But they object that it invades the privacy of callers who want to keep their numbersconcealed. In response to this concern the FCC last September proposed rules that would require'local telephone companies to allow subscribers to bloc] caller ID on a call-by-call basis.

In a competitive market, such decisions would not be mad by bureaucratic fiat. Some companiesmight provide caller-II blocking, perhaps for a fee. Others might find they could make moremoney by offering unimpeded caller ID. Still other might not offer caller ID at all, or might offername ID)wit the communications company matching numbers to names instead. Consumerswould have a choice, which is what privacy advocates say they want.

Businesses, acting in response to consumer demands, are much more likely than the governmentto come up with creative, effective ways of addressing privacy concerns. For example, Buyer'sMarket, a new Equifax program, surveys consumers about their tastes and preferences, askingthem what kind of direct-mail information, if any, they are interested in receiving. Equifax thensells lists of people interested in particular kinds of goods or services to direct marketers.Approved material bears a special seal so consumers know it has been sent as part of the program.

Equifax also distributes, free of charge, lists of people who aren't interested in certain types ofmaterial, or who don't want any solicitations at all. "It's a waste of time and money for a directmarketer to send somebody a copy of something they've said they don't want," notes DavidMooney, public relations manager for Equifax. On the other hand, "junk mail is junk only if youdon't want it."

In an attempt to cut down on junk mail, properly understood, the Direct Marketing Associationand most major marketers keep records of people who want to opt out of mailing lists. TheDMV's ethical guidelines urge businesses to give prior notice that information will be used formarketing purposes, and they forbid the use of information "that may be considered personal orintimate in nature...when there is a reasonable expectation by the consumer that the informationwill be kept confidential."

None of this has the force of law, of course, but the DMA argues that it's simply good business."Privacy is a customer service issue," says Christie, the DMV vice president. "If marketers don'tallow consumers a sense of control over the dissemination of data, they've not fulfilled theircustomer contract, and the customer's going to go somewhere else."

Westin goes a step further. Once privacy standards are well established in an industry, he says,they should be legally enforceable. For example, marketers should be held liable if they ignore theDMV's opt-out list. "Historically, the common law has been at its best when it deals with what themerchants are doing and why they're doing it," he says.

One conclusion that Westin draws from what the merchants are doing is that information is avaluable commodity, one that is owned by the person who dispenses it. "If my information is sovaluable that it can be sold," Westin argues, "then it's akin to appropriation to take that valuableprofile from me without my having any control over how it's used and without my getting anycompensation. In a market economy, compensation has to flow to the ownership interests of theconsumer."

In a recent issue of Release 1.0, a newsletter that covers computer-related issues, Editor EstherDyson elaborates on the idea of data property rights. She imagines a world in which individualssell limited use of their information through data brokers, who negotiate with direct marketers andother interested parties. "We believe the market could easily take care of the intricacies," shewrites, "if the government would simply establish the principle: People own information aboutthemselves."

But do they? Is it possible to own information? Since information is stored in brains as well as incomputers, the implications are ominous. Strictly speaking, the right to own information implies aright to control the minds of others. Unlike physical or intellectual property, information per se isnot a product of labor or creative effort. Moreover, information about you may equally beinformation about someone else with whom you interact: a retailer, an employer, a neighbor, alandlord, an insurer, a banker, a relative, a friend. When joint activities)a transaction, a dismissalor promotion, an eviction)give rise to "personal information," it's difficult to say a priori who"owns" that information and who, therefore, should control it.

The right to control the information can be established, however, by attaching conditions to theinteraction. Sometimes the conditions are implicit. You shouldn't have to tell your bank, yourdoctor, the phone company, or the local library that records of your credit-card purchases, yourmedical treatment, your telephone calls, or the books you read are to be treated confidentially. Inother cases, though, you may need to make your wishes clear. You can say, "I am buying this carfrom you on the condition that you not tell anyone about the purchase," or "I am telling you myage on the condition that you keep it secret," or even, "You may give my name and address toone other person, but only if you pay me." But the right to attach such conditions is not the rightto own information; it's the right to make contracts.

Although Westin may be hasty in suggesting that the law should recognize property rights ininformation, his general approach makes sense. As long as individuals are free to make andenforce information contracts, they can act to protect their privacy. Indeed, Westin predicts that"by the end of the '90s, every data base will be a consensual data base")containing onlyinformation about people who want to be included.

"It should come about through market forces; I don't see how we can legislate it," he says. "I'mlooking for ways to accommodate diversity, not for an all-or-nothing solution....The beautifulaspect of the technology we have is that, if we're thoughtful, it should allow us to accommodateall interests, rather than forcing a majoritarian solution on everybody."