Tag Archives: Identifiable

What are Your Obligations for Use of Data? Five Perspectives

Situation: A company wants to add additional apps to its current service. One possible source is a website that aggregates and publicizes relevant information. The CEO is concerned about whether these data can be used by the company and whether using these data will expose the company to legal action. What are your obligations for use of data?

Advice from the CEOs:

  • Under fair use you can use data processed from other sources and resell this. The key term is “processed.” This means that you must add some of your own value to the data. You cannot just republish data through your site as though you had collected and analyzed it yourself.
  • You cannot copy and repost a copyrighted article. Text is copyrighted, but extracted facts are not. If you want to use text from a copyrighted source, you must get permission from the author or publisher. You can quote a source by providing appropriate references.
  • You can include a link to a relevant site without taking copyrighted information.
  • If the data that you wish to use from another site contains information that includes personally identifiable data – data that would allow a third party to identify personal information about an individual and misuse that personal data to the detriment of the individual – then a distinct set of regulations apply. If you even suspect that this could be the case, seek legal counsel on your obligations.
  • When you are using the Internet, your audience is international. The rules for use of data derived from other sources differ by country or region. Consult your lawyer for general guidelines that will allow you to use data from other sources.

Should You Put Privacy Statements on a Web Site? Five Thoughts

Situation: An early stage software-as-a-service (SAAS) company notes that a number of companies have privacy statements on their web sites. Is this something that is common, and should they consider their own privacy statement on their site?

Advice from the CEOs:

  • If your services include the collection of users’ personally identifiable information many users will want to know that the information that they put on the site is secure. Get legal advice on the handling and storage of personally identifiable information. You may want to qualify for TRUSTe or a similar service.
  • Others will be competing in your space, or close to it. Look at these companies’ sites for what type of privacy statement they use.
  • Research how important this is to your target audience. Get assistance from someone who is good at drafting surveys. Hire a summer intern or local college student to conduct the survey. This is a quick way to answer your question.
  • Determine your business policy regarding privacy. If policy considerations dictate that you should have a statement, then find a model statement that you like and use this. Model a statement after one that appeals to you from another company. Make sure that you cover anything that you feel is important, and retain any prerogatives that you feel are important.
  • Create a link to a separate page that contains a model privacy statement. Count the number of clicks that it receives. You may find that nobody clicks on this.