PRIVACY AND CYBERSECURITY CONCURRENCE
Join the Global Cybersecurity Conversation
League of Women Oregon’s Privacy and Cybersecurity positions were adopted in January 2020 after study and consensus. The 2020 elections further magnified election privacy and cybersecurity vulnerabilities. Election systems—the cornerstone of democracy—are recognized as critical cyber infrastructure. Defending democracy requires protecting our election systems from escalating cyber-attacks and disinformation. We cannot wait, we need these positions now.
U.S. state and national policy makers have joined the global debate over online protection of personal information. Tech companies convert personal information into multi-billion dollar advertising revenues, while experts now characterize media platforms’ information manipulation as ‘information disorder.’ The looming policy debate will determine both the future of privacy and the future of the internet. The League of Women Voters needs to adopt a position so they can have a voice in the policy debate.
LWVOR’s cybersecurity position goals build on expert analyses.
Information Security and Personal Information Protection
Goal 1: Create a comprehensive state and Federal regulatory framework for information security
Current data security laws that rely on privacy self-management are ineffective. Regulation should increase company, data handler, and data processor accountability for the collection, use, and dissemination of personal information. Breached! Why Data Security Law Fails and How to Improve it. Solove & Hartzog (Oxford University Press 2022)
Cyberwarfare requires public and private sector cooperation to create uniform cybersecurity standards. Toward a Collaborative Cyber Defense and Enhanced Threat Intelligence Structure. Belfer Center, Harvard Kennedy School
Goal 2: Personal information protection should be based upon end-use of all information collected and shared
Commercial data practices should limit how data may be used rather than limiting data access or transmission. The Three General Approaches to Privacy Regulation, Solove; From Individual Control To Social Protection
Electronic Business and Social Media
Goal 3: Increase the cybersecurity responsibilities of digital commerce and social media providers for stewardship and liability for information use and disinformation harms
Goal 4: Increase social media accountability for disinformation
'Information disorder is a crisis that exacerbates all other crises…and undermines democracy.’ Commission on Information Disorder, Final Report. Aspen Institute, 2021