It is looking all but inevitable that Congress will pass a federal privacy law, following Facebook’s Cambridge Analytica scandal, Europe’s roll-out of the General Data Protection Regulation and California’s privacy law that takes effect next year. But the devil is in the details.
For more than a year, Congress has hosted a series of hearings to determine not only whether the legislative body should pass a federal privacy law but what all that law should entail. On May 21, the Senate Judiciary Committee convened the latest of these hearings with a focus on how a federal privacy law would affect the digital advertising industry, especially the duopoly of Facebook and Google.
“We want to do something that is correct the first time around,” said Republican Sen. Marsha Blackburn during Tuesday’s hearing in reference to any potential federal privacy law.
The key points
- Congress appears poised to pass a federal privacy law
- GDPR and California’s privacy laws offer a model for a federal privacy law
- A federal privacy law may preempt state privacy laws
- Congress still needs to determine what privacy controls companies must provide to people
- A federal privacy law will need to deal with the duopoly and may need to be paired with antitrust enforcement
“Do you all agree that the privacy horse is sort of out of the barn? That we’re going to do something on privacy?” Republican Sen. Lindsey Graham asked the panel, which included Brave’s Jonny Ryan, AppNexus’ former CEO Brian O’Kelley, anti trust lawyer Jan Rybnicek and professors Avi Goldfarb from the University of Toronto and Yale economist Fiona Scott Morton.
All members of the panel agreed.
Graham also asked the panel whether GDPR or the California Consumer Privacy Act should serve as a model for a federal privacy law. This time there wasn’t a clear consensus. Ryan, chief policy and industry relations officer at privacy-centric browser company Brave, said that GDPR should be the model, while the other four panelists either chose CCPA or abstained. Democratic Sen. Patrick Leahy suggested that CCPA be the more likely model. “The California Consumer Privacy Act may serve as a model for federal legislation,” he said.
Traditionally, the technology and advertising industries have not been wild about a federal privacy law. But in light of states like California passing their own privacy laws, companies have thrown their support behind a federal privacy law, especially if it would preempt states’ privacy laws. And it appears a federal privacy law would do just that. Graham asked panelists if a federal privacy law should preempt states’ privacy laws, and they all agreed it should. However Ryan had one caveat: A federal privacy law should not undermine states’ privacy laws. Fiona Scott Morton, an economics professor at Yale University, said that states will want to regulate privacy in cases that may not be covered by a federal privacy law.
How to handle consumer control
People’s control over their data would be a centerpiece of any federal privacy legislation. However, it’s yet to be made clear what controls companies would be required to provide to people. Leahy said that companies should be obligated to get people’s consent for the data companies collect and for how they use that data, which suggests a GDPR-like opt-in requirement.
Republican Sen. Joshua Hawley offered an opt-out alternative. During the hearing, he introduced the Do Not Track Act that would give people the option to “make a one-time choice not to be tracked, not to have her data sent to these companies and to stop them from then selling that data to other companies.” Of course, this has been tried before and failed. Hawley acknowledged as much and said that his bill would compel companies to honor people’s do not track requests and would require that companies not discriminate against people who choose to not be tracked, such as by limiting the features or services made available to them.
Dealing with the duopoly
Avi Goldfarb, a marketing professor at the University of Toronto, raised the concern that a federal privacy law could make companies that already dominate the digital advertising market, like Facebook and Google, even more dominant. If people will be asked to consent before allowing a company to collect their information, they may be more likely to give that consent to well-known companies like Facebook and Google than to an upstart platform that would need that information to build up an advertising business in order to compete with the duopoly.
At this point, the absence of a federal privacy law is almost no longer an option, considering the numerous privacy fails at Facebook and other companies.
In order to make sure that a federal privacy law doesn’t give big companies even more of a competitive advantage, it should include a data portability provision, he said, so that people would be able to take their data from a platform like Facebook to another platform that could use that data to grow its business.
The concern that a federal privacy law could be a boon to the duopoly may necessitate increased antitrust enforcement. “My contention is that we need both antitrust enforcement and new privacy protection,” said Democratic Sen. Richard Blumenthal.
Can Snap make it as an AR company?
The real question Snap faces is whether adding AR elements to its platform will help it continue growing in the face of competition and uncertainty.
How NFTs could evolve for brands — now that marketers know what they actually are
NFTs are finally growing out of crypto novelty into next-gen loyalty tools. Tyler Moebius, founder and CEO of SmartMedia Technologies, explains where else they can go.
Why digital clutter is driving brands to rethink the value of newspapers advertising
GE, Equinox, Take 5 Oil and agency TBWA New York are among those investing in newspaper ads to generate social media buzz in an ever-more cluttered digital environment.
SponsoredHow ad tech is tackling waste by optimizing supply chains
Sponsored by Bidtellect The programmatic and digital advertising industry is well aware of the inefficiencies in buying and selling — from auction duplication and volume bias to multi-integrations and reselling — but how did it get this out of control? How can we fix it? A redundant, multiple-step process to ad delivery has become the norm, […]
The ‘retirement’ of M&M spokescandies raises questions about viral marketing, edgy content
Marketers have mixed feelings and questions about the value of viral, stunt marketing after M&M's "retirement" of its spokescandies.
With TikTok’s growing list of issues, should marketers think twice about the platform?
There is a growing list of issues that TikTok needs to resolve, but marketers seem unfazed and continue to be enthralled by the platform.