Algorithmic Social Sorting and New Legal Narratives on Digital Privacy

Ivana Stepanović

doi:10.47152/ziksi2022036

Authors

Ivana Stepanović Institute of Criminological and Sociological Research, Belgrade, Serbia https://orcid.org/0000-0002-8953-6703

DOI:

https://doi.org/10.47152/ziksi2022036

Keywords:

privacy, human rights, algorithms, surveillance, personal data

Abstract

The use of algorithms for social sorting has imposed the need to challenge the traditional understanding of the private sphere as a sealed-off realm free from surveillance and outside intervention. The relationship between the private and public has become dynamic and complex, while the borderline between the two zones remains in a state of flux. The concept of digital privacy is related to the data doubles rather than physical bodies, and it is limited to partial control over personal data. The General Data Protection Regulation, along with the new legislation, namely the Artificial Intelligence Act and the Digital Services Act, offers a conceptualisation of digital privacy that recognises novel surveillance practices involving the collection, interpretation, use, and misuse of biometric and behavioural data. This paper uses the method of conceptual analysis to investigate the new definitions of digital privacy that emerge from the corpus of legislative acts, including the GDPR, AIA, and DSA, and to find out how they generate new legal narratives on privacy that recognise the dangers of echo chambers and algorithmic decision-making.

References

Artificial Intelligence Act. (2021, April 21). Proposal for a regulation. eur-lex.europa.eu

Ball, M. (2022). The metaverse: And how it will revolutionize everything. Liveright Publishing Corporation.

Barkane, I. (2022). Questioning the EU proposal for an Artificial Intelligence Act: The need for prohibition and a stricter approach to biometric surveillance. Information Polity, 27(2), 147–162. DOI: https://doi.org/10.3233/IP-211524

Barkhuus, L. (2012). The mismeasurement of privacy: Using contextual integrity to reconsider privacy. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems (pp. 367–376). DOI: https://doi.org/10.1145/2207676.2207727

Baruh, L., & Popescu, M. (2015). Big data analytics and the limits of privacy self-management. New Media & Society, 19(4), 579–596. DOI: https://doi.org/10.1177/1461444815614001

Bennett, C. J. (2010). In defence of privacy: The concept and the regime. Surveillance & Society, 8(4). DOI: https://doi.org/10.24908/ss.v8i4.4184

Buitelaar, J. C. (2017). Post-mortem privacy and informational self-determination. Ethics and Information Technology, 19, 129–142. DOI: https://doi.org/10.1007/s10676-017-9421-9

Charter of Fundamental Rights of the European Union. (2012, October 26). eur-lex.europa.eu

European Commission. (2020, December 3). Communication to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions on the European Democracy Action Plan. eur-lex.europa.eu

Dandeker, C. (2007). Surveillance: Basic concepts and dimensions. In S. Hean & J. Greenberg (Eds.), The surveillance studies reader (pp. 39–52). McGraw-Hill Education.

Digital Services Act. (2020, December 15). Proposal for a regulation. eur-lex.europa.euuri=CELEX:52020PC0825

Ebers, M., Hoch, V. R. S., Rosenkranz, F., Ruchemeier, H., & Steinrötter, B. (2021). The European Commission’s proposal for an Artificial Intelligence Act: A critical assessment by members of the Robotics and AI Law Society (RAILS). Multidisciplinary Scientific Journal, 4, 598–603. DOI: https://doi.org/10.3390/j4040043

Gawer, A. (2022). Digital platforms and ecosystems: Remarks on the dominant organisational forms of the digital age. Innovation, 24(1), 110–124. DOI: https://doi.org/10.1080/14479338.2021.1965888

General Data Protection Regulation. (2016, April 27). eur-lex.europa.eu

Gil González, E., & de Hert, P. (2019). Understanding the legal provisions that allow processing and profiling of personal data—An analysis of GDPR provisions and principles. ERA Forum, 20(4), 597–621. DOI: https://doi.org/10.1007/s12027-018-0546-z

Hacker, P. (2021). Manipulation by algorithms: Exploring the triangle of unfair commercial practice, data protection, and privacy law. European Law Journal. DOI: https://doi.org/10.1111/eulj.12389

Lyon, D. (2019). Surveillance capitalism, surveillance culture and data politics. In D. Bigo, E. Isin, & E. Ruppert (Eds.), Data politics: Worlds, subjects, rights (pp. 64–79). Routledge. DOI: https://doi.org/10.4324/9781315167305-4

Mai, J. (2019). Situating personal information: Privacy in the algorithmic age. In R. F. Jørgensen (Ed.), Human rights in the age of platforms. MIT Press. DOI: https://doi.org/10.7551/mitpress/11304.003.0009

Moll, R., & Pieschl, S. (2016). Expecting collective privacy: A new perspective on trust in online communication. In B. Blöbaum (Ed.), Trust and communication in a digitized world (pp. 239–251). Springer. DOI: https://doi.org/10.1007/978-3-319-28059-2_14

Nissenbaum, H. (2004). Privacy as contextual integrity. Washington Law Review, 79, 119–158.

Raposo, V. L. (2022). Ex machina: Preliminary critical assessment of the European draft act on artificial intelligence. International Journal of Law and Information Technology, 30(1), 88–109. DOI: https://doi.org/10.1093/ijlit/eaac007

Renda, A. (2021). Making the digital economy: ‘Fit for Europe’. European Law Journal.

Risso, L. (2018). Harvesting your soul? Cambridge Analytica and Brexit. In C. Jansohn (Ed.), Brexit means Brexit. Academy of Sciences and Literature.

Selbst, A. D. (2013). Contextual expectations of privacy. Cardozo Law Review, 35, 643. DOI: https://doi.org/10.2139/ssrn.2093594

Solomon, M. R. (2022). Digital identity: The postmodern consumer chameleon. In R. Llamas & B. Russel (Eds.), The Routledge handbook of digital consumption. Routledge. DOI: https://doi.org/10.4324/9781003317524-9

Solove, D. J. (2008). Understanding privacy. Harvard University Press.

Spencer, S. B. (2020). The problem of online manipulation. University of Illinois Law Review, 2020(3), 960–1000.

Stepanović, I. (2019). Privacy and digital literacy: Who is responsible for the protection of personal data in Serbia? Zbornik Instituta za kriminološka i sociološka istraživanja, 38(3), 45–56.

Treaty on the Functioning of the European Union, art. 16(1). (2012, October 26). eur-lex.europa.eu

Veale, M., & Zuiderveen Borgesius, F. (2021). Demystifying the draft EU Artificial Intelligence Act: Analysing the good, the bad, and the unclear elements of the proposed approach. Computer Law Review International, 22(4), 97–112. DOI: https://doi.org/10.9785/cri-2021-220402

Wachter, S. (2018). Normative challenges of identification in the Internet of Things: Privacy, profiling, discrimination and the GDPR. Computer Law & Security Review, 34(3), 436–449. DOI: https://doi.org/10.1016/j.clsr.2018.02.002

Westin, A. F. (1967). Privacy and freedom. Atheneum.

Zuboff, S. (2019). We make them dance: Surveillance capitalism, the rise of instrumentarian power, and the threat to human rights. In R. F. Jørgensen (Ed.), Human rights in the age of platforms. MIT Press. DOI: https://doi.org/10.7551/mitpress/11304.003.0006