NEWS
Microsoft plans in August to publicly release the privacy rules its employees have to follow when developing products.
The move, which offers a look behind the scenes at Microsoft, is meant to give the industry an example of what the software giant sees as best practices in customer privacy, said Peter Cullen, the chief privacy strategist at Microsoft.
Cullen said in an interview on Thursday: "We think that this is information that partners and others could benefit from. Lots of people build and develop applications. The privacy development standards will not only be made public but we will actively be promoting their use so that others can benefit from what we've learned."
The privacy rules offer guidelines on providing people with proper notification and options in certain situations - for example, when a software application is about to send information via the internet to its maker, Cullen said. Microsoft believes it is the first major software company to publish these guidelines.
He said: "This is designed for an IT pro or a developer, in terms of: 'If you're building an application that does X, this is what we think should be built'. The public document will use a lot of 'shoulds'. Inside Microsoft, those are 'musts'."
While the release of the guidelines is not likely to have any immediate effect on consumer privacy, it is a positive development, privacy watchers said.
James Van Dyke, an analyst at Javelin Strategy & Research, said: "Microsoft is advancing the dialogue about how privacy issues are addressed by the technology providers. This will force other technology firms to similarly comply, rebut or propose alternative positions, all of which will move us closer to deciding acceptable use of private information through technology."
The company has a single, global privacy policy, Cullen said. This means the same policy applies even in countries that have limited or no privacy regulation.
Microsoft's privacy reputation is not untarnished. Earlier this month, it faced criticism for not disclosing that one of its anti-piracy tools, called Windows Genuine Advantage (WGA) Notifications, pinged the company every time a PC was booted up. Microsoft has offered a public mea culpa and has said it will adjust the frequency of the calls home.
Cullen said: "We have a basic promise that we will be as transparent as possible. We neglected the area of the notifications, so that's definitely going to be changed… It's just an oversight."
Some of Microsoft's practices are impressive and commendable but others are badly bungled, said Ben Edelman, a spyware researcher and Harvard doctoral candidate. He supports Microsoft's plan to publish its privacy standards for developers.
He said: "It's a fine idea. It would be easier to endorse if we could be more confident that Microsoft's own house is in order, which is suddenly a subject of some worry after the WGA issues."
Joris Evers writes for CNET News.com
Comments
There is 1 comment. Join the discussion
1. Nick Cole
Perhaps if instead of a dialogue box that said "do you want to run a script or activex", it actually told us what we were about to unleash then we could make an informed judgement.
Privacy rules are fine provided the principles and guidelines on what may or may not be privacy are adequately understood from a consumer perspective and not how the designer may (in all naivete?) consider appropriate.
Far too often we are left without any understanding of what is involved by clicking yes. It isn't just that we are allowing the process but what the process is about to do thatis important. And why do all these websites (such as Silicon as well) insist on having so many scripts? As these often involve connecting to another server or directory to pick things up like images and so on even the website designers have no idea of the amount of security and privacy breaches they are running.
IE7 is a classic example. If I connect to my router for example it sends three contacts to a Microsoft site via HTTPS. If I use IE6 it doesn't. And these operate without any prompt or other intervention! It would appear that Microsoft's designers themselves either stick a thumbs up to what they are supposed to be doing or portray the rules as something that only applies to other people!