Home » Posts tagged 'Google alert'

Tag Archives: Google alert

Our mission

Free Government Information (FGI) is a place for initiating dialogue and building consensus among the various players (libraries, government agencies, non-profit organizations, researchers, journalists, etc.) who have a stake in the preservation of and perpetual free access to government information. FGI promotes free government information through collaboration, education, advocacy and research.

Government Health Web Sites Expose Personal Data

A new article in Communications of the ACM by Timothy Libert, a doctoral student in the Annenberg School for Communication, demonstrates that web sites – including government web sites such as CDC.gov and Healthcare.gov – pass personal health information to companies that are not subject to regulation or oversight.

Brian Merchant provides a non-technical summary and analysis of Libert’s paper:

Libert says that this health information may be inadvertently misused by some companies, sold by others, or even stolen by criminals. He identified more than eighty thousand unique health-related Web pages and monitored the HTTP requests initiated on the page to third parties by companies such as Google, Facebook, Twitter, Experian, and Acxiom. Ninety-one percent of those pages make such third-party requests, putting user privacy at risk. Some 70% of those third-party requests transmit information on specific symptoms, treatments, and diseases to those companies.

Merchant explains: “[T]he CDC has installed Google Analytics to measure its traffic stats, and has, for some reason, included AddThis code which allows Facebook and Twitter sharing; … the CDC also sends a third party request to each of those companies. That request… makes explicit to those third party corporations in its HTTP referrer string [what you searched for]… From there, it becomes relatively easy for the companies receiving the requests, many of which are collecting other kinds of data (in cookies, say) about your browsing as well, to identify you and your illness. That URL, or URI, which very clearly contains the disease being searched for, is broadcast to Google, Twitter, and Facebook, along with your computer’s IP address and other identifying information.”

Libert makes clear that Government web pages are the least likely of all sites he studied to use third-party cookies, with only 21% of pages storing user data in this way, compared to 82% of dot-com sites. But fully 88% of government sites have some sort of third-party request and 86% download and execute third-party JavaScript.

Merchant notes that the use of third-party cookies and javascript and requests is not necessarily due to any insidious intent but is simply convenient “because developers are installing ‘free’ tools like Google Analytics and social media ‘share’ buttons on their sites, and most users have no idea that means information about their searches is being shared with third parties.” This potentially allows data brokers like Experian, which has information from other sources about loans and which provides credit scores, to combine health information with financial information on individuals. Merchant quotes Libert:

“Given that I found Experian tracking users on thousands of health-related web pages, it is entirely possible the company not only knows which individuals went bankrupt for medical reasons, but when they first went online to learn about their illness as well…”

Merchant also quotes Libert on alternative search engines:

“Even if you use an iPhone, DuckDuckGo, and Hotmail, the second you open your browser there is a huge chance Google gets your data.” That’s because Google is absorbing your information through a variety of hosted services and domain names, from Google Analytics, which measures site traffic, to DoubleClick, an advertising service, and YouTube, its video platform.

Wikipedia was one of the only sites that trafficked in health information that sent no third party requests to corporations.

Hot new CRS reports in the news

I’ve got a google search alert set up for “CRS report” OR “Congressional Research Service” and thought I’d share the CRS reports in my most recent alert. If you’re not familiar with this service, it’s a handy way to keep track of issues or subjects. Go to http://www.google.com/alerts to set up alerts, or do a search on google news and scroll down to the bottom of the page to create an alert for your search.

Here’s the latest CRS reports in the news:

*Our readers may or may not know that the Library of Congress does NOT make CRS reports public, nor are they distributed to libraries in the Federal Depository Library Program. The only way to make a CRS report public is for member of Congress to release it or for a citizen to request it from her/his representative. Many in the library and govt transparency communities have been trying for years to persuade CRS to change their policy that views CRS reports as confidential queries with members of Congress and begin to officially release them to the public. OpenCRS and other sites like Steven Aftergood’s Secrecy News regularly post CRS reports, but this is done only because CRS refuses to release them to the public. Please contact your representative and ask them to push CRS to change their policy.

Archives