5th Internet, Law and Politics Conference (I). James Grimmelmann: Saving Facebook

Notes from the 5th Internet, Law and Politics Conference: The Pros and Cons of Social Networking Sites, organized by the Open University of Catalonia, School of Law and Political Science, and held in Barcelona, Spain, on July 6th and 7th, 2009. More notes on this event: idp2009.

Saving Facebook
James Grimmelmann, Associate Professor New York Law School.

Embedded video at http://ictlogy.net/?p=2375

There are plenty of motivations to use Social Networking Sites (SNS) and many risky ways for your privacy and security in using them. Why, then, keep using them?

SNS have profiles for their individuals, links to other people and a social graph that maps your network.

Your profile expresses and identifies, in some way, with your identity. But it’s not only what you say about you, but what your “friends” say about you: the people you befriend in a SNS is also adding up to your own identity.

People that you befriend, talk about you, comment the things you say or state, and links between users are created. Links that, all together, form a social graph where you can map your friends, the friends or your friends, etc.

Some false assumptions in SNSs

  • If everybody’s doing it, you do it too
  • There’s many people doing it, so I’ll keep unnoticed
  • False sense of privacy, “I’m alone here”
  • Feeling that everybody’s like us in the SNS
  • Electronic mediation makes us underestimate the impact of our actions
  • Distorted sense of (real) friendship and of knowing who the others are
  • Feeling that everything is under control and that one can “see” everything

Social harms

  • Disclosure: letting some intimacies known on SNS can spread quicker and broader than anywhere else
  • Surveillance: the mere sense of being watched all the time is by definition a limit to your own freedom (and scary and creepy to many too)
  • Instability: assumptions about an SNS that prove wrong along time, leading to privacy issues, e.g. seein photos you shouldn’t be allowed to see, Facebook Beacon, bugs…
  • Disagreement: you might not agree with some privacy issues, e.g. you can remove a tag from a photo, but not the photo itself. Or you would want to remove someone as a friend, but this someone feel hurt if you do, which leads to an embarrassing situation.
  • Spillovers: my decisions might have consequences to your privacy. Your decision on your profile affect who can see my information (e.g. you decide your friends list is public, hence I appear on your profile)
  • Denigration: defamation, attacks to persona, including how you present yourself. And this can be really subjective: how you match different groups of people (professional acquaintances, family, friends) reading the same type of information about you, without context, without filtering. And more: your profile can degenerate into an advertising platform.


  • Clearer privacy policies, but how to make simple what is complex?
  • Better technical controls to customize your privacy levels, better definitions, higher accuracy or detail in controlling your privacy setup
  • Data ownership: you should be free to take your information and move it where you want, data portability. If I’m your friend on a SNS: whose is this information (i.e. “we are friends”), yours or mine? Data portability is a solution but also a way to circumvent and decontextualize some security issues about privacy

The same motivations that drive us into SNS are the ones that lead to mistakes, and mistakes lead to harms. This makes really difficult how to solve some problems related to privacy.

Most privacy violations are produced by ourselves, we have met the enemy and he is us, it’s individual users (not anonymous big brothers) the ones that are violating privacy on a peer-to-peer basis.

Privacy violations spread as a virus: SNS are privacy viruses that spread from person to person.


Miquel Peguera: how should default settings be set? is data portability the solution? A: default settings should be set to more privacy friendly levels. New features, for instance, are set on an opt-out basis, not an opt-in. The problem with data portability is whose is the ownership of data, specially when this “ownership” is shared?

Q: why is Facebook’s newsfeed a weapon? A: The problem is that there is a huge granularity on what you (and Facebook… and advertisers) can see and use for several purposes.

Ismael Peña-López: isn’t privacy overstated? A: Even if that might be true, the question is that people seeked some cover in SNS thinking that they privacy was assured there vs. the openness of the broad Internet. And the fact is that people got outraged when they found they search for privacy had been violated. So the point is not whether privacy is good or not, but that some people’s desire for privacy was guaranteed and then systematically violated.

Q: What happens when privacy can lead to crime? A: A big difference between SNS and typical surveillance tools is that the later are held by the power that should be having this kind of control, and opperated on a transparency basis. Instead, SNS surveillance systems are more complex, distributed and highly out of control.

Mònica Vilasau: are we more confident on the Net than offline? A: Psicologycal effects are really important in how we behave on SNSs.

Daithí Mac Sithigh: What are going to be the next steps of Facebook in the subject of privacy? A: Facebook is an extraordinary arrogant company. Dealing with privacy discussion, they would acknowledge they made a mistake, but won’t move back and, especially, won’t loose control.

Q: Can we increase control on existing or new SNSs? A: What we’ve been seeing so far is that this is a major challenge, that what people look for in networks is exactly the opposite of what would be needed to make these networks more privacy compliant.

More Information

  • Grimmelmann, J. (forthcoming 2009) Saving Facebook In Iowa Law Review, #94
  • IDP2009: Saving Facebook, by Daithí Mac Sithigh


5th Internet, Law and Politics Conference (2009)

Anouncement: 5th Internet, Law and Political Science Congress

IDP logo

The next 5th Internet, Law and Political Science Congress has been scheduled for 6th and 7th July 2009. Organized by the School of Law and Political Science at the Open University of Catalonia (Barcelona, Spain), the event has evolved into an interesting forum where it is highlighted what’s happening nowadays in the fields of law and cyberlaw, intellectual property rights, privacy, data protection, freedom, political engagement, politics 2.0, empowerment, etc.

Aimed to both researchers and practitioners, during the four editions that we’ve been running the congress, we’ve had here people the like of Jonathan Zittrain, John Palfrey, Eben Moglen, Helen Margetts, Lillian Edwards, Yves Poullet, Erick Iriarte, Stefano Rodotà or Benjamin Barber, among others.

The main topic this year is social networking sites (SNSs, in a broad sense). We want to have sessions were at least two speakers present opposite points of view (pros and cons). The programme (almost closed, though some changes might apply) is as follows:

Daithí Mac Sithigh will be the official reporter of the event, providing, at the end of each day, a summary of the main subjects dealt in that day’s sessions.

More information


Howard Rheingold: Online Social Networks

Notes on Howard Rheingold‘s seminar at the Open University of Catalonia.

Online Social Networks
Howard Rheingold

Howard RheingoldHoward Rheingold

Online Social Networks — a more comprehensive term than virtual communities — enable people to co-operate. Social networks have always existed, but now they’re empowered, enhanced by ICTs, so communities of practice can form.

Online communities: promote social capital, support lifelong teaching and learning, connect people and build relationships, grow a searchable communitye memory (knowledge sharing).

Participatory media (e.g. blogs, wikis, mobile phones with cameras) have totally changed the landscape, enabling broad participation by making it easy to share any kind of media (image, video, text, software…). Media allow learning, sharing, debate…

New media require media literacy: understand the media, know how to send and receive, then be able to produce.

Social Cyberspaces Connect People

People join through affinities and shared interests, that can be social, practical, interest-based, technical…

So, you have to start with a plan, a plan that includes social, marketing and technical infrastructure. You have to think on how to attract people towards the network, but then think alson on how to make them come back.

Marketing is essential: build it and they won’t come if it does not fill an important need (they’re too busy); start with enthusiasts (if there’s any, just don’t start); build a critical mass with enthusiasts first, then let the others join; start small, learn, redesign, grow organically: follow an iterative redesigning.

Civility is essential; online facilitation is a skill and a body of knowledge; weed, feed, transplant: gardening, not architecture; encourage emergent leadership, regardless on who you said that was in charge.


César Córcoles: how institutions can face the changes that social networks bring (e.g. teachers).
Howard Rheingold (HR): the actual teaching model (Paulo Freire’s “banking model”) is inadequate for online social networks. The responsibility of the reputation of the “text” (the basis of actual teaching models) has shifted from the editor, or the teacher, towards the consumer: it’s now up to you to determine the reputation of what you’re reading, as the offer is huge. Participatory media, nevertheless, is absolutely compatible with students being more active in teaching, as some pedagogical theories have been stating in the last years.

Oriol Miralbell: how do we manage leadership in big online social networks? Can it be both distributed and centralized?
HR: It’s not either or. Indeed, power and authority are quite different things. Communities, individuals, are normally reluctant to take authority when a reputed person is participating in the community: authority comes naturally, and is provided by the rest of the participants.

Oriol Miralbell: experts or teaching experts?
HR: Teaching skills are the key. If there is a trade-off between being an expert in a field and a good teacher, you might prefer the good teacher, as they will be leading the group towards debate and knowledge sharing in better ways.

Francisco Lupiáñez: how do deal with complex processes (bureaucracy?) when there’s an urgent need for flexibility?
HR: Online, ironically, allows more direct communication with the student, which is really time consuming. So, planning and, more important, seeing how what you are going to build scales is crucial. To be able to scale up, bringing the students agency, and let themselves discover than you discovering for them is one of the most important changes of mindset required to build a successful social community.

César Córcoles: isn’t this kind of working putting more stress on students (switch from passive to active attitudes)?
HR: Is it a problem of stress management… or attention management? Focuss on questions, issues that matter.

Joe Hopkins: how does the work with the wiki works?
HR: I don’t expect them to delete. Context is a must for anything added to the wiki. And if given the opportunity, students will end up finding out things that the teacher did not know… in any kind of media support: text, video, etc. Have to give the students ownership of their participation.

Ismael Peña-López: what are the minimum skills required to engage someone on an online social network?
HR: Collaborative working is new to the students right now, it’s a new way of thinking. The students already live on Facebook, they manage their digital identities, but they might not really be aware on how this impacts their lives. And we have to teach them too these issues: to distinguish between the “know hows” and the “know ho nots”.

Ismael Peña-López: is there a minimum threshold of digital awareness to be achieved before being able to positively contribute into an online social network?
HR: Yes, of course, there are. There’s a set of rhetorics to be learnt to be able to engage in a virtual community. And blogs are a perfect gateway towards this understanding on how things work in the digital world. The ability to link.

Oriol Miralbell: IT tinkering a need? or digital natives already know everything?
HR: digital natives master some tools, but they do not know at all about the whole rest (i.e. 99% might use Wikipedia, 1% might know they can edit it). And this might change… but it might not if we don’t address it within the education system, integrating the training of this skills in the syllabus.

Rosa Borge: virtual communities a need? or can smart mobs be a better option?
HR: We don’t really know yet. Smart mobs are ephemeral and happen after a particular event. Do they stay? Do they turn into a crystallized movement? Doesn’t look like it. This does not mean that smart mobs do not achieve results, but they are on the shortest run… and when there’s more impact than that, it’s because there was an actual movement behind.

Max Senges: quality, control and scalability is a Bermuda Triangle that is difficult to manage. How to mitigate or give away control while keeping the institution happy? How to scale up? HR: Giving up control is not bringing anarchy in, is just defining the boundaries of the project, which is quite different. Peer evaluation is also a way of not exactly giving control away, but distributing it. Meritocracy might be a good option to both keep some kind of rules (not real control, but keeping rules) and also being able to scale the model bit by bit, by shifting some responsibility (and authority) to the “best” students. e-Porfolios, self-reflection, self-evaluation is a very powerful tool too, as it raises motivation, self-management, ownership of your own contributions, self- and third party assessment.

Oriol Miralbell: How to learn to be an online mentor? Should we first learn some particular dynamics before online teaching? How to keep authority?
HR: Tell the students: you’re going to be able to teach this course. This triggers leaders and really engages them, and makes leadership emerge, as the possibility/chance to be the teachers is real.


The scarcely relevant practice of chat rooms and social networking sites

Manuel Castells is a scientific I admire. There are things I share — most of them — and things I don’t. Right now I’m working hard with two works of him:

Castells, M. (2000). “Materials for an exploratory theory of the network society”. In British Journal of Sociology, Jan-Mar 2000, 51(1), 5-24. London: Routledge.
Castells, M. (2004). “Informationalism, Networks, And The Network Society: A Theoretical Blueprint”. In Castells, M. (Ed.), The Network Society: A Cross-Cultural Perspective. Northampton, MA: Edward Elgar.

which I find really interesting and a recommended reading for everyone.

This is why I find so disappointing when an author of his stature can so unexpectedly slip out of the road by writing:

the Internet is quickly becoming a medium of interactive communication beyond the cute, but scarcely relevant practice of chat rooms (increasingly made obsolete by SMSs and other wireless, instant communication systems)

[bold letters are mine]

Of course, I’m not questioning him for not foreseeing that SMS would not replace instant messaging — which is what he’s actually meaning by the general concept of chat rooms —, two technologies that now live together in perfect harmony, especially in teen environments. It’s about the scarcely relevant practice of chat rooms.

This is 0% evidence, 100% value judgment.

Evidence about the relevance of such practice is way easy to be checked. First of all, we should remember the origins of both e-mail and instant messaging: high-tech scientific laboratories — there’s plenty of literature about this issue. But once it went out of the scientific environment and got popular, there’s more and more evidence about the relevance of such tools: the Pew Internet & American Life Project issued in that same year, 2004, the report How Americans Use Instant Messaging about 53 million American adults using instant messaging programs. Well, this is quite a lot of people doing scarcely relevant practices. But just at the end of last year, 2007, Garrett and Danziger analyzed how instant messaging was used at work for work purposes in their article IM=Interruption Management? Instant Messaging and Disruption in the Workplace, finding positive uses — yes, you read right: positive. So, evidence absolutely shows that there are good, interesting, useful practices around instant messaging.

What about value judgment? Well, I’d personally agree on assessing as useful, effective, efficient, etc. the use instant messaging for criminal purposes: phishing and pharming, organizing terrorist attacks, seducing minors for sexual purposes, etc. Actually, the main security concerns nowadays about the Internet are precisely in this line: how to avoid the effectiveness of tools like instant messaging, social networking sites and e-mail for criminal purposes. Hence, what is to blame is the criminal who uses these tools, but the tools are working great — even if in bad hands, because tools know no ethics, no law (well, Lessig would complain about this last point).

Summing up: a tool is useful, efficient, effective or relevant besides the fact that we like or dislike the way it is used, but based on its performance.

Same with social networking sites. In a work I’ve already talked about by David Beer and Roger Burrows, they write about Facebook. Even if they are quite open minded, there’s a full chapter about the bad uses of Facebook concerning teachers’ privacy issues which, from my point of view, is almost a digression that really does not deal with the sense of ‘democratization’, as stated in the title of that chapter.

While the authors complain — more than criticize — about the fact of having some colleagues exposed to public dishonor, they lose focus on the subject of analysis: Facebook, social networking sites, shifting towards the (bad) education and practices of such students, which was (supposedly) not the matter of debate in the article.

Day after day I am surprised by the recurrent exercise to blame on the Internet things that belong to “real” life: Law, Education, Business Management… And, even worse, to state about Internet applications and uses things that are absolutely false, taking as evidence what, all in all, was just lack of deeper knowledge and prejudice. Even in the most brilliant scientists. We all have bad days everywhen.