Perhaps I'm a radical, but if you do not have a current ongoing direct relations...

cgriswald · on Sept 18, 2023

I don't think you are radical enough.

I want to own my data and allow companies to collect and lease it in exchange for money, goods, or services. I want to be able to sue anyone who uses this data without explicit permission with option for punitive damages.

I want mechanisms to control my data and I don't see that happening without signed contracts.

I want to control what data is collected and how it can be used. I want this in writing in clear language in terms that cannot be changed until the contract termination date, some other specified period (with option to terminate), or with my signed consent. I also want the option to object to the sale of data to particular buyers. And I want the option to have the data deleted when my contract is terminated or when the company is sold.

I think the current hodge-podge of laws surrounding this don't come close to this kind of control and to the degree that they do, they're mostly a lot of work for the consumer; more opt-out than opt-in. Companies rely on people mostly not really knowing what they're doing with data and changing their privacy policies on a whim because how many people really read all these changes or leave? I'm not sure I've really seen any mass migration on privacy policies (although I have seen that on 'we own all your stuff forever' type TOS changes).

lesuorac · on Sept 18, 2023

I mean what if I want to outsource payroll to say Equifax?

That would require sharing private data about employees with Equifax so that they're able to handle paying them.

Or if I want to ship a package to somebody; can I not give a 3rd party (DHL) the recipients address?

I like your idea but I think it needs some refinement. Perhaps just a time restriction; although I'm sure DHL would love to keep a photo proving that the package was delivered for a year.