What would online privacy look like if the United Nations regulated the Internet?

That's one question on the minds of privacy advocates as the International Telecommunication Union (ITU)—a UN agency based in Geneva, Switzerland, that regulates telecommunications and IT issues—approaches the task of helping the UN decide if it should exert more control over Internet governance.

Such discussions are occurring as the ITU seeks to update the current international telecommunications regulations, which were agreed upon 25 years ago, before the rise of widespread Internet or smartphone use—never mind voice over IP (VoIP) networks, net neutrality  or international roaming charges. Already, representatives from numerous UN member states have been submitting proposals that will be debated this December in Dubai at the World Conference on International Telecommunications (WCIT-12) as the ITU rethinks the International Telecommunications Regulations (ITRs) that—according to an agency overview—"serve as the binding global treaty outlining the principles which govern the way international voice, data and video traffic is handled, and which lay the foundation for ongoing innovation and market growth."

But some of the submitted proposals have technologists and—at least in the United States—legislators up in arms, leading to allegations that the renegotiated treaty could allow countries such as China and Russia to more easily censor the Internet. With that in mind, the U.S. House of Representatives has unanimously backed an "Internet freedom" resolution from Rep. Mary Bono Mack (R-CA).

"Today’s unanimous vote sends a clear and unmistakable message: The American people want to keep the Internet free from government control and prevent Russia, China and other nations from succeeding in giving the UN unprecedented power over web content and infrastructure," said Mack in a statement.

Google, for one, applauded the House resolution. "Traditionally, international discussions of Internet policy have flourished in a 'multistakeholder' system that involves the input of lawmakers, academics, civil society and users," said Vint Cerf, Google's "chief Internet evangelist," in a blog post. "If certain member states are successful in Dubai, they could change the Internet governance process as we know it, increasing state control over networks and substantially limiting the role of users and other vital, nongovernmental actors in important Internet policy debates."

Countdown to Dubai

Just what will happen in Dubai this December? Writing earlier this year in Vanity Fair, Michael Joseph Gross noted that Dubai will likely feature three big discussions: Internet taxation—"a 'per-click levy' on international Internet traffic"—meant to build up the Internet in developing countries but which could eat into revenues of companies such as Google; attempts by authoritarian governments to eliminate online anonymity by tying people's online actions to their real identities, which is technically difficult to enforce, and an overhaul of Internet management, as Russia and China lead a charge to dismantle the organization known as the Internet Committee for Assigned Names and Numbers (ICANN), which manages domain names and was created in part by Cerf.

But, there are numerous other proposals on the table, ranging from "communications as a human right" and critical infrastructure protection to price-capping international mobile roaming charges and improving cross-border cybercrime investigation cooperation. On the privacy front, meanwhile, one proposal states, “Member states shall ensure that intercept and monitoring of international telecommunications be subject to due process authorized in accordance with national law.” In other words, phone calls couldn't be wiretapped without going through the correct legal channels, which in most countries would involve a court order.

That proposal would seem to provide reasonable protection against unwarranted state intrusion into people's lives. But according to a well-informed source who spoke on condition of anonymity and who has knowledge of the treaty negotiations—which are largely being conducted in secret—the legal-intercept proposal has so far been vigorously protested not by authoritarian Middle Eastern or African regimes but Western democracies.

Telecommunications goals on the table

As that suggests, the supposed fight for Internet freedoms—with China, Russia and their allies making a naked bid to seize control of the Internet, abetted by the UN—doesn't seem to add up.

"Many of the reports have been overblown. The ITU won't be making any changes to its regulations that impact the Internet without a consensus of states, and therefore, the 'fringe' proposals that have been causing so much concern have no real prospect of adoption," said Jeremy Malcolm, an Australian scholar and lawyer who specializes in Internet governance.

Many people, however, would like to see the UN take a tougher stance on promoting people's online privacy rights.

"The lack of a global standard for online privacy is something that is currently broken … so a more globalized approach would not be a bad thing," said Malcolm. On a related note, he's helping to organize a November gathering called Best Bits—sponsored in part by Google—in Azerbaijan, which aims to emphasize these types of issues and inject more of a civil society voice to the WCIT and telecommunications treaty discussions.

But efforts are already well underway to scuttle Dubai. According to the aforementioned source, the U.S. State Department has begun a concerted lobbying effort to get all of the WCIT participants to agree with the United States position, which is to leave the international telecommunications treaty unchanged. A State Department spokeswoman did not respond to a request for comment on that assertion.

ITU emphasizes Internet expansion

Rounding out the debate, ITU Secretary-General Hamadoun I. Touré has vigorously dismissed all claims that his agency is attempting an Internet governance power grab and emphasized that the ITU's treaty negotiation goals are to help the Internet evolve farther, faster.

"We all want to see greater Internet usage in developing countries. And I presume that we all want consumers to feel that they are getting good value for money when they roam," said Touré in a speech delivered this past June to the WCIT-12 working group. "So it would seem fully appropriate to discuss these matters in Dubai—so that we can find ways to bring down the cost of Internet connectivity in developing countries while ensuring sufficient revenues for operators to deploy broadband infrastructure."

Touré also told the BBC that the ITU has no intention of trying to seize control of the responsibilities currently handled by ICANN, stating, "Has anybody suggested to take responsibility from ICANN? No, it's never been done. I truly believe there is a complementarity involved between our work. We can work together."

Seeking international privacy standards

Dubai aside, from a big-picture online privacy standpoint, would it ever be practical to pursue a global standard—in the UN or elsewhere—given the range of diverging opinions and approaches as exemplified by the classic U.S. "opt-out" versus Europe "opt-in" approach to personal data collection?

Even countries inside Europe can't agree on many privacy principles, to say nothing of how related laws should be updated for the Internet age. As Peter Fleischer, Google's global privacy counsel, recently asked on his personal blog when discussingprivacy in Europe, "Does one size fit all?"

Those difficulties multiply in the context of the UN, given countries' vastly differing approaches to privacy, blasphemy, freedom of expression, surveillance and state control. Accordingly, even if the ITU was to put the concept of a global set of privacy regulations on the table, it's unclear whether they'd end up in any treaty.

“I think it will be very hard to resolve this in a way that’s globally acceptable,” Google's Cerf told Vanity Fair.

On the other hand, some privacy watchers still want related discussions to occur.

"It would not be possible to create global rules—and there will always be a place for national regulation," said Malcolm, the Internet governance expert. "But we can still deliberate upon ways to make those rules work together and common baseline standards that can underlie the different approaches."


Written By

Mathew Schwartz


If you want to comment on this post, you need to login.


Board of Directors

See the esteemed group of leaders shaping the future of the IAPP.

Contact Us

Need someone to talk to? We’re here for you.

IAPP Staff

Looking for someone specific? Visit the staff directory.

Learn more about the IAPP»

Daily Dashboard

The day’s top stories from around the world

Privacy Perspectives

Where the real conversations in privacy happen

The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

Privacy Tracker

Alerts and legal analysis of legislative trends

Privacy Tech

Exploring the technology of privacy

Canada Dashboard Digest

A roundup of the top Canadian privacy news

Europe Data Protection Digest

A roundup of the top European data protection news

Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

IAPP Westin Research Center

Original works. Groundbreaking research. Emerging scholars.

Get more News »

Find a KnowledgeNet Chapter Near You

Network and talk privacy at IAPP KnowledgeNet meetings, taking place worldwide.

Women Leading Privacy

Events, volunteer opportunities and more designed to help you give and get career support and expand your network.

IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.

Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.

Find more ways to Connect »

Find a Privacy Training Class

Two-day privacy training classes are held around the world. See the complete schedule now.

Online Privacy Training

Build your knowledge. The privacy know-how you need is just a click away.

The Training Post—Can’t-Miss Training Updates

Subscribe now to get the latest alerts on training opportunities around the world.

New Web Conferences Added!

See our list of upcoming web conferences. Just log on, listen in and learn!

Train Your Staff

Get your team up to speed on privacy by bringing IAPP training to your organization.

Learn more »

CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

CIPT Certification

The industry benchmark for IT professionals worldwide to validate their knowledge of privacy requirements

Certify Your Staff

Find out how you can bring the world’s only globally recognized privacy certification to a group in your organization.

Learn more about IAPP certification »

Get Close-up

Looking for tools and info on a hot topic? Our close-up pages organize it for you in one easy-to-find place.

Where's Your DPA?

Our interactive DPA locator helps you find data protection authorities and summary of law by country.

IAPP Westin Research Center

See the latest original research from the IAPP Westin fellows.

Looking for Certification Study Resources?

Find out what you need to prepare for your exams

More Resources »

GDPR Comprehensive: Spots Going Fast

With the top minds in the field leading this exceptional program, it's no wonder it's filling quickly. Register now to secure your spot.

Be Part of Something Big: Join the Summit

Registration is open for the Global Privacy Summit 2016. Discounted early bird rates available for a short time, register today!

Data Protection Intensive Returns to London

Registration is now open for the IAPP Europe Data Protection Intensive in London. Check out the program!

P.S.R. Call for Speakers Open!

P.S.R. is THE privacy + cloud security event of the year, and you can take a leading role. Propose a session for this year's program.

Sponsor an Event

Increase visibility for your organization—check out sponsorship opportunities today.

Exhibit at an Event

Put your brand in front of the largest gatherings of privacy pros in the world. Learn more.

More Conferences »

Become a Member

Start taking advantage of the many IAPP member benefits today

Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits

Join the IAPP»