I can't disagree enough with a "blame the user" attitude.
First, it absolves the perpetrators, who are definitely in the wrong. I include both FB and CA in this category.
Second, it is becoming clear that there can be no such thing as "informed consent" in a networked world with respect to data privacy. Zeynep Tufekci, whose writings I heartily commend, had a good article on it a few weeks back.[1] She argues both that the actual uses known of that data are not fully described in consent waivers, and also that it is not possible to know ahead of time how that data will be combined, recombined, projected, analysed, and used in the future to fully consent to all those things. Even if you could do so for yourself as an individual it's not possible to consent to the effects of the combination of an entire society's data as a whole, on others.
Again, it's not possible to obtain informed consent in today's privacy environment, so let's stop blaming the victims.
First, it absolves the perpetrators, who are definitely in the wrong. I include both FB and CA in this category.
Second, it is becoming clear that there can be no such thing as "informed consent" in a networked world with respect to data privacy. Zeynep Tufekci, whose writings I heartily commend, had a good article on it a few weeks back.[1] She argues both that the actual uses known of that data are not fully described in consent waivers, and also that it is not possible to know ahead of time how that data will be combined, recombined, projected, analysed, and used in the future to fully consent to all those things. Even if you could do so for yourself as an individual it's not possible to consent to the effects of the combination of an entire society's data as a whole, on others.
Again, it's not possible to obtain informed consent in today's privacy environment, so let's stop blaming the victims.
[1] https://www.nytimes.com/2018/01/30/opinion/strava-privacy.ht...