|
Distribution of databases with restricted access through the Internet
In Russia (especially in Moscow) illegal collection and distribution of data
on private persons and organizations is a common phenomenon. Quite popular are
databases on purchase/sale of cars, car owners, passport data and foreign passport
data of Russian citizens, data of Moscow Registration Chamber, data on real
estate (purchase and sale of apartments, their parameters, location and proprietors),
databases of tax payers, information about people wanted for crimes and those
who have been convicted earlier. CDs with such databases are available at "black
markets". Some other databases are also avalable like information from
papers withdrawn by police from suspects.
[ Fig. Typical Russian Web page offering databases ]
Methods of online distribution of such data do not differ much from those used
by offline privacy intruders. However, the Internet gives them more technical
capacities. Advertisements for databases sale are widely distributed by e-mail
and placed on Web pages. To buy a database CD one has to reply to such advertisement
by e-mail, specify the contact phone number, and make an appointment. Database
sellers generally register their accounts at anonymous free e-mail servers.
A mobile phone number is normally given as contact information. The database
cost varies from $10 to $1,500 depending on subject, volume, accuracy and freshness
of data. Data on a CD is structured with a shell and search, processing and
analysis functions. Regular updates for databases are also available.
Direct placing of databases through the Internet is gradually coming into use.
In February 2001, a big company has drawn public attention being involved with
the trial directly connected with placing of such data through the Internet
(81).
Special formed Department for computer and information security at the Federal
Security Service and Department "R" at the RF Ministry of Internal
Affairs (department that deals with crimes in hi-tech area) both are responsible
for fighting computer crimes. We still do not know the cases when a supplier,
dealer or seller of such database was made responsible according to the Article
137 of Russian Criminal Code for invasion of privacy. Law enforcement bodies
used to refer to lack of legislation and stress that there is no legal owner
of these databases, no Act "On official secret", and that the database
contains neither commercial no state secret. Constitutionally guaranteed personal
privacy and principle of direct effect of the Constitution itself are declared
by law enforcement bodies as insufficient to start criminal proceedings. Accordingly,
cases related to illegal databases sale are usually brought to protection of
copyright of the commercial companies producing computer databases.
Dissemination of databases with restricted access through the Internet is discussed intensively
in mass media (82). One may easily find about 30 articles on this subject on
the Net.
81 - The "Integrum-Techno" company. This case has been extensively
reported by mass-media. See, for instance, <http://www.appp.ru/news/21-02.htm>
(Non-profit partnership of software suppliers, February 21, 2001) (back)
82 - See, for instance, "Splitted
base" by Alexey Khodorych ("Commersant-Den'gi", No.7 of February
21, 2001), Victor Kostyukovsky "We
all live under user's surveillance" ("Novye Izvestia" No. 76
(362), April 28, 1999) (back)
Next: Personal privacy-protecting software
Contents of the survey
|
