LibraryLaw Blog

RFID and Patron Privacy
by Mary Minow, CALTAC Policy Analyst

Although the Patriot Act weakens library patron privacy, in some ways RFID tags pose a greater risk if not handled with great caution. Whereas the Patriot Act requires legal process to obtain information about your reading habits RFID tags are "promiscuous;" that is, they can be read by anyone who has a compatible reader, including your next door neighbor. They are also "stealthy" in that you have no way of knowing when someone is reading your tags.

Lee Tien, Senior Staff Attorney at the Electronic Frontier Foundation, spoke at the American Library Association conference in Orlando. He cautioned us to get public input and give thorough consideration to privacy issues before racing ahead with RFID.

Even without book titles or user names, the tags, by definition, allow tracking. If schools, post offices and libraries all use RFID, then we will have a pervasive public infrastructure set up to track each of us. Booksellers plan to use RFID with title information (that is, ISBN numbers that link to titles). Libraries will need to be sure to "kill" or deactivate those tags if they are still active when the books are shipped.

Some people say, "No one cares what we read." Tien answers that with three words: "Library Awareness Program." This was an FBI program in the 1970s and 1980s that targeted libraries, looking for Cold War spies by asking library employees who was reading certain technical reports and what database searches suspicious looking patrons asked for.

Certain books or materials will certainly be on a hot list. Will you be afraid to check them out? Perhaps law enforcement wants to track the path of a particular book on skyscrapers. If the book is seen at a checkpoint in a government building, then that book may be tracked as it moves from one checkpoint equipped with a compatible RFID reader to another.

Tien closed with an analogy. A proliferation of RFID tags can be compared to pollution. It is economically rational for an individual company to pollute. It gets benefits without having to mitigate the costs. However, the rest of society suffers with lower air quality. Pervasive RFID tags, used by stores, libraries, post offices etc. could make our lives more efficient, but not without social cost.

This is not to say libraries should not consider RFID tags. It is to say that the privacy concerns should not be quickly brushed aside, public comment should be encouraged, and best practices developed.

For further reading:

Berkeley Public Library, Best Practices for RFID Technology at http://berkeleypubliclibrary.org/BESTPRAC.pdf

Ann Cavoukian, Information and Privacy Commissioner/Ontario CANADA, Guidelines for Using RFID Tags in Ontario Public Libraries, June 2004 at http://www.ipc.on.ca/docs/rfid-lib.pdf A good place to examine "best practices"

Beth Givens, Lee Tien, RFID Implementation in Libraries: Presentations to ALA Intellectual Freedom Committee, American Library Association January 10, 2004, at ALA Mid-Winter, San Diego, CA http://www.privacyrights.org/ar/RFID-ALA.htm - good bibliography including a link to Karen Schneider's testimony before the California Senate

Katharine Mieszkowski, The Checkout Line -- or the Check-You-Out Line? Salon.com, July 26, 2004 at http://www.salon.com/tech/feature/2004/07/26/

David Molnar and David Wagner, Privacy and Security in Library RFID Issues, Practices and Architectures, June 8, 2004 http://www.cs.berkeley.edu/~dmolnar/library.pdf - study finds lack of appropriate access control in today's practices fails to protect patron privacy. Proposes new architectures to improve privacy security.

San Francisco Public Library - Radio Frequency Identification Bibliography (updated March 30, 2004) at http://www.sfpl.org/news/releases/rfidbiblio.htm