Internet of Things as Objects of Sociality and EU Legislation

Posted on 3 November, 2023

Bookmarked Internet of Things and Objects of Sociality (by Ton Zijlstra, 2008)

Fifteen years ago today I blogged this brainstorming exercise about how internet-connectivity for objects might make for different and new objects of sociality. A way to interact with our environment differently. Not a whole lot of that has happened, let alone become common. What has happened is IoT being locked up in device and mobile app pairings. Our Hue lights are tied to the Hue app, and if I’d let it collect e.g. behavioural data it would go to Philips first, not to me. A Ring doorbell (now disabled), our Sonos speakers are the same Those rigid pairings are a far cry from me seamlessly interacting with my environment. One exception is our Meet Je Stad sensor in the garden, as it runs on LoRaWan and the local citizen science community has the same access as I do to the data (and I run a LoRa gateway myself, adding another control point for me).

Incoming EU legislation may help to get more agency on this front. First and foremost, the Data Act when it is finished will make it mandatory that I can access the data I generate with my use of devices like those Hue lights and Sonos speakers and any others you and I may have in use (the data from the invertor on your solar panels for instance). And allow third parties to use that data in real time. A second relevant law I think is the Cyber Resilience Act, which regulates the cybersecurity of any ‘product with digital elements’ on the EU market, and makes it mandatory to provide additional (technical) documentation around that topic.

The internet of things, increases the role of physical objects as social objects enormously, because it adds heaps of context that can serve relationships. Physical objects always have been social objects, but only in their immediate physical context. … Making physical objects internet-aware creates a slew of possible new uses for it as social objects. And if you [yourself] add more sensors or actuators to a product (object hacks so to speak), the list grows accordingly.

Ton Zijlstra, 2008

EU Bans Meta’s Behavioral Targeting Without Freely Given Consent

Posted on 1 November, 2023

by Ton Zijlstra

Favorited EDPB Urgent Binding Decision on processing of personal data for behavioural advertising by Meta by EDPB

This is very good news. The European Data Protection Board, at the request of the Norwegian DPA, has issued a binding decision instructing the Irish DPA and banning the processing of personal data for behavioural targeting by Meta. Meta must cease processing data within two weeks. Norway already concluded a few years ago that adtech is mostly illegal, but European cases based on the 2018 GDPR moved through the system at a glacial pace, in part because of a co-opted and dysfunctional Irish Data Protection Board. Meta’s ‘pay for privacy‘ ploy is also torpedoed with this decision. This is grounds for celebration, even if this will likely lead to legal challenges first. And it is grounds for congratulations to NOYB and Max Schrems whose complaints filed the first minute the GDPR enforcement started in 2018 kicked of the process of which this is a result.

…take, within two weeks, final measures regarding Meta Ireland Limited (Meta IE) and to impose a ban on the processing of personal data for behavioural advertising on the legal bases of contract and legitimate interest across the entire European Economic Area (EEA).

European Data Protection Board

The Search for an OS Meet-Up Replacement, Mobilizon Edition

Posted on 12 September, 2023

by Ton Zijlstra

I and my team at The Green Land are looking for a self-hosted version of event organisation tools like MeetUp.com or Eventbrite. Both for small scale events as part of projects, such as meet-ups of citizen scientists, as well as for ourselves, such as small gatherings we organise around AI ethics with our professional peer network.

We don’t want to use Meetup.com or things like Eventbrite because we don’t want personal data to be handed over to US based entities, nor require the participants to do so just because they want to attend a local event. We also notice a strong hesitancy amongst participants of events when it is needed to create yet another account on yet another service just to let us know they will be joining us for something.

Nevertheless we do want an easy way to announce events, track registrations, and have a place to share material before, during and afterwards. And I know that events are hard in terms of discovery, because although there are a plethora of events, for most participants as well as event organisers they’re incidents (years ago I came across a blogpost describing this Events Paradox well.). Additionally, for us as professionals it is usually more logical to host our own events than find one that fits our needs.
So we need a way to announce events where we can assure participants there’s no need to hand over personal information, and where material can be shared.

There seem to be two FOSS offerings in this space. Mobilizon by Framasoft and Gettogether. In the past weeks my colleague S and I tried to test Mobilizon.

Mobilizon is ActivityPub based, and there’s a Yunohost version which I installed on our VPS early last month. Mobilizon promises several strong points:

Fully self-hosted, and able to federate with other instances. There aren’t many visible instances out there, but one NGO we frequently encounter in our network does run its own instance.
you can maintain different profiles in your account, so that for different parts of your life you can subscribe to events, without e.g. your historical re-enactment events showing up amongst your professional events in a public profile.
People can register for an event without needing an account or profile (using e-mail confirmation)

Working with Mobilizon turned out less than ideal at a very basic level. Accounts couldn’t log in after creation. As an administrator I could not force password resets for users (that couldn’t log in anymore). Not being able to do user admin (other than suspending accounts) seems to be a deliberate design choice.
I still had access through my Yunohost admin account, but after an update yesterday of the Mobilizon app that stopped working too. So now both instance admins were locked out. Existing documentation wasn’t much help in understanding what exactly is going on.

I also came across an announcement dat Framasoft intends to shift development resources away from Mobilizon by the end of the year, and thusfar there’s little momentum in the developer community to pick up where they intend to leave off.

For now I have uninstalled Mobilizon. I will reach out to the mentioned NGO to hear how their experiences are. And will look at the other tool, although no Yunohost version of it exists.

I’m open te hear about other alternatives that might be good to try.

The Enshittification of LinkedIn As DSA Takes Effect

Posted on 25 August, 2023

by Ton Zijlstra

Oh great, LinkedIn! Of course I want you to ‘suggest’ postings in my timeline concerning conspiracy delusions about the fires in Hawaii, a disfigured street cat ‘nevertheless’ feeding its young and thus commended for its nurturing instincts (is animal ableism a separate category in your data model?), an autoplaying video of a woman removing mobiles from her family’s hands at the dinner table in a very funny (hahaha!) way, and something about a leopard. Enshittification ftw! I unfollowed every one on my contact list two years ago just for you to have more space to play Facebook and TikTok all by yourself. And I am also very pleased you always make me set the timeline to ‘most recent’ and then put it back to ‘most relevant’ (I do wonder about LinkedIn’s definition of ‘relevant’) so I don’t miss any of your suggestions. I think I need to use a different way of going to LinkedIn to find the details of someone in my network than the default /feed LinkedIn steers you to. I’ll add the direct path to the network search page as bookmark. And continuously strengthen my personal notes-as-rolodex.

Such a great day for the Digital Services Act to come into effect for ‘VLOPS’ like LinkedIn!

Quickly Reaching The End of My Twitter Use

Posted on 4 July, 2023

by Ton Zijlstra

Twitter’s new management seems to want to limit the use of Tweetdeck to paying users only.

For many years, at least since the algorithm decided the timeline, I’ve used Tweetdeck as circumvention and as my interface to Twitter. It’s how I search for specific topics, follow some accounts, lists, tags etc. I had until recently some 70 columns in my Tweetdeck. Last year Tweetdeck became web only, and I suspected it wouldn’t be a net positive for my Twitter usage. It wasn’t. Mostly because it split up my different Twitter accounts over multiple tweetdeck set-ups where there used to be 1, and then made it harder to easily switch between accounts for posting and interacting. This last week it became mostly impossible to see any tweets when not logged in (which I never do on mobile).

All in all it looks like it’s time to discard Twitter fully. I haven’t posted in my accounts the last months, but kept the accounts if for nothing else than place holders. If even accessing Twitter is hobbled, then it’s finally time to let it go. One more platform that lives shorter than my own site.

Back in 2008 in presentations I used to share this list of what I shared online in which channel. Almost all of that is gone or disfunctional, where it used to be an integral part of my online interactions with my network.

A 2008 overview of social tools I used at that time. Slide from my 2008 talk at Politcamp Graz on networked life and work. Most of those tools no longer exist or I no longer use. Except for this blog.

I see lots of potential for social software still, and even again, just not social media.

[Update 2023/07/05: I have deleted all my topic oriented Twitter accounts and a few legacy ones, as well as my public main account (ton_zylstra). My private one (tonzylstra), I may keep for a while longer, unused though it is.]