Also, I've established office hours Wednesdays 2:00 to 4:00. Delighted to make appointment at any other time or even feel free to drop by and take your chances. If you have paper issues you want to talk about, particularly if you want to do a third year paper with the course, I'm delighted to work with you on that. And also have access to a trove of papers from last year. We're going to cover plagiarism in the Moot Court. But short of that it's actually great to be able to build upon something somebody similarly situated has done a year ago and be that much more ahead when you start writing the paper for this course, if that's what you elect to do.

The paper requirement is not particularly onerous. It's only 15 to 20 pages. There's also the take home exam option if you want that. As it turns out, I think the answers to the questions that are getting posed each week are really good and making a nice portfolio for each person on different views as the course unfolds. And that is a lot of the work of the course right there. I'm mindful that the questions still have a few bugs in them.

If you're suffering from some kind of outrage because either the dog of Netscape ate your homework or there's been some other issue with the question generator please complain lustily to Alex and Wendy. I understand it has been largely fixed. And if for some reason you didn't get to get a question in this week by the time the portcullis (?) closed, you can do so by just e-mailing either me or them and get that right in there.

In that case it's distinct problems of governance, problems or opportunities with respect to being able do modify the code to get things done instead of having to worry about traditional forms of governance. A lot of the readings for today got into that a little bit. And also the distinction between the big guy and the little guy and what possibilities there may be to be a player on the Net in addition to just being a consumer even if you aren't the biggest company in the world.

And we basically are a law enforcement agency. We enforce the Federal Trade Commission Act which prohibits deceptive or unfair business practices and unfair methods of competition. We have Intel; Justice Department has Microsoft. Major Internet cases ongoing right now. I'm in the bureau of consumer protection. And for the last 15 years, 12 of which was focused on food and drug law -- which is another interesting area of law. But the past three I've been focusing on privacy matters and in particular, children's privacy.

So our first concern is that consumers want to protect their identity, their information. There is an economic value to that information. If there wasn't, businesses wouldn't be asking for it. One of the things that is very different about the Internet from previous media, certainly is that it makes the collection of information so easy. And particularly from children who love to share and talk about their favorite subject, themselves.

The analogy, I think, is that information fuels the online market place. It's what enables the online market place to customize the marketing to the individual in a way that we've never seen before. And as a result this is a great boon to business and potential to consumers, too. Because you can get products and services that you really want because it reflects your interests and your needs better than any other market place in the past. And probably more efficiently and more rapidly you can get the book from amazon.com perhaps than you can from your local book store.

But that raises some questions about the implications, particularly in the future, for our society where private businesses have a great deal of information about you and how that information will be used. So privacy -- and I haven't even referred to it as a right specifically, but just the concept of privacy -- we feel, is very important to preserve. And we think it's important at the early stages of the development of this medium to examine how privacy can be secured. We don't want to get down the road 20 years from now and find out it's too late.

So that's one issue and let's set that aside for a moment. That's the security issue. Then the other issue we had was the collection and use of information that consumers may part with while they're surfing around the Web. And two things I heard from you. One is it has economic value and therefore maybe we shouldn't just assume that the businesses should collect it. I mean it's something that may not seem of value to the person whether they prefer Pringles or Lays. But since it is of value to the other side maybe there should be some kind of negotiation going back and forth to capture that surplus between the two of them.

If it was the equivalent of subscribing to a magazine that's being mailed to your home a lot of people wouldn't go that route but they will avail themselves to that kind of information on the Internet. So I think that's the other thing makes it different. There is a state of mind when people are collecting information on the Internet and doing whatever they're doing online that this is anonymous. So in that way the collection of information is really an abuse of the expectation that people have when they do what they do online.

In terms of harms, as I said, we're at the early stages of this medium. Some people make the distinction between the private sector on the one hand and the government on the other. And they say, "I have a problem with the government collecting information," and for that reason, for instance, we have statutes like the Privacy Act that restricts the ability of the government to collect and maintain certain information about people. But I think part of what's new is that the more that the private sector collects and maintains private information the more that becomes a source of information for the government.

I think actually that's one aspect of the Starr investigation that's relevant here. That the more there's this pool of privately held information the more there is available to governmental law enforcement agencies and investigators. I guess it would be the equivalent of the Starr subpoena to the book stores for Lewinsky's book purchases. I think that the more there's this store house of privately held information about people's activities and interests and online activities, the more that information is going to become a target of governmental interest.

From what we read in the FTC report the primary terrible thing to have happen is that somebody knows, generally a company, about your preferences in a way that will allow them to more nefariously target advertisements to you that you're likely to relate to. So that an example might be that I say on the hub's peanut company site that I enjoy peanuts. Hub sells this to Skippy and suddenly I get a coupon not just for some random product like a Saturn but instead for Skippy peanut butter in my mailbox. This is one kind of harm.

I have a directory on my desk of list brokers and lists of every type. Whether it's lists of households with children, lists of college students, lists of women ages 18 to 22. The directory is this thick. It's on telephone book paper so it's paper thin. So there are many, many lists that are available. They're marketed and sold. Largely rented because you don't really want to sell the database, it's too valuable. So this is quite a big business out there.

For example, we had a grandmother in Colorado who sent us an e-mail who told us about the experience they had had. Her grandson was very physically handicapped, had gone to school. The ridicule and reactions he found from other kids, as kids generally are at younger ages and older ages, made him depressed and he refused to go to school. So they had put him on a computer, he had found the Kidscom site. In that process he had started to develop friends online. He started receiving e-mail, he was able to get on a chat with them, talk about what he was interested in, his hobbies, his life and so on. And it raised him out of his depression and sent him off back to school again.

Some of when I say this stuff, it makes it sound very idealistic and very pie in the sky. But part of what we were trying to do is have an impact in changing the world. And it's possible to do that with kids; it's possible to do it with the Internet. The bad thing about the Internet is it has potentially the danger of spreading western culture. (simultaneous conversation)

But we generally send a letter, what we call an access letter, to the company setting forth that we're conducting an inquiry into whether or not there have been deceptive or unfair practices. And that we at this point (simultaneous conversation) collecting information and we work with the company over a period of time to review the facts involved. We contact experts as necessary. It can be quite a lengthy process. And most companies do, on a voluntary basis, work with us to resolution.

In the case of a petition, and in this case with Kidscom, we issued a staff opinion letter. The commission released the staff opinion letter in response to the petition outlining the specific concerns raised by CME regarding the site and the practices involved. And we basically said that this was a new area, that Kidscom's practices were not uncommon. A lot of Web sites were doing very similar things. And that the company had been very cooperative from the very earliest stages and had made a number of appropriate changes to its information practices. And therefore did not recommend bringing a law enforcement action.

The other thing is that you may have seen Boyle talk about the panopticon (?), the idea that you don't have to be looking everywhere at any time as long as somebody somewhere thinks that you might be looking at them at a given time and that causes them to conform their behavior just on the risk they may be being looked at at any given time. And that there is some sense that perhaps on the Net the prospect, suggested in this Lex Infomatica (?) article, of being able to send out the FTC bot that could go through and see which sites are or are not in compliance with particular standards, that offers a real difference than walking down the street and going merchant by merchant with a hidden camera and seeing who's listening to what and who's abiding by what particular rule.

So I guess I just want that to set the stage for the next phase of the discussion here. Which is -- if we define the problem as this particular case study has, as one of disclosure -- are sites disclosing a particular set of policies? Are the policies offering the right kinds of choice, access, the other principles you saw in the FTC paper? And then the last question might be enforcement. How do we know that they're actually hewing (?) to their policies? That might be a lot harder to decide. But if you define that as the problem of privacy there are some technological solutions offered to get at that. And that will bring Joe and David back into the discussion.

So why don't we have our break, reconvene in seven minutes and pick up with that. So let's get cooking again. Someone has conveniently -- I had nothing to do with this -- gone onto the Kidscom site. And they have a wonderful section that lays out the legalese for kids and then lays it out again for adults. The kid's version is actually much longer than the adult version. Somebody has highlighted, "Anything you send to us, whether it's an idea, a picture or a suggestion becomes our property. We won't be able to return it to you. If we do post something you send to us only your first name, country, and age will be shown to help keep personal information about you safe. We might not be able to post or use everything we get."

So I think that what this really comes down to is these two competing models, business models of the Internet. One is based on the collection of personal information and the reuse of that information to generate revenues. And in support of that model you might need technologies like P3P. But I think we have to look at the other model which is anonymity, which a lot of sites today operate on. They've been very successful. I think it is the case that some of the most heavily trafficked sites are anonymous. They don't require the provision of any personal information.

There are two strengths of the Internet. And that's anonymity and interactivity. There are two major issues raised by the Internet. And that's anonymity and interactivity. And what you see happening here is the attempt to try and develop some rules, perhaps some good practices, to allow both interactivity and anonymity in a way that doesn't harm consumers and particularly children. And we're still sorting out how that can work. And what Joe's work involved very much is one tool.

And I think Joe made a very important point earlier. They're not inconsistent. The notion that there will be a role for self regulation, for businesses to regulate themselves, establish good practices, a role for government to perhaps provide a level playing field that legitimate businesses want. They don't want to have burdens put upon them because they're good actors that bad actors can take advantage of. And a role for the technology to play as a tool.

And I think initially when we first started out at the FTC to look at these issues, there seemed to be some tension. The answer is self regulation or the answer is the technology or the answer is the government. And I think what we see happening is more a sense of there are different roles for each to play. We're fine tuning what the roles should be. And this is happening very, very fast.

For those of you who go on to do policy research and want to look at models and policy making, this Internet policy area is just beautiful to look at. Because in a very short period of time you have a confluence of major changes in industry, in government, and private sector consumer groups. Changes that we're seeing happening in our own life styles.

Because it brought down not only FTC, not only industry folks as well, but then Congress came in and enacted a statute that basically did away with 900 numbers directed to kids and set out some very strong regulatory framework which the FTC enforces about how 900 number marketing should occur. It almost died. This industry, the Internet industry, I think, has taken to heart that the leaders in the industry want it to operate in a way that will not have Congress brought down on its head. And the only way to do that is to act responsibly.

And also a thought, inspired if you read the robot article about fourth amendment search and seizure. An idea that at least when you're thinking about the fourth amendment and the privacy that's imputed there -- the most recent conception of the fourth amendment, it's shifted a little bit from what it used to be. And it's actually saying, "The harm done by a government search at least is a so-called collateral damage." The humiliation while you sit there and the cop goes through your suitcase. Or somebody barges into your house and goes through all the rooms and looks around. That that's actually the harm that the fourth amendment is designed to protect against.

That article then hypothesized an incredibly efficient minimal collateral damage and yet amazingly thorough search of your hard drive. The FBI worm comes over the Net, goes through all of your files. Of course it's not a real worm, it's just a piece of software, so there's no homunculus (?) actually looking at your files and imagining you with your files and doing things with them. But instead it's just looking for a particular piece of contraband which, if you have it, you really are in trouble because you're not supposed to. It's some particular copyrighted program or something.

As we wrap up, if you'll indulge me I'd like to -- talk about buying everybody off. The reception is supposed to start at 6:15 so we've got a few minutes yet. I'd love to do just a feedback memo. This is the blank sheet of paper for which you can just put your name if you choose, your biggest thought, your biggest question and anything you want to say directly. That would be quite helpful. About how you think things are going and what you have on your mind after today.