Recommended Madison Placement

Concatenated Question and Source

Can more sensors be placed in the north near O'Hare?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Can more sensors be placed in the north near O'Hare? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Who is in charge of this project? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Tell us more about the partners involved in this work - specifically SAIC & Smart Chicago

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Tell us more about the partners involved in this work - specifically SAIC & Smart Chicago [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

When will the Lane Tech Curriculum be available to everyone?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

When will the Lane Tech Curriculum be available to everyone? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Is the camera in the sensors used for public safety purposes?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Is the camera in the sensors used for public safety purposes? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Why is this meeting [the 6.14 public meeting] happening in Pilsen?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Why is this meeting (the 6.14 public meeting) happening in Pilsen? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Is this [AoT] happening in other places or cities?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Is this [AoT] happening in other places or cities? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

How might the project/sensors change?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

How might the project/sensors change? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

[During the 6.14 Public Meeting] Charlie metioned a hypothetical about counting dog walkers? Could you potentially catch people who didn't pick up after their dogs?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Charlie mentioned a hypothetical about counting dog walkers during the 6.14 Public Meeting — Could you potentially catch people who didn't pick up after their dogs? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

What's the purpose of collecting the nonpublic raw data/images?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

What's the purpose of collecting the nonpublic raw data/images? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Why collect multiple images at different times?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Why collect multiple images at different times? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

What about measuring cancer-causing chemicals?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

What about measuring cancer-causing chemicals? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

[Resident Comment from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Include communities in this project [Resident Comment from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Can communities influence the placement of sensors?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Can communities influence the placement of sensors? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

A recommendation to work with the Pilsen Alliance

[Resident Comment from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

A recommendation for AoT to work with the Pilsen Alliance [Resident Comment from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Will all of the sensors be placed at the same height?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Will all of the sensors be placed at the same height? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Why aluminum for the sensors? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Can a homeowner elect to have a sensor installed on their property?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Can a homeowner elect to have a sensor installed on their property? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

What kind of computers are in the sensors?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

What kind of computers are in the sensors? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Isn't there a research trade-off between having the sensors paced around the city randomly vs. having them placed around the city strategically?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Isn't there a research trade-off between having the sensors paced around the city randomly vs. having them placed around the city strategically? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Has the national weather service shown interest in this work?

[Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

6.14 Public Meeting Notes

https://docs.google.com/document/d/1Y-HiF8_4N3sHJqOcjbvcd4OR_WvjDTZTCa4QlgceI-Q/edit?usp=sharing

Has the national weather service shown interest in this work? [Resident Question from 6.14 Public Meeting. See Notes: bit.ly/614notes ]

Can law enforcement authorities require you to store data you wouldn't have done?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Can law enforcement authorities require you to store data you wouldn't have stored? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

What will you do about clogged optical lenses or sensors?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

What will you do about clogged optical lenses or sensors? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

What independent body audits and controls deletion of data?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

What independent body audits and controls deletion of data? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

Would Array of Things data result in isolating/segregating/overemphasizing certain areas of the city--particularly if it’s sliced and diced?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Would Array of Things data result in isolating/segregating/overemphasizing certain areas of the city--particularly if it’s sliced and diced? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

With the recording of PII, will we be able to make out specific things in the pictures? Berman says some info will not be released to the public. Who is going to have access to this data? For example, the NSA?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

With the recording of PII, will we be able to make out specific things in the pictures? Berman says some info will not be released to the public. Who is going to have access to this data? For example, the NSA? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

If the images chosen to train the cameras are random, what value does that have to a scientist?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

If the images chosen to train the cameras are random, what value does that have to a scientist? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

Wouldn't it be cheaper just to ask the neighbors if there's standing water than to have a sensor?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Wouldn't it be cheaper just to ask the neighbors if there's standing water than to have a sensor? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

What's the process for addressing issues that sensors might detect? Where I work, people don't call 311 because nothing happens.

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

What's the process for addressing issues that sensors might detect? Where I work, people don't call 311 because nothing happens. [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

How is the internet part of the device protected?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

How is the internet part of the device protected? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

So the cellular company would have access to the data?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Would the cellular company have access to the data? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

Are the algorithms for image recognition going to be publically available in a repository?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Are the algorithms for image recognition going to be publicly available in a repository? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

Will the funding continue for Array of Things if it's successful?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Will the funding continue for Array of Things if it's successful? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

Are example data sets available? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

The Chicago Architectural Foundation was thinking about using data from smartphones: were you thinking of partnering with them for data collection?

[Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

6. 22 Public Meeting Notes

https://docs.google.com/document/d/1FdRtuZAOUbGKw7FZ9466TEnedVWg8vf6i8REGP6GfFI/edit?usp=sharing

The Chicago Architectural Foundation was thinking about using data from smartphones: were you thinking of partnering with them for data collection? [Resident Question from 6.22 Public Meeting. See Notes: bit.ly/622notes ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] Please If and when the project closes how will PII be properly disposed of so that it will not later be leaked?

[Wufoo Form Entry 1. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZWTBfRnVUWkJBMlE/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: Please If and when the project closes how will PII be properly disposed of so that it will not later be leaked? [Source: Wufoo Form Entry 1. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] I think information sharing should be limited carefully. No data should be downloaded to individual personal devices. This sounds a lot like big brother. If the data is there somebody will access and use it.

[Wufoo Form Entry 2. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZYjd1NktZa01nV2c/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: I think information sharing should be limited carefully. No data should be downloaded to individual personal devices. This sounds a lot like big brother. If the data is there somebody will access and use it. [Source: Wufoo Form Entry 2. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] I'm agin it. It will be violated. Do I trust James Clapper? Why should I trust Charlie Catlett? The public has not been given the opportunity to approve or disapprove of this venture beforehand, as is the case with the Internet of Things as a whole. But the numbert of people for and against this initiative is ultimately irrelevant, since there is always a sizable contingent which is trained to will its own domination. Metadata will carry the day and the undeniable benefits such a system as the Array of Things is capable of will be more than offset by its drawbacks. This major advance within the paradigm of the Electronic Panopticon world-as-prison should be opposed by every free-thinking individual. [Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy?] My only question is how can I avoid it?

[Wufoo Form Entry 3. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZSEdaeHRKeTh0QXM/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: I'm agin it. It will be violated. Do I trust James Clapper? Why should I trust Charlie Catlett? The public has not been given the opportunity to approve or disapprove of this venture beforehand, as is the case with the Internet of Things as a whole. But the numbert of people for and against this initiative is ultimately irrelevant, since there is always a sizable contingent which is trained to will its own domination. Metadata will carry the day and the undeniable benefits such a system as the Array of Things is capable of will be more than offset by its drawbacks. This major advance within the paradigm of the Electronic Panopticon world-as-prison should be opposed by every free-thinking individual. /// Question 2: Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy? Response 2: My only question is how can I avoid it? [Source: Wufoo Form Entry 3. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] The public meeting last week was very informative. I see no problems with on the governance and privacy policy. Seems like all areas are covered in the policy. Would like to see more information and contact information for the project team leaders. There is no one person to contact managing the project. Many of the groups involved in the project need to clean up their web sites and ways to contact and/or call to speak to a live person. The project will be very good for urban planning and community problem solving. Our organization would like to participate in the next assignments of AoT monitors on the Northwest side of Chicago. We are currently reaching out to Northside universities (i.e. Loyola and North College Prep High). Please keep up in the loop of information and we would like to schedule a meeting in out community to talk about the project. Hope to hear from you soon. Dr. Donald W. Walsh Indian Woods Community Association (www.indianwoods.org) FAiR (www.fairchicago.org) [Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy?] 1) How do we submit an official request to participate in the project as a community organization? 2) Can you make a presentation in our community if we coordinate the locations, invites, etc...?) 3)FAiR has a group of experts that would like to speak to the project lead persons. How do we coordinate that? 4) Can you please send me the full contact list of the persons managing the project?

[Wufoo Form Entry 4. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZZmYzRl8ydnBWdDg/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: The public meeting last week was very informative. I see no problems with on the governance and privacy policy. Seems like all areas are covered in the policy. Would like to see more information and contact information for the project team leaders. There is no one person to contact managing the project. Many of the groups involved in the project need to clean up their web sites and ways to contact and/or call to speak to a live person. The project will be very good for urban planning and community problem solving. Our organization would like to participate in the next assignments of AoT monitors on the Northwest side of Chicago. We are currently reaching out to Northside universities (i.e. Loyola and North College Prep High). Please keep up in the loop of information and we would like to schedule a meeting in out community to talk about the project. Hope to hear from you soon. Dr. Donald W. Walsh Indian Woods Community Association (www.indianwoods.org) FAiR (www.fairchicago.org) /// Question 2: Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy? Response 2: 1) How do we submit an official request to participate in the project as a community organization? 2) Can you make a presentation in our community if we coordinate the locations, invites, etc...?) 3)FAiR has a group of experts that would like to speak to the project lead persons. How do we coordinate that? 4) Can you please send me the full contact list of the persons managing the project? [Source: Wufoo Form Entry 4. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] It is the following section which casues me the most concern: "The Array of Things technology is designed and operated to protect privacy. PII data, such as could be found in images or sounds, will not be made public. For the purposes of instrument calibration, testing, and software enhancement, images and audio files that may contain PII will be periodically processed to improve, develop, and enhance algorithms that could detect and report on conditions such as street flooding, car/bicycle traffic, storm conditions, or poor visibility. Raw calibration data that could contain PII will be stored in a secure facility for processing during the course of the Array of Things project, including for purposes of improving the technology to protect PII. Access to this limited volume of data is restricted to operator employees, contractors and approved scientific partners who need to process the data for instrument design and calibration purposes, and who are subject to strict contractual confidentiality obligations and will be subject to discipline and/or termination if they fail to meet these obligations." Of course the question becomes how does the public verify precisely who has such access to the PII data? Will access parameters be modified over time? Specifically, what assuramces can one gain that the Chicago Police Depertment, NSA, or other agencies will not have access to this data? [Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy?] Many.

[Wufoo Form Entry 5. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZb2NFcXc4cGZfbUE/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: It is the following section which casues me the most concern: "The Array of Things technology is designed and operated to protect privacy. PII data, such as could be found in images or sounds, will not be made public. For the purposes of instrument calibration, testing, and software enhancement, images and audio files that may contain PII will be periodically processed to improve, develop, and enhance algorithms that could detect and report on conditions such as street flooding, car/bicycle traffic, storm conditions, or poor visibility. Raw calibration data that could contain PII will be stored in a secure facility for processing during the course of the Array of Things project, including for purposes of improving the technology to protect PII. Access to this limited volume of data is restricted to operator employees, contractors and approved scientific partners who need to process the data for instrument design and calibration purposes, and who are subject to strict contractual confidentiality obligations and will be subject to discipline and/or termination if they fail to meet these obligations." Of course the question becomes how does the public verify precisely who has such access to the PII data? Will access parameters be modified over time? Specifically, what assuramces can one gain that the Chicago Police Depertment, NSA, or other agencies will not have access to this data? /// Question 2: Do you have any remaining questions about the Array of Things project or the Governance & Privacy Policy? Response 2: Many. [Source: Wufoo Form Entry 5. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] Hello there, I've been following AoT for the past two years. Happy to have the opportunity to share my thoughts. Thank you! 1. I have concern for how AoT envisions managing the tricky nature of feedback from the data, and how key variables and interactions will be chosen to formulate a picture of the urban system . . . could new variables chosen to model policy and decision making compromise privacy ? 2. We all know cities are a complex system that constantly evolves, so will AoT's foundational pillars of privacy do the same ? How could this public concern be quieted ? 3. How could AoT's blend numerical data and qualitative methods to more holistically craft future privacy policies ?

[Wufoo Form Entry 6. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZZHJ1NlBQWWZJek0/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: Hello there, I've been following AoT for the past two years. Happy to have the opportunity to share my thoughts. Thank you! 1. I have concern for how AoT envisions managing the tricky nature of feedback from the data, and how key variables and interactions will be chosen to formulate a picture of the urban system . . . could new variables chosen to model policy and decision making compromise privacy ? 2. We all know cities are a complex system that constantly evolves, so will AoT's foundational pillars of privacy do the same ? How could this public concern be quieted ? 3. How could AoT's blend numerical data and qualitative methods to more holistically craft future privacy policies ? [Source: Wufoo Form Entry 6. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] In the wake of the pullback on current capabilities of the Array, one is still left with the concept of function creep. When new technology is introduced for a stated purpose, this purpose may not be the only purpose the technology is capable of. In other words, the capability profile of the apparatus in question is capable of a high degree of plasticity as viewed over time.

[Wufoo Form Entry 7. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZeW9tbFcyYzF2ajA/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: In the wake of the pullback on current capabilities of the Array, one is still left with the concept of function creep. When new technology is introduced for a stated purpose, this purpose may not be the only purpose the technology is capable of. In other words, the capability profile of the apparatus in question is capable of a high degree of plasticity as viewed over time. [Source: Wufoo Form Entry 7. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] The Future of Privacy Forum (FPF) is a think tank seeking to advance responsible data practices and is supported by leaders in business, academia and consumer advocacy. (The views herein do not necessarily reflect those of the Advisory Board or supporters of FPF). We would like to thank the Array of Things (AoT) project for this opportunity to provide feedback on the proposed Governance and Privacy Policies, and to engage with the broader Chicago and smart city communities. We applaud the AoT’s commitment to building a transparent and responsive program. While this initial privacy policy proposal provides a useful starting point, we urge the AoT’s Security and Privacy Group and Executive Oversight Council to expand or revise it in several ways to better achieve its goals of balancing privacy, transparency, and openness. 1. The Privacy Policy should reflect a FIPs-based framework. The Fair Information Principles (FIPs) are “the framework for most modern privacy laws around the world” and NIST recommends that in order to “establish a comprehensive privacy program that addresses the range of privacy issues that organizations face, organizations should take steps to establish policies and procedures that address all of the Fair Information Practices” (http://csrc.nist.gov/publications/nistpubs/800-122/sp800-122.pdf). The current AoT Privacy Policy addresses some, but not all, of these principles. In a more robust FIPs-based Privacy Policy, we would also expect to see meaningful details regarding: - What rights or mechanisms, if any, individuals might have to access, correct, or request the deletion of their PII? - What mechanisms, if any, provide individuals with redress regarding the use of their PII? - In addition to discipline and confidentiality promises, what accountability controls (such as employee training, vendor audits, or data use agreements) will help ensure employees, contractors, and approved partners with access to PII comply with the privacy policy. - How long will PII be retained, how PII will be disposed of after it is no longer reasonably necessary for the purposes for which it was collected, and how PII will be treated if the AoT program dissolves or transfers ownership. - How and when PII will be deleted or de-identified. - How the program operators will respond to requests from local, state, or federal civil or law enforcement agencies to access PII (such as when presented with a warrant or subpoena) and to what extent PII is subject to Freedom of Information Act disclosure requests. - Information on how to contact AoT officials regarding any privacy or data security breaches. - How will PII be secured through appropriate administrative, technical, and physical safeguards (such as encryption at rest and in transit, local processing or storage, etc.) against a variety of risks, such as data loss, unauthorized access or use, destruction, modification, or unintended or inappropriate disclosure. - What mechanisms, if any, are available for individuals to exercise control or choice over the collection of PII (e.g., could individuals turn off their phones or participate in an opt out to avoid certain kinds of tracking?) - How the AoT minimizes the collection of PII. Importantly, given the significant amount of information that residents of and visitors to Chicago might be expected to digest, a layered privacy notice highlighting key points would be appropriate. Additional notifications, such as public signage on or around AoT nodes or just-in-time mobile notices pointing to the full privacy policy might also help provide meaningful notice. 2. More meaningful technical details within the Privacy Policy would improve trust and transparency for the wide array of stakeholders interested in assessing the program’s privacy and security promises and practices. The AoT’s Privacy Policy is relevant not just to the citizens and communities of Chicago but also a wide range of civil society organizations; other local, state, and federal government officials; academics; potential vendors or research partners; technologists and privacy professionals; and the media. Accordingly, we recommend that the Privacy Policy further expand or clarify: - Distinguishing clearly between PII and sensitive data collected by the AoT. The Privacy Policy states that because of their “potential sensitivity,” location information, electronic device identifiers, or vehicle license plate information should be regarded as PII. This conflates between the concept of PII and that of sensitive data, missing the clear consensus among regulators and privacy experts that regardless of sensitivity, these data fields are PII. (See e.g., NIST Report on De-Identification, http://nvlpubs.nist.gov/nistpubs/ir/2015/NIST.IR.8053.pdf; FTC Director Jessica Rich on persistent device identifiers https://www.ftc.gov/news-events/blogs/business-blog/2016/04/keeping-online-advertising-industry; Shades of Gray: Seeing the Full Spectrum of Practical Data De-Identification, http://papers.ssrn.com/sol3/papers.cfm?abstract_id=2757709). In privacy nomenclature, describing data as PII typically means that the data can be linked to an identifiable individual, whereas considering data “sensitive” typically signals that the data will be treated to a higher standard of privacy protection. In order to avoid confusion, we suggest clarifying these terms. - When audio or image files may contain PII, what specific kind of PII is collected. There is a stark difference in privacy impact between software used to simply detect faces (facial detection) and software capable of identifying individuals in photos via biometric templates (facial recognition). A similar distinction is made between speech detection and speech recognition capabilities. Given the general public unease about loss of anonymity and privacy in public spaces, it is key to clarify what technologies are being used in this context and what capabilities they have for processing PII. This will help allay fears regarding the use of PII from image and audio files captured in public spaces. - How the AoT will ensure adequate de-identification for data made public through the City’s data portal. Open data enables important scientific research and urban innovation. Given the AoT’s intent to make its data available freely, it must implement the strongest possible protections against the intentional or inadvertent re-identification of any individuals within the data set. AoT should clarify publicly how it will ensure that the risk of re-identification is sufficiently low that individual privacy can be guaranteed. What is the acceptable threshold for re-identification risk, and how is it calculated? Will the AoT use differential privacy solutions? How will AoT handle the de-identification within image or audio files as opposed to structured textual data? Will any legal controls or commitments (such as agreements to not attempt to re-identify data) be required before accessing de-identified data? While not expected to publish every detail of its de-identification strategy or lock itself into a particular set of practices, the AoT should make known important parameters to increase trust and transparency. 3. Additionally, FPF recommends that all smart city initiatives, including the AoT, implement a variety of other organizational and technical measures to safeguard personal data, including: a. Mapping data flows, including where data is collected and how it is used throughout the entire AoT ecosystem. b. Classifying data according to sources, identifiability, sensitivity, and uses. c. Documenting processes and procedures for sharing data with third parties and monitoring vendors, including data use agreements, audit and standard contractual terms, and transparency about how and by whom scientific partners are “approved.” d. Safeguards to protect against unfair or discriminatory uses of data. e. Identifying what data sets are owned by which stakeholders, and any relevant copyright, licensing, or access provisions. f. Documenting risk-benefit assessments and structured ethical review processes for evaluating new research or uses of PII. (See, e.g., https://fpf.org/wp-content/uploads/FPF_DataBenefitAnalysis_FINAL.pdf) Thank you again for this opportunity to comment.

[Wufoo Form Entry 8. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZYzEzRUl2akVRR1E/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: The Future of Privacy Forum (FPF) is a think tank seeking to advance responsible data practices and is supported by leaders in business, academia and consumer advocacy. (The views herein do not necessarily reflect those of the Advisory Board or supporters of FPF). We would like to thank the Array of Things (AoT) project for this opportunity to provide feedback on the proposed Governance and Privacy Policies, and to engage with the broader Chicago and smart city communities. We applaud the AoT’s commitment to building a transparent and responsive program. While this initial privacy policy proposal provides a useful starting point, we urge the AoT’s Security and Privacy Group and Executive Oversight Council to expand or revise it in several ways to better achieve its goals of balancing privacy, transparency, and openness. 1. The Privacy Policy should reflect a FIPs-based framework. The Fair Information Principles (FIPs) are “the framework for most modern privacy laws around the world” and NIST recommends that in order to “establish a comprehensive privacy program that addresses the range of privacy issues that organizations face, organizations should take steps to establish policies and procedures that address all of the Fair Information Practices” (http://csrc.nist.gov/publications/nistpubs/800-122/sp800-122.pdf). The current AoT Privacy Policy addresses some, but not all, of these principles. In a more robust FIPs-based Privacy Policy, we would also expect to see meaningful details regarding: - What rights or mechanisms, if any, individuals might have to access, correct, or request the deletion of their PII? - What mechanisms, if any, provide individuals with redress regarding the use of their PII? - In addition to discipline and confidentiality promises, what accountability controls (such as employee training, vendor audits, or data use agreements) will help ensure employees, contractors, and approved partners with access to PII comply with the privacy policy. - How long will PII be retained, how PII will be disposed of after it is no longer reasonably necessary for the purposes for which it was collected, and how PII will be treated if the AoT program dissolves or transfers ownership. - How and when PII will be deleted or de-identified. - How the program operators will respond to requests from local, state, or federal civil or law enforcement agencies to access PII (such as when presented with a warrant or subpoena) and to what extent PII is subject to Freedom of Information Act disclosure requests. - Information on how to contact AoT officials regarding any privacy or data security breaches. - How will PII be secured through appropriate administrative, technical, and physical safeguards (such as encryption at rest and in transit, local processing or storage, etc.) against a variety of risks, such as data loss, unauthorized access or use, destruction, modification, or unintended or inappropriate disclosure. - What mechanisms, if any, are available for individuals to exercise control or choice over the collection of PII (e.g., could individuals turn off their phones or participate in an opt out to avoid certain kinds of tracking?) - How the AoT minimizes the collection of PII. Importantly, given the significant amount of information that residents of and visitors to Chicago might be expected to digest, a layered privacy notice highlighting key points would be appropriate. Additional notifications, such as public signage on or around AoT nodes or just-in-time mobile notices pointing to the full privacy policy might also help provide meaningful notice. 2. More meaningful technical details within the Privacy Policy would improve trust and transparency for the wide array of stakeholders interested in assessing the program’s privacy and security promises and practices. The AoT’s Privacy Policy is relevant not just to the citizens and communities of Chicago but also a wide range of civil society organizations; other local, state, and federal government officials; academics; potential vendors or research partners; technologists and privacy professionals; and the media. Accordingly, we recommend that the Privacy Policy further expand or clarify: - Distinguishing clearly between PII and sensitive data collected by the AoT. The Privacy Policy states that because of their “potential sensitivity,” location information, electronic device identifiers, or vehicle license plate information should be regarded as PII. This conflates between the concept of PII and that of sensitive data, missing the clear consensus among regulators and privacy experts that regardless of sensitivity, these data fields are PII. (See e.g., NIST Report on De-Identification, http://nvlpubs.nist.gov/nistpubs/ir/2015/NIST.IR.8053.pdf; FTC Director Jessica Rich on persistent device identifiers https://www.ftc.gov/news-events/blogs/business-blog/2016/04/keeping-online-advertising-industry; Shades of Gray: Seeing the Full Spectrum of Practical Data De-Identification, http://papers.ssrn.com/sol3/papers.cfm?abstract_id=2757709). In privacy nomenclature, describing data as PII typically means that the data can be linked to an identifiable individual, whereas considering data “sensitive” typically signals that the data will be treated to a higher standard of privacy protection. In order to avoid confusion, we suggest clarifying these terms. - When audio or image files may contain PII, what specific kind of PII is collected. There is a stark difference in privacy impact between software used to simply detect faces (facial detection) and software capable of identifying individuals in photos via biometric templates (facial recognition). A similar distinction is made between speech detection and speech recognition capabilities. Given the general public unease about loss of anonymity and privacy in public spaces, it is key to clarify what technologies are being used in this context and what capabilities they have for processing PII. This will help allay fears regarding the use of PII from image and audio files captured in public spaces. - How the AoT will ensure adequate de-identification for data made public through the City’s data portal. Open data enables important scientific research and urban innovation. Given the AoT’s intent to make its data available freely, it must implement the strongest possible protections against the intentional or inadvertent re-identification of any individuals within the data set. AoT should clarify publicly how it will ensure that the risk of re-identification is sufficiently low that individual privacy can be guaranteed. What is the acceptable threshold for re-identification risk, and how is it calculated? Will the AoT use differential privacy solutions? How will AoT handle the de-identification within image or audio files as opposed to structured textual data? Will any legal controls or commitments (such as agreements to not attempt to re-identify data) be required before accessing de-identified data? While not expected to publish every detail of its de-identification strategy or lock itself into a particular set of practices, the AoT should make known important parameters to increase trust and transparency. 3. Additionally, FPF recommends that all smart city initiatives, including the AoT, implement a variety of other organizational and technical measures to safeguard personal data, including: a. Mapping data flows, including where data is collected and how it is used throughout the entire AoT ecosystem. b. Classifying data according to sources, identifiability, sensitivity, and uses. c. Documenting processes and procedures for sharing data with third parties and monitoring vendors, including data use agreements, audit and standard contractual terms, and transparency about how and by whom scientific partners are “approved.” d. Safeguards to protect against unfair or discriminatory uses of data. e. Identifying what data sets are owned by which stakeholders, and any relevant copyright, licensing, or access provisions. f. Documenting risk-benefit assessments and structured ethical review processes for evaluating new research or uses of PII. (See, e.g., https://fpf.org/wp-content/uploads/FPF_DataBenefitAnalysis_FINAL.pdf) Thank you again for this opportunity to comment. [Source: Wufoo Form Entry 8. See bit.ly/AoTWufoo ]

[Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy.] At the Symposium on Usable Privacy and Security 2016, held last week (June 22-24, 2016) in Denver, Colorado, a group of privacy and security researchers looked at the Array of Things project and its current documentation. The short report below is a compilation of their feedback. Overall, we appreciated the thought and care given to privacy and security throughout the proposed documents and the Array of Things project. Having a period of public comment, an open and thoughtful process for selecting new node locations, and an AoT Security and Privacy group are steps that lead to practical privacy for the people of Chicago. That said, we have comments on a few areas of the document that we hope you will consider. PII in the open data set In the privacy policy, you say “PII data, such as could be found in images or sounds, will not be made public.” What is the process for deciding what is PII and removing it? Removing all PII from this data set may actually be fairly difficult and error prone, and there may be a lot of PII, especially if video captures faces or license plate numbers. You should determine what will be involved in doing this and perhaps revise the language in the privacy policy to set more realistic expectations. Is there a way for people who believe their PII has been shared to have it removed? Currently there is no contact information in the Privacy Policy, and thus no way for people to remove or correct information they believe is inaccurate or wrongly shared. If sound recordings are going to be made, it is important to make sure this is in compliance with the Illinois wiretapping law. Notice The current policy document has no specifics on how notice will be provided to residents of node areas or visitors who happen to drive or walk through the range of a node. We believe significant thought needs to be given to how to notify people that they are in area/range of a node and their data is being collected. This will also allow them to find out what choices they have in removing their PII or other data from an open repository. We hope that consideration will be given to notice, including: What languages will the information be presented in? What technologies will be used (e.g., a sign, a short link, a QR code, some sort of mobile notification scheme, an app to show which streets are covered by these nodes) The format and display of the information itself (e.g., a street sign, at what height, using what set of color schemes or logos that relates to the project) Is there any effort made to allow people with low-literacy rates or vision-impairment to have access to this material? How updates to the project’s policies and notices can be communicated to people who walk or drive through the range of a node A plain language (non-legalese) version of the privacy policy should be made accessible to the public Notices should include contact information for the Privacy Officer or similar role responsible for managing privacy issues on the project Data Use / Purpose In most privacy policies, it is important to explain what collected data will be used for. While much of the data collected as part of this project will be made public (through the open data repository) and then can be used for nearly anything, it is still important to explain potential data use to participants. This should include, at least: A description of how each data type collected will be anonymized and aggregated. Specific examples that show how each data type could potentially be used. What sorts and format (i.e., aggregated versus specific data items) of data the annual report will include. Consideration of establishing a use policy for the open data set, or setting up guidelines for how to respond in the event that open AoT data is used by other parties for malicious or discriminatory purposes. Notice regarding whether the data will be used by law enforcement for any purpose. Annual Report While it is commendable that the AoT group has declared that the policy will be reviewed annually, we would recommend that the review include more specification (What sources of data will be reviewed? How can the community participate? Will this include potential breaches, violations of policy, and/or public complaints?), as well as address the need for evaluation, specifically: is the project meeting its stated goals? Who will review the project for compliance with its stated policies, and how will this review be conducted? How will the annual report be distributed to the public? Small edits to the language “Collection may include but is not limited to” or “other biometric data” are phrases that should be avoided. While they may be standard legalese for privacy policies, given your project’s spirit and values, we recommend that you strive for openness and transparency. You should do your best to explicitly describe all data collected and the purpose of collecting them. If more types of data are collected in the future, then the descriptions and explanations should be updated. Prepared by SOUPS 2016: Lorrie Faith Cranor, Carnegie Mellon University* Alain Forget, Google Patrick Gage Kelley, University of New Mexico Jen King, UC Berkeley Sameer Patil, New York University / Indiana University Florian Schaub, Carnegie Mellon University / University of Michigan Richmond Wong, UC Berkeley *Lorrie Cranor is currently on leave from Carnegie Mellon University, serving as Chief Technologist at the US Federal Trade Commission. These are her own views and do not necessarily represent the views of the Commission or any Commissioner.

[Wufoo Form Entry 9. See bit.ly/AoTWufoo ]

https://drive.google.com/file/d/0B75hXlxAwjAZVnM2LUh6ODBEcEk/view?usp=sharing

Question 1: Please tell us your thoughts or feedback on the Array of Things Governance & Privacy Policy. Response 1: At the Symposium on Usable Privacy and Security 2016, held last week (June 22-24, 2016) in Denver, Colorado, a group of privacy and security researchers looked at the Array of Things project and its current documentation. The short report below is a compilation of their feedback. Overall, we appreciated the thought and care given to privacy and security throughout the proposed documents and the Array of Things project. Having a period of public comment, an open and thoughtful process for selecting new node locations, and an AoT Security and Privacy group are steps that lead to practical privacy for the people of Chicago. That said, we have comments on a few areas of the document that we hope you will consider. PII in the open data set In the privacy policy, you say “PII data, such as could be found in images or sounds, will not be made public.” What is the process for deciding what is PII and removing it? Removing all PII from this data set may actually be fairly difficult and error prone, and there may be a lot of PII, especially if video captures faces or license plate numbers. You should determine what will be involved in doing this and perhaps revise the language in the privacy policy to set more realistic expectations. Is there a way for people who believe their PII has been shared to have it removed? Currently there is no contact information in the Privacy Policy, and thus no way for people to remove or correct information they believe is inaccurate or wrongly shared. If sound recordings are going to be made, it is important to make sure this is in compliance with the Illinois wiretapping law. Notice The current policy document has no specifics on how notice will be provided to residents of node areas or visitors who happen to drive or walk through the range of a node. We believe significant thought needs to be given to how to notify people that they are in area/range of a node and their data is being collected. This will also allow them to find out what choices they have in removing their PII or other data from an open repository. We hope that consideration will be given to notice, including: What languages will the information be presented in? What technologies will be used (e.g., a sign, a short link, a QR code, some sort of mobile notification scheme, an app to show which streets are covered by these nodes) The format and display of the information itself (e.g., a street sign, at what height, using what set of color schemes or logos that relates to the project) Is there any effort made to allow people with low-literacy rates or vision-impairment to have access to this material? How updates to the project’s policies and notices can be communicated to people who walk or drive through the range of a node A plain language (non-legalese) version of the privacy policy should be made accessible to the public Notices should include contact information for the Privacy Officer or similar role responsible for managing privacy issues on the project Data Use / Purpose In most privacy policies, it is important to explain what collected data will be used for. While much of the data collected as part of this project will be made public (through the open data repository) and then can be used for nearly anything, it is still important to explain potential data use to participants. This should include, at least: A description of how each data type collected will be anonymized and aggregated. Specific examples that show how each data type could potentially be used. What sorts and format (i.e., aggregated versus specific data items) of data the annual report will include. Consideration of establishing a use policy for the open data set, or setting up guidelines for how to respond in the event that open AoT data is used by other parties for malicious or discriminatory purposes. Notice regarding whether the data will be used by law enforcement for any purpose. Annual Report While it is commendable that the AoT group has declared that the policy will be reviewed annually, we would recommend that the review include more specification (What sources of data will be reviewed? How can the community participate? Will this include potential breaches, violations of policy, and/or public complaints?), as well as address the need for evaluation, specifically: is the project meeting its stated goals? Who will review the project for compliance with its stated policies, and how will this review be conducted? How will the annual report be distributed to the public? Small edits to the language “Collection may include but is not limited to” or “other biometric data” are phrases that should be avoided. While they may be standard legalese for privacy policies, given your project’s spirit and values, we recommend that you strive for openness and transparency. You should do your best to explicitly describe all data collected and the purpose of collecting them. If more types of data are collected in the future, then the descriptions and explanations should be updated. Prepared by SOUPS 2016: Lorrie Faith Cranor, Carnegie Mellon University* Alain Forget, Google Patrick Gage Kelley, University of New Mexico Jen King, UC Berkeley Sameer Patil, New York University / Indiana University Florian Schaub, Carnegie Mellon University / University of Michigan Richmond Wong, UC Berkeley *Lorrie Cranor is currently on leave from Carnegie Mellon University, serving as Chief Technologist at the US Federal Trade Commission. These are her own views and do not necessarily represent the views of the Commission or any Commissioner. [Source: Wufoo Form Entry 9. See bit.ly/AoTWufoo ]