Connection without Capture
Privacy as a design principle, not an afterthought.
Connection without Capture
Privacy as a design principle, not an afterthought.
Bruce Schneier establishes in Data and Goliath a simple truth: surveillance is the business model of the internet. Not as an aberration but as architecture. The web is built on a foundation of data collection, and every service that is free is so because you are the product. The GDPR was an attempt to regulate this, but the reality is that most people still do not know what data is collected about them, by whom, and for what purpose.
The problem is not only legal. It is a design problem. Most digital systems are built on the principle that connection requires identification. To collaborate, you must identify yourself. To gain access, you must surrender data. To participate, you must expose yourself. That is not a law of nature. It is a design choice so widespread that it has become invisible.
"Connection without Capture" is the counter-principle: the idea that you can connect without capturing, collaborate without surveilling, verify without identifying. In cryptography, the techniques for this have existed for decades: zero-knowledge proofs, homomorphic encryption, decentralized identity. What is missing is not the technology but the will to apply it.
In the social sector, where I have done most of my work, this is particularly urgent. Municipalities, care institutions and youth services work with the most vulnerable people in society. Those people are identified, registered, shared and tracked by systems that treat their privacy as an administrative obstacle rather than a fundamental right.
The design question is not how to collect more data but how to achieve the same results with less. Not how to connect systems by linking identities, but how to connect systems by coordinating consent. Not how to centralize control but how to distribute trust.
This is technically possible. It is economically feasible. All it requires is the willingness to make a different design choice than the default. And that willingness begins with naming that the default is not neutral.
Sources: Bruce Schneier, Data and Goliath (W.W. Norton, 2015); European Commission, General Data Protection Regulation (2016/679).
Source: Bruce Schneier, Data and Goliath (W.W. Norton, 2015); European Commission, General Data Protection Regulation (2016/679)