Galexia
             home
       about us
        services
        projects
       research
          contact
» home » research » assets » trustmarks struggle 20080926  

Subscribe to Galexia news and announcements.
More information »

Research and publications: Galexia publishes detailed private and public research on privacy, authentication and electronic commerce issues. We place a premium on current research and analysis as part of our general operations. Find out more »

[2018 Global Cloud Computing Readiness Scorecard]

2018 Global Cloud Computing Readiness Scorecard
Find out more »

Trustmark Schemes Struggle to Protect Privacy (2008)

[« previous] [next »] [title page] [full contents]

9. Penetration

Trustmark schemes have not been successful in penetrating the market. Just 7 out of the global top 50 visited websites have any form of trustmark. This is made up of 7 sites with TRUSTe seals (3 of those are Microsoft brands).[80]

One emerging criticism of trustmarks is that the proportion of legitimate, privacy-friendly websites with trustmarks is diminishing, while the number of scam sites or privacy intrusive websites carrying trustmarks is increasing. There is a risk of guilt by association for legitimate sites, as some commentators have started to warn consumers that a trustmark may actually indicate a higher risk than the absence of a trustmark.

A major cause of this issue is the large number of scam, fake, expired and useless seals that now appear online (discussed above).

A more pressing issue is the number of privacy-intrusive sites who have been certified by TRUSTe – the last high-profile generic privacy trustmark scheme still operating. TRUSTe has listed all of the following sites as certified in recent years, either as part of the privacy seal program or the trusted download program. These organisations are all well known to privacy, security and consumer advocates, as they have been subject to numerous privacy and security breaches, FTC investigations and ongoing consumer campaigns[81]:

Website

Issues

coupons.com

Deceptive installation

http://blog.truste.org/?p=66

direct-revenue.com

Non-consensual spyware installation, including deceptive installations and installations through security vulnerabilities.

http://www.benedelman.org/spyware/nyag-dr/

eZula.com

Adware / malware

http://www.spywareguide.com/product_show.php?id=9

focalex.com

Spyware

http://www.spywareremove.com/removeFocalex.html

freecreditreport.com

Consumer protection warnings

http://www.ehow.com/how_4502163_cancel-freecreditreportcom-account.html

freeipods.com (Gratis Internet)

Spam seller

http://cultofmac.com/freeipodscom-sold-private-data-despite-promising-not-to/248

funwebproducts.com

Malware - sends a record of every websearch made, with the user’s IP address

http://www.spywareinfoforum.com/index.php?showtopic=15652

Idownload (e.g. smartshopper)

Deceptive practices

http://www.edbott.com/weblog/?p=496

Malware

http://www.411-spyware.com/remove-smartshopper

maxmoolah.com

Spam seller

http://www.siteadvisor.com/

Relevant Knowledge (provisional)

Tracking / adware

http://www.411-spyware.com/remove-relevantknowledge

webhancer.com

Installs tracking software without informed consent

http://www.siteadvisor.com/

wowpapers.com (Hotbar)

Spyware / adware

http://www.spywareinfoforum.com/lofiversion/index.php/t50584.html

yourgiftcards.com

Spam seller

http://bbs.spamgourmet.com/viewtopic.php?start=75&t=81

 

Note that TRUSTe has defended the appearance of many of these sites on its list of sealholders, claiming that they were listed in error:

FunWebProducts, was, by an error in our database listed on our customer list, but it has never been certified, and has never displayed any seals or reference to TRUSTe to consumers.[82]

In total, more than a dozen such errors have been claimed by TRUSTe.[83] Many of the sites were listed in error for over 12 months.[84]

[80] <http://www.alexa.com/site/ds/top_sites?ts_mode=global&lang=none>, accessed on 29 August 2008.

[81] Edelman B, Certifications and Site Trustworthiness, 25 September 2006, <http://www.benedelman.org/news/092506-1.html>.

[82] TRUSTe, TRUSTe Certifications and Online Trust, 25 September 2006, <http://blog.truste.org/?m=200609>.

[83] Porter W, TRUSTe Answers The Challenge and Asks Mr. Edelman To Do The Same..., 2 October 2006, <http://www.revenews.com/wayneporter/truste-answers-the-challenge-and-asks-mr-edelman-to-do-the-same/>.

[84] Edelman B, Certifications and Site Trustworthiness, 25 September 2006, <http://www.benedelman.org/news/092506-1.html>.

[« previous] [next »] [title page] [full contents]

[view all] [download PDF version]

[up to research]

 

Search for:

HERE

PrintVersionprint this page

Sitemapsitemap

Subcribe to RSS newsrss news feed

Manage email subscriptionsmanage email subscriptions

Latest News

September 2019
Register of Public Galexia PIAs. Read more »

September 2019
Updates to Galexia Website. Read more »

September 2019
PM&C / Office of the National Data Commissioner (ONDC) releases Discussion Paper and accepts recommendations from Galexia’s PIA on the proposed Data Sharing and Release legislative framework. Read more »

August 2019
Galexia providing privacy advice and an independent public Privacy Impact Assessment (PIA) on 2021 Census for ABS. Read more »

June 2019
Galexia completes privacy advice and an independent Privacy Impact Assessment (PIA) on the Naval Shipbuilding College Workforce Register. Read more »

view all news items »

[Home] [Sitemap] [Print this page] [Privacy statement]

© Galexia Pty Ltd
Telephone: +61 (02) 9660 1111
Email: [email protected]