Privacy Concerns Lead To Deletion Of All Data Collected By Norway's Contact Tracing App

from the not-enough-infections-is-a-nice-problem-to-have dept

In the early days of the coronavirus outbreak — a few months ago, in other words — there was a flurry of activity around contact tracing apps. Desperate to be seen to be doing something — anything — governments around the world rushed to announced their own digital solutions to tracing people who have been in the proximity of infected individuals. There are now over 40 in various stages of development. After the initial excitement, it’s striking how quiet things have gone on the contact tracing front, as projects struggle to turn politicians’ promises into useful programs. Some of the apps are beginning to emerge now, and we’re likely to hear more about them over the next few weeks and months. For example, there’s been an interesting development in Norway, one of the first to release its smartphone app, Smittestopp (“infection stop”), back in April. As the Guardian reports:

On Friday, the [Norwegian] data agency Datatilsynet issued a warning that it would stop the Norwegian Institute of Public Health from handling data collected via Smittestopp.

Datatilsynet said the restricted spread of coronavirus in Norway, as well as the app’s limited effectiveness due to the small number of people using it, meant the invasion of privacy resulting from its use was disproportionate.

There are two important points there. One is about the balance between tackling COVID-19, and protecting privacy. In this case, the Norwegian data protection authority (NDPA) believes that the benefit is so small that the harm to privacy is unjustified. The other is that when the infection rate is low, as is the case in Norway, which has reported fewer than 250 deaths from coronavirus so far, people may not see much point in using it. Professor Camilla Stoltenberg, Director-General at the Norwegian Institute of Public Health, is unhappy with Datatilsynet’s move:

We do not agree with the NDPA’s evaluation, but now we will delete all data and put work on hold following the notification. This will weaken an important part of our preparedness for increased transmission because we are losing time in developing and testing the app. Meanwhile, we have a reduced ability to combat ongoing transmission. The pandemic is not over. There is no immunity in the population, no vaccine, and no effective treatment. Without the Smittestopp app, we will be less equipped to prevent new local or national outbreaks

It’s worth noting that Stoltenberg admits that “the work involved in getting the app to work optimally has taken longer than planned, partly because there are few people who are infected”. As the number of COVID-19 cases continues to fall in some countries, those developing contact tracing apps there may encounter similar problems.

Follow me @glynmoody on Twitter, Diaspora, or Mastodon.

Filed Under: , , , , ,

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Privacy Concerns Lead To Deletion Of All Data Collected By Norway's Contact Tracing App”

Subscribe: RSS Leave a comment

it’s striking how quiet things have gone on the contact tracing front, as projects struggle to turn politicians’ promises into useful programs

FWIW, the German app just launched and it’s promising. The contractors delivered: it’s open source, has seen a flurry of third party activity and has also been vetted, even professionally. They use the privacy friendly DP3T, is integrated with Google/Apple API.

I don’t see the gloom and doom. In the case of Norwegian app, it sounds like it was rushed. Maybe that’s more the problem than tracing itself.


The UK app is DOA because of the shady behavior of the government, the involvement of someone involved in the rampant data misuse during the Brexit referendum and their absolute refusal to disclose what the data they gather will be used for and to delete it once it’s no longer needed for the purpose it was gathered for. The whole thing is a nightmare of their own creation, they had alternatives ready to go, but they decided to do their own thing and give jobs and money to the wider circle of sleaze.



"The UK app is DOA because of the"

…long and unfortunate history of Tories giving IT contracts to corrupt friends who rarely deliver what was promised, and never within time and budget, but also never face consequences for their tidy profits from the public purse. 9 times out of 10 when there’s a failed government IT project in the UK, it’s traced back to someone’s Eton chum.


The excuse that the app will now be hard to develop is bullshit. If they want an app that is ready to deploy if necessary and has been reviewed to protect privacy to the extent possible, that would be better done in the absence of any necessity so there is no pressure to roll it out. The can always use their own employees to test the app and ask for volunteers if need be.


A nice idea, but . . .

Contact tracing apps are a nice idea, but there are too many drawbacks:

1) Technical limitations, mainly of Bluetooth, which most of the apps seem to focus on, make their accuracy and usefulness questionable to begin with.
2) Data abuse is inevitable. Governments and data collection (read privacy abusing) companies have proven this at every opportunity. See Point 1) in the DP-3T Privacy and Security Attacks on Digital Proximity Tracing Systems.pdf
3) Many people will simply not use them because they are aware of points 1) and 2).

When you combine points 1) and 3), I doubt that any data that is collected will be of sufficient quantity and accuracy to have any significant value at all.

As an aside, do people in Norway really believe that the Norwegian Institute of Public Health (and anyone they may have already given the data to) will really delete the data? This is an actual question, not a snark, since I am unfamiliar with Norway, it’s government in general, or the Norwegian Institute of Public Health in particular.



The problem would then be secrecy and the inability of the public to review the code to know exactly what the app does. Contact tracing doesn’t necessarilly automatically conflict with privacy. It’s the secrecy that conflicts with privacy. After all, contact tracing already exists and has existed for a long time for certain diseases, almost all of which are STIs. If you know exactly what a contact tracing app does, you are free to not use it, just as you are free to say you don’t remember who you had sex with if you get an STI and don’t want to give out that information.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...
Older Stuff
13:40 It's Great That Winnie The Pooh Is In The Public Domain; But He Should Have Been Free In 1982 (Or Earlier) (35)
12:06 Norton 360 Now Comes With Crypto Mining Capabilities And Sketchy Removal Process (28)
10:45 Chinese Government Dragnet Now Folding In American Social Media Platforms To Silence Dissent (14)
10:40 Daily Deal: The 2022 Ultimate Cybersecurity Analyst Preparation Bundle (0)
09:29 A Fight Between Facebook And The British Medical Journal Highlights The Difficulty Of Moderating 'Medical Misinformation' (9)
06:29 Court Ruling Paves The Way For Better, More Reliable Wi-Fi (4)
20:12 Eighth Circuit (Again) Says There's Nothing Wrong With Detaining Innocent Minors At Gunpoint (15)
15:48 China's Regulatory War On Its Gaming Industry Racks Up 14k Casualties (10)
13:31 Chinese Government Fines Local Car Dealerships For Surveilling While Not Being The Government (5)
12:08 Eric Clapton Pretends To Regret The Decision To Sue Random German Woman Who Listed A Bootleg Of One Of His CDs On Ebay (29)
10:44 ICE Is So Toxic That The DHS's Investigative Wing Is Asking To Be Completely Separated From It (29)
10:39 Daily Deal: The 2022 Complete Raspberry Pi And Arduino Developer Bundle (0)
09:31 Google Blocked An Article About Police From The Intercept... Because The Title Included A Phrase That Was Also A Movie Title (24)
06:22 Wireless Carriers Balk At FAA Demand For 5G Deployment Delays Amid Shaky Safety Concerns (16)
19:53 Tenth Circuit Denies Qualified Immunity To Social Worker Who Fabricated A Mother's Confession Of Child Abuse (35)
15:39 Sci-Hub's Creator Thinks Academic Publishers, Not Her Site, Are The Real Threat To Science, And Says: 'Any Law Against Knowledge Is Fundamentally Unjust' (34)
13:32 Federal Court Tells Proud Boys Defendants That Raiding The Capitol Building Isn't Covered By The First Amendment (25)
12:14 US Courts Realizing They Have A Judge Alan Albright Sized Problem In Waco (17)
10:44 Boston Police Department Used Forfeiture Funds To Hide Purchase Of Surveillance Tech From City Reps (16)
10:39 Daily Deal: The Ultimate Microsoft Excel Training Bundle (0)
09:20 NY Senator Proposes Ridiculously Unconstitutional Social Media Law That Is The Mirror Opposite Of Equally Unconstitutional Laws In Florida & Texas (25)
06:12 Telecom Monopolies Are Exploiting Crappy U.S. Broadband Maps To Block Community Broadband Grant Requests (7)
12:00 Funniest/Most Insightful Comments Of 2021 At Techdirt (17)
10:00 Gaming Like It's 1926: Join The Fourth Annual Public Domain Game Jam (6)
09:00 New Year's Message: The Arc Of The Moral Universe Is A Twisty Path (33)
19:39 DHS, ICE Begin Body Camera Pilot Program With Surprisingly Good Policies In Place (7)
15:29 Remembering Techdirt Contributors Sherwin And Elliot (1)
13:32 DC Metro PD's Powerful Review Panel Keeps Giving Bad Cops Their Jobs Back (6)
12:11 Missouri Governor Still Expects Journalists To Be Prosecuted For Showing How His Admin Leaked Teacher Social Security Numbers (39)
10:48 Oversight Board Overturning Instagram Takedown Of Ayahuasca Post Demonstrates The Impossibility Of Content Moderation (10)
More arrow
This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it