Whole Privacy Protection (WPP)

Overview

The Whole Privacy Protection Act (WPP) is a cornerstone piece of legislation in the Greater Atlan Territorial Alliance (GATA). One of the first major laws introduced by Atlan Information Control (AIC) and ratified by the First Quorum, governing data privacy, encryption, and the ethical use of technology across the GATA.

Compliance with the WPP is mandatory for any nation wishing to adopt the CRED currency within their own districts, making it a fundamental requirement for signatories of the New Dawn Accords (NDA).

Purpose

The purpose of the WPP is to protect GATA's citizens, institutions, and enterprises, from systemic risks by enshrining an individual's right to anonymity, safeguarding their security through obscurity, and establishing their legal ownership over all of their personal data.

The importance of legislation like the WPP was made apparent in the final decades of the Old World, where a lack of such regulation resulted in serious security vulnerabilities for institutions and the general public, from the targeting of economic and political adversaries, surveillance markets, and surreptitious manipulation to critical data leaks and a destructive decline in social and civic engagement for fear of reprisals.

Data Privacy and Consent

At the heart of the WPP is the principle of data privacy and user consent. The act stipulates that performing any operation on a citizen's data without their explicit consent is illegal.

Citizens are granted the right to revoke access to their data at any time, ensuring ongoing control over their personal information. This provision empowers individuals to manage their digital footprint actively and ensures that their privacy is respected across the System.

Under the WPP, GATA citizens can even revoke The System's access to their personal data, however this would effectively suspend their citizenship, freezing access to The System, their System keys, and System Yield allocations.

Regulation of Data Analysis

The WPP imposes stringent restrictions on the aggregation and use of composite data sets. Combining data from disparate sources for analysis or processing is heavily restricted to prevent misuse and unauthorized data aggregation. All data analysis must be performed on licensed hard-coded systems with a WPP (and NDA) compliant filter.

This measure is designed to protect citizens, demographic groups, and other distinct populations from potential abuses of their personal information that might only become apparent in the aggregate.

Behavior Modification Restrictions

One of the critical provisions of the WPP is its prohibition of behavior modification algorithms unless they explicitly serve the user's expressed interests, preventing manipulative practices that are a noxious assault on the common good and systemic trust.

Broadly speaking, these restrictions are intended to safeguard the integrity of citizen interactions on and off of the System, limit potential damage from campaigns of manipulation, and maintain faith in the legitimacy of GATA's enterprise, governance, and mandate.

Audits of hard code for algorithms over a certain size are mandatory, and must be performed by WPP certified providers.

Impact on Technology and Crime

The stringent data protection measures of the WPP have significantly impacted how computational systems are designed and used within GATA.

Due to the high regulatory friction in transmitting sensitive information and the constant threat of criminal syndicates seeking valuable data, there has been a marked shift toward localized, massive, hard coded compute platforms.

This shift minimizes the risk of data breaches and unauthorized access, ensuring that sensitive information remains secure, and reduces liability risk for enterprise players.

Enforcement

Enforcement of the WPP is carried out by various bodies within GATA, with the AIC's Collections playing a central role.

Collections is tasked with investigating, tracking, and seizing any and all illegal technology, including any tech that is in breach of the WPP. If an illegal data farming operation is discovered, or a critical data breach occurs, it is Collections who will be called in to address it.

The local government and local authority also both play crucial roles in upholding and enforcing WPP regulation, with their investigations often being the catalyst for discovering illegal data-related crime in their district, which is then reported to Collections.