Tag: internet

Right to access Internet: An end to oppressive Internet shutdowns?

Posted on by Tech Law Forum @ NALSAR

[This post has been authored by Mohd Rameez Raza (Faculty of Law, Integral University, Lucknow) and Raj Shekhar (NUSRL, Ranchi).]

The Internet is one of the most powerful instruments of the 21st century for increasing transparency in day to day working, access to information, and most important facilitating active citizen participation in building strong democratic societies. Relying on the same belief, the Kerala High Court, in its monumental, decision has held ‘Right to Internet Access’ as a fundamental right. Thus, making the right to have access to Internet part of ‘Right to Education’ as well as ‘Right to Privacy’ under Article 21 of the Constitution of India.

Read more

Metadata by TLF: Issue 7

Posted on by Tech Law Forum @ NALSAR

Welcome to our fortnightly newsletter, where our Editors put together handpicked stories from the world of tech law! You can find other issues here.

Israel spyware ‘Pegasus’ used to snoop on Indian activists, journalists, lawyers

In a startling revelation, Facebook owned messaging app WhatsApp revealed that a spyware known as ‘Pegasus’ has been used to target and surveil Indian activists and journalists. The revelation came to light after WhatsApp filed a lawsuit against the Israeli NSO Group, accusing it of using servers located in the US and elsewhere to send malware to approximately 1400 mobile phones and devices. On its part, the NSO group has consistently claimed that it sells its software only to government agencies, and that it is not used to target particular subjects. The Indian government sought a detailed reply from WhatsApp but has expressed dissatisfaction with the response received, with the Ministry of Electronics and Information Technology stating that the reply has “certain gaps” which need to be further investigated.

Further reading:

  1. Sukanya Shantha, Indian Activists, Lawyers Were ‘Targeted’ Using Israeli Spyware Pegasus, The Wire (31 October 2019).
  2. Seema Chishti, WhatsApp confirms: Israeli spyware was used to snoop on Indian journalists, activists, The Indian Express (1 November 2019).
  3. Aditi Agrawal, Home Ministry gives no information to RTI asking if it bought Pegasus spyware, Medianama (1 November 2019).
  4. Shruti Dhapola, Explained: What is Israeli spyware Pegasus, which carried out surveillance via WhatsApp?, The Indian Express (2 November 2019).
  5. Akshita Saxena, Pegasus Surveillance: All You Want To Know About The Whatsapp Suit In US Against Israeli Spy Firm [Read Complaint], LiveLaw (12 November 2019).

RBI raises concerns over WhatsApp Pay

Adding to the WhatsApp’s woes in India, just after the Israeli spyware Pegasus hacking incident, The RBI has asked the National Payments Corporation of India (NPCI) not to permit WhatsApp to go ahead with the full rollout of its payment service WhatsApp Pay. The central bank has expressed concerns over WhatsApp’s non-compliance with data processing regulations, as current regulations allow for data processing outside India on the condition that it returns to servers located in the country without copies being left on foreign servers.

Further Reading:

  1. Karan Choudhury & Neha Alawadhi, WhatsApp Pay clearance: RBI raises concerns data localisation concerns with NPCI, Business Standard (7 November 2019).
  2. Aditi Agarwal, ‘No payment services on WhatsApp without data localisation’, RBI to SC, Medianama (9 October 2019).
  3. Sujata Sangwan, WhatsApp can’t start payments business in India, YOURSTORY (9 November, 2019).
  4. Yatti Soni, WhatsApp Payments India Launch May Get Delayed Over Data Localisation Concerns, Inc42 (9 October 2019).
  5. Priyanka Pani, Bleak future for messaging app WhatsApp’s payment future in India, IBS Intelligence (9 November 2019).

Kenya passes new Data Protection Law

The Kenyan President, Uhuru Kenyatta recently approved a new data protection law in conformity with the standards set by the European Union. The new bill was legislated after it was found that existing data protection laws were not at par with the growing investments from foreign firms such as Safaricom and Amazon. There was growing concern that tech giants such as Facebook and Google would be able to collect and utilise data across the African subcontinent without any restrictions and consequently violate the privacy of citizens. The new law has specific restrictions on the manner in which personally identifiable data can be handled by the government, companies and individuals, and punishment for violations can to penalties of three million shillings or levying of prison sentences.

Further reading:

  1. Duncan Miriri, Kenya Passes Data Protection Law Crucial for Tech Investments, Reuters (8 November 2019).
  2. Yomi Kazeem, Kenya’s Stepping Up Its Citizens’ Digital Security with a New EU-Inspired Data Protection Law, Quartz Africa (12 November 2019).
  3. Kenn Abuya, The Data Protection Bill 2019 is Now Law. Here is What that Means for Kenyans, Techweez (8 November 2019).
  4. Kenya Adds New Data Regulations to Encourage Foreign Tech Entrants, Pymnts (10 November 2019).

Google gains access to healthcare data of millions through ‘Project Nightingale’

Google has been found to have gained access data to the healthcare data of millions through its partnership with healthcare firm Ascension. The venture, named ‘Project Nightingale’ allows Google to access health records, names and addresses without informing patients, in addition to other sensitive data such as lab results, diagnoses and records of hospitalisation. Neither doctors nor patients need to be told that Google an access the information, though the company has defended itself by stating that the deal amounts to “standard practice”. The firm has also stated that it does not link patient data with its own data repositories, however this has not stopped individuals and rights groups from raising privacy concerns.

Further reading:

  1. Trisha Jalan, Google’s Project Nightingale collects millions of Americans health records, Medianama (12 November 2019).
  2. Ed Pilkington, Google’s secret cache of medical data includes names and full details of millions – whistleblower, The Guardian (12 November 2019).
  3. James Vincent, The problem with Google’s health care ambitions is that no one knows where they end, The Verge (12 November 2019).
  4. Rop Copeland & Sarah E. needlemen, Google’s ‘Project Nightingale’ Triggers Federal Inquiry, Wall Street Journal (12 November 2019).

Law professor files first ever lawsuit against facial recognition in China

Law professor Guo Bing sued the Hangzhou Safari Park after it suddenly made facial recognition registration a mandatory requirement for visitor entrance. The park had previously used fingerprint recognition to allow entry, however it switched to facial recognition as part of the Chinese government’s aggressive rollout of the system meant to boost security and enhance consumer convenience. While it has been speculated that the lawsuit might be dismissed if pursued, it has stirred conversations among citizens over privacy and surveillance issues which it is hoped will result in reform of existing internet laws in the nation.

Further reading:

  1. Xue Yujie, Chinese Professor Files Landmark Suit Against Facial Recognition, Sixth Tone (4 November 2019).
  2. Michael Standaert, China wildlife park sued for forcing visitors to submit to facial recognition scan, The Guardian (4 November 2019).
  3. Kerry Allen, China facial recognition: Law professor sues wildlife park, BBC (8 November 2019).
  4. Rita Liao, China Roundup: facial recognition lawsuit and cashless payments for foreigners, TechCrunch (10 November 2019).

Twitter to ban all political advertising

Twitter has taken the decision to ban all political advertising, in a move that increases pressure on Facebook over its controversial stance to allow politicians to advertise false statements. The policy was announced via CEO Jack Dorsey’s account on Wednesday, and will apply to all ads relating to elections and associated political issues. However, the move may only to prove to have symbolic impact, as political ads on Twitter are just a fraction of those on Facebook in terms of reach and impact.

Further reading:

  1. Julie Wong, Twitter to ban all political advertising, raising pressure on Facebook, The Guardian (30 October 2019).
  2. Makena Kelly, Twitter will ban all political advertising starting in November, The Verge (30 October 2019).
  3. Amol Rajan, Twitter to ban all political advertising, BBC (31 October 2019).
  4. Alex Kantrowitz, Twitter Is Banning Political Ads. But It Will Allow Those That Don’t Mention Candidates Or Bills., BuzzFeed News (11 November 2019).

Read more

De-linking the Deep Links: An Insight Into the PVR-Justdial Controversy

Posted on by Tech Law Forum NALSAR

This post by Archita Prawasi, currently in her 3rd year at NALSAR University of Law, was originally published here. In an explanatory piece, she brings forth the impact of technology on IPR.

A recent dispute between PVR and Justdial has highlighted the connection between various facets of networking and IP infringement that ensues through the use of regular networking tools like deep links, meta tags and frames. With the interim order by the Delhi High Court against Justdial, it seems that new age digital awareness is catching up with the old and still relevant IP laws in the country. Before discussing the facts of the dispute, it is relevant to discuss the implications of the networking tools forming the dispute.

Networking techniques employed

  • Linking: It is largely bifurcated into Surface linking and Deep Linking. Surface links are those that direct the user to the home page of a site, while deep links are those that bypass the home page of the linked website and directly display the content in the internal webpage.
  • Meta tags: These are small content descriptors that help indicate to search engines what a web page is about. Website designers use meta tags to label a website’s content to ensure that the majority of search engines index their website.
  • Framing: It is an HTML technique that allows for the display of multiple documents in the same window. These are designed to keep one set of information visible even as the reader scrolls through another document. Sites that use frames typically use them to link to external web pages while keeping their own information and advertisements at the top of the page so that the user does not need to visit the original information page which results in a loss for the original website.

PVR v. Justdial

The parties PVR Pvt. Ltd. and Justdial were parties to a non-exclusive ticketing agreement that gave Justdial access to PVR’s ticketing software to book tickets for the cinema halls. The agreement expired in August 2018 after two subsequent extensions in 2016.

The defendants, i.e. Justdial, continued to offer online ticket booking services even after the expiry of the arrangement. The bookings were redirected to the BookMyShow platform through deep-links. The plaintiffs (PVR) approached the defendants regarding the same and were orally assured that the service will be discontinued.

Subsequently, in January 2019, a third party informed the plaintiff that the defendant was still offering online ticket booking for PVR Cinemas. It made web pages that displayed images of the defendant’s cinema halls and used their registered trademark to give the impression that the two parties were still commercially associated. PVR’s registered trademark was used in meta-tags of the web pages that had deep links to the websites of authorised third-party sellers.

Encroachment on intellectual property rights

While these networking tools are a great way of maintaining a good web presence, they can also be a notorious means of stealing the rightful web traffic of websites. The issue of deep links arises when the web traffic of the homepage of a website is deviated to an internal webpage of the same that reduces the possible revenue for the websites from the advertisements on the homepage.

While meta tags are not visible on the website, it still is a contentious tool discussed extensively in global and Indian jurisprudence. It is very common that a business uses a competitor’s trademark in the meta tags of its own website so that the search engine indexes the website in the search results when the keyword is entered. This again, results in diversion of web traffic to the competing website.

However, some people use meta tags to describe their services without the mala-fide intention of diverting traffic and still become entangled in an IP infringement suit. While ignorance of the law is no excuse, unawareness about a particular trademark is often possible and may result in unfair punishment. For instance, a second-hand car dealer might use descriptors like Honda or Maruti to index his website in the search engine. While his act might lead the user to click the link believing it to be the intended website, (thereby qualifying the initial interest confusion doctrine) it will not materially harm the companies if the website states that the owner deals in second hand cars. The diverted web traffic will not be of any utility to the shop owner if he has no advertisements listed on his website and the user has to re-surf the web for the intended address. While consent from the party whose trademark has been used can be a way to evade the infringement, it is not practically possible for small businesses to receive permission from all the companies in the field. Hence, the dealer may find himself in a suit for infringing IPR of various companies, despite the mere intention to publicise.

An individual employing framing is likely to be held liable for trademark or copyright infringements if the material is modified without authorisation in the framed page or if the framed page endorses the parties’ commercial association when there is no such commercial relation between the two sites.

Global Scenario

The jurisprudence around deep linking/meta tagging and IP rights has been varied. Canada, Denmark, Italy and the Netherlands have mostly ruled in favour of the party alleging IP infringement.

The Imax Corporation case, in the Federal Court of Canada, was an IP infringement suit filed by Imax against Showmax for framing web pages in a manner that would convey commercial connections between the two parties. The Court, in this case passed an injunction against the defendants due to harm caused to the plaintiff’s goodwill and reputation.

The Courts of Rome and Milan have ruled in favour of the plaintiffs in cases of deep linking and framing web pages that could confuse users as to the relation between the parties. The Court of first instance Leeuwarden, a case adjudged in Netherlands followed similar rationale as discussed above.

However, cases in USA tend to sway both ways. While the Ninth Circuit Court in the Brookfield Communications case injuncted the defendant, West Coast Co. from using “moviebuff.com” which would have infringed on their trademark of ‘Moviebuff’. The Court discussed the doctrine of initial confusion according to which when the user browses the internet, the link by west coast could create a confusion in the mind of the user about Brookfield’s Moviebuff website.

On the other hand, the District Court of California, in the case of Ticketmaster Corporation held that Microsoft’s unauthorised deep linking of its ‘sidewalk.com’ to Ticketmaster’s events pages circumventing the plaintiff’s homepage did not constitute unfair competition or passing off because the ultimate sale of tickets was done through the plaintiffs. The present controversy between PVR and Justdial is similar to the Imax and the Ticketmaster’s Case.

Indian Jurisprudence

The Jurisprudence around meta tags/deep links and IP infringement in India has been pro-plaintiff. The Court has followed a similar reasoning as was discussed in the global scenario in various Indian cases like Mattel, Inc, Consim Info Ltd. vs Google, Kapil Wadhwa vs. Samsung, and Christian Louboutin.

However, in cases of meta tagging, the Court has also accepted the defence for use of meta tags by competing businesses. The Madras High Court discussed “nominative use” of meta tags while referring to some cases of the Ninth Circuit in USA. The Court laid down the following parameters for a meta tag to qualify for nominative use:

  1. the product or service in question must be one not readily identifiable without use of the trademark;
  2. only so much of the mark or marks may be used as is reasonably necessary to identify the product or service; and
  3. the user must do nothing that would, in conjunction with the mark, suggest sponsorship or endorsement by the trademark holder.

However, these conditions are quite onerous to prove and hence, in practice, Courts often rules in favour of the party alleging infringement. While this protects the goodwill of the plaintiff, it invariably restricts the bona fide users of trademark who use the trademarks for purely descriptive purposes.

Conclusion

In the present dispute, between PVR and Justdial, the Court has passed an order holding it to be a prima facie case of infringement and passing off in favour of the plaintiff.  It has said that unless an interim injunction was passed, the plaintiff would suffer irreparable harm and hence, restrained the defendants from using the registered trademark for PVR or any deceptive variant.

This dispute provides an opportunity to the judiciary to instate guidelines to regulate the use of different networking techniques and prevent piling of litigation. It should be acknowledged that IPR awareness in relation to the use of the internet is not enough and explainers for different avenues that internet provides for proliferating e-business and regulations around them to ensure a reduction in IPR suits would help.

References:

In favour: Oppedahl & Larson v. Advanced Concepts, United States District Court for the District of Colorado, Civil Action Number 97-CV-1592 ; Playboy Enterprises, Inc. v. Netscape Communications Corp., 354 F.3d 1020 (9th Cir. 2004) ; Nissan Motor Co., et al. v. Nissan Computer Corp. 378 F.3d 1002 (9th Cir., 2004) ; SFX Motor Sports Inc., v. Davis, 2006 WL 3616983.

Against:  Bijur Lubricating Corp. v. Devco Corporation 332 F.Supp.2d 722, Civ. No. 00-5157 (WHW) (D.N.J., August 26, 2004) ; Online Policy Group v. Diebold, Inc., 337 F. Supp. 2d 1195; 72 U.S.P.Q.2d 1200 ;  Perfect 10, Inc. v. Amazon.com, Inc., 487 F.3d 701, 2007 U.S. App. LEXIS 11420, 99 U.S.P.Q.2D (BNA) 1746, Copy. L. Rep. (CCH) P29,380 (9th Cir. Cal. May 16, 2007); Kelly v. Arriba Soft Corp. (U.S. Court of Appeals for the Ninth Circuit, July 7, 2003)   336 F.3d 811.

Read more