Copyright © 1952-2024
Re-evaluation Counseling Community Resources, Inc.
all rights reserved.

• member log in

• home

• thought of the day

• contact

• For People New to RC
• The Origins of RC
• Articles and Publications
  • Translations and Language Liberation
    • Acholiluo
    • Afrikaans
    • Amharic
    • Arabic
    • Euskara (Basque)
    • Chinese
    • Hrvatskijezik (Croatian)
    • Dansk (Danish)
    • Nederlands (Dutch)
      • Nederlands Voorlopige Vertalingen
    • Esperanto
    • Farsi
    • Filipino
    • Suomea (Finnish)
    • Français (French)
    • Frisian
    • Deutsch (German)
    • Greek
    • Hebrew
    • Hindi
    • Magyar (Hungarian)
    • Bahasa Indonesia (Indonesian)
    • Italiano (Italian)
    • Japanese
    • Kannada
    • Kiswahili
    • Korean
    • Malayalam
    • Marathi
    • Norsk (Norwegian)
    • Polski (Polish)
    • Portuguès (Portuguese)
    • Limba Român (Romanian)
    • Russian
    • Sami
    • Shona
    • Slovensky (Slovak)
    • Español (Spanish)
    • Svenska (Swedish)
    • Tamil
    • Telugu
  • Subscriptions
  • Present Time & Other Journals
    • Present Time
    • For Subscribers to Digital Present Time
      • Contents 198
      • Contents 199
      • Contents 200
      • Contents 201
      • Contents 202
      • Contents 203
      • Contents 204
      • Contents 205
      • Contents 206
      • Contents 207
      • Contents 208
      • Contents 209
      • Contents 210
      • Contents 211
      • Contents 212
    • PDF Downloads
    • Recent Articles
    • RC Journals
  • Online/Downloadable Books, Pamphlets, and Audio Recordings
    • RC Theory
  • Publication Updates, Supplements, and Corrections
    • Fundamentals Teaching Guide Part II (Liberation) Readings
    • Fundamentals Teaching Guide Resources
      • Fundamentals Teaching Guide Part I
  • Resources for RC Editors
  • Rational Island Publications website help
  • Articles by category
    • Community Building
    • RC Liberation Theory
    • Ending Racism
    • Transformation of Society
    • Teaching RC
      • Articles About Teaching
      • Fundamentals Class Outlines
    • Care of the Environment
    • Other Important Categories
    • Articles from recent issues of Present Time
  • Important Articles by Harvey Jackins
• Human Liberation
  • Our Work to End Racism and Genocide
  • International Liberation and Commonality Reference People
  • Draft Liberation Policy Statements
    • Draft Program for Native Liberation
    • Care of the Environment Draft Policy and Draft Program on Climate Change
    • Women's Policy Statement
    • Draft Policy on Disability Liberation
    • Liberation of Basque People
    • Raised Poor Draft Policy Statement
    • "Mental Health" Oppression and Liberation
    • Older Draft Policy Statements
    • Drafts of drafts
  • Liberation theory articles
  • No Limits for Women
    • Mission Statement
    • NGO Forum CSW60 No Limits workshops
    • Publications
    • Photos of No Limits at Beijing Plus 20
    • Video excerpts of No Limits at Beijing Plus 20
    • Women's March
    • The Basics of RC Women’s Liberation
  • Language Liberation
  • Re-evaluation Foundation
    • About the Re-evaluation Foundation
    • Information for Contributors
    • Grant applicants
    • Selected projects
      • Overview
      • Leadership Global Majority
      • Global Initiatives
      • Development of Young People
      • Care of the Environment and Sustaining All Life
    • Foundation leadership
    • Foundation finances
    • Contact the Foundation
  • Articles by Tim on the Transformation of Society
• RC literature
• Three RC Websites
  • Three RC Websites
• Care of the Environment
  • Climate Change and the RC Communities
  • Unified Goal on the Climate
  • Care of the Environment
  • Sustaining All Life
  • Climate Change Resources (from outside the RC Community)
• Community Organization
  • Guidelines
    • 2022 Guidelines for the RC Community
    • Guidelines for Use of the Electronic Lists
    • Goals of the RC Community
    • Articles Supporting the Guidelines
  • Workshops
    • Web site Organizing Tools
      • Web site Organizing Tools Class 1
      • Web site Organizing Tools Class 2
      • Web site Organizing Tools Class 3
      • Web site Organizing Tools Class 4
  • Forms
    • Regional and International
    • Outside USA
    • Inside the USA
    • Order Forms
    • Teacher Applications
  • COVID-19 (coronavirus) and the RC Community
  • Community Goals
  • Electronic Mailing Lists
  • RC Webinars
    • Listing of webinars
  • Local
    • Norway
    • Victoria, Australia
    • NYC/NJ metropolitan area
    • Alameda
    • Seattle RC Community
    • Washington DC RC Community
• Counseling Practice
  • How to Begin
    • Online classes
      • Apply for Online Class
      • Lesson 1: Basic Human Nature/Listening
      • Lesson 2: Distress Recordings and Distress Patterns
      • Lesson 3: Discharge
      • Lesson 4: The Role of Counselor and Client
      • Lesson 5: Fundamental Counseling Techniques
      • Lesson 6: More on Contradictions
      • Lesson 7: And Even More on Techniques and Contradictions
      • Lesson 8: The Early Roots of Distress Recordings
      • Lesson 9: Co-counseling Session Reports
      • Lesson 10: Rational Human Needs and Addictions
      • Lesson 11: Oppression and Liberation: An Introduction
      • Lesson 12: The Counseling Relationship
      • Lesson 13: Thinking, Logic and Power
      • Lesson 14: Setting Goals
      • Lesson 15: Reality
      • Lesson 16: Our Goodness, Our Relationships, and Our Confidence and Hope
      • Lesson 17: More on Oppression and Liberation: The Basics and Ending Racism
      • Lesson 18: Overview of Other Major Forms of Oppression
      • Lesson 19: Counseling on Relationships, Closeness, and Sex
      • Lesson 20: Care of the Environment
      • Lesson 21: RC Learning Theory
      • Lesson 22: RC Literature - Reading and Writing
      • Lesson 23: The RC Community, Teaching, Leaading and Inviting
      • While You Wait
    • Classes near you
    • How to Begin RC
  • Counseling Techniques
    • Commitments
  • Welcome to RC
  • Basic Theory
  • Perspectives
    • IRP Perspectives
    • Taking a Needed Initiative (on the climate emergency)
    • On the Middle East
    • On the Middle East
    • Ending War
    • On 9 / 11
  • Harvey Jackins
  • Videos on Community Building, Counseling, and Liberation
  • Glossary of RC Terms
    • Comprehensive Glossary of RC Terms
    • Glossary of terms for people new to RC
• Search

News flash

RECORDING UPDATE

Sustaining All Life:
World Social Forum

WEBINARS

Raised Poor &
Climate Emergency
April 20
Gwen Brown
Janet Kabue

 

Privacy and Security

Both Privacy and security are wide and complex subjects. In this article I want to review the handling of data for organizing RC events and gatherings only.

Disclaimer: Any claims about technology securing rc.org is only viable for rc.org and www.rc.org. Other RC sites are hosted in different places and do not provide the kind of protection and tools that are presented here. 

To discharge about

The patterns in society, make us greedy for data. Data hoarding is a distress that can make us vulnerable. Many kinds of data can be vulnerable for abuse when landing into the wrong hands. That we find it hard to imagine how such data can be abused doesn’t mean that it won’t happen. Also many of us live privileged lives, in relatively safe countries. We have many community members who don’t have that same luxury. Our ignorance about personal data can bring people in other countries in danger without us becoming aware of it.

 

And we ourselves cannot know what our future governments will do with data that is hoarded now, until it is too late. When Trump came to power many people sought safer platforms to communicate.

Companies develop technologies that increasingly draw more and more far reaching conclusions from aggregated data. People are now fleeing from Whats-app and Facebook for incidents that came to light in recent years. Too late? maybe not!

Do’s and don’ts in organizing

The RC Community Guidelines contain some chapters about the use of Internet Services (and the number of to-addresses in e-mails) (See chapters K, M, and the lengthy notes in the Guidelines). Generally 2 ideas:

1. Store sensitive data only in RC servers.

2. Limit the number of ‘to’-addresses in e-mails to max 15, if group conversation is necessary.

Working With Services on the Internet

Companies who make profit on creating profiles and selling services based on those profiles will not use such data for your benefit (only). Unfortunately it is not only your data, but also the privacy of the people that you are connected with that you are paying the ‘free’ services with.

Companies that abuse personal data and infringe privacy are not only the big technical multinationals. Also think about companies like MailChimp, SalesForce, SurveyMonkey. Banks and insurance companies are increasingly trying to assemble profiles about people and selling services based on those profiles. Of all banks PayPal is probably the most untrustworthy, also notorious in blocking activists and liberation organizations access to their money.

We have to carefully avoid putting (to much) information into the hands of companies and governments that may at one point use such data against us or against members of our communities. Convenience and ignorance are our biggest enemies.

Don’t use Internet Services (like Google Docs) for any personal data or data that can be connected to people. And if you cannot avoid some, identify the once that are the least danger and offer the service you really need. For all the convenience Google, Microsoft, Apple and others offer we pay a high price. The damaging effects of manipulation of news and science made possible by huge collections of personal data have become much more visible over the last 2 years. 

RCCR owns the server that runs rc.org and no one else can put their hands on the data in the website unless we are sloppy. Follow the guidelines in this article.

We as users of data are key

The first important tool to protect data is us. We ourselves have to handle data in a secure way. Here are key aspects you should learn to understand and apply:

1. Limit the kinds of data we keep: do we really need all the data we ask from people? Only ask what you really plan to use.

2. Limit the time we store data: here we need to make a distinction by the vulnerability of data. An e-mail address may be less vulnerable than class, religion, sexual identity, constituency. Please keep no other data than peoples names, (email) addresses, phone numbers, longer than absolutely necessary. Clean up files holding personal data shortly after the job ends.

3. Think about where you store data. Keep data within the RC website. When exported, store it with a password. In many places the security depends on the integrity of the company that owns the storage.

4. Don not reuse vulnerable data. We have to learn to let go off data that is up to people themselves to share when they decide to, with whom they decide to.

5. To whom do we give access to data? People only need to see data they need for their task and as long that lasts. We have a tool to make sensitive data only available to people who need it. Clean up after the work.

We also have to be aware that sharing accounts or passwords are making us vulnerable. Use your RC web account only for yourself and encourage others to get their own account. Your account will become a valuable asset, especially when you are an organizer for international events. ARP’s and RRP’s can play a role in account creation.

Here are some tasks you have in securing data:

(1) Limit the export of data. The tools in www.rc.org allow you to have multiple people to access the data. There are almost no reasons to export data. Learn to work with the tools available. 

(2) Limit the number of people who get access to the data. Remove team members when their task is done and over.

(3) If you really need to export data, secure the file(s) with a password, also if you only keep the files in your own device(s). Clean up the files when the organizing is finished. Instruct/remember team members to cleanup their files when the organizing is over (lingering files are a security hazard).

(4) With exporting data you also introduce a versioning problem. The exported data will not stay in line with changed data in the website (and vice versa).

(4) Preferably send those files via secure apps (like Signal), or share them via the RC website. Avoid sending files as e-mail attachments. The www.rc.org website protects against deep linking, so search engines like Google cannot grab these files.

(5) Learn to secure your computer and devices.

Secure your computer with a password. If you share a computer make a different account for each of the users. Use an add-blocker (like uBlock). Use a password manager (browsers have built in ones). Use DuckDuckGo as search engine and privacy tool. Learn about the settings in your device(s) that prevent involuntary sharing information. The defaults are often benefiting big tech and violating legal requirements.

Technology and Tools

In the wide world, many people are working to develop and improve and reviews tools. There is an enormous international community working on improving our security and protect our privacy, and go against the many attacks on the freedom that the founders of Internet had intended. It is also a fight against oppression (and capitalism).

Many tools have been developed in times where we didn’t understand security as we do know. It is an ongoing development. What is safe today, may not be secure enough tomorrow. New tools will emerge. We will have to be flexible, decide to discharge about the fear of changing and the fear of learning new things. We will have to learn to use different tools and think about the implications of what we use them for.

Beware of tools/services that depend on companies or governments who have then access to your data.

Devices

Companies like Google, Microsoft and Apple consider the device you bought as a service they are delivering. You think you are the owner when you buy a device with Windows, OSX, Android or iPhone. But you are not! This also has the implication that these companies can always decide to gain access to the data on your computer. Can you stop them? Maybe if you learn to maintain the settings and keep data out of their hands. You may also want to switch to some version of Linux.

E-mail and messaging

E-mail is very unsafe. It’s like a postcard that can be read by anyone seeing it come by. But because e-mail is such a simple protocol it is very popular and still useful. We have to be very careful in what we send over e-mail. Especially when we also use e-mail encryption (like Protonmail or PGP). Because we then tend to forget that not everything is always encrypted. Using encryption in e-mail requires that you understand how it works and what the limitations are.

Chatting apps like Whats-app are very different from e-mail. Many of them are very vulnerable and can like e-mail be used to hack into your devices. Each of these ‘platforms’ has different ways to protect communication (end-to-end encryption). Some technologies have back doors and allow the servicing companies to access the content or the meta data of the communication. A common problem is that back doors are often pretended to be program bugs when revealed. Most chat apps have functions for internet audio or video calls and also support limited group calls.

Whats-app has been used for many forms of social engineering aside technical hacks to take over smart phones. Their end-to-end encryption is known to have many problems. And Whats-app makes you a target of many attempts to hack your device(s).

Telegram Messenger has encryption on demand (you have to turn it on per connection). They have a proven track record in holding up against government pressure to hand in data.

Signal Messenger has a strong encryption technology with no proven back doors so far, and also keeps meta data like identities of users (connections) hidden/anonymous. Signal had some usability problems caused by the enormous numbers of extra users in the first month of 2021.

There are many more tools and communication platforms. To many to discuss here.

The World Wide Web (WWW)

The World Wide Web (www) has enormously developed over 3 decades. Fortunately the developments have not stopped. Because there are still problems to be solved.

Like with e-mail www originally communicated via naked readable text over the networks. It works with a protocol called: http (HyperText Transmission Protocol). When we started to use websites for data that was not suitable for postcard communication this protocol was extended with a secure version: https (http Secured). To symbolize this we see a padlock icon left of the address of the website. Different browsers (like Firefox, Chrome, Safari, Internet Explorer) have different choices in how to display the link-address of the website. This can be confusing and you have to learn how you can identify the website and the way it is secured in the browser you are using.

The RC’s www.rc.org is best supported on Firefox and Chrome. Opera and Explorer seems to work well these days. Safari still has challenges. On smart phones there are any others that may have many incompatibilities. For these reasons we cannot support the use of the Back Office in www.rc.org in every browser, and limit ourselves to Firefox and Chrome. Though newer versions of Microsoft Edge and Apple Safari are improving.

Unfortunately https provides only an encryption of the communication between the web-server and your computer. A necessity, but not enough. The use of https does not guarantee you are communicating with the real www.rc.org. This is a challenging issue and we will always have to remain on guard for signs that we are not talking (directly) with www.rc.org: Regularly check the URL you are using is https://www.rc.org/ optionally followed by the locations within the website. Small changes in the wording may indicate a man-in-the-middle-attack.

Malicious code from different kinds can easily be imported via your work in the RC website. Especially Google, Microsoft and Apple try to track content that has been passed through their services or software. Rc.org has been equipped to keep this malicious coding out. In some places you’ll find “Remove markup” buttons. Use these after you have copy-pasted contents from other sources.

Be aware of links (like for Zoom-meetings) you receive through e-mail or web sites controlled by other companies. Such links are often wrapped in another link allowing ‘them’ to track the users and collect data.

A special kind of possible malicious code are Browser Extensions. One example is Google Translate. Google translate can be used to automatically translate (the rc.org) websites. Google will then also record what you are doing. If you keep that automatic translation while going into the back office you will leak personal data to Google. Do not use this kind of service.

Chrome, Internet Explorer, Edge, Safari have known ‘phone home’ ‘features’ telling their makers what you are doing. Often these ‘features’ can be turned off, but you have to know how and keep track of any changes (find out). In this aspect Firefox is until now the most trustworthy product.

Frank van den Heuvel (Web Master of www.rc.org)

February 2020

---