An argument of the same structure would be: Simply playing russian roulette is still not a threat, if the chamber will be empty.

Well, yeah, _if_ - it's a threat precisely because you do not know whether that condition will hold, and there is a reasonable chance that it won't; if you knew, it wouldn't be a threat but either a boring game or a method of killing yourself.

Also, why would your argument not apply to medical information, say? If they collected your medical information from your doctor's office to then blackmail you with it, that is not a privacy issue because they could also have come to your door and asked you about your medical history, and that would also be unacceptable, wouldn't it?

If I understand your argument right, it is roughly "if 'they' can do something bad in more than one way, then either of the ways is not bad because it would still be bad if the other way was used"? I'm not quite sure how to make sense of that.

Also, one anecdote from history: The nazis when they invaded the Netherlands used existing census information on religious affiliation that was easily available on hollerith punch cards to find and deport the jews. Would you say that that information collection was not a threat for the jews who probably got killed faster and in larger numbers than if the data had not been available in that form?

edit: One more example to consider: A dictator is not a threat, if he doesn't do anything that would still be inacceptable if it was done by a democracy. Well, a dictator is a threat exactly because you don't know that, and we tend to prefer democracy in order to protect ourselves from that risk of having a dictator of the bad kind.

I think what you're missing is that I'm not saying that nothing counts as a privacy violation. Medical information, for example, absolutely has an expectation of privacy, but I claim that the outside of your envelopes does not. My point is that the mass collection of information, where there is no expectation of privacy for each piece of that information, is not itself a privacy violation. What people do with information is not what determines whether the collection of that information constitutes a privacy violation.

First, there isn't really such a thing as a generic "expectation of privacy". There is not just "public" and "private", it really is all about necessity and consequences, about who needs to know what and what the potential consequences (good and bad) are when somebody gets to know something about you. If I walk around outside, I don't consider it a violation of my privacy if people don't close their eyes in order to avoid seeing me. Yet, I would very much consider it a violation of my privacy if someone started following me with an HD camera (maybe even streaming it to the internet?), even though they are just "doing something else with the information encoded in the electromagnetic waves reflected from my outside into the public sphere". Or if someone started pointing medical diagnosis equipment at me in public in order to figure out from that same "public informaton" stuff that I very much might consider private. A black-and-white distinction between "public" and "private" information is useless, as there is no such thing - not every personally identifiable information is either not to be shared with anyone or good for printing in the newspaper, most of it is somewhere in between: One expects it to not be a secret, but still to only be shared and used within limits for some sensible reason and purpose. So, I expect my doctor to share my medical info with his assistants as needed, but not to publish it in a book, I expect the info on the outside of letters I send and receive to be read and used by the postal service and people working there for delivering them, but not for publishing a list of my correspondence in the newspaper - and that very much for privacy reasons.

Secondly, the simplest reason for why mass collection itself can be a violation of privacy is that there is information in the collection that is not in the individual datum, that is to say, information that only becomes recognizable once you look at the collection as a whole with the right tools. From a single letter, you cannot construct a social graph of a society, but from all the letter meta data, you most certainly can.

Another angle to look at it from is to think about it in epistomological terms: Do you think that the work of scientists increases the knowledge of humankind? After all, they are just using "public information" (observations of nature, that is) and transforming it into usable theories about the world. I would think that that work makes a huge difference in terms of the use of that "public information" by humans and the effects of that use, which is why I would say that they are increasing our knowledg. The collection and analysis of personally identifiable "public information", I would argue, has the same effect on the knowledge of the party collecting and analyzing the data about the people that this information is about, namely, they are gaining knowledge about those people as a result of that collection and analysis, and if that knowledge is something that I consider private, I might as well call this investigation a violation of my privacy.

Of course, I agree that there is subjectivity when it comes to expectation of privacy. Not everyone has the same expectations, and group expectations change over time. But I do think that privacy comes down to expectations, not to necessity or consequences. I think some actions with good consequences are violations of privacy, and some actions with bad consequences are not violations of privacy. The goodness of an action's consequence and whether that action is a violation of privacy are orthogonal.

> Yet, I would very much consider it a violation of my privacy if someone started following me with an HD camera (maybe even streaming it to the internet?), even though they are just "doing something else with the information encoded in the electromagnetic waves reflected from my outside into the public sphere".

And I would not consider that a violation of privacy. At some point, I believe it could constitute harassment or stalking, but not a violation of privacy. It would seem that we have different definitions of "privacy." You seem to consider any inappropriate action which in some way involves personal information to be a violation of privacy. I do not, and I believe my definition more closely matches general usage. Privacy is about the ability to control which bits of your personal information area are available to which individuals, not what people do with your personal information after they have it (unless of course what they do includes sharing it with more people).

> Or if someone started pointing medical diagnosis equipment at me in public in order to figure out from that same "public informaton" stuff that I very much might consider private.

That's a different example, and I suppose it would depend on what diagnostic equipment we're talking about. For example, I do believe there is expectation of privacy when it comes to X-raying on a public walkway.

Yep, I agree. What I meant is that the expectation of privacy tends to be determined by expected necessity and consequences. People tend to expect privacy where they expect sharing/collection/distribution of information to have (potentially) bad consequences for them and there is no reasonable need to do so that would justify the risk. And my point is that the expectation of privacy is not a function of just the data, but also of the (intended, potential) use. You expect your letter to be delivered, therefore you expect that the address information on it will be used for that purpose (after all, having the letter delivered is your goal, and you are willing to give up as much of your privacy as is reasonably necessary to reach that goal), but you do not therefore expect that same information to be published in the newspaper, hence it's neither "public" nor "private", it's "for those involved in delivering this letter for the purpose of delivering this letter", just as medical information is "for those involved in making you healthy for the purposes of making you healthy".

> You seem to consider any inappropriate action which in some way involves personal information to be a violation of privacy.

Nah, I don't think that is quite it. It's more about the collection and processing of information for purposes that are not in the interest of the person the information is about in a way that reveals information about them that they could not reasonably have expected to be revealing when they revealed whatever information is being collected and/or analyzed. Privacy ultimately is about an individual's ability to predict and have control over what other people and institutions know about them while still being able to function in society, though not primarily "control" in the sense of "forcing to know or forget", but in the sense of "being able to estimate the consequences of sharing some information", as in "being in control of your life". The ability to function in society might require forcing at least computers to "forget", though, as open complete surveillance, while somewhat predictable, prevents society from functioning well.

> Privacy is about the ability to control which bits of your personal information area are available to which individuals, not what people do with your personal information after they have it (unless of course what they do includes sharing it with more people).

I think there is uselessness lurking somewhere in that definition ;-)

Does a government database count as an individual? Does government employees looking at the database constitute sharing? Does that control, at least in some cases, encompass new knowledge derived from previous knowledge in ways the affected person could not possibly have envisioned? If not, how do you resolve the conflict with the person's supposed control, if yes, how do you resolve the conflict with other people's supposed freedom to do with the information they have whatever they want (apart from sharing it)? Would blackmailing you with information about you be a violation of your privacy, if the person blackmailing you does not actually intend to share the information with anyone? How about just collecting information with the goal of possibly blackmailing you later (though again without any actual intention to disclose any of it)?

Somewhat out of order:

> I do not, and I believe my definition more closely matches general usage.

I'm not sure what the general usage is, but in any case I think the general public is far too confused about what information is and what automated information processing can do and can be expected to do in the near future for many to have any coherent, let alone reality-conforming concept of privacy (just look at the repeated high-profile cases of failed anonymization of datasets! their goal obviously is "privacy", and yet they fail miserably ...).

I might agree that your definition is probably close to a reasonable working model of privacy in the pre-computer era. But if you apply that too literally to today's world, I would expect you to end up with a practically useless concept that ignores many real-world problems that result from the collection and analysis of personally identifiable information. If you want to insist on such an outdated definition, well, there obviously is nothing fundamentally wrong with that, I just don't think there is much value to such a concept, and I'd rather define some privacy2 instead that has meaningful applicability today.

> That's a different example, and I suppose it would depend on what diagnostic equipment we're talking about. For example, I do believe there is expectation of privacy when it comes to X-raying on a public walkway.

Well, how about a camera that can detect heart problems from the pattern of blood flow in your face as it can be detected using high-speed high-resolution video in bright sunlight? (No clue whether such a thing exists, but I think we can agree something similar in some way or another should be technically within reach at least?) Also, what if the camera is actually just a high-speed high-resolution camera that doesn't do any diagnosis itself, but the video it records can later be analyzed on some computing cluster?