BLAST
Section of Science and Technology Law
750 North Lake Shore Dr.
Chicago, IL 60610

Editor-in-Chief

Associate Print Editor

Associate Online Editor

Contact Section

Section of Science and Technology Law Officers

Chair

Chair-Elect

Vice Chair

Secretary

Budget Officer

Section Delegates

Immediate Past Section Chair

Section Past Chair Liaison

IN THIS ISSUE JANUARY 2001

• Letter from the Chair
• Join the Section in San Diego for the First Annual Leadership Seminar
• San Diego 2001 ABA MidYear Meeting Section Schedule
• Chicago 2001 ABA Annual Meeting Section Schedule
• The 26th Annual AAAS Colloquium on Science and Technology Policy
• ICANN and You Can
• E-Privacy Law Committee Targets the E-Commerce Legal Issue Facing Every Client
• BioTechnology Subcomittee Tackles Law in the Age of Biology
• The E-Commerce Legal Arsenal: Practitioner Agreements and Checklists
• Critical Information Infrastructre Protection: A New Working Group Within the Information Security Committee
• Year 2001 May be the Year for Privacy in Washington
• Commerce Department "Safe Harbor" Preserves Trans-Atlantic Data Flows
• Special Insert:Report of the Multimedia&Interactive Technology Law Committee: Study of CD-Rom Briefs in Federal Appellate Courts

ICANN AND YOU CAN

The Internet Governance Committee is getting started. In mid-October, a letter went out to all members, suggesting some topics for discussion and asking for input on a few of the knotty problems facing the Internet Corporation for Assigned Names and Numbers (ICANN). The suggested topics are:

1. Should ICANN restrict itself to purely technical matters and turn over "policy" matters such as expansion of the domain name space and adjudication of trademark-domain name conflicts to another body or bodies?
2. Should ICANN become a policy making body, with a democratically elected board representing all users globally, with supervisory control over the existing technical entities?
3. How can the governments of the world find an effective means to transfer the control of the root zone file from the U.S. Department of Commerce to a private body such as ICANN?
4. Is it possible to establish a legal framework for the operation of the root servers other than by treaty?
5. How can ICANN establish a relationship with the governments of the world, other than by treaty?

Soon after these questions were posed, an intriguing draft of a law review article was posted on the Web by Professor Michael Froomkin of the University of Miami School of law. The draft, available at http://www.law.miami.edu/~froomkin/articles/icann.pdf is 168 pages long, but well worth reading both for the combatants and the on-lookers in the domain name wars.

Any member of the Section who would be interested in participating in the discussions is welcome. Please send your email address to David Maher, Chair of the Committee, at dwm@sonnenschein.com.

E-Privacy Law Committee Targets the E-Commerce Legal Issue Facing Every Client
-Ruth Hill Bro, Chair, E-Privacy Law Committee

The privacy of information about individuals is fast becoming one of the most important e-commerce legal issues:

• Forrester Research estimated that e-commerce took a $2.8 billion hit in 1999 because of consumer concerns about privacy issues;
• a Wall Street Journal/ABC News poll cited by the U.S. Department of Health and Human Services in its proposed medical privacy regulations asked Americans what concerned them most in the coming century, and "the loss of personal privacy" emerged as the overwhelming concern - overshadowing such issues as terrorism, world war, and global warming;
• online privacy issues are the object of considerable media attention, including cover and feature stories month after month in leading publications such as Business Week and The Industry Standard;
• the continual stream of new privacy lawsuits and government investigations being leveled at online advertisers and others passively collecting information via cookies and web bugs have sent a wake-up call to many;
• the now final EU/US Safe Harbor agreement (self-certification became an option on November 1, 2000), the proposed U.S. medical privacy regulations (due by the end of 2000), the new federal financial privacy regulations, and the Children's Online Privacy Protection Act (which became effective on April 21st and is catching off-guard many commercial websites that ask for age and collect personal information) all pose difficult e-privacy compliance issues;
• the U.S. Federal Trade Commission and state attorneys general are exercising increasing oversight in this area, moving first from children's privacy issues, to medical privacy issues, to casting an ever-wider net to snare high-profile commercial companies to serve as good examples; and
• Chief Privacy Officers are the newest senior executives in many companies, and they are charged with the difficult task of managing multimillion-dollar privacy risks that cross corporate departments, borders, and media.

As the commercial world goes online, virtually every client - whether a bricks-and-mortar company, Internet start-up, or government entity - will face e-privacy issues. Thanks to websites and computer technology, never has it been so easy to collect, reproduce, and disseminate information about individuals. Never have companies and government entities faced such daunting privacy issues regarding the increasingly indispensable information now within their reach. Yet those who seize the wealth of information that pervades the e-commerce world without first addressing the attendant privacy issues may get more than they bargained for, both in terms of legal liability and adverse publicity that hit the bottom line.

That is where the E-Privacy Law Committee comes in. A newly launched committee in the E-Commerce Law Division of the Section, the E-Privacy Law Committee is already nearly 200 strong and rapidly growing. Designed for chief privacy officers and attorneys alike, this committee explores the pivotal electronic privacy and data protection issues associated with doing business in an e-commerce world, including:

• website privacy policies (and the extensive internal due diligence and procedures necessary to implement them);
• online information collection, use, and dissemination practices; · cookies and other tracking technologies;
• online profiling;
• third-party databases and publicly available personal information;
• privacy issues associated with digital signatures, smart cards, and other key technologies;
• crossing virtual borders in transmitting data (including the challenges of complying with the EU data directive);
• collecting and using certain types of sensitive information (e.g., financial, medical, from children);
• privacy and data protection issues in the electronic workplace; and
• new laws and pending legislation on privacy at both the federal and state level.

The committee will take on a number of projects, including development of best practices and guidelines regarding privacy, taking positions on various issues to influence public policy, and preparing relevant content for the ABA website and for publication. We have also launched a listserve to disseminate late-breaking privacy legal develop-ments, discuss approaches to various privacy issues, post links to key privacy law resources, and alert members regarding committee meetings and initiatives. We hope that this listserve and the committee will provide a much-needed source of information for chief privacy officers and attorneys faced with the task of managing their clients' legal risks relating to privacy and e-commerce - an area where there is little precedent.

I serve as the chair of this new committee, and Ivan Fong serves as the vice-chair, and you can reach us as follows:

Ruth Hill Bro (Chair, E-Privacy Law Committee, E-Commerce Law Division)
Baker & McKenzie
One Prudential Plaza,
130 East Randolph Drive
Chicago, Illinois 60601
312-861-7985 phone; 312-861-2899 fax;
bro@bakernet.com

Ivan Fong (Vice-Chair, E-Privacy Law Committee, E-Commerce Law Division)
General Electric Company, Senior Counsel
E-Commerce and Information Technology
General Electric Co.
3135 Easton Turnpike
Fairfield, Connecticut 06431
203-373-3943 phone; 203-373-2181 fax;
ivan.fong@corporate.ge.com

Sign up for the E-Privacy Law Committee by one of the following means: http://www.abanet.org/scitech/cmtejoin.html; OR 800-285-2221; OR sciencetech@abanet.org.

BIOTECHNOLOGY SUBCOMMITTEE TACKLES LAW IN THE AGE OF BIOLOGY
-David Smith

Where are the legal issues in the Age of Biology? Of course, they are where they've always been when scientific discovery is converted into commercial return, with intellectual property clearly in the spotlight (especially lately) as the tripwire of legal process at that point of conversion.

In fact, intellectual property rules define not just what is owned (and by whom) but what is ownable, by distinguishing between that which belongs to us all (i.e., laws or products of nature, mathematical formulas) and what may be claimed by the one (or the few). But this sense of ownership, so often presented as merely the ability to deny others the economic benefit of an invention, has struck some as inapposite when applied to apparently parcel the human genome like a Yukon gold field.

Anyway, an asset-centric jurisprudence suggested by intellectual property law may not best capture, or fully respond to, the profoundly intellectual -- and, potentially, social -- transformation to be wrought by the revolution in life sciences now enveloping us. Through the fusion of biology and information technology, we may see an analysis of the cause and progress of disease proceed with the authority and conclusiveness of the calculus that describes the arc of a curve ball. But to achieve that precision, and harness the capacity for therapeutic intervention it implies, researchers will require access to troves of biological information. The price of discernment in fathoming the genetic and molecular processes that run the gamut of clinical outcomes from normal to diseased is access to information on a scale that could test the very idea of privacy (not to mention data storage).

In order to cure the one (who could be any of us), we need to amalgamate the medical and biological information of the many (although who the rest of us are is immaterial), as we all constitute a biological collective of substantial homogeneity. The accumu-lated data may erode the idea of biological individuality. Must political individuality wither before or with it for the biomedical age to run its course? If not, where is the balance between individual autonomy and the requirements of rigorous scientific inquiry leading to therapeutic invention? Reasoning from established practice, already the protection of privacy is presented as a process of assigning and valuing property rights. When each person's biological information is of equally nominal value (although of inestimable worth in the aggregate), is this really the best we can do to understand the problem and articulate a dynamic solution?

Our modest ambition is to cast the Biotechnology Subcommittee as a point of departure for engaging the bio-legal questions of the new Age. We welcome your ideas for conference seminars, monographs, or other projects, and especially your perspective on law in the company of science in pursuit of a new paradigm of medicine (and maybe a few IPOs along the way).

Please contact:

Julie Fleming, Esq., Chair
(404) 581-8318
jafleming@jonesday.com OR

David Smith, Vice-Chair
(412) 488-1100
dssmith@tissueinformatics.com.

The E-Commerce Legal Arsenal: Practitioner Agreements and Checklists
-Ruth Hill Bro

This spring, the Electronic Commerce Law Division of the Section plans to publish The E-Commerce Legal Arsenal: Practitioner Agreements and Checklists. Drawing on precedents provided by attorneys throughout the United States and Canada, this collaborative compilation and its accompanying CD-ROM will provide sample contracts and checklists for a wide array of e-commerce transactions.

A core group of trailblazers already has volunteered to contribute from their precedent files to produce what we hope will be an unparalleled e-commerce law resource. These leadership contributors include:

Associations:

Scott Lange, National Automated Clearinghouse Association (NACHA)

Scott Edwards and Ken Wasch,Software & Information Industry Association (SIIA)

Companies:

Marty Delano, Andersen Consulting LLP/Accenture

Ruven Schwartz, CertifiedTime, Inc.

Celeste Callaghan, Daimler-Chrysler Corporation

William J. Bowe and Eugene Klein, Encyclopaedia Britannica/Britannica.com

Stephen Bisbee, EOriginals, Inc.

Kathy Bryan, Motorola, Inc.

Kareem M. Irfan, Square D Co. - Schneider Electric North America

Eric (Rick) Blumsack, Stream International Inc.

Clint N. Smith, UUNET Technologies, Inc.

Peter Rill, Zurich Kemper Life

Government:

Brian Hengesbaugh, U.S. Department of Commerce

Joseph Wackerman, U.S. Postal Service

Law Firms:

Terrence P. Maher, Abrahams Kaslow & Cassman (Omaha)

Ruth Hill Bro and Thomas J. Smedinghoff, Baker & McKenzie (Chicago)

Andrew R. Basile, Cooley Godward LLP (San Francisco)

Mark E. Plotkin, Covington & Burling (Washington, D.C.)

Charles Lee Mudd, Jr., Cummings & Lockwood (Stamford)

Richard L. Field, Richard L. Field, Esq. (Cliffside Park, New Jersey)

Michael Power, Gowling Lafleur Henderson LLP (Ottawa, Ontario)

Leonard Ferber, Katten Muchin Zavis (Chicago)

George Paul and Todd W. Coleman, Bruce E. Samuels Lewis & Roca (Phoenix)

Ian C. Ballon, Mannatt, Phelps & Phillips, LLP (Palo Alto)

Brian Smith, Mayer Brown & Platt (Washington, D.C.)

Charles Merrill, McCarter & English, LLP (Newark)

Michael D. Scott, Perkins Coie LLP (Santa Monica)

Gregory J. Glover, Ropes & Gray (Washington, D.C.)

William B. Baker, Wiley, Rein & Fielding (Washington, D.C.)

Section members will receive a letter in early January from me, as the editor of this book, asking them to consider following the example of these leadership contributors by providing e-commerce contracts or checklists (not "model" contracts or the ultimate form agreement, though those would certainly be welcome, but rather actual documents that you have drafted and used). All contributors will receive a complimentary copy of the finished product, and each contributor's name and that of the contributor's organization will be listed at the beginning of the book but will not appear on or be identified with the contracts or checklists themselves. The deadline for submissions is February 10, 2001. Those with questions or who would like to contribute should contact:

Ruth Hill Bro
Baker & McKenzie
One Prudential Plaza,
130 East Randolph Drive
Chicago, Illinois 60601
312-861-7985 phone; 312-861-2899 fax;
bro@bakernet.com