Adapt laws to allay mobile payments privacy fears - Berkeley researchers
Americans overwhelming reject mobile payment systems that track their movements or share identification information with retailers, and legislators should considering tweaking credit card laws to address their concerns, say researchers at the University of California, Berkeley.
In a paper, the university's Chris Hoofnagle, Jennifer Urban and Su Li argue that the fast-developing mobile payments landscape could bring many benefits to consumers; potentially reducing transaction fees, increasing convenience, and even improving security.
However, a major obstacle to adoption is getting merchants on board and convincing them to build infrastructure at the point-of-sale. The best way to do this may be by using mobile payment systems' new capabilities for the collection and use of consumer personal information.
With card transactions, the parties - merchant, card network and bank - all receive different, incomplete information. But mobile payments systems could change this, giving merchants personally-identifiable contact information from consumers and card networks access to data on what people have been buying.
This would provide the various players with a more comprehensive and detailed dossiers about consumer; for example, making it easier for merchants to build customer databases without resorting to loyalty cards, say the researchers.
The Berkeley researchers suggest that these concerns could be addressed by adapting existing laws. Since the early 1990s California's legislature, through amendments to the Song-Beverly Credit Card Act, has prohibited merchants from even requesting personal information from customers carrying out credit card payments.
"Given our finding that consumers overwhelmingly reject the collection of personal information at the point of sale via mobile payment systems, we think that the Song-Beverly model should be updated to cover payments systems as well as merchants at the point of sale," argues the paper.
The team emphasises that information could still be shared with merchants but that it would be in the hands of the customers, who could opt-in on a per-transaction basis.
The paper concludes: "The broad agreement we found among Americans that they value privacy at the point of sale, suggests strong support for a modified version of Song-Beverly at the federal level. This would ensure that all Americans' expectations for privacy in their point-of-sale data are respected, and that payments systems operators and merchants alike have one, uniform regulatory model for handling point-of-sale information.