What your car knows about you

By Alfred Ng

With help from Derek Robertson

Fourth generation Toyota Prius cars on the production line. | Toshifumi Kitamura/AFP/Getty Images

Cars are collecting more data than ever, fueling a new type of data broker. Though car safety is tightly regulated, car data is not. And privacy advocates are concerned that connected cars could catch lawmakers off-guard—just as the unregulated collection of massive amounts of data by smartphones did.

Cars are capable of amassing data on nearly every aspect of a drive, from road conditions to whether or not you’ve gained weight since the last time you sat in the driver’s seat. If you connect your phone to the car’s Bluetooth system, it’s also capable of knowing your contacts .

And while most of the data that cars collect is about the vehicle itself, like the engine temperature or the tire pressure, there’s a growing market for more personal driver data, such as the driver’s name and location, driven by industries like insurance, marketing and car repairs.

“There is significant potential on applications using anonymous data, but there is far more market potential with applications on personal data,” said Frederic Bruneteau, the managing director of the Ptolemus Consulting Group, a strategy firm advising on connected mobility. “The need to have consent management that is efficient is crucial.”

Car location data is among the most valuable that automakers can gather, and data brokers who obtain this information have claimed that it’s far more accurate and voluminous than phone data, according to marketing material .

It’s also harder for consumers to opt out of sharing their location data from a car, say privacy advocates. While you can reject permissions for a mobile app that wants to know your location, doing the same for a car could mean not having mapping services or emergency roadside assistance.

While only about half of all new cars sold today have internet connections, McKinsey estimates that by 2030 , about 95 percent of new cars will be connected. This influx of data collection has spawned a new industry of data brokers, called Vehicle Data Hubs , which specialize in collecting and selling car data to customers like insurance companies, city planners and advertisers.

Carmakers are considering using the technology to run ads on dashboards when they drive by certain billboards , and vehicle data brokers are already offering using car data to adjust insurance rates . Privacy advocates worry that if all of these systems are entrenched before regulations rein them in, lawmakers will have a much more difficult time protecting people’s information.

So lawmakers are racing to set the rules for car data.

There are privacy laws in the U.S. on car data, like the Driver Privacy Act , which passed in 2015. The law makes it so that any data collected on a car’s Event Data Recorder, a sort of black box meant to help diagnose malfunctions and crashes, belongs to the car owner, and requires consent or a warrant for this data to be used by third parties.

But with connected cars, the EDR accounts for only a small amount of the data collected. No federal laws protecting driver privacy have passed since 2015, giving carmakers a window to collect and sell location data on drivers once they’ve opted into services like GPS and roadside assistance.

“We think it’s way past due time to update the Driver Privacy Act,” said Andrea Amico, the founder of Privacy4Cars, a privacy tech company specializing in cars. Amico warns that infotainment systems collect at least as much data as the EDR does, and it can be extracted without a warrant.

Industry groups are also trying to weaken privacy regulations.

In June 2020, the Alliance for Automotive Innovation made recommendations for privacy regulations to the Uniform Law Commission. In the letter, the industry group recommended changing the definition of “personal data” to exclude “pseudonymized data,” which has had names stripped from it. Though data brokers use lots of such data, it is often relatively easy to “de-anonymize” it and figure out which pseudonym corresponds to which real person.

Though Congress hasn’t passed new legislation particular to cars, lawmakers are pushing for a broader data privacy bill that covers a wide range of data, no matter what type of device collects it. The bill passed out of committee on July 20 but isn’t likely to become law without support from Senate Commerce committee chair Maria Cantwell (D-Wash.). It specifically requires automakers to get “affirmative express consent” to collect data for particular purposes.

Without that type of regulation, carmakers are free to ask for access to data for life-saving purposes like emergency roadside assistance while also using that same data for profit.

“The problem is once you agree to that, what consumers don’t realize is that you are also agreeing for the same data, your second-by-second geolocation data, your medical profile, anything connected to the car, is available for essentially any other purpose,” Amico said.

That strategy comes from the same playbook that mobile apps have used for years: When a user gives data permissions so an app will function, it can open the door for an entire data broker ecosystem to trade your information back and forth. It’s how data from Muslim prayer apps , which need location data to point people in the direction of Mecca, ended up in the hands of the U.S. military.

As Amico puts it, “Many of us have a romantic idea that cars are a place of anonymity and freedom. It’s time for Congress to realize it’s not the case anymore.”

INTRODUCING POWER SWITCH: The energy landscape is profoundly transforming. Power Switch is a daily newsletter that unlocks the most important stories driving the energy sector and the political forces shaping critical decisions about your energy future, from production to storage, distribution to consumption. Don’t miss out on Power Switch, your guide to the politics of energy transformation in America and around the world. SUBSCRIBE TODAY .

Stablecoins have been heavily scrutinized as of late, with the Federal Reserve ramping up its oversight amid some extremely high-profile crashes .

But one stablecoin provider is actively trying to drum up some attention — Circle, a Boston-based company whose confusingly-named “U.S. Dollar Coin” has built the second-highest stablecoin market cap after Tether. In an interview published today with POLITICO’s Peter O’Brien and Bjarke Smith-Meyer for Pro s, the company’s chief strategy officer, Dante Disparte, said it’s “eyeing a third spot behind Bitcoin and Ether only” in the crypto market.

Stablecoins peg their value to the U.S. dollar by backing it with traditional currency, U.S. Treasury securities, or commodities. That makes withdrawals easy and provides a more stable investment, but just like with non-crypto securities, their underlying assets are still vulnerable to choppy weather.

Which is precisely what Disparte touts as USDC’s advantage: Pitching it as the establishment-friendly stablecoin, he told Peter and Bjarke that “Many, if not all, of the current generation of so-called stablecoins cannot even come close to [its] level of trust, transparency, regulatory certainty.” Tether, for its part, shot back, saying Circle’s “non-profitable business model” makes it a risky bet. — Derek Robertson

Director Joe Hunting attends a special screening of his film "We Met in Virtual Reality." | Michael Loccisano/Getty Images for HBO

Last week we covered the turmoil gripping the world of VRChat, one of the most popular fully 3D, VR-based virtual worlds.

A film released on HBO’s streaming service on Wednesday provides an up-close-and-personal snapshot of the status quo its most devoted users are trying to protect — “ We Met In Virtual Reality ,” a feature-length documentary filmed entirely inside the game itself. The film’s director, Joe Hunting, follows some of the game’s most devoted users as they dance, celebrate holidays, process real-world trauma and even get “married” within the game’s hyperkinetic, day-glo animé-style confines.

In an interview with the website GameRant, in addition to joking about being “one of the only documentary directors that got to make their film entirely in their pajamas,” Hunting described how the film was inspired by the Covid-19 pandemic and its attendant transference of social and emotional life into a digital space.

He also makes the argument that the most common misconception about VR users is that they spend too much time there, at the expense of their day-to-day lives. Amid plenty of evidence that VR use significantly increased during the pandemic, Hunting’s snapshot might be a sneak peek of the kind of virtual entanglements that could soon sit next to our analog ones. — Derek Robertson

• Yet another major crypto theft hit the firm Nomad, to the tune of $190 million.
  
• A leading autonomous trucking company is dealing with the aftermath of a crash in Arizona .
  
• The hardest-core Bitcoin evangelists aren’t giving up the ship .
  
• Physicists in Germany are taking a new approach to the search for dark matter.
  
• Companies that have made big bets on lab-grown fake meat think it can revolutionize other consumer goods , as well.

Stay in touch with the whole team: Ben Schreckinger ( bschreckinger@politico.com ); Derek Robertson ( drobertson@politico.com ); Konstantin Kakaes ( kkakaes@politico.com );  and Heidi Vogt ( hvogt@politico.com ). Follow us on Twitter @DigitalFuture .

If you’ve had this newsletter forwarded to you, you can sign up here . And read our mission statement here .

Follow us on Twitter

Ben Schreckinger @SchreckReports Derek Robertson @afternoondelete Konstantin Kakaes @kkakaes Heidi Vogt @HeidiVogt

Follow us

To change your alert settings, please log in at https://www.politico.com/_login?base=https%3A%2F%2Fwww.politico.com/settings

This email was sent to by: POLITICO, LLC 1000 Wilson Blvd. Arlington, VA, 22209, USA

Please click here and follow the steps to .