Citizens Want Privacy And Security -- A Tricky BalanceCitizens Want Privacy And Security -- A Tricky Balance

Federal and state lawmakers are wading further into the conflict between citizens' demands for privacy and their willingness to trade personal liberties for security. As they do so, new research confirms that public sentiment is far from clear.

A Harris Interactive survey shows that most people want their personal data shielded, but they trust their bosses with it. Of the 1,258 respondents, 76% say their companies have pretty good or excellent privacy rules and policies governing employees. More than 80% of respondents working for private companies, government agencies, and nonprofits say they'll accept a company ID card with a photo, basic personnel data, and a biometric identifier if it buys more workplace security. Harris conducted the poll for the nonprofit Center For Social & Legal Research.

Congress has also taken up the idea of biometric ID cards, stopping short of calling them national IDs. Sen. Richard Durbin, D-Ill., last week said he'll introduce a bill, supported by the American Association of Motor Vehicles, that would standardize licensing procedures and put biometrics in all state-issued licenses. Three-quarters of Americans want new procedures for issuing licenses and IDs, the association says. But the Electronic Privacy and Information Center says its poll shows that only 26% of Americans favor national IDs.

Meanwhile, state governments are moving forward on Web-privacy legislation. As early as this week, the Minnesota House and Senate could vote to make their state the first to restrict how Internet service providers use consumers' personal data. Earlier this month, Minnesota lawmakers passed different versions of legislation that would prohibit ISPs from selling consumer data without authorization. All that remains is for the two bodies to reconcile their bills. The House bill would let ISPs sell data unless consumers specifically prohibit it, while the Senate version would prohibit sales of data unless consumers authorize it.

E-retailers fear that a patchwork of Web-privacy laws may result from other states' following Minnesota's lead. But chaos like that sometimes is "what it takes before there's a movement to federalize things," says Mark Schreiber, a partner at Boston law firm Palmer & Dodge, who co-chairs his firm's privacy group.

Some in Washington are taking action. Sen. Ernest Hollings, D-S.C., has introduced legislation prohibiting ISPs and other Internet businesses from collecting and disseminating data generated by consumers' Internet usage.