If you live in London, you’ll probably know the Oyster Card fairly well. More or less everybody has one. You use it to pay for bus or tube travel – stick £20 on the card and instead of buying a paper ticket each time, just place your card on a yellow reader, and it’ll work out how much the journey cost and automatically deduct it from your card. It does save a ton of time, and quite a bit of money too (tickets are cheaper on Oyster).
If you buy a travelcard in London (e.g. annual or weekly pass) then you’ll probably have it on a Oyster card.
If you tap the Oyster card on machines in Tube stations, you can see a list of journeys made on that card. My usage history included not just those I made over the last few days but also tube and bus trips that I made before Christmas. This in itself I don’t find too scary apart from the fact that anyone who had my card could look at my usage history.
The scary thing is that these Oyster cards if registered to an address (e.g. anyone with an annual pass, child pass, online auto-top up, etc.), the government and Transport for London can instantly recall a list of your movements, including those you made two years ago.
The system has been criticised as a threat to the privacy of its users. Each Oyster card is uniquely numbered, and registration is required for monthly or longer tickets, which are no longer available on paper. Usage data are stored both on the card and centrally by Transport for London; recent usage can be checked by anyone in possession of the ticket at some ticket machines. Privacy groups consider it a form of mass surveillance and are concerned with how these data will be used, especially given the introduction of the London congestion charge by Mayor of London Ken Livingstone in February 2003.
The police have used Oyster card data as an investigative tool, and this use is increasing. Between August 2004 and March 2006 TfL’s Information Access and Compliance Team received 436 requests from the police for Oyster card information. Of these, 409 requests were granted and the data was released to the police.
Sources inside TfL indicate that usage data which should be removed after three months, are not. Databases contain usage data which account for over two years of travel for many individuals, further adding to the criticism of an invasion of privacy.
I really don’t see why this is necessary and in many ways it’s quite scary that TfL could recall your list of tube and bus journeys from over two years ago.
There’s always the argument that if your not doing anything wrong you’ve got nothing to be worried about, but I don’t think this applies. The Oyster Card will not stop terrorists. Terrorists wouldn’t use Oyster cards!
It’s not just that. I’d like to be able to say I trust the government with my privacy and personal information, but with the state of technology security these days, information gets leaked and stolen. It’s quite possible that this information could get into the wrong hands and that would be a serious blow to privacy to anyone who has an Oyster card.
But anyway I took the plunge. I hope TfL are going to look after my privacy.