The Global Network Initiative Releases Public Report on the 2015/16 Independent Assessments of Facebook, Google, LinkedIn, Microsoft, and Yahoo

Read the full report here.

WASHINGTON DC/AMSTERDAM/LONDON – The Global Network Initiative today released its 2015/16 Public Report on the Independent Assessments of member companies Facebook, Google, LinkedIn, Microsoft and Yahoo. Based on a detailed evaluation of the confidential assessment reports prepared by independent assessors, GNI’s multistakeholder Board determined that the five companies are compliant with the GNI Principles.

A finding of compliance means that the companies are making good faith efforts to implement the GNI Principles and to improve this implementation over time. This marks the completion of the GNI’s second cycle of company assessments, which are unique in the ICT industry.

These independent assessments — which included a detailed examination of 59 case studies of government requests for user data or content removal around the world — demonstrate that amidst sustained threats to freedom of expression and privacy rights, users are benefiting from the implementation of the GNI Principles by participating companies.

“At a time of escalating demands for online censorship and surveillance from governments around the world, these assessments demonstrate that when companies have rigorous systems and processes in place they can act to responsibly and effectively respect and protect user rights to privacy and freedom of expression,” said Mark Stephens, CBE, GNI Independent Board Chair.

The GNI assessment process is confidential by design. It allows companies to share and discuss sensitive cases of government requests with GNI’s board members from civil society, academia, investors, and from other companies. It also allows discussion of internal company systems and processes to implement the GNI Principles. To increase transparency about how the assessments work, the GNI has released the Assessment Guidance and Reporting Framework used by assessors to conduct the assessments. This Public Report also publishes, for the first time, details of some non-anonymized cases.

“GNI’s assessment process provides a window into whether and how ICT companies are protecting the rights of users,” said Arvind Ganesan, Business and Human Rights Director at Human Rights Watch. “It is an evolving process, and with the second full assessment now completed, we have a better understanding of how member companies are implementing their human rights commitments. As GNI expands its membership, we see opportunities for further improvements and hope the assessments continue to evolve to better assess how users are protected.”

The cases reviewed during the assessments illustrate how companies are using the GNI framework to question and challenge overbroad government requests — including in local courts where appropriate — that may be in violation of local laws or inconsistent with international human rights standards. This approach has resulted in requests to provide user data or restrict user content being denied in full or in part.

The cases also illustrate the expanded deployment and integration of human rights impact assessments and staff training across company operations, including to identify and to mitigate risks to privacy and free expression in product design, mergers and acquisitions, and business relationships. Each assessment also includes recommendations to the company aimed at continued improvement of their policies and processes related to freedom of expression and privacy. These recommendations are for the company’s consideration.

As one of GNI’s accredited independent company assessors commented on one company assessed: “The commitment to protecting freedom of expression and privacy genuinely seems to have become a “lens” through which business decisions are evaluated at various levels of the company.”

“Since GNI’s assessment cycle ended in 2014, the importance of a company-wide approach to respecting and protecting the privacy and freedom of expression of their users has only increased,” said Sara Nordbrand, Head of Sustainability and Corporate Engagement at the Church of Sweden, an investor member of GNI. “By participating in GNI and its assessment process, companies take part in a multi-stakeholder approach and demonstrate their commitment to sustained progress on human rights.”

Highlighted in the report are important areas of ongoing challenge for company implementation of the GNI Principles. They include: continuing legal limits on the disclosure of national security requests; the acute strains on the mutual legal assistance treaty (MLAT) system, which allows law enforcement to legitimately collect digital evidence across borders; and escalating government pressures on companies to remove “extremist” or “terrorist” content from their platforms in ways that may conflict with rights to privacy and free expression.

“The GNI independent company assessment process is evolving and developing to respond to new threats to freedom of expression and privacy online,” said GNI Executive Director, Judith Lichtenberg. “We look forward to building on this cycle of assessments, as we did with our first cycle, and to continue GNI’s work with companies and other stakeholders from around the world to set a standard for free expression and privacy rights across the ICT sector.” 

A Step-by-Step Guide to the GNI Independent Assessment Process is here.

About the Global Network Initiative

Launched in 2008, the Global Network Initiative (“the GNI”) occupies a unique place in the global conversation about freedom of expression and privacy in the Information and Communications Technology Sector. The GNI is a multi-stakeholder forum that brings together information and communications technology companies, civil society (including human rights and press freedom groups), academics and investors from around the world to protect and advance freedom of expression and privacy. As of June 2016, the GNI has 46 participants from across the world. They include members who bring global as well as country-specific expertise from Argentina, Azerbaijan, China, India, Italy, Pakistan, South Korea, Sweden, Pakistan, the United States and United Kingdom.

About the GNI Principles

When companies join the GNI they commit to the GNI Principles and Implementation Guidelines, which provide a framework to guide the ICT industry and its stakeholders on respecting the freedom of expression and privacy of users around the world. The GNI Principles are based on international human rights laws and standards, and informed by the UN Guiding Principles on Business and Human Rights.

About the GNI Independent Company Assessments

When companies join the GNI, they agree to have their implementation of the GNI Principles assessed independently by participating in the GNI’s assessment process. The assessment is made up of a review of relevant internal systems, policies and procedures for implementing the Principles (“the process review”), and an examination of specific cases or examples that show how the company is implementing them in practice (the “case review”).