The findings come from Consumers International, a global coalition of 263 consumer organisations including the UK’s Consumers Association and National Consumer Council. The main findings of the study reveal that existing measures put in place by various governments to protect people's privacy is not adequate.
The survey found that just over two thirds of sites collect some sort of personal information and almost all of these sites asked for details that made it easy to identify and contact the person. The vast majority of sites gave users no choice about being on the site's own mailing list or having their name passed on to affiliates or third parties.
Despite tight EU data protection laws, sites within the EU were found to be no better at telling users how they use their data than sites based in the US. Indeed, Consumers International claims that some of the best privacy policies were found on US sites.
The most popular US sites were more likely than the EU ones to give users a choice about being on the company's mailing list or having their name passed on, despite provisions in EU data protection law which obliges EU-based sites to provide users with a choice.
Only 10% of sites targeting children asked children to get their parents' consent before giving personal information or to tell their parents afterwards.
"Privacy is recognised as a fundamental human right, yet we've found that too many companies collect a lot of unnecessary, very personal information about their customers - and because of inadequate implementation of existing government measures people don't have control over their data," says Anna Fielder, Director of the Office for Developed and Transition Economies of Consumers International. "This widespread neglect of good privacy practice is all the more worrying when you consider that electronic technologies for collection of data develop so rapidly."
Consumers International is calling for policy makers at the national and international level to take urgent action to adopt laws, rules and procedures as necessary to ensure that:
It adds that companies immediately need to incorporate internal practices in line with all existing legislation and guidelines regarding privacy of personal data.
The report by Consumers International provides a five-point plan for people to protect themselves from misuse of private information in e-commerce. The plan is: