From: "Steve Lucas" slucas@privaseek.com Congratulations on the recent announcement regarding the Federal Trade Commission's formation of an advisory committee to study the handling of private data by commercial firms over the Internet. I think this is another demonstration of the leadership the FTC has taken in addressing this important issue. I would very much like to participate in this committee if possible. I think I can add value in the following ways: Technology: I have an in-depth knowledge of security issues and technology. I am a certified member of the International Computer Security Association. This certification and subsequent training certifies me as an Information Security Specialist. I am also a member of the National Computer Security Association. I am the Chair of the IEEE Internet Security Best Practices Working Group which is working to establish International standards and practices for security on the web. I am also a member of the recently formed International Security, Trust, and Privacy Association. I was a featured speaker at this years International Security and Trust Conference held in Washington that was sponsored by NIST. I was the Editor and Chair of the W3C P3P Working Group. Business: I have extensive experience working in the direct marketing area. I was the CIO of Neodata, which is one of the world's largest direct marketing firms, accounting for over 2% of the entire US postal service volume each day. As a former consultant with Electronic Data Systems, I was the chief Database Architect on some of the largest data warehouses in existence today. As the CIO of both Excite and MatchLogic, I have extensive experience with the advertising, data collection, profiling, ad targeting, targeted email delivery systems, and consumer privacy issues on the web. My current role as Senior Vice President and CIO of Privaseek allows me to continue to address consumer trust, privacy, and security on the web. I am active in the areas of ecommerce as a member of the U.S. Ecommerce Committee and Trans Atlantic Business Dialogue (TABD). Legal and Policy: I have a strong legal and policy background in the areas of security, privacy, constitutional, intellectual property, and computer law. I am also very familiar with the current state of International privacy and security law. This includes cryptographic export issues, European Union Data Protection Directive/Safe Harbor, and Asia/Pacific regulations. I recently wrote one of the first Model Contracts under Article 26b of the E. U. Data Directive that has been approved by several E.U. countries. I am on the Board of Directors of TRUSTe and the U. S. Internet Industry Association. I am ready to commit whatever amount of time and effort it takes to make the committee a success. I am in Washington on a regular basis having recently purchased a home there. I hope you will consider my nomination to serve on this committee in support of this this vital effort. I am willing to help in any way you feel the need. Thanks for your time and consideration. I look forward to hearing from you at your earliest convenience. Sincerely, Steve Lucas Dr. Steven Lucas |