The Power of Privacy – documentary film

00:04

Digital privacy doesn't always make headline news

00:07

unless celebrity nudes are leaked

00:10

or compromising corporate emails are made public.

00:13

But our relationship to the internet has reached

00:16

an unprecedented level of connectedness.

00:19

In this new environment, the state of privacy deserves a closer look.

00:24

In this film I'm going to travel the world to undergo challenges

00:28

that will explore our digital life in the 21st century.

00:32

I'll be stalked, I'll be hacked, I'll fight to get leaked documents back.

00:37

I'll dive into open data and then I'll live in a futuristic home that will monitor my every move.

00:44

All to examine 21st century privacy.

00:48

But how did we get here?

00:49

Before the 1600s most people's homes were communal.

00:52

Life orientated around a central fireplace.

00:55

There was very little privacy or personal space.

00:59

And then a revolutionary new technology, the chimney.

01:04

People could lock themselves and their things in personal spaces.

01:07

They began to appreciate their privacy

01:09

and expect that what happened behind closed doors stayed there.

01:14

The rich have always had better control over their privacy.

01:17

In 1890s Boston, Warren and Brandeis were attorneys for the high society.

01:23

So, the next tech innovation came along.

01:26

Their clients had grown accustomed to letting their hair down

01:29

behind closed doors.

01:30

When photos of their parties landed on the front-pages of gossip rags,

01:35

they were suitably outraged and sued them.

01:37

They won and the right to privacy was born.

01:43

Now, that was fine until the next big tech innovation came along

01:47

and put a device into our homes and our pockets

01:49

that lets us air our dirty laundry to the world.

01:53

Our attitudes and the law haven't caught up yet.

02:00

I'm in Los Angeles to meet Max, a professional digital detective,

02:04

who works with businesses and celebrities to protect their online reputations.

02:08

I gave him just my name and then challenged him

02:11

to gather as much information about me

02:13

from what I'd willingly shared online.

02:17

- You ready to go through the box? - I'm a bit nervous, to be fair.

02:20

Let's walk you through it. This is scratching the surface.

02:25

This is essentially a couple of hours of work.

02:28

That's pretty deep.

02:30

You have a pretty sizeable digital footprint

02:32

and most of this represents media that you put out yourself.

02:35

You might say to me, "Well, my life is an open book, I'm not worried about you revealing any information."

02:40

But if I'm looking to get you to do something you might not want to do,

02:45

I'm going to use anything at my disposal

02:48

to create some sort of psychological leverage.

02:52

- All right. What is that? - No we get into your social media footprint.

02:56

Right. OK.

02:57

These are all terrible pictures that I took with silly hair and...

03:01

Lots and lots of selfies.

03:03

And places that you go that you yelp about.

03:06

Did I yelp?

03:08

So your physical location starts to reveal itself, documenting yourself

03:10

and capturing clues that you might not have intended.

03:12

All of this I've intended. Absolutely all of this I've intended.

03:16

You've got a grin on your face. That says we're about to dive into...

03:20

Yes. OK. So now we're getting...

03:23

How did you find all of my addresses?

03:27

Because you did a registration. Because you signed a document.

03:32

Your previous addresses, pieces of ownership.

03:35

- Yes. - And photographs from the inside.

03:37

Wow. Oh, my gosh.

03:39

- Because now that's on Airbnb. - A walk-through of your spaces.

03:43

Yes. My assets.

03:45

I'm gaining more and more personal information, including...

03:48

That's my business addresses, tax exemptions,

03:52

all of my company business.

03:54

Yes. Your worth. Your finances.

03:58

This goes into a larger question

04:00

of how companies are treating their technology and their policy

04:03

if they even have a policy.

04:05

In many cases I've seen it's an afterthought.

04:08

In start-up mode, many companies, they hire their developers

04:12

and then the information policy comes much, much later.

04:16

But doing it from the beginning, as you can see when you register that domain,

04:20

when you start creating these corporations, you're starting that footprint.

04:23

You need to control that from the beginning

04:26

And so what we're looking at here is a pile of things that have been indexed

04:30

Then, over time, as software gets more sophisticated, they'll get more searchable and obtainable.

04:35

We cast long digital shadows

04:37

imagine the footprint left by a business with hundreds of employees all with the company email address

04:43

all contributing to the online reputation.

04:45

And this is just data willingly put in the public domain.

04:48

But what happens when data that isn't for public consumption ends up in the wrong hands?

04:53

Information we assume is secure: like financial details,

04:57

credit card numbers, health records, business correspondence,

05:02

When a business falls victim to a sensitive data breach the consequences can be particularly devastating.

05:09

In order to get a better idea of this threat, I'm going to face it head on.

05:13

I'm going to get my Guardian computer hacked.

05:18

The first hacker struck at a live telegraph event in 1903.

05:22

John Fleming was not at all pleased that prankster and magician Nevil Maskelyne

05:26

chose to insert insulting Morse code into his fancy demo.

05:31

Modern-day hacking started with a phone line.

05:33

Freakers, as they were known, spent the 1970s making free international phone calls.

05:39

In 1981, however, the first freaker was convicted in the US for hacking,

05:44

but this hack helped to expose the holes in the phone system.

05:48

In 1988 the Morris worm hit an early version of the internet,

05:52

exposing vulnerabilities in this technology.

05:55

In 2000 the Love Letter worm infected 10% of the world's internet-connected computers,

06:01

causing almost $9 billion in damages worldwide.

06:05

It was a casually created joke by two friends in the Philippines.

06:10

In recent years the new breed of geeks are being hired by governments, financial systems and corporations

06:16

to both attack and defend.

06:19

In order to get a better idea of this threat, I'm travelling to Las Vegas.

06:23

Here, annually, for the past 20 years international hackers have been gathering

06:28

to show off their skills and to exchange techniques.

06:32

We already know what can be learned about me through a legal search,

06:35

but what can be uncovered with specialist skills?

06:39

With my Guardian computer I'm visiting two hackers, can they hack my laptop?

06:45

What is the security situation like in the Middle East, say, compared with Europe or the US?

06:50

I think the whole region is somewhere between 5 to 10 years behind,

06:55

as far as awareness of the importance of information security.

06:59

Mainly because the media doesn't really talk about it.

07:01

In the States, you turn on any TV channel

07:04

and there's a story about a big hack because these things happen and are publicised.

07:08

Yes, I've just got an email from my director.

07:11

He says there's a good article on the front-page of the Guardian.

07:15

So... Oh, Lord, there's nothing but bad news down here, is there?

07:19

- That's the world for you. - It is, isn't it?

07:25

Except there's a cool picture from NASA.

07:28

As you're browsing through the Guardian,

07:30

I just stole your credentials, so I have your email address... .com

07:34

and the password is...

07:37

- which is a nice Guns N' Roses song. - Thank you very much!

07:39

I'm actually compromising your whole machine. I could have downloaded files.

07:44

I could do a rickroll, which is redirecting your browser.

07:48

- Never Gonna Give You Up. - I just sent you to Rick Astley.

07:52

You did.

07:54

How did you crack my computer?

07:55

The website you're on is not actually the Guardian.

07:58

It looks like the Guardian.

07:59

No it is, but if you look at it carefully, which people don't really do, on the URL,

08:03

it actually says "theguardlian", so I added an "L" in there.

08:07

- Yes, I... - Yes, you did. It was added?

08:11

No, I actually registered the website, the guardlian.com.

08:14

- That's available? - It was. Not any more.

08:17

And so I cloned a live version of the actual Guardian website,

08:22

so you wouldn't know you're not there.

08:24

No, it looks exactly, I mean, it looks like the Guardian.

08:26

It's enough to take control of your whole computer

08:29

because you actually gave me access, just clicking on the link.

08:32

I clicked through to the link

08:35

from a person who sent me an email whom I trust.

08:38

Well, your Facebook, your LinkedIn is out there

08:42

and we can find out who you're associated with.

08:44

Then we can get their email out of their LinkedIn or Facebook.

08:47

It's a very easy fake.

08:49

Is it as easy to do this to company computers?

08:52

It's probably easier because out of 100 or 1,000 people,

08:55

you know, it's more than probable that at least some of them will click the link.

08:59

Every year, international hackers converge in Las Vegas

09:02

to attend a series of conferences - Def Con, BSides and Black Hat.

09:06

Over a few weeks they exchange the latest hacking and security tricks and techniques.

09:12

We're here in Vegas, kind of in the belly of the beast.

09:15

Are there any examples of this kind of exploitation happening in the wild?

09:22

Sure, in the old days, and by old days I mean five years ago,

09:25

we used to do a lot of USB-based attacks

09:28

where we would drop them around parking lots and that was really common.

09:32

So what I want you to do is plug that in.

09:36

For one, you don't ever want to stick anything into your computer

09:39

that you don't actually know what it is.

09:42

At this point I can do anything I want to your computer.

09:46

I can do a key logger. I can download and upload files.

09:51

You can see here that we're here in the C:/Users/Aleksdirectory.

09:55

We noticed you have some business files and some personal files.

09:59

- I do, yes. - We're going to go ahead and download those

10:02

to our computer.

10:05

I don't want you to have that.

10:08

Now we can do a lot of things.

10:10

I could take screen shots from your camera.

10:12

- Of me? - Of you.

10:13

We can record the sound.

10:15

And then we're able to download a file to your computer.

10:20

It's moving.

10:22

And set it to your desktop background.

10:25

That's a fantastic picture, guys.

10:29

- I've been hacked. - Correct.

10:32

What about for corporations? How are they vulnerable with this kind of thing?

10:35

We've done a number of penetration tests where we've gone to our local computer store.

10:40

We've bought 10 or 20 keyboards and slotted one of these devices in

10:43

in every single keyboard and packed them up in a box and just sent them to the company.

10:47

And what we've done is put a fake letter in there that says,

10:50

"Hey, we're from HP. We want you to check out our new keyboard.

10:54

"We're hoping if we give you these 20 free models

10:56

"you'll buy 10,000 of them down the road because they're so great.

11:00

"Please try these out."

11:02

Nobody resists free stuff.

11:03

If you make it expensive enough and nice enough, people will use it.

11:08

But humans are humans. Is there anything companies can do?

11:11

I would say basically it's awareness training.

11:13

You can have all the firewalls you want

11:15

and all the password policies.

11:17

If they're just going to get online and click on any link, then it renders all that moot.

11:22

Sometimes we have to sacrifice some convenience for safety.

11:26

If it's too good to be true, either in an email format

11:29

or something you found or something somebody sent you, it probably is.

11:35

Wow! It was quite unsettling to see how easy it was to get hacked.

11:39

But the consequences of getting hacked aren't always destructive.

11:42

Sometimes it ends up exposing corporate vulnerabilities or flaws

11:46

that a business can address and improve upon.

11:49

Certainly from this hack the Guardian will be more astute with its domain registration.

11:53

Thankfully none of my personal or the Guardian's business data was subsequently leaked online.

11:59

But what if it had been?

12:00

How can we start to take control?

12:03

And what can we do to get information we never wanted to be on the internet removed?

12:10

There are clearly examples where taking action to remove content from the internet

12:13

can have negative consequences.

12:16

So, there's an example where Barbara Streisland had some photos

12:19

of her beachfront property published online in a public archive.

12:22

She tried to sue the photographer to take the images down

12:25

and the result of that was a much larger public outcry.

12:28

And the image went effectively viral online as a result of the action she'd taken.

12:32

So the very first thing is just to be conscious that if you've put something on the internet

12:36

there's no guarantee that it stays secure and under your control.

12:41

I think companies need to have some sort of incident-handling plan

12:44

to know when something does occur, and it will,

12:47

how they are going to respond to that so it isn't a panic in the business at that time.

12:51

I guess what we see in many companies is that they've moved to adopt the new technologies

12:55

because they bring business benefit, but they've not thought through - necessarily - the risks.

12:59

How do you ensure that information doesn't make you vulnerable?

13:03

It really depends where the data is, so if it's linked through somewhere like Google, Twitter, Facebook,

13:10

there are removal procedures you can go through.

13:12

But if your data is on a Russian hacker site somewhere,

13:16

they're unlikely to respond to a take-down request.

13:18

The best you can do is try to mitigate the consequences.

13:22

So, for businesses and individuals, once the information is out,

13:26

it seems nearly impossible to take back control of it.

13:31

Since the earliest days of human communication, we quickly learn the importance of confidentiality.

13:38

It's been good business.

13:40

3,000 years ago in the Middle East potters used cryptography

13:43

to keep their glaze formula secret from competitors.

13:47

Particularly during conflict.

13:49

Protecting correspondence has always been of the utmost importance.

13:54

But it wasn't just military and business information we sought to protect.

13:58

In 400 BC the writers of the Kama Sutra recommended that lovers encrypt their messages

14:04

to keep them from prying eyes.

14:07

Now in the 21st century we're exchanging more business and personal information than ever before,

14:13

though we've relinquished control of this data to governments and corporations.

14:19

Often instead of safekeeping this material, we've found that they're exploiting it.

14:26

To learn about preventative techniques my next stop is Berlin where I'm meeting Stephanie Hankey.

14:32

Her organisation provides tips, tools and techniques to individuals, such as journalists and activists

14:37

whose lives depend upon retaining control of their digital privacy.

14:43

If you're interviewing people, it may be just as important for you as a journalist that somebody from the outside

14:48

can't see who you're talking to.

14:49

Let's say about a phone call that we might have, we might think it needs to be encrypted,

14:53

so people don't know what we're talking about.

14:55

And sometimes that's true but very often what's more important is that we're having a conversation,

14:59

but also we talked last week and that today we talked for an hour.

15:03

That's metadata.

15:05

What other forms of data might be collected about me?

15:08

You know, for expample, if you're walking around a city, in order for the phone to know where you are,

15:11

to look at a map, you have to have location data on.

15:14

If you look on your iPhone, in the System Services section...

15:17

Lo and behold, down, somewhere buried in the menu.

15:22

There's a frequent locations. Most people are quite surprised when they look at it

15:25

because it gives a kind of overview of something. For example, it even It guesses what your home is.

15:29

When you start to look at the patterns,

15:31

then you can start to see things like probably when you come into the house after work,

15:35

when you leave in the morning. Those kind of things.

15:37

You can't stop that but what you can do sometimes is switch location services off, for example.

15:41

So what are companies doing with this metadata?

15:43

These companies are not yet very transparent about what they're doing with the data.

15:46

Some of that is profiling and advertising and so on but some of it has gone much further.

15:51

For example, LinkedIn is also using their large-scale analysis of the data

15:55

to advise governments and that becomes very complicated

15:59

because people are not thinking they're contributing to that sample.

16:02

In the modern world, a huge amount of a information is collected about each of us

16:06

as we go about our daily lives.

16:08

Whether we disclose it willingly or unwittingly, this valuable data is now a commodity

16:13

that is traded amongst a handful of companies.

16:17

Trading data is hardly a new thing.

16:20

We've always benefitted from sharing information.

16:23

It's helped to advance civilisation.

16:25

The internet is the latest in a long line of technologies

16:28

that have ushered in great innovations and social change.

16:32

Trade routes introduced mathematics and astronomy from Arabia,

16:36

weapons and vaccinations from China

16:38

and spices and philosophies from the subcontinent.

16:41

The printing press blew apart traditional hierarchies,

16:44

letting the people interpret and proclaim, rather than those in power.

16:48

The telegraph brought the world infinitely closer together,

16:52

totally disrupting business, governance and the judicial system.

16:55

And every step of the way the powers that be tried to claw back control.

17:01

Today there are three-billion people communicating through the internet.

17:04

This latest network has given each of us the empowering ability

17:08

to collaborate, share and exchange information rapidly and efficiently.

17:15

What if there was a way to harness it for the collective good?

17:19

I'm headed to Japan where I'm going to volunteer to test radiation levels

17:23

using a community-built Geiger counter.

17:27

I'll use my data to help map the fallout of the Fukushima nuclear disaster.

17:34

After the disaster in March 2011, information about radiation hazards

17:38

that was being released by the government

17:40

was at best incomplete, often contradictory

17:44

and ultimately not really reliable.

17:47

So we felt it was one thing to say,

17:50

"My government tells me radiation level is X. I guess I'll believe it."

17:55

Or to go and measure it yourself.

17:57

I mean, if you measure it yourself, then you really can have confidence in that data.

18:00

So, SafeCast was really formed to allow citizens

18:03

themselves to gather the information they needed and to disseminate it in a very free way.

18:09

SafeCast Geiger kits are open-source.

18:11

Through building the devices themselves, people learn how the technology works

18:16

and as a consequence many have offered both hardware and software improvements.

18:20

This has helped to rapidly evolve the design.

18:24

People from all sorts of walks of life participate: anti-nuclear, pro-nuclear, teachers, housewives

18:30

anyone can build it and submit data.

18:33

How can organisations wisely protect the data that they're collecting?

18:37

I think the most important thing that we found the need to protect is privacy.

18:41

For instance, the privacy of volunteers. We allow them to participate anonymously.

18:46

In Fukushima Prefecture there was concern that people

18:50

would have radiation levels in their front yard publicised

18:55

and that this could somehow affect them negatively

18:57

and because of that, we decided to use a hardware hack

19:01

to allow them to put the data in a grid of 100 metres

19:05

that doesn't identify that data spot with a particular person's property.

19:10

How much of Japan has been mapped?

19:12

We argue that we have been able to provide a wider coverage

19:16

of radiation surveys than the government has

19:18

and this isbecause of the activities of very active volunteers.

19:22

Certainly, Fukushima has been repeatedly mapped for three years or more.

19:24

But there still are a few corners no volunteers have been to,

19:29

so today we can go to a park in Koto Ward,

19:32

called Kiyosumi Park, and we can check that out.

19:40

We're looking at 0.1 microsieverts per hour.

19:43

This is about normal. Pretty average for Tokyo.

19:46

How does that compare though with, say, somewhere like the epicentre of the accident?

19:51

This is a piece of a deck that one of our volunteers was building

19:55

when the disaster happened in the town of Koriyama,

19:57

which is one of the fairly radioactive places in Fukushima.

20:03

- Woo! Listen to that! - Yes.

20:05

You can hear it. It's like a scary noise.

20:07

It's already now 10 times what it was...

20:10

- This is a very radioactive sample. - That is significantly higher.

20:14

And this is the degree of fallout that was everywhere in that area.

20:17

Inside the highly radioactive places in Fukushima Daiichi reactor itself,

20:22

it's 1,000 times higher, or more.

20:25

We're getting to a point where technically, because of the hardware and software tools,

20:29

things that were previously only possible

20:32

if you were a government or a large research institution, now a highschool kid can do.

20:38

This is going to get better, quicker, easier and cheaper.

20:41

We are trying to show the potential of that.

20:44

This is an example of the agile development organisations can use

20:48

when they open up and engage their contributors.

20:51

By introducing privacy measures, SafeCast has built confidence in their project

20:55

and trust amongst their collaborators.

20:57

This is an increasingly important consideration, as by 2020 it's estimated that there will be 30-billion things

21:04

connected to the internet.

21:07

I'll explore the privacy and data implications

21:10

by spending 24 hours in a technology-laden smarthome.

21:18

Technology liberates us to pursue things we would rather be doing.

21:21

It always has done.

21:23

Back in Iran, agriculture technologies let us domesticate barley, wheat and lentils,

21:28

so we didn't have to constantly travel to put food in our stomachs.

21:31

We've spent our lives since then looking to reduce the heavy lifting.

21:35

The Industrial Revolution meant hand-production methods

21:38

were given over to machines.

21:40

People could move to the city where the new middle class could find other pursuits.

21:45

When automation hit the scene we also gave the heavy thinking to these machines

21:49

and they've become twice as smart every two years.

21:53

We've travelled to space and 20 years later we have the same smarts in our pockets.

21:58

We are now freer to want. Want cheaper and faster.

22:03

We allow machines to do more of our work for us.

22:05

70% of all trades made on the US stock market in 2011

22:08

were made by algorithms, not people.

22:13

We autofill, we store in the cloud, we find love with a swipe right.

22:17

Algorithms and artificial intelligences process this information for us.

22:24

However, today it seems we serve computers.

22:27

Most of us spend more time gazing into our four-inch screens

22:30

than into the eyes of our loved ones.

22:33

Smartphones are setting us an endless stream of to-dos and check lists.

22:38

In an attempte to alleviate this, companies are creating new connected products

22:42

to sense, learn and ultimately predict our every need.

22:45

Collectively, these products are known as IOT or the Internet Of Things.

22:55

You may have heard of domestic applications of IOT -

22:58

curtains that raise with you in the morning,

23:00

fridges that restock themselves, but what about the toilets that check your health

23:05

and notify you if you're pregnant?

23:08

IOT is expanding across industries, from manufacturing to gardening,

23:13

from energy to mobility.

23:15

It's estimated that presently 1% of everything that could be connected to the internet is.

23:22

Imagine a world where the other 99%

23:24

are also constantly sensing, storing and communicating data

23:30

about every aspect of our lives.

23:32

What kind of hardware systems does the smarthome use?

23:35

There are three kinds. First is the sensor to collect personal data.

23:41

Second the data of the internal network of the house

23:44

This is the tate of the network connectoin inside and outside of the house.

23:48

How do you see smart homes changing people's lives in the future?

23:52

We believe the keyword is health

23:54

Now the technology of sensor has developed so we can collect data of each individual.

24:01

We can research the causes of illness and accidents at home.

24:06

By utilising the data we can develop the technology for safety and health.

24:12

So in Japan a primary motivation for this technology

24:16

is to provide a safer and more efficient environment,

24:18

particularly for their ageing population.

24:21

But are there any drawbacks?

24:23

I just had the experience of being in a smarthome.

24:26

Are there any potential privacy implications that I should be worried about?

24:31

I think that there are already a number of privacy implications,

24:35

just because it's possible to use various sensors

24:39

to track your activities, to track your habits.

24:41

In some cases, I have heard of incidences where you have a smarthome

24:45

where there will be a camera built into a device

24:48

to allow for various metrics to be measured.

24:51

But unwittingly allowing hackers to, say, peer into your living room

24:54

and so everything is a two-sided coin where there are pros,

24:58

but if the security isn't addressed, they could easily be used for a con

25:02

and people fail to realise that.

25:06

Would you live in a smarthome or work in a smartoffice?

25:10

Me, personally, I would love to because then I can get my hands dirty on all the devices -

25:14

test them, find out issues.

25:16

- Hack them. - Yes!

25:19

But as a normal user, I would still be a little sceptical

25:23

of what kind of devices I deploy.

25:25

Because the vendors want to reach to the market quickly,

25:29

they're not giving as much attention to the security.

25:32

They just want to quickly build it up and ship it.

25:35

So that's where the major problem lies.

25:37

And then there are three major attacks that we are going to see.

25:41

One is the controlling app, the mobile, the client side.

25:44

One is the device itself.

25:46

And one is the cloud where the whole user data is going to be saved.

25:50

So we have to be very careful on what kind of data is being saved

25:53

and how it is being saved.

25:55

As soon as this gets mass adoption at the levels it will

25:59

and as soon as more data gets online,

26:02

how that's protected, how that could be erased,

26:05

how that could be forgotten -

26:06

these issues, at least from a Japan context, has not been debated.

26:10

Around the world they're being addressed,

26:12

but I think we're still in the infancy stage of what that really means.

26:15

What should businesses be aware of when they're implementing IOT strategies?

26:20

When you deal with IOT it's not an IT issue,

26:25

it is a management and risk issue, it involves the entire company.

26:29

With that said, it's very, very important

26:31

that you do cyber security at the design level,

26:34

like the automobile or the airplane.

26:38

If you think about it, these are designed security first

26:41

in a transparent, background manner, and that's where we need to get to.

26:48

There's little doubt that the Internet Of Things is the future

26:52

because we've sought out and embraced ways to make our lives easier.

26:56

But it's clear developers and consumers

26:58

need to think about privacy and not just as an afterthought.

27:03

It might be useful for navigation for my car to know my location,

27:06

but does it need access to my social media accounts?

27:11

Does the information that is collected by these devices

27:13

need to be stored forever?

27:16

If most of us strive to live in the moment,

27:18

then perhaps so too should our data.

27:21

With these devices entering our homes and offices,

27:24

building trust through ethical use of our personal and professional data

27:28

will become crucial for these technologies to truly succeed.

27:35

So as we adopt digital systems and products to make our lives easier

27:39

we each produce exponential amounts of data about ourselves and our businesses.

27:44

Some we willingly share but much of it we unwittingly contribute.

27:49

We are incresingly placing our trust in third parties

27:53

- does the data that's already out there need to be stored permanently?

27:58

Do we need regulation to ensure encryption and data decay?

28:02

How can we protect our legacy from being exposed and used against us?

28:08

The responsibility for our security starts with us.

28:11

It's the domain of personal and professional management.

28:15

Today we are at a crossroad: adopting these systems give us a huge advantage,

28:20

but we must take stock in how we manage and regulate them to protect us as individuals and as businesses.