Blog – Customer Commons

A New Way

April 27, 2021

Byway, customertech, Independence, Intentcasting, Intention Economy, Intentron

Some questions:

Why do you always have to accept websites’ terms? And why do you have no record of your own of what you accepted, or when‚ or anything?
Why do you have no way to proffer your own terms, to which websites can agree?
Why did Do Not Track, which was never more than a polite request not to be tracked off a website, get no respect from 99.x% of the world’s websites? And how the hell did Do Not Track turn into the Tracking Preference Expression at the W2C, where the standard never did get fully baked?
Why, after Do Not Track failed, did hundreds of millions—or perhaps billions—of people start blocking ads, tracking or both, on the Web, amounting to the biggest boycott in world history?
Why are the choices presented to you by websites called your choices, when all those choices are provided by them? And why don’t you give them choices?
Why does the GDPR call people mere “data subjects,” and assign the roles “data controller” and “data processor” only to other parties?* And why are nearly all the 200+million results in a search for GDPR+compliance about how companies can obey the letter of the law while violating its spirit (by continuing to track people)?
Why does the CCPA give you the right to ask to have back personal data others have gathered about you on the Web, rather than forbid its collection in the first place? (Imagine a law that assumes that all farmers’ horses are gone from their barns, but gives those farmers a right to demand horses back from those who took them. It’s kinda like that.)
Why, 22 years after The Cluetrain Manifesto said, we are not seats or eyeballs or end users or consumers. we are human beings and our reach exceeds your grasp. deal with it. —is that statement still not true?
Why, 9 years after Harvard Business Review Press published The Intention Economy: When Customers Take Charge, has that not happened? (Really, what are you in charge of in the marketplace that isn’t inside companies’ silos and platforms?)

The answer to all of those is the cookie.

The idea behind the cookie (way back in 1994, when Lou Montulli thought it up) was for a site to remember its visitors by planting reminder files—cookies—in visitors’ browsers. That would make it easy for site visitors to pick up where they left off when they arrived back. It was an innocent idea at the time; but it reified a construct: one that has permanently subordinated visitors to websites.

And it has thus far proven impossible to change that construct. It is, alas, the way the Web works.

Hey, maybe we can still change it. But why bother when there should be any number of other ways for demand and supply to signal each other in a networked marketplace? Better ways: ones that don’t depend on sites, search engines, social media and other parties inferring, mostly through surveillance, what might be “relevant” or “interest-based” for the individual? Ones that give individuals full agency and signaling power?

So we’d like to introduce one. It’s called the Intention Byway. It’s the brain-baby of our CTO, Hadrian Zbarcea, and it is informed by his ample experience with the Apache Software Foundation, SWIFT, the FAA and other enterprises large and small.

In this model, the byway is the path along which messages signaling intent travel between individuals and companies (or anyone), each of which has a simple computer called an intentron, which sends and receives those messages, and also executes code for the owner’s purposes as a participant in the open marketplace the Internet was designed to support.

As computers (which can be physical or virtual), intentrons run apps that can come from any source in the free and open marketplace, and not just from app stores of controlling giants such as Apple and Google. These apps can run algorithms that belong to you, and can make useful sense of your own data. (For example, data about finances, health, fitness, property, purchase history, subscriptions, contacts, calendar entries—all those things that are currently silo’d or ignored by silo builders that want to trap you inside their proprietary systems.) The same apps also don’t need to be large. Early prototypes have less than 100 lines of code.

Messages called intentcasts can be sent from intentrons to markets on the pub-sub model, through the byway, which is asynchronous, similar to email in the online world and package or mail forwarding in the offline world. Subscribers on the sell side will be listening for signals from markets for anything. Name a topic, and there’s something to subscribe to. Intentcasts on the customers’ side are addressed to markets by topical name. Responsibilities along the way are handled by messaging and addressing authorities. Addresses themselves are URNs, or Uniform Resource Names.

These are some businesses that can thrive along the Intention Byway:

Intentron makers
Intentron sellers
App makers
App sellers (or stores)
Addressing authorities
Messaging authorities
Message routers (operating like CDNs, or content distribution networks)

—in addition to sellers looking for better signals from the demand side of the market than surveillance-based guesswork can begin to equal.

We are not looking to boil an ocean here (though we do see our strategy as a blue one). The markets first energized by the promise of this model are local and vertical. Real estate in Boston and farm-to-table in Michigan are the two we featured on VRM/CuCo Day and in all three days of the Internet Identity Workshop, which all took place last week. Over the coming days and weeks, we will post details on how the Intention Byway works, starting with those two markets.

We also see the Intention Byway as complementary to, rather than competitive with, developments with similar ambitions, such as SSI, DIDcomm, picos, and JLINC. Once we take off our browser blinders, a gigantic space for new e-commerce development appears. All of those, and many more, will have work to do in it.

So stay tuned for more about life after cookies—and outside the same old bakery.

*Specifically, a “data controller” is “a legal or natural person, an agency, a public authority, or any other body who, alone or when joined with others, determines the purposes of any personal data and the means of processing it.”

While this seems to say that any one of us can be a data controller, that was not what the authors of the GDPR had in mind. They only wanted to maximize the width of the category to include solo operators, rather than to include the individual from whom personal data is collected. (Read what follows from that last link to see what I mean.) Still, this is a loophole through which personal agency can move, because (says the GDPR) the “data subject” whose rights the GDPR protects, is a “natural person.”

What’s a Good Customer?

March 31, 2021

Doc Searls

customertech, Developments, Independence, infrastructure, Intentcasting, Internet of Things, Marketing, messaging, VRM

For awhile the subhead for our site was,

How good customers work with good companies

It’s still a timely thing to say, since searches on Google for “good customer” are at an all-time high:

The year 2004 was when Google began keeping track of search trends. It was also the year “good customer” hit at an all-time high in percentage of appearances in books Google scanned*:

So, What exactly is a “good customer?”

The answer depends on the size of the business, and how well people or systems in the business know a customer. For a small business, a good customer is a person known by face and name to people who work there, and who has earned a welcome. For a big business, it’s a customer known to spend more than other customers.

In all the cases we’re talking about here, the perspective is the company’s, not the customer’s. If you do a Bing or a Google search for “good customer,” most of the results will be for good customer + service. If you put quotes around “good customer” on either search engine and also The Markup’s Simple Search (which brings to the top “traditional” results not influenced by those engines’ promotional imperatives), your top result will be Paul Jun’s How to be a good customer post on Help Scout. That one offers “tips on how to be a customer that companies love.” Likewise with Are You a Good Customer? Or Not.: Are you Tippin’ or Trippin’? by Janet Vaughan, one of the top results in a search for “good customer” at Amazon. That one is as much a complaint about bad customers as it is advice for customers who aspire to be good. Again, the perspective is a corporate one: either “be nice” or “here’s how to be nice.”

But what if customers can be good in ways that don’t involve paying a lot, showing up frequently and being nice?

For example, what if customers were good sources of intelligence about how companies and their products work—outside current systems meant to minimize exposure to customer input and to restrict that input to the smallest number of variables? (The worst of which is the typical survey that wants to know only how the customer was treated by the agent, rather than by the system behind the agent.)

Consider the fact that a customer’s experience with a product or service is far more rich, persistent and informative than the company’s experience selling those things, or learning about their use only through customer service calls (or even through pre-installed surveillance systems such as those which for years now have been coming in new cars).

The curb weight of customer intelligence (knowledge, knowhow, experience) with a company’s products and services far outweighs whatever the company can know or guess at. What if that intelligence were to be made available by the customer, independently, and in standard ways that worked at scale across many or all of the companies the customer deals with?

At ProjectVRM (of Harvard’s Berkman Klein Center, and out of which Customer Commons was spun), this has been a consideration from the start. Turning the customer journey into a virtuous cycle explores how much more the customer knows on the “own” side of what marketers call the “customer life journey”†:

Given who much more time a customer spends owning something than buying it, the right side of that graphic is actually huge.

I wrote that piece in July 2013, alongside another that asked, Which CRM companies are ready to dance with VRM? In the comments below, Ray Wang, the Founder, Chairman and Principal Analyst at Constellation Research, provided a simple answer: “They aren’t ready. They live in a world of transactions.”

Yet signals between computing systems are also transactional. The surveillance system in your new car is already transacting intelligence about your driving with the company that made the car, plus its third parties (e.g. insurance companies). Now, what if you could, when you wish, share notes or questions about your experience as a driver? For example—

How there is a risk that something pointed and set in the trunk can easily puncture the rear bass speaker screwed into the trunk’s roof and is otherwise unprotected
How some of the dashboard readouts could be improved
How coins or pens dropped next to the console between the front seats risk disappearing to who-knows-where
How you really like the way your headlights angle to look toward bends in the road

We also visited what could be done in How a real customer relationship ought to work in 2014 and in Market intelligence that flows both ways in 2016. In that one we use the example of my experience with a pair of Lamo moccasins that gradually lost their soles, but not their souls (I still have and love them):

By giving these things a pico (a digital twin of itself, or what we might call internet-of-thing-ness without onboard smarts), it is not hard to conceive a conduit through which reports of experience might flow from customer to company, while words of advice, reassurance or whatever might flow back in the other direction:

That’s transactional, but it also makes for a far better relationship that what today’s CRM systems alone can imagine.

It also enlarges what “good customer” means. It’s just one way how, as it says at the top, good customers can work with good companies.

Something we’ve noticed in Pandemic Time is that both customers and companies are looking for better ways to get along, and throwing out old norms right and left. (Such as, on the corporate side, needing to work in an office when the work can also be done at home.)

We’ll be vetting some of those ways at VRM/CuCo Day, Monday 19 April. That’s the day before the Internet Identity Workshop, where many of us will be talking and working on bringing ideas like these to market. The first is free, and the second is cheap considering it’s three days long and the most leveraged conference of any kind I have ever known. See you there.

*Google continued scanning books after that time, but the methods differed, and some results are often odd. (For example, if your search goes to 2019, the last year they cover, the results start dropping in 2009, hit zero in 2012 and stay at zero after that—which is clearly wrong as well as odd.)

†This graphic, and the whole concept, are inventions of Estaban Kolsky, one of the world’s great marketing minds. By the way, Estaban introduced the concept here in 2010, calling it “the experience continuum.” The graphic above comes from a since-vanished page at Oracle.

Toward E-commerce 2.0

March 27, 2021

Doc Searls

customertech, Independence, Privacy, Publishing, Terms & Conditions, VRM

Phil Windley explains e-commerce 1.0 in a single slide that says this:

One reason this happened is that client-server, aka calf-cow (illustrated in Thinking outside the browser) has been the default format for all relationships on the Web, and cookies were required to maintain those relationships. Which really aren’t. Here’s why:

The calves in these relationship have no easy way even to find (much less to understand or create) the cookies in their browsers’ jars.
The calves have no real identity of their own, but instead have as many different identities as there are websites that know (via cookies) their visiting browsers. This gives them no independence, much less a place to stand like Archimedes, with a lever on the world. The browser may be a great tool, but it’s neither that place to stand, nor a sufficient lever.
All the “agreements” the calves have with the websites’ cows, whose terms the calves have “accepted” with one click, or adjusted with some number of additional clicks, leave no readable record on the calves’ side. This severely limits their capacity to argue or dispute, which are requirements for a true relationship.
There exists no independent way individuals can signal their intentions—such as interests in purchase, conditions for engagement, or the need to be left alone (which is how Brandeis and Warren define privacy). As a calf, the browser can’t do that.

In other words, the best we can do in e-commerce 1.0 is what the calf-cow system allows. And that’s to depend utterly on the operators of websites—and especially of giant retailers (led by Amazon) and intermediaries (primarily Google and Facebook).

Nearly all of signaling between demand and supply remains trapped inside these silos and walled gardens. We search inside their systems, we are notified of product and service availability inside their systems, we make agreements inside their systems (to terms and conditions they provide and require), or privacy is dependent on their systems, and product and service delivery is handled either inside their systems or through allied and dependent systems.

Credit where due: an enormous amount of good has come out of these systems. But a far larger amount of good is MLOTT—money left on the table—because there is a boundless sum and variety of demand and supply that still cannot easily signal their interest, intentions of presence to each other in the digital world.

Putting that money on the table is the job of e-commerce 2.0.

So here is a challenge: tell us how we can do that without using browsers.

Some of us here do have ideas. But we’d like to hear from you first.

Cross-posted at the ProjectVRM blog, here.

Thinking Outside the Browser

March 27, 2021

Doc Searls

customertech, Independence, Intentcasting, Markets, Terms & Conditions, VRM

Even if you’re on a phone, chances are you’re reading this in a browser.

Chances are also that most of what you do online is through a browser.

Hell, many—maybe even most—of the apps you use on your phone use the Webkit browser engine. Meaning they’re browsers too.

And, of course, I’m writing this in a browser.

Two problems with this:

Browsers are clients, which are by design subordinate to servers.
There is a lot that can’t be done with a browser.

So let’s start with subordination.

While the Internet at its base is a word-wide collection of peers, the Web that runs on it is a collection of servers to which we are mere clients. That’s because the Web was was built on an old mainframe model of computing called client-server. This is actually more of a calf-cow arrangement than a peer-to-peer one:

So, while we “go to” or “visit” a website, we actually don’t go anywhere. Instead we request a file. Even when you’re watching or listening to a stream, what’s actually happening is a file unfurling itself into your browser.

What you expect when you go to a website is typically the file called a page. You also expect that page will bring a payload of other files providing graphics, video clips or whatever. You might also expect the site to remember that you’ve been there before, or that you’re a subscriber to the site’s services.

You may also understand that the site remembers you because your browser carries a “cookie” the site put there, to helps the site remember what’s called “state,” so the browser and the site can renew their acquaintance. This is what Lou Montulli meant the cookie to do when he invented it in 1994. Lou thought it up because the client-server design puts most agency on the server side, and in the dial-up world of the time, that made the most sense.

Alas, even though we now live in a world where there can be boundless intelligence on the individual’s side, and there is far more capacious communication bandwidth between network nodes, damn near everyone continues to presume a near-absolute power asymmetry between clients and servers, calves and cows, people and sites. It’s also why today when you go to a site and it asks you to accept its use of cookies, something unknown to you (presumably—you can’t tell) remembers that “agreement” and its settings, and you don’t—even though there is no reason why you shouldn’t or couldn’t. It doesn’t even occur to the inventors and maintainers of cookie acceptance systems that a mere “user” should have any way to record, revisit or audit the “agreement.” All they want is what the law now requires of them: your “consent.”

This near-absolute power asymmetry between the Web’s calves and cows is also why you typically get a vast payload of spyware when your browser simply asks to see whatever it is you actually want from the website. To see how big that payload can be, I highly recommend a tool called PageXray, from Fou Analytics, run by Dr. Augustine Fou (aka @acfou). For a test run, try PageXray on the Daily Mail’s U.S. home page, and you’ll see that you’re also getting this huge payload of stuff you didn’t ask for:

Adserver Requests: 756
Tracking Requests: 492
Other Requests: 184

The visualization looks like this:

This is how, as Richard Whitt perfectly puts it, “the browser is actually browsing us.”

All those requests, most of which are for personal data of some kind, come in the form of cookies and similar files. The visual above shows how information about you fans out to a near countless number of third parties and dependents on those. And, while these cookies are stored by your browser, they are meant to be readable only by the server or one or more of its third parties.

This is the icky heart of the e-commerce “ecosystem” today.

By the way, and to be fair, two of the browsers in the graphic above—Epic and Tor—by default disclose as little as possible about you and your equipment to the sites you visit. Others have privacy features and settings. But getting past the whole calf-cow system is the real problem we need to solve.

Now let’s look at what can’t be done with a browser. If you think the answer is nothing, you’re stuck inside the browser box. If you think the answer is something, tell us what it is.

We have some ideas. But first we’d like to hear from you.

Cross-posted at the ProjectVRM blog, here.

Just in case you feel safe with Twitter

January 26, 2021

Doc Searls

Advertising, Companies, Independence, Marketing, Privacy, Publishing, Terms, Tools, VRM

twitter bird with crosshairs

Just got a press release by email from David Rosen (@firstpersonpol) of the Public Citizen press office. The headline says “Historic Grindr Fine Shows Need for FTC Enforcement Action.” The same release is also a post in the news section of the Public Citizen website. This is it:

WASHINGTON, D.C. – The Norwegian Data Protection Agency today fined Grindr $11.7 million following a Jan. 2020 report that the dating app systematically violates users’ privacy. Public Citizen asked the Federal Trade Commission (FTC) and state attorneys general to investigate Grindr and other popular dating apps, but the agency has yet to take action. Burcu Kilic, digital rights program director for Public Citizen, released the following statement:

“Fining Grindr for systematic privacy violations is a historic decision under Europe’s GDPR (General Data Protection Regulation), and a strong signal to the AdTech ecosystem that business-as-usual is over. The question now is when the FTC will take similar action and bring U.S. regulatory enforcement in line with those in the rest of the world.

“Every day, millions of Americans share their most intimate personal details on apps like Grindr, upload personal photos, and reveal their sexual and religious identities. But these apps and online services spy on people, collect vast amounts of personal data and share it with third parties without people’s knowledge. We need to regulate them now, before it’s too late.”

The first link goes to Grindr is fined $11.7 million under European privacy law, by Natasha Singer (@NatashaNYT) and Aaron Krolik. (This @AaronKrolik? If so, hi. If not, sorry. This is a blog. I can edit it.) The second link goes to a Public Citizen post titled Popular Dating, Health Apps Violate Privacy.

In the emailed press release, the text is the same, but the links are not. The first is this:

https://default.salsalabs.org/T72ca980d-0c9b-45da-88fb-d8c1cf8716ac/25218e76-a235-4500-bc2b-d0f337c722d4

The second is this:

https://default.salsalabs.org/Tc66c3800-58c1-4083-bdd1-8e730c1c4221/25218e76-a235-4500-bc2b-d0f337c722d4

Why are they not simple and direct URLs? And who is salsalabs.org?

You won’t find anything at that link, or by running a whois on it. But I do see there is a salsalabs.com, which has “SmartEngagement Technology” that “combines CRM and nonprofit engagement software with embedded best practices, machine learning, and world-class education and support.” since Public Citizen is a nonprofit, I suppose it’s getting some “smart engagement” of some kind with these links. PrivacyBadger tells me Salsalabs.com has 14 potential trackers, including static.ads.twitter.com.

My point here is that we, as clickers on those links, have at best a suspicion about what’s going on: perhaps that the link is being used to tell Public Citizen that we’ve clicked on the link… and likely also to help target us with messages of some sort. But we really don’t know.

And, speaking of not knowing, Natasha and Aaron’s New York Times story begins with this:

The Norwegian Data Protection Authority said on Monday that it would fine Grindr, the world’s most popular gay dating app, 100 million Norwegian kroner, or about $11.7 million, for illegally disclosing private details about its users to advertising companies.

The agency said the app had transmitted users’ precise locations, user-tracking codes and the app’s name to at least five advertising companies, essentially tagging individuals as L.G.B.T.Q. without obtaining their explicit consent, in violation of European data protection law. Grindr shared users’ private details with, among other companies, MoPub, Twitter’s mobile advertising platform, which may in turn share data with more than 100 partners, according to the agency’s ruling.

Before this, I had never heard of MoPub. In fact, I had always assumed that Twitter’s privacy policy either limited or forbid the company from leaking out personal information to advertisers or other entities. Here’s how its Private Information Policy Overview begins:

You may not publish or post other people’s private information without their express authorization and permission. We also prohibit threatening to expose private information or incentivizing others to do so.

Sharing someone’s private information online without their permission, sometimes called doxxing, is a breach of their privacy and of the Twitter Rules. Sharing private information can pose serious safety and security risks for those affected and can lead to physical, emotional, and financial hardship.

On the MoPub site, however, it says this:

MoPub, a Twitter company, provides monetization solutions for mobile app publishers and developers around the globe.

Our flexible network mediation solution, leading mobile programmatic exchange, and years of expertise in mobile app advertising mean publishers trust us to help them maximize their ad revenue and control their user experience.

The Norwegian DPA apparently finds a conflict between the former and the latter—or at least in the way the latter was used by Grinder (since they didn’t fine Twitter).

To be fair, Grindr and Twitter may not agree with the Norwegian DPA. Regardless of their opinion, however, by this point in history we should have no faith that any company will protect our privacy online. Violating personal privacy is just too easy to do, to rationalize, and to make money at.

To start truly facing this problem, we need start with a simple fact: If your privacy is in the hands of others alone, you don’t have any. Getting promises from others not to stare at your naked self isn’t the same as clothing. Getting promises not to walk into your house or look in your windows is not the same as having locks and curtains.

In the absence of personal clothing and shelter online, or working ways to signal intentions about one’s privacy, the hands of others alone is all we’ve got. And it doesn’t work. Nor do privacy laws, especially when enforcement is still so rare and scattered.

Really, to potential violators like Grindr and Twitter/MoPub, enforcement actions like this one by the Norwegian DPA are at most a little discouraging. The effect on our experience of exposure is still nil. We are exposed everywhere, all the time, and we know it. At best we just hope nothing bad happens.

The only way to fix this problem is with the digital equivalent of clothing, locks, curtains, ways to signal what’s okay and what’s not—and to get firm agreements from others about how our privacy will be respected.

At Customer Commons, we’re starting with signaling, specifically with first party terms that you and I can proffer and sites and services can accept.

The first is called P2B1, aka #NoStalking. It says “Just give me ads not based on tracking me.” It’s a term any browser (or other tool) can proffer and any site or service can accept—and any privacy-respecting website or service should welcome.

Making this kind of agreement work is also being addressed by IEEE7012, a working group on machine-readable personal privacy terms.

Now we’re looking for sites and services willing to accept those terms. How about it, Twitter, New York Times, Grindr and Public Citizen? Or anybody.

DM us at @CustomerCommons and we’ll get going on it.

Solving Subscriptions

December 28, 2020

Doc Searls

customertech, Developments, Solutions, Subscriptions, Tools, VRM

Count the number of companies you pay regularly for anything. Add up what you pay for all of them. Then think about the time you spend trying and failing to “manage” any of it—especially when most or all of the management tools are separately held by every outfit’s subscription system, all for their convenience rather than yours. And then think about how in most cases you also need to swim upstream against a tide of promotional BS and manipulation.

There is an industry on the corporate side of this, and won’t fix itself. That would be like asking AOL, Compuserve and Prodigy to fix the online service business in 1994. (For those not familiar with the reference, those companies were incompatible competing commercial forerunners of the Internet, which obsolesced all of them.)

There’s also not much help coming from the subscription management services we have on our side: Truebill, Bobby, Money Dashboard, Mint, Subscript Me, BillTracker Pro, Trim, Subby, Card Due, Sift, SubMan, and Subscript Me. Nor from the subscription management systems offered by Paypal, Amazon, Apple or Google (e.g. with Google Sheets and Google Doc templates). All of them are too narrow, too closed and exclusive, too exposed to the surveillance imperatives of corporate giants, and too vested in the status quo.

That status quo sucks (see here, or just look up subscription hell), and it’s way past time to unscrew it.) But how?

The better question is where?

The answer to that is on our side: the customer’s side.

That’s because subscriptions are in a class of problems that can only be solved from the customers’ side. They can’t be solved from the companies’ side because they’ll all do it differently. Also, most of them will want to hold you captive. Like Compuserve, AOL and Prodigy did with online services before the Internet solved the problem by obsolescing them.

We need to do the same here. Fortunately, by making subscribing (and changing subscriptions, and canceling them) as easy and normalized as possible, companies living on subscriptions will do a better job of making their goods competitive.

Now to how.

The short answer is with open standards, code and protocols. The longer answer is to start with a punch list of requirements, based on what we, as customers, need most. So, we should—

Be able to see all our subscriptions, what they cost, and when they start and end
Be able to cancel or renew, manually or automatically, in the simplest possible ways
Get the best possible prices
Be able to keep records of subscriptions and histories
Show our actual (rather than coerced) loyalty
Be able to provide constructive help, as loyal and experienced customers
Join in collectives—commons—of other customers to start normalizing the way subscriptions should be offered on the corporate side and managed on the personal side

Some tech already exists for at least some of this, but we’ll leave that topic for another post. Meanwhile, give us suggestions in the comments below. Thanks!

The modified image above is a Doctor Who TARDIS console, photographed by Chris Sampson, offered under a Creative Commons Attribution-NonCommercial-ShareAlike 2.0 Generic (CC BY-NC-SA 2.0) license, published here, and obtained via Wikimedia Commons, here. We thank Chris for making it available.

We need a Theia

November 28, 2020

Doc Searls

Advertising, customertech, Independence

Theia

Some prophesies come true.

For example, Shoshana Zuboff’s third law: In the absence of countervailing restrictions and sanctions, every digital application that can be used for surveillance and control will be used for surveillance and control, irrespective of its originating intention.

She forecast that in 1989, with In the Age of the Smart Machine. Then she reported on its effects in 2018, with The Age of Surveillance Capitalism.

The business model of surveillance capitalism is tracking-based advertising, which the trade calls adtech. It works by spying on individuals using social media, and by placing tracking beacons in people’s browsers and apps. In social media, the idea is to drive up “engagement.” In browsers and apps, the idea is to use surveilled personal information to aim ads.

As a direct result of adtech, bulwarks of civilization, such as democracy and journalism, are being weakened or destroyed by algorithmically-driven tribalization and and other engaging but icky human tendencies. Also, by funding the spread of false (but engaging!) information during a pandemic, adtech has contributed to the deaths of countless people.

All just so we can be advertised at. Personally.

Facebook and Google are easy to blame, but in fact the whole adtech fecosystem is a four-dimensional shell game with thousands of players. It’s also so thick with complex data markets and data movements that there is also no limit to the number and variety of vectors for fraud, malware and spying by spooks, criminals, political operatives and other bad actors. It’s a dark world where anyone can create or steal mindshare, hack beliefs and opinions, sow doubt, spread hate, turn friends and families against each other, drive otherwise calm people into mobs and violence—all while journalism and democracy fail to restrict or sanction the cause. Take away adtech and most of that shit doesn’t happen.

So, what to do?

Allowing people to opt out of tracking on a site-by-site, service-by-service and app-by-app basis—the “system” we have now—only makes things worse.

Opt-in might seem like a better approach, except it can’t work: not when it looks and works differently for every person for every site, service and app—and when we each still have to agree, in every case, to unfriendly 10,000-word terms and privacy policies obviously designed to screw us and protect them.

And yes, it might be nice to try out a system by which a person might request tracking. But that will only work if sites, services and apps agree to that person’s own terms and privacy policies, and both sides have their own system for keeping records of agreements and means for auditing compliance. But why start there when in the meanwhile civilization is being trashed by adtech?

Defenders of adtech say it funds the “free Web,” free search and other graces of life on the Internet. But that’s like saying billboards give us gravity and shopping malls give us sunlight. Also, most of the money Google makes is from search advertising, nearly all of which is driven by context (the search terms themselves) rather than by surveillance-based assumptions about the person doing the search. If you search for mattress sellers in your town, your search terms are far more useful than whatever else it is that Google’s robots might know about you by having followed your ass all over the place.

Fact is, every business on the Internet can live just fine without adtech, except perhaps for adtech. Including every publisher out there.

It’s still early, folks. If digital technology is going to be with us for unforeseeable decades, centuries or millennia, that means our Digital Age is roughly about as far along as Earth was when it got clobbered by another planet called Theia, 4.5 billion years ago.

Humans weren’t here to watch, but it now seems likely (at least to science) that we owe to Theia our water, our days and nights, our seasons, and our Moon. Could be we have none of those yet here on Digital Earth.

Perspective: 4.5 billion years may seem like a long time, especially when you consider that it’s more than a third the age of the Universe, which came into existence about 13.8 billion years ago; but neither span seems very long when you also consider that the Universe will last another trillion years or more. Meaning the Universe is just a startup.

So: what’s our Theia?

To answer that, it will help to look at what has failed so far.

Let’s start with Do Not Track. Conceived in 2007 by Sid Stamm, Chris Saghoian and Dan Kaminsky, Do Not Track was just a polite request not to be tracked away from a visited website. Here in the physical world, we send a similar request when we wear clothing to conceal the private parts of our bodies, when we draw curtains across the windows in our homes, or when we walk out of a building in faith that nobody will follow us.

But, in the absence of manners and norms for respecting privacy in the dawning years of the Internet, it was easy for the Interactive Advertising Bureau (IAB), adtech’s trade association, to rally the whole online advertising business, including its dependents in online publishing, into ignoring Do Not Track. Even the major browser makers were cowed into compliance, in effect working for sites and services rather than for you and me. (At the W3C, the Web’s standards body. Do Not Track was even re-branded Tracking Preference Expression.)

After that happened in 2013, people took matters into their own hands, turning ad blocking into the biggest boycott in human history by 2015.

But even that wasn’t enough, because the adtech industry fought ad blockers too—and still do. (They also never got the signal that people who block ads might be worth more as customers than those who don’t.)

Then came the GDPR in Europe and the CCPA in California, which arrived in 2018 and 2020, respectively. Alas, both have thus far proven better at adding friction to the browsing experience (with those annoying opt-out roadblocks on the front pages of most websites, and which all of us know damn well are almost all about screwing us) than at stopping tracking itself.

To see how bad tracking still is, in massive spite of the GDPR and the CCPA, check out Blacklight (by The Markup) and PageXray (by Fou Analytics). Surveillance Capitalism remains the norm.

Finally, there are the privacy browsers: Brave, Epic and Tor. While these each provide privacy protection (as do, in different ways, Safari, Firefox and tweaks on Chrome), none are a Theia. Not yet, anyway. Because adtech is still here

What will make our digital world economy inhabitable by real human customers, and mere “users,” “data subjects,” “consumers” other labels given them by marketing, the tech industry and regulators who can’t imagine a customer operating at full agency., much less an Intention Economy that grows around that agency, much as life grew around a planet with days, nights, seasons and water.

Whatever form our Theia takes, it needs to support solutions to market problems that only customers can provide. Is it one or more of the solutions listed at that link? Or is it something completely new?

One thing is clear, however—at least to me. It has to blow up adtech.

Image Credit: NASA/JPL-Caltech

Putting the R back in CRM

August 12, 2020

Iain Henderson

C2B, customertech, Developments, Intention Economy, Me2B

Bob Stutz at SAP

Every customer is familiar with Customer Relationship Management (aka CRM). They meet it when they get personal offers, when they call customer service, or any time they deal with companies that seem to know who they are.

Doing this is a huge business, passing $40 billion worldwide in 2018, and expected to be twice that in 2015. All of CRM is also B2B: business to business. Salesforce, SAP, Microsoft Dynamics, Oracle, Adobe and IBM don’t sell their CRM services to you and me (that would be B2C—business to customer). They sell it to the companies that want to relate to you on other than a cash-only basis.

CRM is also becoming more visible. The Salesforce Tower in San Francisco now dominates the city’s skyline, while the company itself was just added to the Dow Jones index, while other blue chip companies, such as Exxon, were dropped.

And the category is shaking up from the inside. Especially notable is Bob Stutz‘ move from Salesforce to SAP. He’s now Head of Customer Experience (aka CX) there.

It is in his new capacity that Bob argues, in an excellent interview, for restoring the full value of CRM’s middle name: Relationship.

The interview is significant, because Bob is, in many ways, the founder of the CRM software category, having started as product owner at Siebel then working at various times in similar roles at Oracle, SAP, HP, Microsoft, Salesforce.

He’s now back at SAP, and in reflective mood as to how CRM software has evolved, and what needs to be done next. It’s fair to say that he is not overly impressed with the current state; and seems to be in a mood to fix that. Given SAP’s German roots and that EU is getting behind more ‘human-centric’ approaches to personal data, it may well be that he is able to take CRM in a new and fruitful direction.

Here are a few thoughts that occur would be worth considering for moving CRM forward in a significant way. I am speaking here from the customer side, albeit from also having spent many years running customer management in large organisations (so have insight into what works/ does not work in and around CRM at present). Here goes:

1) We would clearly separate B2C CRM capabilities from B2B CRM capabilities; the latter needs a sales force/ team and lots of bells and whistles, while the former does not and needs a different set of bells and whistles. The current model applies B2B principles to B2C markets and that really just does not work.

2) To fix B2C CRM (our main interest in Customer Commons), we would remove the Sales/ Sales force Automation piece from the newly formed B2C CRM. Then we’d move the marketing part of CRM over to the side of the customer; we’d do so by re-inventing the concept of the preference centre: make that meaningful so a customer or potential customers can genuinely get what they want to get, and not get what they don’t want to get.

3) So in B2C, one is left with customer controlled data (including demand or buying intention data), permissions and preferences. Then the whole customer service piece would see co-managed data between individuals and their suppliers using common processes and tools. So both parties have tools to manage their products and services data. More on that below.

The over-riding raison d’être we’d place on forcing the above change through (if we were in a position to do so) would be that ‘CRM needs to re-think the R part’. That is to say, the bit that has gone so badly wrong is in how RELATIONSHIP is handled. It is definitely not the case that individuals do not wish to have relationships with SOME of their suppliers and have one anyway with SOME of their products and services; so let’s that a meaningful rather than the current abusive relationship.

That requires tools on the side of the customer. We call these Vendor Relationship Management (aka VRM) tools. (Explained here.) Many of these already exist (here’s a long list), with category names such as intentcasting and Personal Information Management Systems (PIMS) — though all are still nee and do not yet popular at scale.

In this model, both parties come to the market’s table with relationship management tools: B2C becomes CRM+VRM. And both have reasons to co-manage the relevant data between them.

The screenshot below shows tools on the individual side for managing their ‘stuff’ (i.e. products and services); they do so in the same way for all products and services, and can make that data accessible to their suppliers who may wish to act on it, augment it, and ultimately co-manage it.

The same principles apply to individuals making their buying intention data available to the market in standard ways (example below). Both of the above, with appropriate, pro-active permission, can be used to drive digital advertising, marketing and customer service related communications.

So what the customer is asking for from the CRM service providers, is ways to plug in their own standardised, ultra-modern customer-side capabilities that enable both parties to engage in mutually beneficial activities. That model begins to feel more like a working relationship……

What only customers can do

June 14, 2020

Doc Searls

customertech, Intention Economy, VRM

Businesses love to say “the customer comes first,” “the customer is in charge” and that they need to “let the customer lead.”

But the customer can’t come first, can’t be in charge, and can’t lead, without tools of her own: tools that give her ways to interact in common ways across all the companies she deals with. Ways that give her leverage:

She already has some of those tools. The Internet. The Web. EMail. The phone system. Credit cards. Cars. All of those give a person scale, in roughly the same way that using a common language or a common currency gives a person scale.

For an example of absent scale at work, look at what a customer needs to do when she changes, say, her email address, preferred credit card or last name. She has to go from one website to another, over and over again, logging into all of them separately, like a bee buzzing from one flower to another across a whole garden—only taking a lot more time and wasting a lot more energy.

The reason we have that situation is that companies are still leveraging industrial age norms, in which every company works to “own” the customer, and her experience, separately and exclusively. This is why, even though we’ve been living in a networked world for a quarter century, and we all carry highly advanced digital devices in our pocket and purses, we remain stuck in a world where every company we deal with has its own unique and different ways of dealing with us, and of providing us with ways for relating to them.

The plethorization of separate and unique “customer experiences” (“CX” to the industry) is only compounded with each new company we deal with—and worse, with each new law imposing obligations on companies that will implement compliance differently. We see this today with all the separate ways we “consent” to being tracked by companies doing their separate best to comply with the GDPR and the CCPA as well. Those laws embody the assumption that we still live in an industrial world where all agency over personal privacy resides on the corporate side, rather than on the personal one.

This is why better CRM, CX and GDPR/CCPA compliance approaches actually make the problem worse. Since all are different and exclusive, each one adds unique forms of cognitive and operational overhead on both the corporate and the personal side of every “relationship” that really isn’t.

It’s as if every company required a different language, a different handshake, and a different keyboard layout.

To really come first, to really be in charge, to really lead, the customer needs powers of her own that extend across all the companies she deals with. That’s scale.

Just as companies need to scale their relationships across many customers, customers need to scale their relationships across many companies.

The customer can only get scale through tools for both independence and engagement. She already has those with her car, her purse, her phone, her personal computer, her email, her browsers, her computer, her credit, her cash. (See The Cash Model of Customer Experience.) Every company she deals with respects the independence she gets from those tools, and every company has the same base-level ways of interacting with them. Those tools are also substitutable. The customer can swap them for others like it and maintain her autonomy, independence and ability to engage.

For the last ten years years many dozens of developers around ProjectVRM have been working on tools and services that give customers scale. You’ll find a partial list of them here.

Here is what we have been looking for, from any and all of them together—

Ways to manage gradual, selective and trust-based disclosure of personal identifiers, starting from a state that is anonymous (literally, nameless).
Ways to manage our many administrative identities (the ones by which companies and other organizations know each of us), as well as our sovereign source identities (how each of us know ourselves).
Ways to express terms and policies with which companies can agree (preferably automatically).
Ways to change personal data records (e.g. name, address, phone number) for every company we deal with, in one move.
Ways to share personal data (e.g. purchase or service intentions) selectively and in a mutually trusting way, with every company we deal with.
Ways to exercise full control over our sovereign data spaces (e.g. PIMS) for every thing each ofus owns, and within which reside our relationships with companies that support those things.
Ways to engage with existing CRM, call center and other relationship systems on the vendors’ side.

We have most or all of the technologies, standards, protocols, specifications and APIs we need already. What we need now is thinking and development that goes meta: one level up, to where the customer actually lives, working to manage all these different relationships with all these different cards, apps, websites, logins, passwords and the rest of it.

Apps for doing those things should be as substitutable as a car, a wallet, a purse, a phone, an email client. In other words, we should have a choice of apps, and not be stuck again inside the exclusive offerings of any single company.

Only with scale can free customers prove more valuable than captive ones. And only with mastery will customers get scale. We can’t get there with a zillion different little apps, most of which are not ours. We need go-to apps of our own.

One of our jobs at Customer Commons is to stand with the customer as she watches those tools and services being built, and weighs in with input and intelligence of her own. If you want to help us do that, follow @CustomerCommons and DM us there after we follow you back. Thanks.

The business problems only customers can solve

May 9, 2020

Doc Searls

C2B, customertech, Intentcasting, Intention Economy, Loyaty, Markets, Me2B, NoStalking, Privacy, Publishing, Terms, Tools, ToS, VRM

Customer Commons was created because there are many business and market problems that can only be solved from the customers’ side, under the customer’s control, and at scale, with #customertech.

In the absence of solutions that customers control, both customers and businesses are forced to use business-side-only solutions that limit customer power to what can be done within each business’s silo, or to await regulatory help, usually crafted by captive regulators who can’t even imagine full customer agency.

Here are some examples of vast dysfunctions that customers face today (and which hurt business and markets as well), in the absence of personal agency and scale:

Needing to “consent” to terms that can run more than 10,000 words long, and are different for every website and service provider
Dealing with privacy policies that can also run more than 10,000 words long, which are different for every website and service provider, and that the site or service can change whenever they want, and in practice don’t even need to obey
Dealing with personal identity systems that are different for every website or service provider
Dealing with subscription systems that are different for every website and service provider requiring them
Dealing with customer service and tech support systems that are different for every website or service provider
Dealing with login and password requirements that are as different, and numerous, as there are websites and service providers
Dealing with crippled services and/or higher prices for customers who aren’t “members” of a “loyalty” program, which involves high cognitive and operational overhead for customer and seller alike—and (again) work differently for every website and service provider
Dealing with an “Internet of Things” that’s really just an Amazon of things, an Apple of Things, and a Google of things.

And here are some examples of solutions customers can bring to business and markets:

Standardized terms that customers can proffer as first parties, and all the world’s sites and services can agree to, in ways where both parties have records of agreements
Privacy policies of customers’ own, which are easy for every website and service provider to see and respect
Self-sovereign methods for customers to present only the identity credentials required to do business, relieving many websites and service providers of the need to maintain their own separate databases of personal identity data
Standard ways to initiate, change and terminate customers’ subscriptions—and to keep records of those subscriptions—greatly simplifying the way subscriptions are done, across all websites and service providers
Standard ways for customers to call for and engage customer service and tech support systems that work the same way across all of them
Standard ways for customers to relate, without logins and passwords, and to do that with every website and service provider
Standard ways to express loyalty that will work across every website, retailer and service provider
Standard ways for customers to “intentcast” an interest in buying, securely and safely, at scale, across whole categories of products and services
Standard ways for customers’ belongings to operate, safely and securely, in a true Internet of Things
Standardized dashboards on which customers can see their own commercially valuable data, control how it is used, and see who has shared it, how, and under what permissions, across all the entities the customer deals with

There are already many solutions in the works for most of the above. Our work at Customer Commons is to help all of those—and many more—come into the world.