While market forces might ensure fair use of data connected to the on-line identity of individuals (with common satisfaction for all the parties), they evidently do not guarantee optimal use and appropriate protection of the off-line identity (with detrimental economic consequences). Information technology can be used to split those identities (or make the linkages between the identities of an individual too costly for any practical application), but without economic incentives no technology can reach widespread adoption. The need arises for an additional contribution. In particular, legal intervention, on the model of the EU directive on data protection, or as proposed in Samuelson (2000), could put constraints and liabilities on the side of the parties receiving private information. Such constraints should be calibrated to compensate the moral hazard and asymmetric information in the market of personal data. By generating incentives to handle personal information in a new way, the interventions might allow the growth of the market for third parties providing solutions that anonymize off-line information but make it possible to share on-line profiles. If privacy is a holistic concept, only a holistic approach can provide its adequate protection: economic tools to identify the areas of information to share and those to protect; law to signal the directions the market should thereby take; and technology to make those directions viable.

Different requirements for protection of off-line (or Tier 1) and on-line (Tier 2) identity details stemming from overall utility function is an argument, I have never heard before.

11:25:37 PM