We were in our local Target store yesterday. My wife purchased some OTC cough syrup, the self check out register wanted an employee for confirmation she was the proper age. (We're in our sixty's.) Instead of just looking at her driver's license, he used his handheld device to scan the license! I would never allow this, myself.
>Instead of just looking at her driver's license, he used his handheld device to scan the license!
depending on what is in the cough syrup, they arent using the scanner to verify age. they are tracking who makes the purchase, so if a bunch of meth or whatever gets cooked up, they have a list of suspects.
While there is no federal law restricting the sale of medications containing Dextromethorphan, a common cough suppressant, US states have started regulating sales of these medications (https://en.wikipedia.org/wiki/Dextromethorphan_regulation_by...). It looks like most of the time, it's an 18yrs and up age restriction.
My guess would be that it's easier for company policy to always scan the ID, even for age verification, instead of having different policies depending on what is being purchased.
In California, the pharmacy computer queries some state database to log the purchase and get approval. If you buy too much too quickly your purchase will be blocked.
My closest pharmacy “loses its connection to the system” frequently which results in them being unable to sell me the medicine. The computer will refuse to ring it up.
In my state, you can buy products with pseudoephedrine over the counter, but the law requires you to show ID to the pharmacist who then logs your name and address. There is absolutely nothing in the law that requires scanning or storing the customer's ID, and I don't know why anyone would agree to let them do it.
>[...] but the law requires you to show ID to the pharmacist who then logs your name and address. There is absolutely nothing in the law that requires scanning or storing the customer's ID, and I don't know why anyone would agree to let them do it.
there is very little difference except one is manual input and one is automated input. so, i am not quite sure i am understanding your objection to one and not the other. either your are ok with your information being recorded, or you arent -- the "how it is entered into the recording system" part seems immaterial to me.
At least where I live, the only information they log when looking at my ID is my name and address. Scanning my ID gives them additional information, which increases the vulnerability.
I don't trust them to store it securely nor to avoid the temptation to use that information for other purposes. The only countermeasure is to prevent them from having that information in the first place.
what other information are you concerned about, present on your id, which is not trivially obtainable by already having your name and address? your height and whether you need glasses is hardly sensitive information (and already available to them -- they record the premises and have your time of purchase).
i dont trust them to store it securely either. my objection is to being okay with your information being placed into a database when that information is manually input, but not okay with it being scanned in. if you arent okay with one method, i dont understand why you would be okay with the other.
we are in agreement that the fact that some random company has to store my information at all is sucky.
There's a major difference -- one involved providing a copy of your ID to a 3rd party and the other does not.
I don't want my identity stolen after I bought some cough syrupe because some dirt-bag third party ID management company that was contracted by a pharmacy didn't do their job.
>There's a major difference -- one involved providing a copy of your ID to a 3rd party and the other does not.
they arent scanning as in photocopying. they are scanning the barcode to get the name/address information
the 3rd party (pharmacy, in this case) gets and keeps the information in both scenarios.
>dirt-bag third party ID management company
this isnt online age-verification stuff. the pharmacy itself is typically the one storing the information, and querying it against a government database.
Nowadays you need ID to buy dextromethorphan cough syrups even. Being sick got a lot more miserable when I learned Id have to interact with the doordasher to get my remedies delivered.
I've found using a passport card for ID instead of a driver's license to have several advantages, including that most places seem to be unable to scan it.
Target scans IDs for any purchase that requires them (e.g. alcohol).
Charitably, I guess they want to be able to prove in any kind of audit or claim that they are selling alcohol to minors that they are checking IDs for such purchases.
Uncharitably, it all goes into their customer profile database.
> While stores often implement the technology to help curtail shoplifting, lawmakers and advocates are worried that it will be repurposed for profiling customers and adjusting prices based on information gathered.
Worried? With the web of 3rd party services that are somehow involved in the delivery of any cloud service, with all their different privacy policies that apply with carefully crafted legalese, hosted in different jurisdictions. Combined with that juicy data, the New Oil that fuels surveillance capitalism. Unless somehow watertight guarantees are provided, it is more realistic to assume widespread abuse is commonplace, and work from there.
At some point we have to realize that all of these super intrusive tech implementations are downstream from devolving into a low trust society. The reason we have to do this in the first place is because we are electing to not put the people who abuse these goods in prison. That’s a choice we are making. The trade off is additional overhead and risk on police and prosecutorial misconduct vs vast state and corporate surveillance apparatus. Pick your poison but choose wisely.
AI seems to scale better considering most shoplifting is done by repeat offenders, and AI can do things easily like share knowledge with other stores in the area about who is a shoplifter. Also, it isn't even clear to me how more staff prevents shoplifting. Just have more people stare at cameras? Follow suspicious customers around?
I have a friend whose nearest grocery store is surrounded by Flock "safety" cameras. The police and security in the retail or grocery stores regularly share data and logins, and this extends across multiple states. He says it's been brought up in mundane traffic court and affected his ability to enroll his children into schools. Not only that, but his ability to seek legal guidance is hindered since the state can easily produce suspicious evidence on a whim against him.
It seems like anyone with even a cursory role can access this information and abuse it. It's ridiculous that this is happening. I think a sizable number of people on Hacker News actually support these systems and if you're one of them, please keep yourself safe.
Shops are making extremely feeble efforts to curtail theft such that I think it's a nice cover for raising prices, slashing costs and increasing data capitalism etc
For example at a local Asda, an expensive donut brand are placed right by the entrance. I see people stealing them all the time. At Gregg's bakery, many popular items are left on a table half way to the door, almost inviting theft. Other expensive items are put in the chiller/hot cabinet open to all.
It's been so obvious what changes need to be made, you ask yourself why they have not
If you have decent social nets you don't need to worry about theft of basic items. If people stealing food is such a big problem, your country is fucked up in a bad way.
Here they don't even watch the self checkout, and don't use those annoying checkouts with a scale.
When people are stealing armfuls of Tide detergent or tools from Home Depot, it's clear they aren't stealing because a weak social net is preventing them washing their clothes. They're thieves, stealing for profit, end of story.
We were in our local Target store yesterday. My wife purchased some OTC cough syrup, the self check out register wanted an employee for confirmation she was the proper age. (We're in our sixty's.) Instead of just looking at her driver's license, he used his handheld device to scan the license! I would never allow this, myself.
>Instead of just looking at her driver's license, he used his handheld device to scan the license!
depending on what is in the cough syrup, they arent using the scanner to verify age. they are tracking who makes the purchase, so if a bunch of meth or whatever gets cooked up, they have a list of suspects.
Yes. Federal law requires retailers of drugs containing pseudoephedrine, ephedrine, and phenlypropanolamine to record the buyer's name and address and keep the records for two years (https://www.fda.gov/drugs/information-drug-class/legal-requi...).
While there is no federal law restricting the sale of medications containing Dextromethorphan, a common cough suppressant, US states have started regulating sales of these medications (https://en.wikipedia.org/wiki/Dextromethorphan_regulation_by...). It looks like most of the time, it's an 18yrs and up age restriction.
My guess would be that it's easier for company policy to always scan the ID, even for age verification, instead of having different policies depending on what is being purchased.
In California, the pharmacy computer queries some state database to log the purchase and get approval. If you buy too much too quickly your purchase will be blocked.
My closest pharmacy “loses its connection to the system” frequently which results in them being unable to sell me the medicine. The computer will refuse to ring it up.
Plot twist, for employee safety the store policy is to always say "lost connection, sorry" when the system detects suspicious purchasing patterns.
In my state, you can buy products with pseudoephedrine over the counter, but the law requires you to show ID to the pharmacist who then logs your name and address. There is absolutely nothing in the law that requires scanning or storing the customer's ID, and I don't know why anyone would agree to let them do it.
>[...] but the law requires you to show ID to the pharmacist who then logs your name and address. There is absolutely nothing in the law that requires scanning or storing the customer's ID, and I don't know why anyone would agree to let them do it.
there is very little difference except one is manual input and one is automated input. so, i am not quite sure i am understanding your objection to one and not the other. either your are ok with your information being recorded, or you arent -- the "how it is entered into the recording system" part seems immaterial to me.
At least where I live, the only information they log when looking at my ID is my name and address. Scanning my ID gives them additional information, which increases the vulnerability.
I don't trust them to store it securely nor to avoid the temptation to use that information for other purposes. The only countermeasure is to prevent them from having that information in the first place.
what other information are you concerned about, present on your id, which is not trivially obtainable by already having your name and address? your height and whether you need glasses is hardly sensitive information (and already available to them -- they record the premises and have your time of purchase).
i dont trust them to store it securely either. my objection is to being okay with your information being placed into a database when that information is manually input, but not okay with it being scanned in. if you arent okay with one method, i dont understand why you would be okay with the other.
we are in agreement that the fact that some random company has to store my information at all is sucky.
There's a major difference -- one involved providing a copy of your ID to a 3rd party and the other does not.
I don't want my identity stolen after I bought some cough syrupe because some dirt-bag third party ID management company that was contracted by a pharmacy didn't do their job.
>There's a major difference -- one involved providing a copy of your ID to a 3rd party and the other does not.
they arent scanning as in photocopying. they are scanning the barcode to get the name/address information
the 3rd party (pharmacy, in this case) gets and keeps the information in both scenarios.
>dirt-bag third party ID management company
this isnt online age-verification stuff. the pharmacy itself is typically the one storing the information, and querying it against a government database.
Nowadays you need ID to buy dextromethorphan cough syrups even. Being sick got a lot more miserable when I learned Id have to interact with the doordasher to get my remedies delivered.
I've found using a passport card for ID instead of a driver's license to have several advantages, including that most places seem to be unable to scan it.
Not only does a US Passport card NOT scan, it also does not contain your address. Added bonus that it is not scanable.
But will those places accept it unscanned? I imagine there's a staff trust issue here.
Yes, but sometimes requires manager override.
When that doesn't work for me, I simply say "I just won't purchase it, then" — and then it get$ $canned.
Target scans IDs for any purchase that requires them (e.g. alcohol).
Charitably, I guess they want to be able to prove in any kind of audit or claim that they are selling alcohol to minors that they are checking IDs for such purchases.
Uncharitably, it all goes into their customer profile database.
So only ever buy condoms and duct tape from Target. Got it.
No. Buy nothing from them. Keep up the boycott.
Fair point and good reminder
I don’t know how that would work. Some states mandate that if the displayed price is different, the customer should be charged the lower price.
https://archive.ph/5OXNR
> While stores often implement the technology to help curtail shoplifting, lawmakers and advocates are worried that it will be repurposed for profiling customers and adjusting prices based on information gathered.
Worried? With the web of 3rd party services that are somehow involved in the delivery of any cloud service, with all their different privacy policies that apply with carefully crafted legalese, hosted in different jurisdictions. Combined with that juicy data, the New Oil that fuels surveillance capitalism. Unless somehow watertight guarantees are provided, it is more realistic to assume widespread abuse is commonplace, and work from there.
At some point we have to realize that all of these super intrusive tech implementations are downstream from devolving into a low trust society. The reason we have to do this in the first place is because we are electing to not put the people who abuse these goods in prison. That’s a choice we are making. The trade off is additional overhead and risk on police and prosecutorial misconduct vs vast state and corporate surveillance apparatus. Pick your poison but choose wisely.
Is it to curtail shoplifting or is the main benefit selling the data ?
If they wanted to curtail shoplifting they could employ more staff.
AI seems to scale better considering most shoplifting is done by repeat offenders, and AI can do things easily like share knowledge with other stores in the area about who is a shoplifter. Also, it isn't even clear to me how more staff prevents shoplifting. Just have more people stare at cameras? Follow suspicious customers around?
We already lost at the airports. Not shocking :(
In order to read their tale about surveillance, Politico tells you to "SIGN IN".
They want you to give them your email, employer's name and your job title.
Is this some kind of joke?
Or are these people actually that stupid?
> Or are these people actually that stupid?
Or simply they judge enough of their readers to be that stupid.
I have a friend whose nearest grocery store is surrounded by Flock "safety" cameras. The police and security in the retail or grocery stores regularly share data and logins, and this extends across multiple states. He says it's been brought up in mundane traffic court and affected his ability to enroll his children into schools. Not only that, but his ability to seek legal guidance is hindered since the state can easily produce suspicious evidence on a whim against him.
It seems like anyone with even a cursory role can access this information and abuse it. It's ridiculous that this is happening. I think a sizable number of people on Hacker News actually support these systems and if you're one of them, please keep yourself safe.
Flock cameras prevent someone from enrolling a child in school?
I'd be curious to hear how those dots connect.
Last week’s episode of enshittening dystopia:
https://news.ycombinator.com/item?id=47351239
You'll have to elaborate more on some of the details
Shops are making extremely feeble efforts to curtail theft such that I think it's a nice cover for raising prices, slashing costs and increasing data capitalism etc
For example at a local Asda, an expensive donut brand are placed right by the entrance. I see people stealing them all the time. At Gregg's bakery, many popular items are left on a table half way to the door, almost inviting theft. Other expensive items are put in the chiller/hot cabinet open to all.
It's been so obvious what changes need to be made, you ask yourself why they have not
Sales from impulse buys of expensive high-margin items are enough to offset the losses from theft.
If you have decent social nets you don't need to worry about theft of basic items. If people stealing food is such a big problem, your country is fucked up in a bad way.
Here they don't even watch the self checkout, and don't use those annoying checkouts with a scale.
When people are stealing armfuls of Tide detergent or tools from Home Depot, it's clear they aren't stealing because a weak social net is preventing them washing their clothes. They're thieves, stealing for profit, end of story.
[dead]
[dead]