Ventra Privacy issues?

I’m surprised – maybe I shouldn’t be – that I’ve not seen or heard much about potential privacy concerns surrounding the rollout of Chicago’s new public transit payment system, Ventra. There is still a dwindling band of last-adapters, those of who cling to our old-school all-you-can-ride passes paid for and used the good old fashioned-way: with cash at the counter, and a quick in-out at the turnstile. But much of the city now uses Ventra, the fancy new touchless swipe system, and soon all of us will be swiping our cards at the baby blue readers whether we like it or not.

I’m all for progress, and it seems touchless is a good way to go. Fast, modern, clean, etc. Or at least in theory – in practice it’s a little different when you’re waiting to load the bus behind riders who cannot successfully swipe their cards without several attempts. Most of that can probably be chalked up to new user unfamiliarity with the system. There are other supposed advantages to the system as well.

What concerns me though, are the privacy issues surrounding Ventra. For instance, to get a card, you must provide a set of personal information. To order on, shipping information is required along with an email address and primary phone number. Why email and phone are required is unclear. You are then required to create an account, which includes a mandatory field for a purchaser’s birthdate. So at this point, to ride the subway you need to submit your address, email, phone and birthday to CTA and by extension, its third party vendors. Seems a little strange. Then, of course, you need to pay for the card, so you provide your credit card information.

A screenshot taken from

A screenshot taken from

You also must agree to the terms and conditions of the card, which includes gems like this:

  • “Users must present their Ventra Card for inspection by authorized representatives of participating transit agencies’ security, or law enforcement personnel upon request.”

So presumably a CTA agent can ask you for your card, anytime. I’m not assuming this would occur in abusive ways, but the fact is that that authority is written into the program and users are required to agree if they want to participate. Reminds me of the South Park episode “The Human Centipad,” which is a great riff on EULAs (End User License Agreements) in our modern age.

I’m looking into other ways of signing up for the card (you can buy online but also in the stations, I believe, and at places like The Currency Exchange). They may require less information, and if so, I think that’s a good thing.

Another nuisance: Customers are charged a $5 fee to purchase a Ventra card. The only way this is rebated as ridership credit is if you agree to proceed and register your card (by providing certain pieces of personal information).

The biggest potential threat to privacy is this: Can users’ cards be tracked? Does the system have the ability to see that John Doe scanned his Ventra card at 7:42 a.m. on 11/14/13 at the Chicago & Grand Red Line Station, then again at 12:03 p.m. the same day as he boarded the 151 Bus? Is that kind of capability built into the network of card readers and central servers? We don’t know. It’s very possible that there’s no such capability. Maybe that’s obvious to people familiar with the technology. But it’s something Chicagoans should know for sure, and so far I haven’t seen anybody talking about it.

More on this in the coming days…

1 Comment

Filed under Chicago, Transportation

One response to “Ventra Privacy issues?

  1. I have ridden the Metro in DC several times now since arriving 18 months ago. This is a hellacious place to commute, but I rarely ride the Metro, usually driving a baby to day care en route to Walter Reed. Oh, it is painful twice every day!

    The Metro is every bt as infringer on our privacy…..and at least here the government automatically debits only half your monthly fee for an all you can ride pass and pays by autopay the other half. You are subject to warrant less search and seizure at the whims of rent-a-cops, marauded by creeps at every turn and when mugged, you are typically subject to fines for complaining. I could go on but is it necessary?

    The tree of Liberty is growing very thirsty………………….

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s