BOX 1.2 Degrees of Data Collection and Surveillance Merely asserting that some data collection or surveillance would occur in a system or that data would be analyzed is insufficient. It is important to determine precisely what is meant or intended by "collection" and "analysis" within an identification system. There are at least five different ways to approach this issue: Little to no data collection. The only data collected and stored are those needed to establish, at a particular time, an individual's identity within the system (for a predetermined meaning of "identity.") Individual data collection. Information about an individual's activities and behavior is collected and stored but analyzed only upon request by an authorized agent (for example, a court order). Aggregate data collection. Behavioral data are aggregated and stored but only analyzed upon request or for a specific purpose. It may or may not be possible to link data to an individual. Aggregate data analysis. Behavioral data are aggregated and proactively analyzed to search for suspicious or abnormal patterns. Upon an authorized request it may or may not be possible to link data to an individual. Individual data analysis. Each individual's data are proactively analyzed to check for suspicious or abnormal patterns of behavior, and any such findings are flagged and authorized agents alerted.