Well, hypothetically, it should only open the connection upon request and close it when you are done. However, there may be some "state recording" information (ie, maybe a cookie) that would allow you to go to the previous state you were in when you last visited; like a particular store or section you visited. To me, the description sounds kind of like browser-integration that has been done in other software packages. Since most firewall users want to surf the net, they usually let their browser connect and/or allow traffic on port 80 (http) for net connections through the firewall. As these are more or less "trusted" ports, they can be easily manipulated for "less legitimate" purposes. It is theorhetically possible that CL/P5 may keep an "open door" via the Paradise room; however, when people find out this is the case, it would turn into more of a ruckus than the activation scheme currently being debated. I am sure someone with enough knowledge will run P5 with some form of packet sniffer (something that records and analyzes network/Internet traffic) and see just what information can be gained/is transmitted by both the activation scheme and/or the Paradise room.