How Much Government Snooping? Google It Up!
The secrecy surrounding government surveillance is a constant source of frustration to privacy activists and scholars: It’s hard to have a serious discussion about policy when it’s like pulling teeth to get the most elementary statistics about the scope of state information gathering, let alone any more detailed information. Even when reporting is statutorily required, government agencies tend to drag their heels making statistics available to Congress — and it can take even longer to make the information more widely accessible. Phone and Internet companies, even when they join the fight against excessive demands for information, are typically just as reluctant to talk publicly about just how much of their customers’ information they’re required to disclose. That’s why I’m so pleased at the news that Google has launched their Government Requests transparency tool. It shows a global map on which users can see how many governmental demands for user information or content removal have been made to Google’s ever-growing empire of sites — now including Blogger, YouTube, and Gmail — starting with the last six months.
So far, the information up there is both somewhat limited and lacking context. For instance, it might seem odd that Brazil tops the list of governmental information hounds until you bear in mind that Google’s Orkut social network, while little-used by Americans, is the Brazilian equivalent of Facebook.
There are also huge gaps in the data: The United States comes in second with 3,580 requests from law enforcement at all levels, but that doesn’t include intelligence requests, so National Security Letters (tens of thousands of which are issued every year) and FISA warrants or “metadata” orders (which dwarf ordinary federal wiretaps in number) aren’t part of the tally. And since China considers all such government information requests to be state secrets — whether for criminal or intelligence investigations — no data from the People’s Republic is included.
Neither is there any detail about the requests they have counted — how many are demands for basic subscriber information, how many for communications metadata, and how many for actual e-mail or chat contents. The data on censorship is similarly limited: They’re counting governmental but not civil requests, such as takedown notices under the Digital Millennium Copyright Act.
For all those limits — and the company will be striving to provide some more detail, within the limits of the law — this is a great step toward bringing vital transparency to the shadowy world of government surveillance, and some nourishment to the data-starved wretches who seek to study it. We cannot have a meaningful conversation about whether censorship or invasion of privacy in the name of security have gone too far if we do not know, at a minimum, what the government is doing. So, for a bit of perspective, we know that U.S. courts reported a combined total of 1,793 (criminal, not intel) wiretaps sought by both federal and state authorities. Almost none of these (less than 1 percent) were for electronic interception.
This may sound surprising, unless you keep in mind that federal law establishes a very high standard for the “live” interception of communications over a wire, but makes it substantially easier — under some circumstances rather terrifyingly easy — to get stored communications records. So there’s very little reason for police to jump through all the hoops imposed on wiretap orders when they want to read a target’s e-mails.
If and when Google were to break down that information about requests — to show how many were “full content” as opposed to metadata requests — we would begin to have a far more accurate picture of the true scope of governmental spying. Should other major players like Yahoo and Facebook be inspired to follow Google’s admirable lead here, it would be better still. Already, though, that one data point from a single company — showing more than twice as many data requests as the total number of phone wiretaps reported for the entire country — suggests that there is vastly more actual surveillance going on than one might infer from official wiretap numbers.
The Government Can Monitor Your Location All Day Every Day Without Implicating Your Fourth Amendment Rights
If you have a mobile phone, that’s the upshot of an argument being put forward by the government in a case being argued before the Third Circuit Court of Appeals tomorrow. The case is called In the Matter of the Application of the United States of America For An Order Directing A Provider of Electronic Communication Service To Disclose Records to the Government.
In that case, the Obama administration has argued that Americans enjoy no “reasonable expectation of privacy” in their—or at least their cell phones’—whereabouts. U.S. Department of Justice lawyers say that “a customer’s Fourth Amendment rights are not violated when the phone company reveals to the government its own records” that show where a mobile device placed and received calls.
The government can maintain this position because of the retrograde “third party doctrine.” That doctrine arose from a pair of cases in the early 1970s in which the Supreme Court found no Fourth Amendment problems when the government required service providers to maintain records about their customers, and later required those service providers to hand the records over to the government.
I wrote about these cases, and the courts’ misunderstanding of privacy since 1967′s Katz decision, in an American University Law Review article titled “Reforming Fourth Amendment Privacy Doctrine“:
These holdings were never right, but they grow more wrong with each step forward in modern, connected living. Incredibly deep reservoirs of information are constantly collected by third-party service providers today. Cellular telephone networks pinpoint customers’ locations throughout the day through the movement of their phones. Internet service providers maintain copies of huge swaths of the information that crosses their networks, tied to customer identifiers. Search engines maintain logs of searches that can be correlated to specific computers and usually the individuals that use them. Payment systems record each instance of commerce, and the time and place it occurred. The totality of these records are very, very revealing of people’s lives. They are a window onto each individual’s spiritual nature, feelings, and intellect. They reflect each American’s beliefs, thoughts, emotions, and sensations. They ought to be protected, as they are the modern iteration of our “papers and effects.”
This is a case to watch, as it will help determine whether or not your digital life is an open book to government investigators.
‘The End of Privacy’ and the Surveillance-Industrial Complex
National Public Radio’s All Things Considered ran a series on “The End of Privacy” all last week that’s worth a listen. They’re primarily concerned with the ways private companies have access to vast quantities of information about individuals in the digital age—something that civil libertarians have traditionally been less concerned about than government access, for many perfectly valid reasons. But it’s worth noting how porous that distinction can be. A 2006 survey by the Government Accountability Office found that just four government agencies—the Justice Department, Department of Homeland Security, State Department, and Social Security Administration—spent at least $30 million annually on contracts with information resellers like Choicepoint. The vast majority of that data (91%) was used for law enforcement or counterterror purposes. And GAO found that the resellers weren’t always in full compliance with the privacy practices that the agencies themselves are supposed to follow.
Choicepoint, coincidentally, is one of the largest clients of the consulting firm run by former Attorney General John Ashcroft. Little wonder given the amount of cash at stake: As reporter Tim Shorrock has documented, some 70 percent of our vast intelligence budget is channeled through private-sector contractors, which means that we need to understand government surveillance policy in the context of a “surveillance-industrial complex” that parallels the more familiar military-industrial complex known for bringing us $600 toilet seats and other forms of pork in camo gear. It’s worth bearing in mind that it’s not just investigatory zeal and public fear driving the expansion of the surveillance state—a lot of people are making a lot of money off it as well.
Cato on Facebook
Cato on Twitter
Cato on Google+
Cato on YouTube
