Aletho News

ΑΛΗΘΩΣ

AT&T’s First Transparency Report Reveals Warrantless Demands for Customer Data

By Matthew Cagle | ACLU | February 19, 2014

In the wake of our shareholder advocacy, AT&T has now joined Verizon and released its first transparency report. AT&T’s report shows how federal, state, and local governments have requested large volumes of customer information, typically without a warrant. While we welcome AT&T’s move, the American public remains in the dark about a lot of what’s happening behind the scenes. Greater transparency is still needed from AT&T and the federal government.

Here’s a breakdown of the many demands AT&T received in 2013. As we have long suspected, the vast majority of these demands lacked a warrant:

  • AT&T received 301,816 demands related to criminal and civil litigation. Only 16,685 of these demands included a warrant based on probable cause.
  • AT&T received 223,659 subpoenas for customer information. This is significantly more than the 164,184 subpoenas Verizon received during the same period.
  • AT&T received 37,839 demands for location information. At least 21,000 of these demands lacked a warrant. AT&T’s full report says a warrant is “almost always required to obtain real-time location information.”
  • AT&T also received 1,034 demands for “cell tower searches” last year, some of them compelling the company to identify the numbers of all phones that connected to a specific cell tower during a given period of time. Cell tower information is ripe for misuse—we know of at least one instance where a cell tower request was made for all phones within the vicinity of a planned labor protest.

AT&T also included information on national security requests (though, not the complete story):

  • AT&T reported receiving between 2,000 and 3,000 National Security Letters (NSLs) from the federal government for customer information including name, address, length of service, and toll billing records. NSLs do not require prior approval from courts and the government has been criticized for misusing them. 4,000 to 4,999 AT&T customers were affected by NSLs last year. Note: Verizon has not yet revealed how many customers were affected by the NSLs it received.
  • AT&T also released information about federal government demands for customer content under the Foreign Intelligence Surveillance Act (FISA), demands that may result in government access to the telephone and Internet communications of US citizens and persons abroad. For the first six months of 2013, AT&T received 0-999 requests for content that ultimately affected 35,000-35,999 customers. In fact, more AT&T customers were affected by FISA content requests in the first half of 2013 than the combined number of Facebook, Google, and Microsoft customers affected by the same sort of requests during that period.
  • Unfortunately, the report omits important information on the metadata that the government reportedly obtains from AT&T under the call records program (currently being challenged by the ACLU in federal court). Phone metadata includes the phone numbers of parties to a conversation, a call’s duration, and device identifiers—information that can paint a very detailed picture of private lives. We know that the government justifies its access to phone metadata with a section of the FISA law, yet AT&T’s report states that only 0-999 customers were affected by such “non-content” requests. On its own, this lack of detail misleads the millions of AT&T customers whose phone metadata may be subject to these demands.

In addition to a clearer explanation of national security requests, we hope that AT&T’s future reports will also address the following shortcomings:

  • The current report does not include the number of customers or individuals affected by all of the government demands. The company claims that it is “difficult” to tally this information.
  • The report does not describe statistics on how often AT&T complies with demands.
  • This report includes very limited information about demands from foreign governments.

AT&T’s transparency report, limited in what it reveals, also highlights just how essential it is for privacy laws to be updated in both the national security and law enforcement contexts. Technology has advanced exponentially and our privacy laws are still in the digital dark ages, enabling the government to engage in a largely unsupervised shopping spree of the personal data held by AT&T and other companies. This is why you should tell your member of Congress to support the USA Freedom Act and an update to the federal Electronic Communications Privacy Act. We also urge AT&T to play a larger role by pushing for greater transparency, including far more detail in its future reports, and advocating for stronger privacy protections.  

Matthew Cagle is a Volunteer Attorney for Technology and Civil Liberties with the ACLU of Northern California.

Copyright 2014 American Civil Liberties Union of Northern California
Reprinted with permission of the American Civil Liberties Union of Northern California http://www.aclunc.org
Related articles

February 21, 2014 Posted by | Civil Liberties, Full Spectrum Dominance | , , , , , , , , , | Leave a comment

AT&T joins Verizon, Facebook in selling customer data

RT | July 6, 2013

AT&T has announced that it will begin selling customers’ smart phone data to the highest bidder, putting the telecommunications giant in line with Verizon, Facebook and other competitors that quietly use a consumer’s history for marketing purposes.

The company claims its new privacy policy, to be updated within “the next few weeks,” exists to “deliver more relevant advertising” to users based on which apps they use and their location, which is provided by GPS-tracking. Apparently recognizing the natural privacy concerns a customer might have, AT&T assured the public that all data would be aggregated and made anonymous to prevent individual identification.

A letter to customers, for instance, described how someone identified as a movie fan will be sent personalized ads for a nearby cinema.

“People who live in a particular geographic area might appear to be very interested in movies, thanks to collective information that shows wireless devices from that area are often located in the vicinity of movie theaters,” the letter states. “We might create a ‘movie’ characteristic for that area, and deliver movie ads to the people who live there.”

A June 28 blog post from AT&T’s chief privacy officer Bob Quinn said the new policy will focus on “Providing You Service and Improving Our Network and Services,” but the online reaction has been overwhelmingly negative, with many customers looking for a way to avoid the new conditions.

“You require that we allow you to store a persistent cookie of your choosing in our web browsers to opt out,” one person wrote. “No mention of how other HTTP clients, such as email clients, can opt out. If you really did care about your customers, you would provide a way for us to opt out all traffic to/from our connection and mobile devices in one easy setting.”

One problem for any customer hoping for a new service is the lack of options, smartphone or otherwise. Facebook, Google, Twitter and Verizon each store consumer data for purposes that have not yet been made clear. And because of the profit potential that exists when a customer blindly trusts a company with their data, small Internet start-ups, including AirSage and many others, have developed a way to streamline information into dollars.

The nefarious aspect of AT&T’s announcement is underscored by the recent headlines around the National Security Agency, which has spent years has compelling wireless corporations to hand over data collected on millions of Americans. Unfortunately for the privacy of those concerned, AT&T’s new policy may only be a sign of things to come.

“Instead of merely offering customers a trusted conduit for communication, carriers are coming to see subscribers as sources of data that can be mined for profit, a practice more common among providers of free online services like Google and Facebook,” the Wall Street Journal wrote about the matter in May.

July 7, 2013 Posted by | Civil Liberties, Deception, Full Spectrum Dominance | , , , , , , , , , | Leave a comment

Top-secret court order reveals NSA’s daily data collection on millions of Americans

RT | June 06, 2013

The US National Security Agency is currently collecting the telephone records of millions of unwitting individuals via a secret court order issued in April obtained by The Guardian newspaper, which has posted it online.

Unlike warrants that have been issued to collect the information of suspects targeted by intelligence agencies, the newly disclosed top secret order requires Verizon, one of the largest telecom agencies in the US, to provide both the FBI and the NSA information on all telephone calls made through its systems, both domestically and to foreign countries.

According to a copy of the order, Verizon is required to disclose the numbers of both parties during a call, as well as location, call duration, and other unique data on an “ongoing, daily basis.” Meaning that, regardless of whether an individual is suspected of or linked to any crime, the data of all Verizon customers is currently being delivered in bulk to the intelligence agency.

As to the authority claimed by the government via this order, that is specifically cited to fall under the “business records” provision of the PATRIOT Act of 2001, which was granted a four-year extension by President Obama in May of 2011.

It remains unclear as to whether the order, which spans a three-month period, represents a single instance, or is indicative of recurring cases of Verizon and other telephony providers being ordered to disclose all their clients’ call records.

The order itself, signed by Judge Roger Vinson of the Foreign Intelligence Surveillance Court, prohibits Verizon from alerting its customers of the FBI’s request for their records.

According to The Guardian, its reporters approached Verizon, the National Security Agency, the White House and the Department of Justice for comment ahead of its story, though all declined.

Though the agencies have yet to respond to the publication of the secret order, justification for the thus far unprecedented, warrantless request made to Verizon in April would fall under the interpretation of such “business records.” The latter applies to a wide-ranging amount of electronic “metadata,” though not the actual content of texts and voice calls.

The order seems likely to be associated with the NSA’s longstanding collection program over telephone, Internet and email data, which was secretly authorized by former president Bush in 2001, though not disclosed publicly until a 2006 USA Today report. That particular authorization applied to multiple carriers: AT&T, Verizon and BellSouth, and was intended to allow US intelligence services “to analyze calling patterns in an effort to detect terrorist activity.”

Julian Sanchez, a surveillance expert with the libertarian Cato Institute who spoke to The Guardian believes that the newly disclosed court order undermines the legal definition of reasonable suspicion.

“We’ve certainly seen the government increasingly strain the bounds of ‘relevance’ to collect large numbers of records at once — everyone at one or two degrees of separation from a target — but vacuuming all metadata up indiscriminately would be an extraordinary repudiation of any pretense of constraint or particularized suspicion,” said Sanchez.

Related articles

June 6, 2013 Posted by | Civil Liberties, Full Spectrum Dominance, Progressive Hypocrite, Timeless or most popular | , , , , , | Leave a comment

Revolving Door at SEC is in a Whirl as Hundreds Hired by Industry they Regulated

By Noel Brinkerhoff, Danny Biederman | AllGov | February 13, 2013

Charged with regulating Wall Street, the Securities and Exchange Commission (SEC) has become a launching pad for former agency employees—by the hundreds—to become part of the industry they once oversaw.

A new report from the watchdog group Project on Government Oversight (POGO) says that more than 400 ex-SEC staffers were working for the industry between 2001-2010.

The study also found numerous other concerns with the “revolving door” between the SEC and financial firms. These included agency workers trying to help corporations influence agency regulations, defending companies suspected of breaking the law, and helping them avoid tougher enforcement actions.

Perhaps the most high-profile concern in this arena is President Obama’s nomination of Mary Jo White to become the new SEC chief. During her most recent job at the firm of Debevoise & Plimpton, White’s clients included JPMorgan Chase, General Electric, Verizon Communications, former Bank of America chief executive Kenneth Lewis, and Rajat Gupta, the former Goldman Sachs board member convicted of insider trading.

“The revolving door is moving faster than ever,” Senator Charles Grassley (R-Iowa) said after reading POGO’s findings. “The SEC has to fix this problem once and for all. That involves more disclosure, more meaningful restrictions, and top-to-bottom application of the rules without waivers that make any restrictions meaningless.”

February 14, 2013 Posted by | Corruption, Economics | , , , , , , , | 1 Comment