Google Publishes Eight National Security Letters That Have Been Freed From Their Gag Orders
from the legislatively-enforced-transparency dept
Google has managed to lift gag orders on eight of the National Security Letters it's received from the FBI over the last five years. In a blog post that thankfully provides more details than its last NSL "release," Google notes that last year's surveillance reform bill has a lot to do with it even being able to do this.
In 2015, Congress passed the USA Freedom Act, which allowed companies like Google to make more granular disclosures about National Security Letters they receive. In addition, the Act restricts the use of indefinite gag restrictions that prevent providers from ever notifying customers or talking about the demands. The Department of Justice (DOJ) must now regularly review disclosure restrictions in NSLs and lift those that are no longer needed.
The last NSL announcement Google made wasn't much of an announcement. The NSL wasn't released and the company had very little to say about the single NSL, other than that the gag order had been lifted.
This release is better, in that there's an actual release involved. All eight of the NSLs have been published. Most ask for name, address, and length of service for the targeted account holders. Two of them (here [PDF] and here [PDF]), however, also ask for "electronic communications transactional records for all accounts" -- presumably email metadata, but could also cover records generated by other Google services, like Hangouts.
Google notes that the DOJ has published new guidelines for the handling of NSL gag orders, which mostly involves agents having the right boilerplate on hand when issuing one. The DOJ also gives itself a three-year window for gag order reviews, basically reflecting suggestions made by a DC federal judge presiding over a NSL gag order case. Fortunately, the USA Freedom Act allows recipients to challenge these orders every year, so no one really has to restrict themselves to the DOJ's extended timetable.
NSLs are still the FBI's favorite way to obtain identifying information from service providers. It issues thousands of NSLs every year and even uses the self-issued demand letters to route around rejections by the FISA court. That the agency issues so many is likely due to its ability to open investigations that aren't officially termed "investigations." It's able to open "threat assessments" and "preliminary investigations" without providing any substantive reason for doing so. During these preliminary stages, the FBI grabs every third-party record it can -- anything collectible without leaving a judicial paper trail. Add to that the fact that these pieces of paper come with federally-enforced silence by default, and they're the perfect storm of opacity and unaccountability.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: doj, fbi, national security letters, nsls, transparency, usa freedom act
Companies: google
Reader Comments
Subscribe: RSS
View by: Time | Thread
Since the act of reading a NSL is what activates its non disclosure effects...
Would it be possible to create a company policy that, for protection of the company, letters from the DoJ are published in such a way they cannot be retroactively taken down?
That way, the action and the attempt to cover it up in secrecy is made public before it is effective.
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]