Tech giants seek to halt overseas snooping by US

Jun 16, 2014 by Larry Neumeister
This Jan. 22, 2009 file photo shows the Microsoft sign outside the headquarters campus in Redmond, Wash. Microsoft Corp. and four other large American technology companies are using a Manhattan court case to draw a line in the cloud, saying the U.S. government has no right to seize computer data stored outside the country. (AP Photo/Elaine Thompson, file)

Microsoft Corp. and four other large American technology companies are using a Manhattan court case to draw a line in the cloud, saying the U.S. government has no right to seize computer data stored outside the country.

U.S. companies that host services over the Internet and sell remote data storage—a concept broadly known as "cloud computing"—say they stand to lose billions of dollars in business if emails and other files they house overseas are seen vulnerable to U.S. snooping.

Lawyers for the companies say the perception was stoked by former NSA systems analyst Edward Snowden's revelations last year that the U.S. and other countries' intelligence agencies routinely and indiscriminately gather and store huge amounts of data from phone calls and Internet communications.

And it was harmed again in April, they say, when a Manhattan magistrate judge concluded it was legal for the government to order Microsoft to comply with a sealed search warrant for a consumer email account it stores in Dublin, Ireland.

A Microsoft vice president wrote in a court document that the company offers its cloud services in more than 100 countries and tries to keep a customer's data—including email, calendar entries and documents—in a data center near where the customer is located for easy and cost-effective access. Microsoft maintains data centers worldwide, including in the United States, Ireland, the Netherlands, Japan and Brazil.

The mammoth software company said in court papers this month that the ruling threatens to rewrite the Constitution's protections against illegal search and seizure, damage U.S. foreign relations and "reduce the privacy protection of everyone on the planet."

"Over the course of the past year, Microsoft and other U.S. technology companies have faced growing mistrust and concern about their ability to protect the privacy of personal information located outside the United States," Microsoft said. "The government's position in this case further erodes that trust, and will ultimately erode the leadership of U.S. technology companies in the global market."

Two phone carriers, Verizon Communications Inc. and AT&T Inc., have joined the fight, along with Apple Inc. and Cisco Systems Inc., submitting arguments in support of Microsoft in recent days to a district judge prior to a late-July hearing.

In court papers, prosecutors said Microsoft's position that the warrant effectively authorizes law enforcement agents to conduct a search in Ireland is "simply not so." They said the warrant is the functional equivalent of a subpoena compelling the Redmond, Washington-based provider to review its stored records and produce relevant material.

Microsoft's position "serves as a dangerous impediment to the ability of law enforcement to gather evidence of criminal activity," they said.

Microsoft lost the first round of what is likely to be a lengthy court battle in April, when the New York magistrate judge who issued the search warrant in December ruled that the Stored Communications Act in the Electronic Communications Privacy Act of 1986 gave the government authority to subpoena information on the Internet that is stored outside the country.

Magistrate Judge James C. Francis referred to the warrant as a "hybrid,—part search warrant and part subpoena"—and said it has long been law that the recipient of a subpoena must produce information in its possession regardless of where it is stored.

Francis added that if territorial restrictions on conventional warrants were extended to cyberspace, "the burden on the government would be substantial, and law enforcement efforts would be seriously impeded."

With conventional warrants, information can only be seized overseas according to the terms of a Mutual Legal Assistance Treaty between the countries.

Already, Microsoft said, foreign leaders are raising concerns about the ruling. Compliance with U.S. search warrants may cause companies to violate data-protection laws in countries where the targeted data is stored, it added.

Microsoft said it has encountered "rising concerns among both current and potential customers overseas" and some customers have cited the ruling as they chose a foreign provider to store data.

"If this trend continues, the U.S. technology sector's business model of providing 'cloud' Internet-based services to enterprises, governments, and educational institutions worldwide will be substantially undermined," Microsoft said.

Lawyers for Apple and Cisco filed a brief Friday. The lawyers said some servers for Apple's iCloud service and Cisco are in other countries.

The lawyers said the ruling puts "Apple and other providers in the untenable situation of being forced to violate one nation's laws to comply with another.

In court papers last week, Verizon said the ruling, if allowed to stand, "would have an enormous detrimental impact on the international business of American companies, on international relations and on privacy."

It said the ruling "could cost U.S. businesses billions of dollars in lost revenue, undermine international agreements and understandings, and prompt foreign governments to retaliate by forcing foreign affiliates of American companies to turn over the content of customer data stored in the United States."

In court papers, AT&T said the ruling threatened to provide law enforcement with "a global information access tool without bounds."

In papers Friday, the Electronic Frontier Foundation, a civil liberties group, said the government's "approach poses a grave risk to privacy."

Explore further: Microsoft fights court order in test on overseas data

not rated yet
add to favorites email to friend print save as pdf

Related Stories

AT&T says it will publish reports on data requests (Update 2)

Dec 19, 2013

AT&T Inc. says it will publish reports on the number of requests for customer information that it receives from law enforcement agencies, the latest move in the telecommunications industry toward fuller disclosure amid debate ...

Microsoft says it snooped on Hotmail to track leak

Mar 21, 2014

Microsoft Corp., which has skewered rival Google Inc. for going through customer emails to deliver ads, acknowledged Thursday it had searched emails in a blogger's Hotmail account to track down who was leaking ...

Verizon reveals 320,000 US data queries in 2013

Jan 22, 2014

Verizon on Wednesday became the first major US telecom carrier to release a "transparency report," and said it received 320,000 data queries last year in the United States alone.

Secret court opens door to unsealing Yahoo! documents

Jul 16, 2013

The secret US court overseeing national security investigations has opened the door to declassifying documents related to the government's data collection program in a case involving Internet giant Yahoo!

Recommended for you

US seeks China's help after cyberattack

14 hours ago

The United States is asking China for help as it weighs potential responses to a cyberattack against Sony Pictures Entertainment that the U.S. has blamed on North Korea.

Impoverished North Korea falls back on cyber weapons

Dec 19, 2014

As one of the world's most impoverished powers, North Korea would struggle to match America's military or economic might, but appears to have settled on a relatively cheap method to torment its foe.

Five ways to make your email safer in case of a hack attack

Dec 19, 2014

The Sony hack, the latest in a wave of company security breaches, exposed months of employee emails. Other hacks have given attackers access to sensitive information about a company and its customers, such as credit-card ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

24volts
not rated yet Jun 16, 2014
I have to go with Microsoft and the other tech companies on this one. The US government has no legal right to anything that is stored in another country and those countries should be telling the nsa and whoever else in the gov wanting the stuff to 'f' off. I would really like to know why the US government thinks it can tell the rest of the world what to do.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.