Coalition wants US privacy law revamped for Internet Age

Mar 31, 2010 by Glenn Chapman
The logo for Microsoft at their office in Herndon, Virginia. Internet giants including Microsoft and Google have joined US privacy groups and academics in a campaign to get outdated US privacy laws revamped for the Internet Age.

Internet giants including Microsoft and Google have joined US privacy groups and academics in a campaign to get outdated US privacy laws revamped for the Internet Age.

"Technology has changed dramatically in the last 20 years, but the law has not," said Center for Democracy and Technology (CDT) public policy vice president Jim Dempsey.

CDT was part of a freshly announced Digital Due Process Coalition that petitioned federal law makers in Washington to give personal information stored online privacy guards on par with letters or pictures kept in homes.

"The traditional standard for the government to search your home or office and read your mail or seize your personal papers is a judicial warrant," Dempsey said Tuesday in a conference call with reporters.

"The law needs to be clear that the same standard applies to email and documents stored with a service provider."

Coalition members took aim at an Electronics Communications Privacy Act (ECPA) enacted in the United States in 1986, before many of the Internet technologies woven into today's lifestyles.

"1986 was light years ago in Internet terms and it is time to update ECPA," Dempsey said during a Tuesday conference call with reporters.

"Technology has changed dramatically, particularly with the emergence of location-based services and the transfer of massive amounts of data into the cloud."

The popularity of smartphones with global satellite positioning features has led to a hot trend of companies offering services that play off of where people are at any given moment.

The recent added momentum to a shift toward people using software programs hosted as services in the Internet "cloud" instead of buying and installing applications on machines.

People are also increasingly storing personal information, pictures, and videos at online or data storage websites.

US laws about what access police or governments can get to personal data stored online needs to be clarified in ECPA, according to coalition members.

Police should need warrants signed by judges to get email, pictures, location information or other personal data stored online for people at Internet firms, the group contended.

Outdated ECPA contains illogical, unclear or inconsistent references that create confusion or friction between Internet firms, customers, and , said Microsoft senior attorney Michael Hintze.

"As people start moving documents from file draws to computers and into the cloud we don't believe the balance between privacy and law enforcement should be turned on its head," Hintze said during the conference call.

"The law protects files in your home and we don't think files should be any less protected in the cloud."

Recommendations sent to US lawmakers on Tuesday included modifying ECPA to ensure that court-issued warrants are needed to get hold of email or other communications people store with Internet service providers.

The law currently eliminates need for warrants in cases of messages left in Web-based email accounts for more than 180 days, according to Dempsey.

The coalition wants EPCA to require court warrants to compel Internet services to reveal location information or for blanket requests regarding identities of large numbers of subscribers.

"We have a statute that addresses a bygone era," said Richard Salgado, senior counsel for law enforcement and information security at .

"We want to adjust it to what users expect of their privacy."

The coalition includes online auction pioneer eBay, telecom colossus AT&T and computer chip titan Intel.

Explore further: Judge won't free Russian accused of hacking in US

add to favorites email to friend print save as pdf

Related Stories

Microsoft raises cloud computing concerns

Nov 05, 2009

Packaged software powerhouse Microsoft on Thursday released a paper outlining privacy concerns businesses should consider prior to leaping into the computing "cloud."

Privacy group urges probe of Google cloud services

Mar 18, 2009

A US electronic privacy group has called for the Federal Trade Commission (FTC) to investigate the security and privacy of Google's Web-based products such as email and photo services.

Rewriting European privacy law for digital age

Jan 31, 2010

European legislation covering the protection of private data is being dragged into the digital age in a potential threat for social networking sites like Facebook where users display foibles, often without ...

Watchdog: Facebook violates Canadian privacy law

Jul 16, 2009

(AP) -- Canada's privacy commissioner says the online social networking site Facebook breaches Canadian law by keeping users personal information indefinitely after members close their accounts.

Recommended for you

Social network challenges end in tragedy

6 hours ago

Online challenges daring people to set themselves ablaze or douse themselves in ice water are racking up casualties and fueling wonder regarding idiocy in the Internet age.

States debate digital currency

7 hours ago

Now that consumers can use digital currencies like bitcoin to buy rugs from Overstock.com, pay for Peruvian pork sandwiches from a food truck in Washington, D.C., and even make donations to political action committees, states ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

gwrede
not rated yet Apr 05, 2010
Heck, _everybody_ needs these laws rewritten. Multinationals, the Government itself, small firms, citizens, even illegal aliens.

First, we need to actually define *the purposes* and *against what erosion of complete privacy* we specifically need legalised transgressions of privacy.

Second, we need to enumerate the media and circumstances.

Third, knowing the purposes, modes of erosion, the media and the circumstances, we need to try to work out a high-level definition of the goal. This definition, obviously, has to be some kind of compromise between the parties and their goals, as well as the "objectively" seen act/result pairs.

Fourth, write the law such that it "ages" as slowly as possible. (Avoid undue detail, emphasise goals, not trivia.)

Well, char-count is up. Hail superficial, pseudo-witty hip-shots and below-belt cheap punches!!!! Death to serious entries and prestige of the site!!!

(PS, triple the char-count, and we get rid of unwanted reader/writers of these comments.)