The Beginning of the End of Data Retention: Via EFF.org Updates.

Last week, the German Constitutional Court issued a much-anticipated decision, striking down its data retention law as violating human rights. It was an important victory for Europe’s Freedom Not Fear movement, which was formed to oppose the EU Data Retention Directive. But it was also a reminder of the political work which remains to be done to defeat it.

When the European Union first passed the Data Retention Directive in 2006, despite a hard-fought campaign by European activists, it seemed like the beginning of the end for Internet privacy. The directive sought to require telecommunications service providers operating in Europe to retain a detailed history of each of their customers' activity for up to 2 years for possible use by law enforcement; including phone calls made and emails sent and received.

The response from European citizens was swift and outraged. Under the banner of Freedom Not Fear, mass protests were held in cities all across Europe and beyond. [ Read more ... ]

Better U.S. Net Rules for Iran, Cuba and Syria: Via EFF.org Updates.

The Treasury's Office of Foreign Assets Control (OFAC) announced on Monday key amendments to the regulation of United States sanctions against Cuba, Iran and Sudan.

The new provisions give a blanket license for the export of "certain services and software incident to the exchange of personal communications over the Internet, such as instant messaging, chat and email, social networking, sharing of photos and movies, web browsing, and blogging, provided that such services are publicly available at no cost to the user."

This clarification is just what EFF called for last June, and will go a long way to allay concerns that online service providers based in the U.S. cannot offer their services in those countries. Previously, despite the well-known freedom-enhancing capabilities of services like Twitter and Facebook in repressive regimes like Iran, it was unclear whether those companies could even offer their services there without falling foul of the United State's broad prohibition on the export of goods and services to these regimes. [ Read more ... ]

New "Smart Meters" for Energy Use Put Privacy at Risk: Via EFF.org Updates.

The ebb and flow of gas and electricity into your home contains surprisingly detailed information about your daily life. Energy usage data, measured moment by moment, allows the reconstruction of a household's activities: when people wake up, when they come home, when they go on vacation, and maybe even when they take a hot bath.

California's PG&E is currently in the process of installing "smart meters" that will collect this moment by moment data—750 to 3000 data points per month per household—for every energy customer in the state. These meters are aimed at helping consumers monitor and control their energy usage, but right now, the program lacks critical privacy protections.

That's why EFF and other privacy groups filed comments with the California Public Utilities Commission Tuesday, asking for the adoption of strong rules to protect the privacy and security of customers' energy-usage information. Without strong protections, this information can and will be repurposed by interested parties. It's not hard to imagine a divorce lawyer subpoenaing this information, an insurance company interpreting the data in a way that allows it to penalize customers, or criminals intercepting the information to plan a burglary. Marketing companies will also desperately want to access this data to get new intimate new insights into your family's day-to-day routine–not to mention the government, which wants to mine the data for law enforcement and other purposes. [ Read more ... ]

All Your Apps Are Belong to Apple: The iPhone Developer Program License Agreement: Via EFF.org Updates.

The entire family of devices built on the iPhone OS (iPhone, iPod Touch, iPad) have been designed to run only software that is approved by Apple—a major shift from the norms of the personal computer market. Software developers who want Apple's approval must first agree to the iPhone Developer Program License Agreement.

So today we're posting the "iPhone Developer Program License Agreement"—the contract that every developer who writes software for the iTunes App Store must "sign." Though more than 100,000 app developers have clicked "I agree," public copies of the agreement are scarce, perhaps thanks to the prohibition on making any "public statements regarding this Agreement, its terms and conditions, or the relationship of the parties without Apple's express prior written approval." But when we saw the NASA App for iPhone, we used the Freedom of Information Act (FOIA) to ask NASA for a copy, so that the general public could see what rules conrolled the technology they could use with their phones. NASA responded with the Rev. 3-17-09 version of the agreement (it has reportedly been revised somewhat since—please send us the current version if you are able). [ Read more ... ]

Thousands Sign Petition Protesting Net Neutrality Loopholes for Copyright Enforcement: Via EFF.org Updates.

San Francisco - The Electronic Frontier Foundation (EFF) submitted a petition signed by more than 7000 people to the Federal Communications Commission (FCC) today demanding that the agency close a loophole for copyright enforcement in its proposed regulations for network neutrality.

The petition is part of EFF's reply comments in the FCC's net neutrality rulemaking. The FCC's proposed rules generally prohibit ISPs from discriminating or blocking lawful content, but include a loophole for 'reasonable network management' by ISPs. The proposed rules then define 'reasonable network management" to include measures taken by ISPs to block unlawful content or transmissions. This exception would effectively permit ISPs to violate net neutrality rules and block lawful activities in the name of copyright enforcement.

"We can't afford to let lawful speech become collateral damage in Hollywood's war on copyright infringement," said EFF Senior Staff Attorney Fred von Lohmann. "Net neutrality regulations should not excuse ISPs that interfere with lawful content just because they claim they were acting as copyright cops." [ Read more ... ]

The Weakest Link Redux: Via EFF.org Updates.

We often criticize DMCA takedown abuse here at EFF, but last week's Cryptome snafu highlights another facet of the problem: how a DMCA takedown for one item can result in the removal of lots of lawful material.

To recap, Cryptome posted Microsoft’s global criminal compliance manual. Microsoft sent a DMCA takedown notice to Cryptome’s domain name registrar and web hosting provider, Network Solutions, alleging that the post infringed copyright. Under the DMCA, a web hosting provider is protected from copyright infringement liability if, among other things, it “expeditiously” disables access to material properly identified in a DMCA takedown notice. Network Solutions asked Cryptome to remove the Microsoft compliance manual. Cryptome refused explaining that the document was posted in order to help the public better understand Microsoft's practices, and followed up with a DMCA counternotice. Network Solutions promptly shut down the entire Cryptome website. Thus, a complaint about a single document caused significant collateral damage to the perfectly legal material on Cryptome. [ Read more ... ]

YouTube's Content ID (C)ensorship Problem Illustrated | Electronic Frontier Foundation: Via EFF - Electronic Frontier Foundation.

As we've pointed out repeatedly, poor design decisions in YouTube's "Content ID" system have resulted in over-blocking of videos that remix copyrighted materials. Today we got perhaps the most vivid example of the problem: the "silencing" of a lecture by Prof. Larry Lessig about the cultural importance of remix creativity. This is just the latest of many examples. We've been on YouTube's case for more than two years about this problem, and it's high time for YouTube to fix the Content ID system to respect the kinds of fair uses that are at the heart of remix creativity.

How did Prof. Lessig's video trigger the Content ID block? He included "snippets" (I use that word intentionally, as Google does in the context of its own Book Search product, to refer to small portions that should qualify as a fair use) from several remix videos. [ Read more ... ]

Unintended Consequences: 12 Years Under the DMCA: Via EFF.org Updates.

EFF today released Unintended Consequences: 12 Years Under the DMCA. This is the sixth update to the report, which aims to catalog all the reported instances where the DMCA's ban on tampering with DRM have been abused to stymie fair use, free speech, and competition, rather than to attack "piracy."

Congress enacted the DMCA's ban on bypassing DRM at the urging of entertainment industry lobbyists who argued that DRM backed by law would quell digital copyright infringement. Of course, 12 years later, that exactly hasn't worked out. Nor is it likely to ever work out. But lots of industries have recognized that these provisions of the DMCA are good for other things—like impeding scientific research and legitimate competition. The Unintended Consequences report collects these stories, including oldies like Lexmark's effort to block toner cartridge refilling and new cases like the lawsuit against RealDVD. [ Read more ... ]

EFF Panel in Pittsburgh: Architecture Is Policy: Via EFF.org Updates.

Pittsburgh - On Monday, March 8, at 4 p.m., board members of the Electronic Frontier Foundation (EFF) will discuss the societal impact of technology design in a panel at Carnegie Mellon University.

Technology design can maximize or decimate our basic rights to free speech, privacy, property ownership, and creative thought. The panel will discuss some good and bad design decisions through the years and the ramifications of those decisions.

Monday's panel is free and open to the public.

WHAT:
Architecture Is Policy: The Legal and Social Impact of Technical Design Decisions

WHEN:
4 p.m.
Monday, March 8 [ Read more ... ]

Cryptome's Publication of Microsoft's Compliance Manual is a Fair Use: Via EFF.org Updates.

Yesterday, Microsoft used a Digital Millennium Copyright Act (DMCA) takedown notice to demand that a copy of the "Microsoft® Online Services Global Criminal Compliance Handbook" (the Compliance Manual) be removed from Cryptome, a security website. As a result, Network Solutions felt obliged to takedown the entire Cryptome.org domain, a repository for thousands of important and controversial documents.

As is often the case, the ensuing uproar simply called more attention to the document in question. Yesterday evening, Microsoft wrote to Network Solutions and withdrew its takedown demand, while insisting that its copyright concern was nevertheless legitimate.

We appreciate that Microsoft acted quickly to correct its error, but are still disappointed that Microsoft nonetheless insists that, in the words of Evan Cox, outside counsel for Microsoft, "Microsoft has a good faith belief that the distribution of the file that was made available at that address infringes Microsoft's copyrights."

To the contrary, as we explain below, Cryptome's publication of the Compliance Manual is a clear fair use under the Copyright Act. [ Read more ... ]

Epic Fail in Congress: USA PATRIOT Act Renewed Without Any New Civil Liberties Protections: Via EFF.org Updates.

Yesterday evening, the U.S. House of Representatives voted overwhelmingly to renew three expiring provisions of the USA PATRIOT Act, after the Senate abandoned the PATRIOT reform effort and approved the extension by a voice vote on Wednesday night.

Disappointingly, the government's dangerously broad authority to conduct roving wiretaps of unspecified or "John Doe" targets, to secretly wiretap of persons without any connection to terrorists or spies under the so-called "lone wolf" provision, and to secretly access a wide range of private business records without warrants under PATRIOT Section 215 were all renewed without any new checks and balances to prevent abuse. Despite months of vigorous debate, when PATRIOT renewal bills providing for greater oversight and accountability were approved by the Judiciary Committees of both the House and the Senate, Democratic leaders' push for reform fizzled in the face of staunch Republican opposition buoyed by recent hot-button events such as the attempted bombing of an airliner on Christmas Day and the shooting at Fort Hood. [ Read more ... ]

Pentagon Discloses Hundreds of Reports of Possibly Illegal Intelligence Activities: Via EFF.org Updates.

The Department of Defense has released more than 800 heavily-redacted pages of intelligence oversight reports, detailing activities that its Inspector General has “reason to believe are unlawful.” The reports are the latest in an ongoing document release by more than a half-dozen intelligence agencies in response to a Freedom of Information Act (FOIA) lawsuit filed by EFF in July 2009.

The reports, submitted to the Intelligence Oversight Board (IOB) by various Department of Defense components, cover the period from 2001 through 2008. The IOB’s role within the Executive Office of the President is to ensure that each component of the intelligence community works within the Constitution and all applicable laws. As such, the Inspector General of each intelligence agency is required to submit periodic reports to the IOB, which in turn is required to forward to the Attorney General any report identifying an intelligence activity that violates the law. Intelligence oversight reporting is rarely disclosed to the public. [ Read more ... ]

Redbox, Movie Studios, and Subversion of First Sale: Via EFF.org Updates.

As we've explained before, a number of Hollywood movie studios have been on the war path against Redbox, the kiosk-based DVD rental operation, because Redbox offers DVD new releases for rent at 99 cents per night. Thanks to the first sale doctrine in copyright law, Redbox's business is completely legal—the company buys legitimate DVDs to stock their kiosks. Great for consumers, and a great alternative for those who might otherwise opt for an unauthorized alternative online.

But Hollywood wasn't pleased, and took a number of steps to interfere with Redbox's business, which in turn led to lawsuits. [ Read more ... ]

The Time Has Come to Protect Reader Privacy: Via Blog of Rights: Official Blog of the American Civil Liberties Union.

(Originally posted on the ACLU of Northern California's Bytes and Pieces blog.)

Today, Google and the authors and publishers who sued Google are hoping that United States District Court Judge Denny Chin will approve their settlement and allow Google to launch the world's largest digital library and bookstore combined.

While the ACLU strongly supports increased access to books, we have filed an objection to this settlement on behalf of a coalition of authors and publishers — including best sellers Michael Chabon and Jonathan Lethem and publisher Lawrence Ferlenghetti — who have serious concerns that reader privacy and free speech is being left out of the story. They think that a settlement that does not protect the privacy and free speech of readers is not fair to their readers, or fair to them. That's why we're in federal court in New York today, along with the Electronic Frontier Foundation and the Samuelson Law, Technology, and Public Policy Clinic at the University of California, Berkeley, School of Law, urging Judge Chin to reject the settlement and insist on one with greater privacy and free speech protections for users. [ Read more ... ]

ACLU, EFF And Others In Court Today To Challenge Google Book Search Settlement: Via American Civil Liberties Union.

Groups And Prominent Authors Say Settlement Doesn't Protect Free Speech Or User Privacy

FOR IMMEDIATE RELEASE
CONTACT: (212) 549-2666; media@aclu.org  

NEW YORK – The American Civil Liberties Union, Electronic Frontier Foundation (EFF) and Samuelson Law, Technology, and Public Policy Clinic at the University of California, Berkeley, School of Law are in federal court today urging a judge to reject the proposed settlement in a lawsuit over Google Book Search because it does not include critical privacy protections for users of the online book materials. The groups filed an objection to the settlement in September 2009 on behalf of a coalition of more than two dozen authors and publishers, including ACLU Executive Director Anthony D. Romero and best-selling novelists Michael Chabon and Jonathan Lethem.

"As digital book programs like Google Book Search advance, more and more people will turn to the Internet for their reading needs. Readers should be able to expect as much privacy when they're reading a book on a Web site as they do in a library or bookstore," said Aden Fine, staff attorney with the ACLU First Amendment Working Group. "People should feel that they are free to read on the Internet without being monitored by private companies or the government." [ Read more ... ]

Cell Phone Users: Your Privacy is at Risk: Via Blog of Rights: Official Blog of the American Civil Liberties Union.

(Originally posted on Philly.com)

If you own a cell phone, you should care about the outcome of a case scheduled to be argued in federal appeals court in Philadelphia tomorrow. It could well decide whether the government can use your cell phone to track you — even if it hasn't shown probable cause to believe it will turn up evidence of a crime.

The American Civil Liberties Union, the Electronic Frontier Foundation and the Center for Democracy and Technology will ask the court to require that the government at least show probable cause before it can track your whereabouts.

Although most people don't realize it, cell phones double as tracking devices. Newer phones contain GPS chips, the same technology that allows car navigation systems to know where you are and give directions ("Turn right now"). But even older phones that don't have chips can be tracked by knowing the location of the cell towers they use to connect to a network. [ Read more ... ]

Digital Books and Your Rights: A Checklist for Readers: Via EFF.org Updates.

San Francisco - What questions should consumers ask before buying a digital book or reader? Today the Electronic Frontier Foundation (EFF) published "Digital Books and Your Rights," a checklist for readers considering buying into the digital book marketplace.

Over the last few months, the universe of digital books has expanded dramatically, with products like Amazon's Kindle, Google Books, Internet Archive's Text Archive, Barnes and Noble's Nook, and Apple's upcoming iPad poised to revolutionize reading. But while this digital books revolution could make books more accessible than ever before, there are lingering questions about the future of reader privacy, consumers' rights, and potential censorship.

EFF's checklist outlines eight categories of questions readers should ask as they evaluate new digital book products and services, including: [ Read more ... ]

EFF to Wisconsin: Just Say No to Warrantless GPS Tracking: Via EFF.org Updates.

ACLU National, ACLU of Wisconsin, and EFF have filed an amicus brief in the Wisconsin Supreme Court arguing that the law of that state prohibits police from installing a GPS device on you or your car without first getting a warrant from a judge. A growing number of state high courts have decided that their citizens should be protected from suspicionless GPS tracking, recognizing that uninterrupted around-the-clock surveillance is qualitatively different from ordinary police observations of a suspect. In the Wisconsin case, People v. Sveum, we ask the court to follow the example of Washington, New York, and Massachusetts and find that GPS tracking is a search that requires a warrant. EFF participated as amicus in the New York case, People v. Weaver, and is awaiting a decision under the federal Constitution in U.S. v. Jones, a GPS tracking case pending in the Court of Appeals for the District of Columbia. [ Read more ... ]

EFF Fights Illegal Search of Cell Phone in Thursday Hearing: Via EFF.org Updates.

Redwood City, Calif. - On Thursday, February 18, at 9:00 a.m., the Electronic Frontier Foundation (EFF) will urge a judge in Redwood City, California, to suppress evidence illegally gathered from an iPhone.

In People v. Taylor, police in Daly City, California, seized the suspect's phone during his arrest. Hours later, investigators searched through the data on the device -- including contacts, called phone numbers, emails, text messages, Internet search history, and photos -- without a search warrant. Police later obtained a search warrant for the phone, based in part on information gathered during the initial illegal search.

In Thursday's hearing, EFF Senior Staff Attorney Marcia Hofmann will ask the court to suppress the illegally gathered evidence and quash the warrant based on that improperly collected information. [ Read more ... ]

Protect Your Privacy on Google Buzz: Via EFF.org Updates.

Google's new social networking service, Buzz has upset a lot of people who have inadvertently posted the list of the people they email and chat with most frequently on their profile. If you took the default options and didn't opt-out or edit this list during profile creation, the list becomes part of your profile. Since who you email with frequently can often be private information (reporters and sources, doctors and patients, former significant others, etc), making this list public can create serious problems.

If you're going to use Google Buzz, we recommend that you opt-out during profile creation. If you have already created a profile, change it to private immediately. Then go through the suggested list, and edit it as appropriate before making it public again. PC World has a helpful privacy checklist to help users understand the privacy implications of Google Buzz options. [ Read more ... ]

Cellular user privacy at risk: Via Philadelphia Inquirer .

If you own a cell phone, you should care about the outcome of a case scheduled to be argued in federal appeals court in Philadelphia tomorrow. It could well decide whether the government can use your cell phone to track you - even if it hasn't shown probable cause to believe it will turn up evidence of a crime.

The American Civil Liberties Union, the Electronic Frontier Foundation and the Center for Democracy and Technology will ask the court to require that the government at least show probable cause before it can track your whereabouts.

Although most people don't realize it, cell phones double as tracking devices. Newer phones contain GPS chips, [ Read more ... ]

Appeals Court Backs EFF Push for Telecom Lobbying Documents Disclosure: Via EFF.org Updates.

San Francisco - Today a federal appeals court rejected a government claim of "lobbyist privacy" to hide the identities of individuals who pressured Congress to grant immunity to telecommunications companies that participated in the government's warrantless electronic surveillance of millions of ordinary Americans. As the court observed, "There is a clear public interest in public knowledge of the methods through which well-connected corporate lobbyists wield their influence."

The Electronic Frontier Foundation (EFF) has been seeking records detailing the telecoms' campaign for retroactive legal immunity under the Freedom of Information Act (FOIA). Telecom immunity was enacted as part of the FISA Amendments Act of 2008.

"Today's ruling is an important one for government and corporate accountability," said EFF Staff Attorney Marcia Hofmann. "The court recognized that paid lobbyists trying to influence the government to advance their clients' interests can't hide behind privacy claims to keep their efforts secret." [ Read more ... ]

Court Keeps White House Spy Docs Secret: Via Threat Level.

A federal appellate panel on Tuesday blocked a court order requiring disclosure of e-mail between the White House, Justice Department, National Security Agency and Office of the Director of National Intelligence — communications that paved the way for new spy legislation.

The 2008 messages were a precursor to legislation that year to kill litigation against the nation’s carriers for funneling Americans’ communications to the National Security Agency without warrants.

The decision by the 9th U.S. Circuit Court of Appeals reverses a California judge who ordered disclosure of those e-mails and the names of telco company lobbyists who pushed for the legislation. The Electronic Frontier Foundation, a civil rights group in San Francisco, sought the e-mail and lobbyist information under a Freedom of Information Act claim. [ Read more ... ]

EFF Asks Court to Suppress Evidence Illegally Gathered From Password-Protected Phone: Via EFF.org Updates.

Our cell phones aren't just for calls anymore. They hold our address books, our calendars, our emails, and our grocery lists. They may even include things like a list of questions to ask your doctor, pictures of your girlfriend, or URLs of web sites you've visited. When can police search your phone and look at all this information?

That's the question that EFF is asking a court in California to consider. In People v. Taylor, police in Daly City, California seized a suspect's iPhone during his arrest. Hours later, investigators bypassed the password and searched through the data on the device without a search warrant. After the officers realized that the information was too extensive to write down, they finally obtained a warrant to search the phone. [ Read more ... ]

Google Superbowl Ad Explains The Need for Search Privacy: Via EFF.org Updates.

Google's ad during yesterday's Superbowl explained in less than a minute how the story of someone's life can be pieced together from their search queries. Using only the search terms and user's clicks of the search results, Google told the story of a user who seeks love while studying abroad in Paris, finds it, moves to Paris, marries and has a child.

[ Read more ... ]