subskrybent kanałów informacyjnych

Join EFF in Demanding a Digital Upgrade to 25-Year-Old Electronic Privacy Law

the Electronic Frontier Foundation - Pią, 2011-09-30 17:32

The year was 1986. Top Gun was the top movie, Super Mario Bros. 2 was the hot videogame, practically no one had ever heard of email, and mobile phones were clunky and expensive novelties the size of a brick.

On October 21st of that year, the President signed into law the Electronic Communications Privacy Act or "ECPA", to better protect our electronic privacy against unwarranted government snooping.

ECPA was forward-looking when Congress passed it, considering that the World Wide Web hadn't even been invented yet and that if you were savvy enough to have email you probably dialed up to a BBS to get it. But now, eons later in Internet time, technology has passed the law by.

ECPA has become outdated and the privacy standards that it applies to new technologies are unclear and often too weak. For example, the law doesn’t specifically address cell phone location tracking at all, and it allows the government to seize most emails without ever having to go to a judge. Meanwhile, no one is perfectly sure how it applies to newer online services like social networks and search engines. This gap between the law and the technology ultimately leaves everyone's privacy at risk.

Now, in the 21st century, when we store years-worth of our private emails in the Internet “cloud” and are all carrying tracking devices in our pockets in the form of our cell phones, we need an electronic privacy law upgrade that sends a clear message to law enforcement:

COME BACK WITH A WARRANT.

We at EFF have come together with a broad coalition of major Internet companies like Google and Microsoft and privacy organizations like the Center for Democracy & Technology and ACLU as part of the Digital Due Process coalition. The DDP coalition’s overriding goal is to transmit one simple message to Congress: If the government wants to track our cell phones, or see what web sites we’ve visited, or rummage through our Hotmail, or read our private messages on Facebook, or otherwise invade our electronic privacy, it should have to go to a judge and get a search warrant based on probable cause.

You can help us get that critical message to Congress just in time for ECPA’s 25th anniversary on October 21st. Join EFF, ACLU, CDT, the Bill of Rights Defense Committee, Americans for Tax Reform, the Competitive Enterprise Institute and TechFreedom in the fight to upgrade ECPA for the 21st century and sign our joint petition today.

And if you've already signed the petition, please remember to share it with your friends and social networking sites.

Announcing the Humble Frozen Synapse Bundle!

the Electronic Frontier Foundation - Śro, 2011-09-28 18:06

Just last year, the Humble Indie Bundle blazed onto the gaming scene with what seemed like an impossible business model: allow customers to pay what they want for DRM-free games, and let them choose how to distribute their contribution between the developers, the organizers, and two worthy tech charities. People supported EFF for online rights protection and Child's Play, which supplies games, toys, books, and cash to children’s hospitals. The result has been nothing short of miraculous, and we are happy to announce that the digital goodness is back with The Humble Frozen Synapse Bundle!

This iteration features the innovative tactical strategy game Frozen Synapse plus the game soundtrack. To sweeten the pot, customers who choose to give more than the average amount will also receive the entire Humble Frozenbyte Bundle suite, including Trine, Shadowgrounds: Survivor, Shadowgrounds, Splot, and Jack Claw!

We at EFF would like to extend our sincere gratitude to the generous gamers and forward-thinking indie game developers who have proven that a business can have a conscience, satisfy its customers, and thrive.

Righthaven's Losing Streak Continues in Colorado

the Electronic Frontier Foundation - Śro, 2011-09-28 15:05

In what is becoming a well-settled pattern, Righthaven again finds itself on the losing end of a motion, with its case thrown out and owing the defendant – here, Leland Wolf, proprietor of the It Makes Sense Blog – costs and attorneys' fees for bringing a baseless copyright case. The lawsuit, Righthaven v. Wolf, is also notable for being the leading case among more than 50 that were filed in Colorado. Pending a motion to dismiss, the Colorado court stayed the remaining cases. With this ruling, the court has hopefully rung the death knell for the other remaining live cases in that district (joining the Nevada cases that have also been dismissed.)

Some background: In March, Righthaven sued Mr. Wolf for alleging infringing a Denver Post photograph titled “TSA Agent performs enhanced pat-downs," by virtue of a parody of the photo posted on his blog. Mr. Wolf moved to dismiss the case for lack of subject matter jurisdiction; EFF filed an amicus brief supporting that motion, explaining that Righthaven lacks ownership of any exclusive right granted under Section 106 of the Copyright Act.

Judge John L. Kane agreed, holding that Righthaven assigned to the Denver Post’s parent “the bare right to sue for infringement – no more, no less.” As such, Righthaven was neither a “legal owner” nor a “beneficial owner” of the copyright, and consequently could not bring a suit under the Copyright Act.

To its credit, the court also recognized the enormous pressure the prospect of statutory damages (on top of the expense of litigation) can place on defendants, even those with meritorious defenses, and called out Righthaven’s business model for the settlement mill that it tried to be:

[A] party with a bare right to sue may file numerous infringement actions of questionable merit with the intention of extorting settlement agreements from innocent users. This possibility becomes even more likely when the financial viability of the entity filing suit depends upon the proceeds from settlement agreements and infringement suits. Even though copyright law expressly provides for an award of costs and reasonable attorney fees to a party prevailing in its defense of a meritless infringement action, the economic realities of securing counsel and paying in advance the costs of litigation turns this remedy into a Potemkin Village. Both fundamentally and practically, the reality is at odds with the constitutional prioritization of public access to copyrighted works.

The court’s opinion also highlighted the important balance that the copyright laws are intended to protect. Specifically,

[C]opyright law necessarily balances the derivative goals of rewarding the creative labor of authors of original works with the primary goal of promoting further creativity by allowing public access to copyrighted works.

We are pleased that the Court refused to allow Righthaven to proceed with a lawsuit based on a copyright that it never owned and never had any plans to exploit. Finding otherwise would frustrate the important balance the court highlighted, and “the public interest in access to copyrighted materials.” Well done, Judge Kane.

Who's Looking Over Your Digital Shoulder? A Reader Privacy Quiz for Californians

the Electronic Frontier Foundation - Śro, 2011-09-28 00:53

Books are books whether we read them in a library or on a Kindle or iPad, but California laws are lagging when it comes to protecting reader privacy in the digital age. That's why EFF is a supporter of the Reader Privacy Act, a bill that has passed the California legislature and is awaiting Governor Brown's signature to become law.

Who's looking over Californians' digital shoulder and why does it matter? You can take our quiz to find out what's at risk -- and how Californians can protect their private reading records. Then tell Governor Brown to sign the Reader Privacy Act to ensure Californians don’t have to compromise their privacy when downloading electronic books, using online book services or even buying books from their local bookstore.

Who's on the Intelligence Oversight Board? Government Won't Say

the Electronic Frontier Foundation - Wto, 2011-09-27 22:10

San Francisco - The Electronic Frontier Foundation (EFF) filed suit today against the Office of the Director of National Intelligence (ODNI) demanding records of who is on the Intelligence Oversight Board (IOB) -- the presidentially appointed, civilian panel in charge of reviewing all misconduct reports for American intelligence agencies.

The IOB is supposed to alert the president and attorney general when it spots behavior that is unlawful or contrary to executive order. However, in his nearly three years in office, President Obama has not yet announced any appointments to the IOB. EFF's suit comes after the ODNI refused to respond to a Freedom of Information Act (FOIA) request for membership, vacancies, and other information about the IOB made earlier this year.

"The IOB has a critically important mission – civilian oversight of America's intelligence activities. The board exists to make sure government agencies are not overstepping their authority and abusing citizens' rights," said EFF Open Government Legal Fellow Mark Rumold. "History has shown that intelligence agencies overseeing their own behavior is like the fox guarding the henhouse. If the IOB is ineffective, impaired, or short-staffed, that's information Americans need to know."

EFF's ongoing FOIA litigation work has already uncovered widespread violations in intelligence investigations. Most recently, EFF revealed that the U.S. Army issued three National Security Letters (NSLs) for phone records, even though the law authorizes only the FBI to make these extraordinary requests for information. EFF also obtained documents detailing how the Army improperly attempted to investigate participants at a law school conference on Islamic law.

"We're trying to create a picture of the federal government's intelligence violations as Congress considers updates and changes to current surveillance law and oversight," said EFF Staff Attorney Jennifer Lynch. "Part of that picture is who is on the IOB. We're asking the government to follow the law and release the records on IOB membership."

For the full complaint in EFF v. ODNI:
https://www.eff.org/files/filenode/FOIA_IOB/ODNIIOBComplaint_92711.pdf

For more on the Defense Department intelligence violations:
https://www.eff.org/foia/intelligence-agencies-misconduct

Contacts:

Mark Rumold
Open Government Legal Fellow
Electronic Frontier Foundation
mark@eff.org

Jennifer Lynch
Staff Attorney
Electronic Frontier Foundation
jlynch@eff.org

Stop the Piecemeal: Obama Administration Should Fully Free Communications Tech Exports to Syria (& Companies Should Help)

the Electronic Frontier Foundation - Pon, 2011-09-26 18:00
Co-authored by Cindy Cohn

EFF has long complained about export restrictions by the U.S. Departments of Treasury and Commerce that deny citizens access to vital communications tools. In the past, this has affected, among others, Zimbabwean activists trying to obtain hosting providers, Syrian businesspeople networking on LinkedIn, and ordinary Iranians trying to download web browsers.

The government has been responding, albeit in piecemeal fashion: in 2010, technology companies were granted a general license from the Department of Treasury’s Office of Foreign Assets Control (OFAC) to export communications tools that could “boost Internet-based communication” and the “free flow of information” Iranian, Sudanese, and Cuban citizens – but since then we’ve seen a wave of democracy activism reach Syria too, something EFF commented upon in July.

Syria Two-Step

Now we've seen some movement on Syria, but not enough. On August 18, amidst increasing regime violence toward opposition forces, the White House issued an Executive Order blocking a new range of transactions, including (Section 2(b)) “the exportation, re-exportation, sale, or supply, directly or indirectly, from the United States, or by a United States person, wherever located, of any services to Syria,” in light of the Syrian government’s escalating violence against civilians. This seemed like very bad news for Syrians who want to use communications tools to help with the protests.

Fortunately, recognizing the importance of communications tools and social networks to Syrian activists, the State Department’s Office of Foreign Assets Control (OFAC) quickly issued a general license allowing the export of “certain services incident to Internet-based communications.” The license specifically notes that transactions that are not otherwise exempt from certain earlier prohibitions, and that are related to the exchange of personal communications over the Internet, are permitted. Examples specifically laid out in the license include instant messaging, chat and email, social networking, photo- and video-sharing, web browsing, and blogging. The license also lays out what is not authorized for exportation, and while the language is a little unclear, it appears to allow export of technologies and services for all purposes other than those for commercial endeavors – so democracy activists should be in the clear.

But the story doesn’t end there. Restrictions from the Department of Commerce’s Bureau of Industry and Security (BIS) still appear to prevent communications tools and services from being exported to Syrians without a license. We think that because of these restrictions, Syrians still cannot access Google products Chrome and Earth, cannot download Java, among various other tools, and cannot use hosting services like Rackspace, SuperGreenHosting and others.

So the Treasury Department’s OFAC is out of the way, but the Commerce Department’s BIS restrictions remain, meaning that companies are still blocking certain communications tools from getting to Syrians. And until the government makes the bigger step of stopping the piecemeal nature of their relaxation of restrictions, we’ll have the same problems we’ve long complained about. These sorts of export restrictions are overbroad and contain elements which have no effect on the Syrian regime, while preventing Syrian citizens from accessing a wealth of tools that are available to their activist counterparts in neighboring countries and around the world. Furthermore, the penalties that result in violations of the regulations can be severe, so amidst confusing regulations, companies appear to be implementing broad restrictions on their services rather than run any risk. This happened recently when the open-source platform SourceForge blocked the IP addresses of users in five sanctioned countries.

What Needs to Happen

Two things ought to be done here, as soon as possible. First, and most importantly, the government -- the whole government -- should remove the license requirements and restrictions for communications technologies used by democracy activists. In the short term this should happen for Syria, in light of the ongoing struggle there. In the longer term, it’s time for the U.S. to stop this piecemeal approach and affirmatively allow unlicensed distribution of communications tools and services to people in all countries of the world.

Second, companies hesitant about allowing Syrians to use communications tools and services should take the simple steps necessary to seek a BIS license. While we don't think that such licenses should be required, the process is in fact quite simple, and frankly, the Syrians cannot wait. A company that wishes to export to Syria can file an online application with the Commerce Department’s Bureau of Industry and Security (BIS) for a license, which then should be resolved within 90 days. While registration is required before applying, any company that has ever gotten an export license before is likely already registered. Alternatively, companies may also request “interpretative guidance” as to whether or not they require a license from BIS, which takes only 30 days.

EFF Wants to Help

Given the situation on the ground in Syria, we need to focus there first. We reiterate our call for the Obama administration to affirmatively make clear throughout its various agencies that providing digital communications and information tools to citizens around the world, especially those under repressive governments, is not only legal, but encouraged. And in the meantime, we challenge those companies who are concerned about the BIS restrictions to take the simple steps necessary to apply for a license. In fact, we think this is so important that EFF would be willing to help a company that wants to take these steps but doesn’t have the resources to do it. Companies should contact EFF's Legal Director, Cindy@eff.org, if you'd like our help.

Don't Let Privacy Law Get Stuck in 1986: Demand a Digital Upgrade to the Electronic Communications Privacy Act

the Electronic Frontier Foundation - Pon, 2011-09-26 06:57

Sign now and we will add your name to this petition and also send a letter to your Representatives and Senators in time for the 25th anniversary of ECPA being signed into law:

Petiton language:
The government should be required to go to a judge and get a warrant before it can read our email, access private photographs and documents we store online, or track our location using our mobile phones. Please support legislation that would update the Electronic Communications Privacy Act of 1986 (ECPA) to require warrants for this sensitive information and to require the government to report publicly on the use of its surveillance powers.

ECPA was forward-looking when it was signed into law in October of 1986, considering that the World Wide Web hadn't even been invented yet. But now, ECPA has become outdated. The privacy standards that it applies to new technologies are unclear and weak. For example, the law doesn't specifically address cell phone location tracking at all, and it allows the government to seize most emails without ever having to go to a judge. Meanwhile, no one is perfectly sure how it applies to newer online services like social networks and search engines.

This gap between the law and the technology ultimately leaves us all at risk. Add your name now to sign the petition supporting ECPA reform, and feel free to add a personalized intro to the text below that will be sent to your legislators before the 25th anniversary of ECPA.

Subskrybuj zawartość