EPIC Alert 22.12

======================================================================= E P I C A l e r t ======================================================================= Volume 22.12 June 30, 2015 ----------------------------------------------------------------------- Published by the Electronic Privacy Information Center (EPIC) Washington, DC http://www.epic.org/alert/epic_alert_22.12.html "Defend Privacy. Support EPIC." http://epic.org/support ======================================================================= Table of Contents ======================================================================= [1] Supreme Court: No Warrantless Searches of Hotel Guest Registries [2] Massive Government Data Breach Even Worse than Reported [3] EPIC Files FTC Complaint Against Uber over Use of Customer Data [4] EPIC Calls for Improved Oversight of 'EO 12333' Surveillance [5] FCC Implements Strict Rules to Halt Unwanted Telemarketing [6] News in Brief [7] EPIC in the News [8] EPIC Book Review: 'Data and Goliath' [9] Upcoming Conferences and Events TAKE ACTION: Keep personal information Out of the WHOIS directory! SIGN Petition: https://www.savedomainprivacy.org/sign-the-petition/ EMAIL Comments to ICANN: comments-ppsai-initial-05may15@icann.org SUPPORT EPIC: https://epic.org/support ======================================================================= [1] Supreme Court: No Warrantless Searches of Hotel Guest Registries ======================================================================= The US Supreme Court has struck down a Los Angeles hotel registry inspection ordinance after ruling that the law violated the Fourth Amendment. The ordinance, challenged in the case Los Angeles v. Patel, required city hotels to collect for warrantless police inspection guest names, drivers licenses, vehicle information, payment information and length of stay for every guest. Local hotel owners sued the city on the grounds that the ordinance was unconstitutional. The hotel operators won in a California federal appeals court, which the city then appealed to the Supreme Court. Writing for the majority, Justice Sonia Sotomayor explained that "facial challenges," or attacks on the statute itself rather than a particular application, under the Fourth Amendment "are not categorically barred or especially disfavored." As to the Fourth Amendment challenge, Justice Sotomayor stated that with only a few exceptions, "searches conducted outside the judicial process" are "per se unreasonable." EPIC, joined by 36 technical experts and legal scholars, filed a "friend of the court" brief in Patel. EPIC argued that "guest registries should not be made routinely available to the police for inspection, and they should not be collected or retained for that purpose" and traced the history of US hotels as meeting places for organizations, citing the landmark Supreme Court case NAACP v. Alabama. "Individuals have a constitutional right to gather at hotels for political and religious purposes without being subject to police inspection," EPIC wrote. US Supreme Court: Opinion in City of LA v. Patel (Jun. 22, 2015) https://epic.org/amicus/patel/Opinion.pdf EPIC: City of Los Angeles v. Patel https://epic.org/amicus/patel/ EPIC: "Friend of the Court" Brief in LA v. Patel (Jan. 30, 2015) https://epic.org/amicus/patel/EPIC-Amicus-Brief.pdf ======================================================================= [2] Massive Government Data Breach Even Worse than Reported ======================================================================= A congressional hearing on the Office of Personnel Management data breach has continued to reveal the extent of what may be the most significant breach in US history. OPM initially reported that the personal information of 4 million US government employees had been compromised, but now has reported a second breach that may affect more than 18 million people. A number of members of Congress have now called on OPM's director to resign. OPM is under fire for seemingly covering up, at least initially, the breach's severity. When OPM first reported the breach, the agency denied that hackers had obtained any further personal information than the 4 million personnel files. News reports now state that hackers also gained access to security clearance forms, compromising the intensely personal information of roughly 18 million people. OPM is now characterizing the breach as two separate incidents and therefore two data breaches. The three decades of security clearance forms include Social Security numbers; street addresses; medical information; names of employees' family members and friends; and employment, education and address histories. News reports suggest that the breach went undiscovered for over a year on OPM's network. EPIC has urged the both the White House and Congress to promote Privacy Enhancing Techniques that minimize or eliminate the collection of personally identifiable information. EPIC has also testified before Congress in support of stronger security measures to protect personal data. In 2010, EPIC submitted a "friend of the court" brief in the US Supreme Court case NASA v. Nelson, urging the Justices to protect the privacy of scientists working at NASA's Jet Propulsion Laboratory. EPIC warned that federal agencies are not able to protect the information they collect. EPIC urged the Supreme Court to recognize a right of "informational privacy" that would establish limits on the sensitive personal information gathered by government agencies. The Washington Post: "Feds anger grows over data breach, amid fears that the number affected could rise" (Jun. 28, 2015) http://www.washingtonpost.com/blogs/federal-eye/wp/2015/06/28/feds- anger-grows-over-data-breach-amid-predictions-that-the-number- affected-could-rise/ US House: Hearing on OPM Data Breach [Video] (Jun. 24, 2015) https://oversight.house.gov/hearing/opm-data-breach-part-i/ OPM: Press Release on Data Breach (Jun. 4, 2015) https://epic.org/redirect/061515-opm-breach.html EPIC: Testimony before Senate on Cyber and DP (Jun 15, 2011) http://epic.org/redirect/062111EPICtestimonyhousecommerce.html EPIC: Testimony before House on Cyber and DP (Sep. 14, 2011) http://financialservices.house.gov/uploadedfiles/091411rotenberg.pdf EPIC: Comments to White House on Big Data (Apr. 4, 2014) https://epic.org/privacy/big-data/EPIC-OSTP-Big-Data.pdf EPIC: NASA v. Nelson https://epic.org/amicus/nasavnelson/ EPIC: Big Data https://epic.org/privacy/big-data/ EPIC: Social Security Numbers https://epic.org/privacy/ssn/ EPIC: EPIC Online Guide to Practical Privacy Tools https://epic.org/privacy/tools.html ======================================================================= [3] EPIC Files FTC Complaint Against Uber over Use of Customer Data ======================================================================= EPIC has filed a complaint with the Federal Trade Commission, charging that ride-sharing company Uber's plan to track customers and gather their contact details and locations - even when they are not running the Uber app - is an "unfair and deceptive" trade practice. EPIC argued that Uber's planned policy changes "ignore the FTC's prior decisions, threaten the privacy rights and personal safety of American consumers, ignore past bad practices of the company involving the misuse of location data, [and] pose a direct risk of consumer harm." Uber is set to implement the new policies on July 15, 2015. EPIC's complaint cites Uber's history of misusing customer data as one of many reasons the Commission must act. Until recently, EPIC wrote, employees could use "God View," an "easily accessible" internal company tool, to obtain a specific customer's real-time and historic location without that individual's knowledge. According to EPIC, even "[j]ob interviewees have been granted provisional access all the customer location data available to full-time employees, allowing non-Uber employees to temporarily track any customer. One such interviewee was granted this access for an entire day, even after the job interview ended." In a December 2014 piece in The Huffington Post, EPIC recommended comprehensive legislation for Uber and similar companies. EPIC wrote, "What would the law do? First, Uber would be limited in the type of personal information it can collect . . . [T]he burden would be on Uber to justify the collection of personal data." EPIC also recommended that Uber delete unneeded or outdated customer data, including travel records, and that "users should be able to access at any time a complete record of all of the information Uber has about them." EPIC has pursued successful complaints with the FTC over unfair and deceptive practices by companies including Google, Facebook, WhatsApp and Snapchat. EPIC: In re: Uber (Jun. 22, 2015) https://epic.org/privacy/internet/ftc/uber/Complaint.pdf Uber: Proposed Privacy Statement, Effective July 15, 2015 https://www.uber.com/legal/privacy-proposed/users/en EPIC: In re: Uber Privacy Policy https://epic.org/privacy/internet/ftc/uber/ The Huffington Post: "Privacy Rules for Uber," by EPIC President Marc Rotenberg and EPIC Consumer Protection Counsel Julia Horwitz (Dec. 12, 2014) http://www.huffingtonpost.com/julia-horwitz/privacy-rules-for-uber_ b_6304824.html EPIC: EPIC v. FTC (Enforcement of the Google Consent Order) https://epic.org/privacy/ftc/google/consent-order.html EPIC: In re: Facebook https://epic.org/privacy/inrefacebook/ EPIC: In re: WhatsApp https://epic.org/privacy/internet/ftc/whatsapp/ EPIC: In re: Snapchat https://epic.org/2014/05/epics-snapchat-privacy-complai.html ======================================================================= [4] EPIC Calls for Improved Oversight of 'EO 12333' Surveillance ======================================================================= EPIC has filed extensive comments with the Privacy and Civil Liberties Oversight Board, urging enhanced oversight of Executive Order 12333. EO 12333, adopted in 1981 to limit domestic surveillance, now provides the basis for NSA mass surveillance programs. The Board plans to review the CIA and NSA's intelligence-collection activities under EO 12333 and will write concluding reports "and, if appropriate, recommendations for the enhancement of civil liberties and privacy." EPIC has called for: (1) new limits on data collection and disclosure under 12333; (2) audit trails for surveillance activities; and (3) published legal justifications for surveillance programs. In addition to the recommendations, EPIC also suggested a number of questions PCLOB should ask US spy agencies as part of the inquiry. These include: (1) How minimization procedures apply to encrypted data; (2) The extent of information on United States Persons captured under EO 12333; and (3) How "foreign intelligence [is] defined and [if it is] consistent throughout agencies[.]" EPIC also described how the NSA acquires a significant amount of US persons information through EO 12333 and argued for the need for greater transparency, independent agency oversight and accountability. In 2014, EPIC urged the Board to expand its agenda and focus on surveillance conducted under EO 12333. "It is clear that the surveillance programs and activities under Executive Order 12333 require further scrutiny and these activities fall squarely within the Board's jurisdiction," EPIC argued. EPIC is also pursuing EO 12333-related open-government requests with the NSA, the US Attorney General and the Director of National Intelligence. EPIC is seeking the policies, procedures, regulations and guidelines that address the "collection, retention, dissemination, and sharing of signals intelligence" acquired under the Order. EPIC: Comments to PCLOB re: EO 12333 (Jun. 16, 2015) https://epic.org/redirect/063015-epic-comments-12333.html PCLOB: Examination of EO 12333 Activities in 2015 (Apr. 8, 2015) https://pclob.gov/library/20150408-EO12333_Project_Description.pdf EPIC: Statement for the Record to PCLOB (Jul. 23, 2014) http://epic.org/redirect/073014/epic-scott-statement.html US Archives: Executive Order 12333 (Dec. 4, 1981) http://epic.org/redirect/073014/EO-12333.html EPIC: Executive Order 12333 https://epic.org/privacy/surveillance/12333/ Privacy and Civil Liberties Oversight Board https://www.pclob.gov/ ======================================================================= [5] FCC Implements Strict Rules to Halt Unwanted Telemarketing ======================================================================= The Federal Communications Commission has adopted new rules imposing strict limits on telemarketing practices. Under the rules, consumers can halt unwanted marketing phone calls and text messages simply by telling companies to stop calling and/or texting. The rules also allow phone companies to offer call-blocking services to screen out automated telemarketing calls and close previously exploited loopholes by prohibiting the use of smartphone contact lists and random sequence dialers. Telemarketers and service providers must obtain consumers' express written consent before calling or texting. The FCC clarified that there are no legal obstacles preventing service providers from adopting "Do Not Disturb" technology that blocks autocalls, and that the same TPCA protections that apply to telephone calls equally apply to text messages. Congress enacted the TCPA in 1991to curb telemarketing abuse. In 2014, the FCC received more than 215,000 consumer complaints over unwanted telephone solicitations, primarily autocalls and text messages. Users who believe they are victims of illegal telemarketing may file a complaint with the FCC at https://consumercomplaints.fcc.gov/hc/en-us. EPIC has previously urged the Commission to require express consumer consent for telemarketing calls and to protect wireless subscribers from telemarketing. EPIC President Marc Rotenberg helped establish the TCPA. FCC: Press Release on New Telemarketing Rules (Jun. 18, 2015) https://epic.org/redirect/063015-fcc-telemarketer-pr.html FCC: Consumer Complaint Site https://consumercomplaints.fcc.gov/hc/en-us EPIC: Telemarketing and the Telephone Consumer Protection Act (TCPA) https://epic.org/privacy/telemarketing/ EPIC et al.: Comments to FCC on Telemarketing (Dec. 2002) https://epic.org/privacy/telemarketing/tcpacomments.html EPIC: Comments to FCC on Telemarketing (May 2006) https://epic.org/privacy/telemarketing/fcc_aca_05-11-06.html C-SPAN: Marc Rotenberg Testimony before Congress on TCPA (1991) https://archive.org/details/org.c-span.18726-1 ======================================================================= [6] News in Brief ======================================================================= EPIC Urges CA Supreme Court to Protect Open Records Law EPIC has asked the Supreme Court of California to review a lower court decision that prevented public release of information about automated license plate readers. The lower court held that information about the system to gather license-plate date on all motorists was an "investigative record." "As the government's ability to collect information about individuals has expanded, open record laws have become an important tool for government oversight," EPIC stated. Documents obtained by EPIC about the FBI's use of license plate readers show the agency failed to address the system's privacy implications. EPIC: "Friend of the Court" Letter to CA Supreme Court (Jun. 25, 2015) https://epic.org/redirect/063015-epic-ca-sc-amicus.html EPIC: License Plate Recognition Systems https://epic.org/privacy/licenseplates/ EPIC: FOIA: Automated License Plate Readers (FBI) https://epic.org/foia/fbi/lpr/default.html#documents FCC To Establish Privacy Rules for Internet Services Federal Communications Commission Chairman Tom Wheeler has announced that the Commission will begin rulemaking proceedings for Internet privacy in fall 2015. "If consumers worry that they don't have sufficient privacy online, why are they going to use online?" Wheeler said. The FCC 2015 Open Internet Order, published earlier in 2015, would expand the agency's authority to enforce privacy rules for Internet companies. EPIC has long supported the FCC's authority to protect consumer privacy. The Hill: "FCC to start work on broadband privacy in fall" (Jun. 29, 2015) http://thehill.com/policy/technology/246259-fcc-to-start-work-on- broadband-privacy-in-fall FCC: Fact Sheet on Plan for Open Internet (Jun. 2015) https://epic.org/redirect/063015-fcc-fact-sheet.html EPIC: Privacy and Net Neutrality https://epic.org/privacy/netneutrality/ EPIC: CPNI (Customer Proprietary Network Information) https://epic.org/privacy/cpni/ Users Swamp CANN with Comments Against Personal Data in WHOIS Directory Internet users have backed a campaign to prevent ICANN's inclusion of domain owners' personal information in the publicly searchable WHOIS directory. Users concerned about privacy are encouraged to sign the online petition and email comments directly to ICANN before July 7, 2015. ICANN has already received nearly 8000 emails protesting the removal of WHOIS privacy protections. ICANN stated that no changes will be made until all public comments are reviewed. EPIC has taken a strong stance on WHOIS privacy, urging Congress to prevent registrars from selling user information to third parties, serving on the WHOIS Privacy Steering Committee and filing a legal brief supporting the rights of domain name holders not to publish their personal information on the Internet. Save Domain Privacy http://www.savedomainprivacy.org/ Save Domain Privacy: Petition to ICANN http://www.savedomainprivacy.org/sign-the-petition/ Save Domain Privacy: Link to Petition Email comments-ppsai-initial-05may15@icann.org EPIC: Letter to Congress re: Domain Name Privacy (Feb. 2001) https://epic.org/privacy/internet/ICANN_privacy.html EPIC: WHOIS - EPIC's Role https://epic.org/privacy/whois/#epicrole EPIC: Brief in Support of Domain Privacy (Apr. 2006) https://epic.org/privacy/peterson/epic_peterson_amicus.pdf Senate Rejects User Surveillance Proposal The US Senate has rejected an amendment to the National Defense Authorization Act for 2016 that would transfer user data from private companies to government agencies without judicial oversight. Senator Patrick Leahy (D-VT) urged the Senate to oppose the amendment, stating, "We need a cyber-security bill, not a cyber-surveillance bill." In 2014, EPIC won a five-year court battle against the NSA over the disclosure of NSPD-54, the foundational legal document for US cybersecurity policies. The Directive reveals the NSA's interest in enlisting private companies to monitor user activity in the US. US Senate: Roll Call on Amendment to NDAA Amendment (Jun. 11, 2015) https://epic.org/redirect/063015-senate-ndaa-roll-call.html Congress.gov: Text of Amendment for NDAA (Jun. 9, 2015) https://epic.org/redirect/063015-ndaa-amendment-text.html Sen. Leahy (D-VT): Press Release on Leahy Statement (Jun. 11, 2015) https://epic.org/redirect/063015-leahy-cyber-speech.html EPIC: EPIC v. NSA: NSPD-54 Appeal https://epic.org/foia/nsa/nspd-54/appeal/ Sanders Proposes Commission on Privacy Rights in Digital Age Senator Bernie Sanders (I-VT) has introduced a bill to establish a federal Privacy Commission. The Commission on Privacy Rights in the Digital Age would convene for two years to "examine the ways in which public agencies and private companies gather data on the people of the United States and the ways in which that data is utilized." The Commission would also "make recommendations concerning potential policy changes needed to safeguard the privacy" of Americans. EPIC has repeatedly urged Congress to establish a privacy agency. As EPIC explained in Senate testimony, similar agencies in other countries "routinely report on the handling of privacy complaints, the emergence of new privacy issues, and proposed measures to protect privacy." The United States is one of the few democratic countries in the world that does not have a federal privacy agency. Congress.gov: Text of Bill on the Privacy Commission (May 22, 2015) https://epic.org/redirect/063015-privacy-commission-bill.html EPIC: Testimony on The Online Privacy Protection Act of 1999 (1999) https://epic.org/privacy/internet/EPIC_testimony_799.pdf ======================================================================= [7] EPIC in the News ======================================================================= "When a Company Is Put Up for Sale, in Many Cases, Your Personal Data Is, Too." The New York Times, June 28, 2015. http://www.nytimes.com/2015/06/29/technology/when-a-company-goes- up-for-sale-in-many-cases-so-does-your-personal-data.html "What Washington really knows about the Internet of Things." Politico, June 28, 2015. http://www.politico.com/agenda/story/2015/06/internet-of-things- caucus-legislation-regulation-000086 "Shuddle offers Uber for kids, but may put young riders' data at risk." Yahoo News UK, June 26, 2015. https://uk.news.yahoo.com/shuddle-offers-uber-kids-may-put-young- riders-183738896.html#qx1y32C "France parliament adopts new surveillance bill." Jurist, June 26, 2015. http://jurist.org/paperchase/2015/06/france-parliament-adopts-new- surveillance-bill.php "Privacy Wars: A Tale of Two Tims." InfoSecurity, June 25, 2015. http://www.infosecurity-magazine.com/blogs/privacy-wars-tale-of- two-tims/ "Can Uber Track Passengers After They Exit a Car?" Government Technology, June 24, 2015. http://www.govtech.com/applications/Can-Uber-Track-Passengers-After- They-Exit-a-Car.html "Uber may track you 24/7." CNN Money, June 23, 2015. http://money.cnn.com/2015/06/23/technology/uber-ftc-complaint- tracking/ "Privacy group files complaint against Uber over tracking." Las Vegas Review-Journal, June 23, 2015. http://www.reviewjournal.com/life/technology/privacy-group-files- complaint-against-uber-over-tracking "Privacy advocates file complaint over new Uber policy." The Toronto Star, June 23, 2015. http://www.thestar.com/news/privacy-blog/2015/06/privacy-advocates- file-complaint-over-new-uber-policy.html "Uber Data Collection Changes Should Be Barred, Privacy Group Urges." The New York Times, June 22, 2015. http://www.nytimes.com/2015/06/23/technology/uber-data-collection- changes-should-be-barred-privacy-group-urges.html "Privacy group complains about Uber data collection." PCWorld, June 22, 2015. http://www.pcworld.com/article/2939092/privacy-group-complains- about-uber-data-collection.html "What Are the Data Breach Notification Laws in Your State?" Fox Business, June 22, 2015. http://www.foxbusiness.com/technology/2015/06/22/what-are-data- breach-notification-laws-in-your-state/ "Uber's Promises of Privacy Ring Hollow, Says EPIC." [video] Time Money, June 22, 2015. http://time.com/money/3930410/uber-privacy-ftc-complaint/?xid= gonewsedit "Privacy group asks FTC to investigate Uber." USA Today, June 22, 2015. http://www.usatoday.com/story/tech/2015/06/22/privacy-uber-ftc-epic- complaint/29094297/ "A bill aims to protect students' digital information." Standard- Examiner [UT], June 19, 2015. http://www.standard.net/Government/2015/06/22/A-national-bill-aims- to-protect-students-digital "Caught up in the OPM hack? You might be able to sue the government." The Washington Post, June 17, 2015. http://www.washingtonpost.com/blogs/the-switch/wp/2015/06/17/ caught-up-in-the-opm-hack-you-might-be-able-to-sue-the-government/ "Privacy groups leave over dispute on facial recognition software." USA Today, June 16, 2015. http://www.usatoday.com/story/tech/2015/06/16/facial-recognition- software-google-facebook-moments-ntia/28793157/ For More EPIC in the News: http://epic.org/news/epic_in_news.html ======================================================================= [8] EPIC Book Review: 'Data and Goliath' ======================================================================= "Data and Goliath: The Hidden Battles to Collect Your Data and Control the World," Bruce Schneier http://amzn.to/1LyS0yu "Data and Goliath," computer security expert Bruce Schneier's latest book, is crammed with both technical expertise and Schneier's typically uncompromising views on privacy and security. But "Data and Goliath" is a book with a far wider audience than Schneier's large fan base. It's a must-read for anyone who cares about data and how governments and the private sector collect and manipulate it, ostensibly for your personal convenience and for the public safety. According to Schneier's hard- hitting narrative, those claims are, putting it mildly, disingenuous. "Big Data" has been an industry buzzword for most of this decade, and organizations are eager to demonstrate their technical savvy on a hot topic. But, argues Schneier, they aren't savvy: They're greedy, nave and short-sighted, unaware of the effects Big Data's constant surveillance and yes, Schneier stresses, data collection does amount to surveillance is having on fundamental societal principles and structure. Data-based scrutiny is ubiquitous, Schneier says, and we are complicit in its creation and use. Schneier painstakingly and relentlessly lists the data-scarfing culprits, which are pretty much every digital-age convenience: Loyalty cards. School records. Facial recognition algorithms. Credit agencies. Privacy policies. The TSA. Angry Birds. And that tiny, greedy data sinkhole that follows you everywhere your phone. After reading Schneier's true horror stories and devastating hypothetical scenarios, righting our privacy ecosystem seems depressingly far out of reach. Nevertheless, Schneier devotes an entire section of the book on "What to Do About It," focusing on solutions for government, corporations and individuals. "If we are going to fix things, we need to fight on both the technological and the political fronts," Schneier writes. "We the people have a lot to do here." His solutions ("Defend Against Surveillance," "Choose Your Allies and Enemies," "Agitate for Political Change," "Don't Give Up") sometimes seem hopelessly vague to a reader made dispirited and afraid by "Data and Goliath's" first 150 pages. Schneier does his best, however, to break these concepts down into actionable components. Like the apocryphal frog in the pot of slowly heating water, readers may come away from "Data and Goliath" with the sense that it's already too late, that the pot's already boiled and we can't jump out. Schneier himself, however, is both pragmatic and cautiously hopeful. With his clear voice and vision at the helm, perhaps society, will leap from our data-driven bubbles alive and intact. - EC Rosenberg =================================== EPIC Bookstore =================================== "Privacy in the Modern Age: The Search for Solutions," edited by Marc Rotenberg, Julia Horwitz and Jeramie Scott. The New Press (May 2015). Price: $25.95. http://epic.org/buy-privacy-modern-age The threats to privacy are well known: The National Security Agency tracks our phone calls; Google records where we go online and how we set our thermostats; Facebook changes our privacy settings when it wishes; Target gets hacked and loses control of our credit card information; our medical records are available for sale to strangers; our children are fingerprinted and their every test score saved for posterity; and small robots patrol our schoolyards while drones may soon fill our skies. The contributors to this anthology don't simply describe these problems or warn about the loss of privacythey propose solutions. They look closely at business practices, public policy, and technology design and ask, "Should this continue? Is there a better approach?" They take seriously the dictum of Thomas Edison: "What one creates with his hand, he should control with his head." It's a new approach to the privacy debate, one that assumes privacy is worth protecting, that there are solutions to be found, and that the future is not yet known. This volume will be an essential reference for policy makers and researchers, journalists and scholars, and others looking for answers to one of the biggest challenges of our modern day. The premise is clear: There's a problem let's find a solution. Contributors include: Steven Aftergood, Ross Anderson, Christine L. Borgman (coauthored with Kent Wada and James F. Davis), Ryan Calo, Danielle Citron, Simon Davies, A. Michael Froomkin, Deborah Hurley, Kristina Irion, Jeff Jonas, Harry Lewis, Anna Lysyanskaya, Gary T. Marx, Aleecia M. McDonald, Dr. Pablo G. Molina, Peter G. Neumann, Helen Nissenbaum, Frank Pasquale, Dr. Deborah Peel, MD, Stephanie E. Perrin, Marc Rotenberg, Pamela Samuelson, Bruce Schneier, and Christopher Wolf. ===================================== "Litigation Under the Federal Open Government Laws 2010," edited by Harry A. Hammitt, Marc Rotenberg, John A. Verdi, Ginger McCall, and Mark S. Zaid (EPIC 2010). Price: $75. http://epic.org/bookstore/foia2010/ Litigation Under the Federal Open Government Laws is the most comprehensive, authoritative discussion of the federal open access laws. This updated version includes new material regarding President Obama's 2009 memo on Open Government, Attorney General Holder's March 2009 memo on FOIA Guidance, and the new executive order on declassification. The standard reference work includes in-depth analysis of litigation under: the Freedom of Information Act, the Privacy Act, the Federal Advisory Committee Act, and the Government in the Sunshine Act. The fully updated 2010 volume is the 25th edition of the manual that lawyers, journalists and researchers have relied on for more than 25 years. =================================== "Information Privacy Law: Cases and Materials, Second Edition" Daniel J. Solove, Marc Rotenberg, and Paul Schwartz. (Aspen 2005). Price: $98. http://www.epic.org/redirect/aspen_ipl_casebook.html This clear, comprehensive introduction to the field of information privacy law allows instructors to enliven their teaching of fundamental concepts by addressing both enduring and emerging controversies. The Second Edition addresses numerous rapidly developing areas of privacy law, including: identity theft, government data mining and electronic surveillance law, the Foreign Intelligence Surveillance Act, intelligence sharing, RFID tags, GPS, spyware, web bugs, and more. Information Privacy Law, Second Edition, builds a cohesive foundation for an exciting course in this rapidly evolving area of law. =================================== "Privacy & Human Rights 2006: An International Survey of Privacy Laws and Developments" (EPIC 2007). Price: $75. http://www.epic.org/phr06/ This annual report by EPIC and Privacy International provides an overview of key privacy topics and reviews the state of privacy in over 75 countries around the world. The report outlines legal protections, new challenges, and important issues and events relating to privacy. Privacy & Human Rights 2006 is the most comprehensive report on privacy and data protection ever published. =================================== "The Public Voice WSIS Sourcebook: Perspectives on the World Summit on the Information Society" (EPIC 2004). Price: $40. http://www.epic.org/bookstore/pvsourcebook This resource promotes a dialogue on the issues, the outcomes, and the process of the World Summit on the Information Society (WSIS). This reference guide provides the official UN documents, regional and issue-oriented perspectives, and recommendations and proposals for future action, as well as a useful list of resources and contacts for individuals and organizations that wish to become more involved in the WSIS process. =================================== "The Privacy Law Sourcebook 2004: United States Law, International Law, and Recent Developments," Marc Rotenberg, editor (EPIC 2005). Price: $40. http://www.epic.org/bookstore/pls2004/ The Privacy Law Sourcebook, which has been called the "Physician's Desk Reference" of the privacy world, is the leading resource for students, attorneys, researchers, and journalists interested in pursuing privacy law in the United States and around the world. It includes the full texts of major privacy laws and directives such as the Fair Credit Reporting Act, the Privacy Act, and the OECD Privacy Guidelines, as well as an up-to-date section on recent developments. New materials include the APEC Privacy Framework, the Video Voyeurism Prevention Act, and the CAN-SPAM Act. =================================== "Filters and Freedom 2.0: Free Speech Perspectives on Internet Content Controls" (EPIC 2001). Price: $20. http://www.epic.org/bookstore/filters2.0 A collection of essays, studies, and critiques of Internet content filtering. These papers are instrumental in explaining why filtering threatens free expression. =================================== EPIC publications and other books on privacy, open government, free expression, and constitutional values can be ordered at: EPIC Bookstore: http://www.epic.org/bookstore =================================== EPIC also publishes EPIC FOIA Notes, which provides brief summaries of interesting documents obtained from government agencies under the Freedom of Information Act. Subscribe to EPIC FOIA Notes at: http://mailman.epic.org/mailman/listinfo/foia_notes ======================================================================= [9] Upcoming Conferences and Events ======================================================================= The Crypto Summit. Washington, DC: July 15, 2015. For More Information: https://www.accessnow.org/page/content/crypto-summit/. ======================================================================= Join EPIC on Facebook and Twitter ======================================================================= Join the Electronic Privacy Information Center on Facebook and Twitter: http://facebook.com/epicprivacy http://twitter.com/epicprivacy Start a discussion on privacy. Let us know your thoughts. Stay up to date with EPIC's events. Support EPIC. ======================================================================= Privacy Policy ======================================================================= The EPIC Alert mailing list is used only to mail the EPIC Alert and to send notices about EPIC activities. We do not sell, rent or share our mailing list. We also intend to challenge any subpoena or other legal process seeking access to our mailing list. We do not enhance (link to other databases) our mailing list or require your actual name. In the event you wish to subscribe or unsubscribe your e-mail address from this list, please follow the above instructions under "subscription information." ======================================================================= About EPIC ======================================================================= The Electronic Privacy Information Center (EPIC) is a non-profit, independent public interest research center in Washington, DC. EPIC was established in 1994 to focus public attention on emerging privacy issues. Today EPIC maintains one of the top privacy websites in the world. EPIC publishes the EPIC Alert, pursues Freedom of Information Act litigation, files amicus briefs on emerging privacy and civil liberties issues, and conducts policy research. For more information, visit http://www.epic.org. ======================================================================= Support EPIC ======================================================================= If you'd like to support the work of the Electronic Privacy Information Center, contributions are welcome and tax-deductible. Checks should be made out to "EPIC" and sent to 1718 Connecticut Ave. NW, Suite 200, Washington, DC 20009. Or you can contribute online at: https://www.epic.org/support Your contributions help support Freedom of Information Act litigation, strong and effective advocacy for the right of privacy, and continued public education. Thank you for your support. ======================================================================= Subscription Information ======================================================================= Subscribe/unsubscribe via web interface: http://mailman.epic.org/mailman/listinfo/epic_news Back issues are available at: http://www.epic.org/alert The EPIC Alert displays best in a fixed-width font, such as Courier. ------------------------- END EPIC Alert 22.12-------------------------

Share this page:

Defend Privacy. Support EPIC.
US Needs a Data Protection Agency
2020 Election Security