Skip to footer
Passcode
Modern field guide to security and privacy

Microsoft ruling limits government access to data stored overseas

Tech advocates hailed the decision in a case over access to emails stored on data servers in Ireland as a boon for privacy rights in the Digital Age.

|
Lucy Nicholson/Reuters
On Thursday, three appellate judges sided with Microsoft in the company's appeal against a lower court's ruling to turn emails stored on an Irish server to the US government.
  • By David Gilbert Contributor

In a decision that curbs the government's ability to seize data overseas, a US appellate court ruled Thursday that federal investigators cannot force Microsoft to turn over emails stored in an Irish data center. 

Civil liberty advocates and tech companies praised the ruling in the case that many viewed as a litmus test for digital privacy as American consumer and corporate information is increasingly housed in servers around the globe.

"It definitely sets an important precedent," said Tor Ekeland, a New York City attorney who specializes in computer law. "It's a victory for privacy rights across the board and, in my mind, it's proof that the ubiquity of computers is changing what the Fourth Amendment means."

The case that dates back to 2013 when Microsoft refused to give the Department of Justice the emails of a suspected drug trafficker whose nationality has not been identified. The tech giant refuted the search warrant but a federal magistrate judge ruled in May 2014 it must give investigators the suspect's emails. 

But the Second Circuit Court of Appeals in New York ruled Thursday to overturn that decision. It concluded that under the Stored Communications Act, the government can’t use a US search warrant to obtain a customer’s email stored on servers outside the country.

Microsoft argued that if the US government could force the company to hand over the emails, that would open the door to foreign governments expecting that US tech companies should similarly hand over private data on individuals regardless of where the information is stored.

"This decision provides a major victory for the protection of people’s privacy rights under their own laws rather than the reach of foreign governments," said Brad Smith, Microsoft's president, in a statement. "It makes clear that the US Congress did not give the US government the authority to use search warrants unilaterally to reach beyond US borders."   

The Microsoft case had also become central to a growing and often contentious debate over digital privacy between Silicon Valley and Washington. Earlier this year Apple fought an FBI request to help crack encryption on an iPhone used by the gunman in the San Bernardino, Calif., terrorist attack.

The Irish government, 23 media and tech companies, 28 advocacy groups, and 35 top computer scientists filed legal briefs supporting Microsoft in its case against the government. Similarly, tech companies and computer advocates and experts rallied around Apple in its legal battle with the Justice Department.

“The court recognized the vital privacy protections under the [Stored Communications Act], and correctly ruled that the government can’t use a US search warrant to force internet service providers to reach email stored outside the US,” the tech advocacy group the Electronic Frontier Foundation said in a statement.

The decision is a setback to the Department of Justice especially as it faces a growing number of investigation that involve data that is stored in servers located abroad. “We are disappointed with the court’s decision and are considering our options," said the department's spokesman Peter Carr.

The US government’s argument claimed that it was lawfully trying to access information stored by an American company outside the US and quick enough to “act on evolving criminal or national security threats.”

But the court's ruling didn't necessarily make a strong case for user privacy in this particular instance. It instead pointed out that laws that limit government access to data didn't take into consideration the borderless nature of the Digital Age.

In the court's ruling, Judge Susan Carney pointed out that the 1986 Stored Communications Act was intended to "protect user privacy in the context of new technology" and that, at the time, lawmakers didn't envision the advent of cloud computing in which data is stored in global network of servers.

Judge Gerard Lynch agreed, calling the laws “badly outdated,” and urged Congress to act quickly to update them.

“As the concurring opinion points out, our online privacy laws are not the bulwarks of privacy that Congress thought they were when it enacted them in 1986,” said Alex Abdo of the American Civil Liberties Union. “Now is the time for Congress to finally pass reform protecting our privacy in the Digital Age.”

 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.
editor@csmonitor.com
Subscribe
Mark Sappenfield
Editor

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

Subscribe to insightful journalism

QR Code to Microsoft ruling limits government access to data stored overseas
Read this article in
https://www.csmonitor.com/World/Passcode/2016/0714/Microsoft-ruling-limits-government-access-to-data-stored-overseas
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe