Government request under FISA cannot be made public
Microsoft and Twitter have joined calls by Google and Facebook to be able to publish more detail about how many secret requests they receive to hand over user data under the controversial Foreign Intelligence Surveillance Act (FISA).
“Permitting greater transparency on the aggregate volume and scope of national security requests, including FISA orders, would help the community understand and debate these important issues,” Microsoft said in an e-mailed statement to the Reuters news agency.
At Twitter the chief lawyer, Alex Macgillivray, tweeted: “We’d like more NSL [national security letter] transparency and Twitter supports efforts to make that happen.” A national security letter is used by U.S. government agencies such as the FBI and NSA to demand access to data from companies — who are forbidden from revealing that they have been served such a request.
Google, Microsoft and Twitter publish “transparency reports” detailing how many government requests they receive for user data in various countries, but those for the U.S. do not include FISA requests or other NSL demands. Facebook has not so far published a transparency report.
Microsoft and Twitter joined in as the PR fallout of the revelations by the Guardian over the past week about the extent of National Security Agency (NSA) access to user data continued to grow. Google’s chief legal officer, David Drummond, reiterated the company’s protests that it had not allowed the NSA “direct or indirect” access to its servers and had not allowed the NSA to install equipment on its premises.
In a letter from Google to the U.S. Attorney-General, Eric Holder, also published on its corporate blog, the company once again said allegations that the U.S. government had “unfettered access to our users’ data are simply untrue”. But, the letter added, the fact that Google was not allowed to disclose requests made for information under FISA “fuel[s] that speculation”.
Mr. Drummond wrote in the letter to Mr. Holder: “We therefore ask you to help make it possible for Google to publish in our transparency report aggregate numbers of national security requests, including FISA disclosures — in terms of both the number we receive and their scope.
“Google’s numbers would clearly show that our compliance with these requests falls far short of the claims being made. Google has nothing to hide.”
A statement from Facebook’s general counsel, Ted Ullyot, said the company “would welcome the opportunity to provide a transparency report that allows us to share with those who use Facebook around the world a complete picture of the government requests we receive, and how we respond.
The tech companies have spent days categorically denying knowingly participating in PRISM, the data collection programme. Internal NSA documents state that PRISM involves “collection directly from the servers of these U.S. service providers: Microsoft, Yahoo, Google, Facebook, PalTalk, AOL, Skype, YouTube, Apple”.
The Guardian understands that the NSA approached those companies and asked them to enable a “dropbox” system whereby legally requested data could be copied from their own server out to an NSA-owned system.
That has allowed the companies to deny that there is “direct or indirect” NSA access, to deny that there is a “back door” to their systems, and that they only comply with “legal” requests — while not explaining the scope of that access.
Twitter was not mentioned in the PRISM programme because it declined to comply with the NSA’s dropbox proposal. — © Guardian Newspapers Limited, 2013