Agencies Say They Need Access to Americans’ Emails Without a Warrant
But the FTC and SEC have not used the current subpoena process in five years.
Civil law enforcement agencies like the Federal Trade Commission and the Securities and Exchange Commission would not be able to obtain critical information if the law were changed to require criminal warrants for access to data stored on cloud services, according to witnesses from those agencies testifying in front of the Senate Judiciary Committee Wednesday.
The law enforcement officials were reacting to bills from Sens. Mike Lee and Patrick Leahy, and Reps. Kevin Yoder and Jared Polis, that aim to update the Electronic Communications Privacy Act, or ECPA.
In its current form, ECPA protects emails from government snooping for 180 days. When the law was initially drawn up in 1986, email providers routinely removed emails from their servers a month or two after they were delivered; users would generally download the messages they intended to keep. Whatever remains on an email server after 180 days is fair game for government to access, with just a subpoena—not a warrant.
Today, ubiquitous cloud-based email systems like Gmail, which offer gigabytes of storage for free, allow the average user to keep his or her messages—and calendars, contacts, notes, and even location data—on a provider’s servers indefinitely.
The ECPA Amendments Act would require law enforcement to get a warrant to access server-hosted information, no matter how old, and would require the government to notify an individual that his or her information was accessed within 10 days, with certain exceptions.
But the FTC and SEC have not used the current subpoena process in five years.
Civil law enforcement agencies like the Federal Trade Commission and the Securities and Exchange Commission would not be able to obtain critical information if the law were changed to require criminal warrants for access to data stored on cloud services, according to witnesses from those agencies testifying in front of the Senate Judiciary Committee Wednesday.
The law enforcement officials were reacting to bills from Sens. Mike Lee and Patrick Leahy, and Reps. Kevin Yoder and Jared Polis, that aim to update the Electronic Communications Privacy Act, or ECPA.
In its current form, ECPA protects emails from government snooping for 180 days. When the law was initially drawn up in 1986, email providers routinely removed emails from their servers a month or two after they were delivered; users would generally download the messages they intended to keep. Whatever remains on an email server after 180 days is fair game for government to access, with just a subpoena—not a warrant.
Today, ubiquitous cloud-based email systems like Gmail, which offer gigabytes of storage for free, allow the average user to keep his or her messages—and calendars, contacts, notes, and even location data—on a provider’s servers indefinitely.
The ECPA Amendments Act would require law enforcement to get a warrant to access server-hosted information, no matter how old, and would require the government to notify an individual that his or her information was accessed within 10 days, with certain exceptions.
Last edited:
