EPIC Alert 21.06
======================================================================= E P I C A l e r t ======================================================================= Volume 21.06 March 31, 2014 ----------------------------------------------------------------------- Published by the Electronic Privacy Information Center (EPIC) Washington, D.C. http://www.epic.org/alert/epic_alert_21.06.html "Defend Privacy. Support EPIC." http://epic.org/support ========================================================================= Table of Contents ========================================================================= [1] President Renews Unlawful, Ineffective Surveillance Program [2] EPIC Obtains Secret AG Reports on Electronic Surveillance [3] EPIC Files Comments on 'Big Data,' Urges Updates to Privacy Law [4] FTC Adopts EPIC's FOIA Recommendations [5] Federal Trade Commission Backs Users in Facebook Privacy Case [6] News in Brief [7] EPIC in the News [8] EPIC Book Review: 'Cybersecurity and Cyberwar' [9] Upcoming Conferences and Events ========================================================================= [1] President Renews Unlawful, Ineffective Surveillance Program ========================================================================= US Attorney General Eric Holder and Director of National Intelligence James Clapper have announced that President Obama has renewed the NSA's authority to collect the telephone records of all American telephone customers. According to a joint DOJ/DNI statement published March 28, "the President directed the Department of Justice to seek a 90-day reauthorization of the existing program, which includes the modifications that he directed in January." During his January 17 speech on national security and surveillance issues, the President ordered a transition towards the end of the Section 215 bulk telephony program as it currently exists. EPIC and many other groups have strongly objected to the 215 program's renewal. Both the President's Review Group and the Privacy and Civil Liberties Oversight Board have found the 215 program is ineffective and likely exceeds current legal authority. Senator Patrick Leahy (D-VT), who held extensive public hearings on Section 215, has stated, "This program is not effective. It has to end." Senator Leahy recently reiterated his support for ending the telephone metadata program: "I welcome the President's statement that he plans to end the bulk collection of American's phone records," Leahy said. "That is a key element of what I and others have outlined in the USA FREEDOM Act, and that is what the American people have been demanding." After the existence of the telephone "metadata" program was revealed in 2013, EPIC immediately sought to challenge the program. EPIC filed a petition with the US Supreme Court in July 2013, joined by dozens of legal scholars and former members of the Church Committee, arguing that the 215 program was unlawful. The US government responded to EPIC's challenge but the Court eventually declined to hear the case. EPIC is currently litigating several open government cases concerning the government’s surveillance activities. IC/AG: Joint Statement on Telephone Metadata Program (Mar. 28, 2014) http://epic.org/redirect/040114-IC-AG-NSA.html The White House: President's Speech on NSA reform (Jan. 17, 2014) http://epic.org/redirect/012814-obama-nsa-speech.html President's Review Group Report (Dec. 12, 2013) http://epic.org/redirect/122013-WH-NSA-report.html US Senate: Hearing on President's Review Group Report (Jan. 14, 2014) http://epic.org/redirect/012814-senate-report-hearing.html EPIC: In re EPIC - NSA Telephone Records Surveillance http://epic.org/privacy/nsa/in-re-epic/ ======================================================================== [2] EPIC Obtains Secret AG Reports on Electronic Surveillance ======================================================================== As a result of a FOIA lawsuit, EPIC has obtained copies of the Attorney General's Reports on the US government's electronic surveillance activities. These reports have been submitted to Congress every six months since 2001 but have never before been disclosed to the public, and include new details about government collection of telephone and Internet records. The previously classified documents cover the period between April 2001 and June 2013 and reveal a dramatic increase in the use of so-called "Pen Register" techniques in 2004 and then a significant reduction in 2008, most likely the consequence of a shift to other investigative techniques. Often heavily redacted, the documents also show that nearly all applications to the Foreign Intelligence Surveillance Court were approved without modifications. The reports include the number of US persons targeted for "pen register" surveillance under the Foreign Intelligence Surveillance Act; noncompliance incidents and significant foreign intelligence court opinions, whose details have been withheld by the Justice Department; and demonstrate that the Justice Department told Congress that the collection of telephone subscriber information would decrease, even after the Section 215 bulk collection program began. EPIC: Semi-Annual DOJ Reports http://epic.org/foia/doj/pen-reg-trap-trace/#SAR EPIC: Text of DOJ Reports http://epic.org/redirect/040114-foia-doj-reports.html EPIC: EPIC v. DOJ - FISA Pen Registers http://epic.org/foia/doj/pen-reg-trap-trace/ EPIC: FISA Court Orders 1979-2012 http://epic.org/privacy/wiretap/stats/fisa_stats.html EPIC: Foreign Intelligence Surveillance Act (FISA) http://epic.org/privacy/terrorism/fisa/ ========================================================================= [3] EPIC Files Comments on 'Big Data,' Urges Updates to Privacy Law ========================================================================= EPIC has filed extensive comments in response to the White House Office of Science and Technology Policy's request for information on "big data" and privacy. In particular, EPIC urged the implementation of the Consumer Privacy Bill of Rights, a framework for consumer privacy protection that the Obama Administration released in February 2012. EPIC's comments also recommended minimizing data collected on individuals, better security measures to protect the data that is collected, and increased transparency on the types of data collected and how it is used. "Far too many organizations collect detailed personal information and use it with too little regard for the consequences," EPIC's letter said. EPIC also lead a coalition of public interest organizations urging new privacy safeguards for big data.. Arguing that "[B]ig data . . . creates new problems including pervasive surveillance; the collection, use, and retention of vast amounts of personal data; profiling and discrimination; and the very real risk that over time more decision-making about individuals will be automated, opaque, and unaccountable," the coalition recommended requirements including transparency, oversight, accountability, robust privacy techniques, meaningful evaluation, and control. The comment opportunity arose after EPIC and a coalition of 24 consumer privacy, public interest, scientific, and educational organizations petitioned the Office of Science and Technology Policy to accept public comments on the "Big Data and the Future of Privacy" study currently underway. The group's petition called on the Office of Science and Technology Policy to "conduct a review that incorporates the concerns and opinions of those whose data may be collected in bulk as a result of their engagement with technology" and urged the OSTP to "consider a broad range of big data privacy issues" including whether current laws are adequate; whether it is possible to maximize the benefits of big data while minimizing the risks to privacy; and how can companies and government agencies be more "transparent" in their use of big data. President Obama announced the "big data" review during a January 2014 speech on NSA reform. The review, the President said, would look at "how the challenges inherent in big data are being confronted by both the public and private sectors; whether we can forge international norms on how to manage this data; and how we can continue to promote the free flow of information in ways that are consistent with both privacy and security." According to the official White House blog, the "big data" report will anticipate "future technological trends and fram[e] the key questions that the collection, availability, and use of 'big data' raise." EPIC: Comments on Big Data and Privacy (Mar. 31, 2014) [link forthcoming] EPIC et al.: Coalition Comments on Big Data and Privacy (Mar. 31, 2014) [link forthcoming] EPIC et al.: Petition for Public Comment on Big Data (Feb. 10, 2014) http://epic.org/privacy/Ltr-to-OSTP-re-Big-Data.pdf The White House: President's Speech on NSA reform (Jan. 17, 2014) http://epic.org/redirect/012814-obama-nsa-speech.html EPIC: Big Data and the Future of Privacy http://epic.org/privacy/big-data/default.html ========================================================================= [4] FTC Adopts EPIC's Recommendations on Improving FOIA Processing ========================================================================= The Federal Trade Commission has issued a final rule updating the agency's Freedom of Information Act provisions, adopting nearly all of the proposals EPIC offered to the agency in 2013. In March 2013, EPIC submitted extensive comments to the agency, supporting proposed fee reductions but also recommending changes to strengthen open government. EPIC asked that the agency "(1) update its definition for news media representative; (2) clarify which documents are public information and ensure that hyperlinks to those records work properly; (3) disclose private sector contract rates for FOIA processing; (4) refrain from prematurely closing FOIA requests; and (5) adopt alternative dispute resolution or arbitration when resolving delinquent FOIA fees." The FTC announced that all "Commission decisions, orders, and other public materials" will be electronically available to all requesters without charge. The FTC also stated it would grant requesters additional time to assess fees associated with FOIA requests rather than simply terminate processing; agreed to be more lenient in resolving unpaid FOIA fees; and adopted EPIC's recommendation to disclose private-sector contract rates for FOIA processing. EPIC routinely comments on agency proposals that impact FOIA requesters' rights. EPIC: Comments to FTC re: FOIA Processing (Mar. 29, 2013) http://epic.org/open_gov/EPIC-FTC-FOIA-Fee-Regs.pdf Federal Register: Announcement of FTC FOIA Changes (Mar. 21, 2014) http://www.gpo.gov/fdsys/pkg/FR-2014-03-21/pdf/2014-05955.pdf EPIC: Administrative Procedure Act Comments http://epic.org/apa/comments/ EPIC: EPIC FOIA Cases http://epic.org/foia/ ========================================================================= [5] Federal Trade Commission Backs Users in Facebook Privacy Case ========================================================================= The Federal Trade Commission has filed a "friend of the court" brief opposing a controversial settlement in Fraley v. Facebook, a case before a federal appeals court. Fraley concerns Facebook's "Sponsored Stories" advertising scheme, in which a Facebook user's profile picture is shown beside "liked" pages of commercial companies, brands, products, or organizations - implying that the user has endorsed the page in question and would recommend it to Facebook friends. Parents of minor children whose images were used in Sponsored Stories sued Facebook to halt the program. If the settlement is approved, Facebook will retain the ability to display user icons, including those of minor children, in targeted advertisements without consent. Many Facebook users formally objected to the plan, arguing that it would violate state laws prohibiting the unauthorized use of children's images in advertising. Children's advocacy organization Campaign for a Commercial-Free Childhood withdrew from the settlement, stating, "We now believe that this settlement is actually worse than no settlement. It harms vulnerable teenagers and their families under the guise of helping them . . . we cannot benefit from a settlement which we now realize is harmful to children and will impede future efforts to protect minors' privacy on Facebook." The MacArthur Foundation withdrew from the settlement in 2013, suggesting the funds be redirected to "other non-profit organizations engaged in the underlying issues." The FTC's brief made clear that the proposed settlement would violate state privacy law. The Commission explained that, where state privacy laws contain stronger protections for children's privacy, the state privacy laws will prevent the display of children's images without consent. "Nothing in COPPA's language, structure, or legislative history indicates that Congress intended for that law to preempt state law privacy protections for people outside of COPPA's coverage, including teenagers," the Commission wrote. EPIC previously filed a brief in support of the Facebook users, arguing that the settlement in Fraley is unfair and should be rejected. EPIC's brief highlighted the structural flaw of allowing Facebook to continue using an advertising method that was the source of the very litigation that produced the settlement. EPIC also explained that the proposed cy pres allocation was not consistent with the purpose of the litigation and would not protect the interests of class members. FTC: "Friend of the Court" Brief in Fraley v. Facebook (Mar. 20, 2014) http://epic.org/amicus/facebook/fraley/FTC-amicus.pdf EPIC: "Friend of the Court" Brief in Fraley v. Facebook (Feb. 20, 2014) https://www.epic.org/amicus/facebook/fraley/EPIC-Fraley-Amicus.pdf CFCFC: "Why We Turned Down $290,000" (Feb. 13, 2014) http://www.commercialfreechildhood.org/blog/why-we-turned-down-money Public Citizen: Opening Brief in Fraley v. Facebook (Feb. 13, 2014) http://epic.org/redirect/040114-pub-citizen-fraley.html EPIC: Complaint, In re Facebook (Dec. 17, 2009) https://www.epic.org/privacy/inrefacebook/EPIC-FacebookComplaint.pdf EPIC: Fraley v. Facebook https://www.epic.org/amicus/facebook/fraley/ ======================================================================== [6] News in Brief ======================================================================== EPIC Updates Facebook Complaint Over WhatsApp Acquisition EPIC has filed a supplemental complaint with the Federal Trade Commission over Facebook's $19 billion purchase of messaging service WhatsApp. WhatsApp users had relied on the company's pro-privacy practices to protect their personal information, whereas Facebook regularly incorporates user data from the companies it acquires. EPIC's initial March 6 complaint urged the Commission to "initiate an investigation" of the sale and then halt it unless adequate privacy safeguards for WhatsApp user data were established. EPIC's supplemental complaint provided more evidence that "WhatsApp users continue to object to the proposed acquisition" and highlighted the importance of the FTC's pre-merger review process. Earlier in March, WhatsApp founder Jan Koum published a blog post in response to EPIC's complaint, writing, "Above all else, I want to make sure you understand how deeply I value the principle of private communication. For me, this is very personal. . . . Make no mistake: our future partnership with Facebook will not compromise the vision that brought us to this point." EPIC: Supplemental Complaint re: Facebook/ WhatsApp (Mar. 21, 2014) http://epic.org/privacy/internet/ftc/whatsapp/WhatsApp-Nest-Supp.pdf EPIC: Initial Complaint re: Facebook/WhatsApp (Mar. 6, 2014) http://epic.org/ftc/WhatsApp-Complaint.pdf WhatsApp: "Setting the Record Straight" (Mar. 17, 2014) http://epic.org/redirect/040114-whatsapp.html EPIC: In re WhatsApp http://epic.org/privacy/internet/ftc/whatsapp/ EPIC: Federal Trade Commission http://epic.org/privacy/internet/ftc EPIC: In re Facebook http://epic.org/privacy/inrefacebook/ Google Admits to Data-Mining Student Emails In a sworn statement filed with a federal court, Google has admitted to scanning student emails to serve students targeted advertisements. Although Google does not display ads in the company's "Apps for Education," Google "does scan [student] email" to "compile keywords for advertising" on Google sites. Google has gained access to student emails pursuant to the Education Department's recently revised regulations, which significantly weakened the Family Educational Rights and Privacy Act, a federal student privacy law. Still, Google's actions appear to contravene the Education Department's "best practices" for online educational service providers. In 2012, EPIC sued the Education Department for weakening the privacy law that protects student data. SafeGov: Google's Statement on Student Emails (Jan. 16, 2013) http://epic.org/redirect/040114-google-student-emails.html EPIC: US Ed. Dept.'s Proposed Changes to FERPA (Dec. 9, 2008) http://epic.org/apa/ferpa/2008%20Final%20Rule.pdf EPIC: Ed. Dept.'s Final FERPA Changes (Dec. 2, 2011) http://epic.org/apa/ferpa/Final%20Rule.pdf US Ed. Dept.: Fact Sheet on Protecting Student Privacy (Feb. 2014) http://epic.org/redirect/040114-ptac-fact-sheet.html EPIC: EPIC v. The U.S. Department of Education http://epic.org/apa/ferpa/ EPIC: Student Privacy http://epic.org/privacy/student/ White House Updates Website Privacy Policy The White House's revised privacy policy will go into effect April 18, 2014. Users will continue to be able to anonymously access information posted on the White House website, although personal information will be required for some services. The site's data retention practice has not changed, nor has the policy for the disclosure of personal data to other entities. According to the White House website, "Information you choose to share with the White House (directly and via third party sites) may be treated as public information." In the first (1997) report ever published on online privacy, "Surfer Beware: Personal Privacy and the Internet," EPIC said that websites should "support anonymity while developing policies and practices to protect information privacy." In 2009 EPIC urged the White House to establish Privacy Act safeguard for the use of social media services. The White House: Revised Privacy Policy (Mar. 24, 2014) http://www.whitehouse.gov/updating-our-privacy-policy EPIC: "Surfer Beware" (June 1997) http://epic.org/reports/surfer-beware.html EPIC: Comments to DHS on Privacy Best Practices (Jun. 1, 2009) http://epic.org/privacy/socialnet/dhs_socialnetworking-6-09.pdf EPIC: Privacy Act of 1974 http://epic.org/privacy/1974act/ EPIC: Privacy and Government Contracts with Social Media Companies http://epic.org/privacy/socialnet/gsa/ Fandago and Credit Karma Settle FTC Charges Over Weak App Security Two companies have settled Federal Trade Commission charges that they misrepresented the security of their mobile apps. Fandango and Credit Karma failed to enable SSL encryption, leaving user data vulnerable. "Our cases against Fandango and Credit Karma should remind app developers of the need to make data security central to how they design their apps," FTC Chairwoman Edith Ramirez said in a statement. The settlements require the companies to establish data security programs, and to undergo security assessments by the Commission for the next 20 years. EPIC recently brought a complaint to the FTC over Scholarships.com, a company that failed to establish adequate security safeguards. Not long after the complaint from EPIC, the company implemented SSL. In 2011 EPIC recommended that the Commission require encryption for all cloud-based services. FTC: Press Release on Settlement (Mar. 28, 2014) http://epic.org/redirect/040114-ftc-settlement-release.html FTC: Complaint Against Fandango (Mar. 28, 2014) http://epic.org/redirect/040114-ftc-fandango.html FTC: Complaint Against Credit Karma (Mar. 28, 2014) http://epic.org/redirect/040114-ftc-creditkarma.html EPIC: Complaint with FTC Against Scholarships.com (Dec. 12, 2013) http://epic.org/privacy/student/EPIC-FTC-Compl-Scholarships.com.pdf EPIC: Comments to FTC re: Google Buzz (May 2, 2011) http://epic.org/redirect/040114-epic-google-buzz.html EPIC: Federal Trade Commission http://epic.org/privacy/internet/ftc EPIC: EPIC Online Guide to Practical Privacy Tools http://epic.org/privacy/tools.html ======================================================================== [7] EPIC in the News ======================================================================== "Our Routers, Ourselves." The New Yorker, Mar. 31, 2014. http://www.newyorker.com/online/blogs/elements/2014/03/turkey- twitter-ban-and-future-of-networks.html "FOIA exemptions provide ample cover for bureaucrats hiding agency secrets, transparency advocates say." Washington Examiner, Mar. 31, 2014. http://washingtonexaminer.com/foia-exemptions-provide-ample-cover- for-bureaucrats-hiding-agency-secrets/article/2546487 Opinion: "No complaints here with NSA program keeping U.S. safe." The Spokesman-Review, Mar. 29, 2014. http://www.spokesman.com/stories/2014/mar/29/froma-harrop-no- complaints-here-with-nsa-program/ "President's Plan Insufficient to Rein in NSA, Privacy Advocates Say." CIO Magazine, Mar. 28, 2014. http://www.cio.com/article/750437/President_s_Plan_Insufficient_to_ Rein_in_NSA_Privacy_Advocates_Say "State cops can track residents' cellphones." Fond du Lac Reporter, Mar. 28, 2014. http://www.fdlreporter.com/article/20140329/FON0198/303290111/ State-cops-can-track-residents-cellphones "Coveted spy gavel is up for grabs in House." The Hill, Mar. 28, 2014. http://thehill.com/blogs/hillicon-valley/technology/202020-rogers- exit-could-ease-nsa-reforms "Google's $8.5 Million Data Leakage Settlement Clears First Hurdle." MediaPost, Mar. 28, 2014. http://www.mediapost.com/publications/article/222497/googles-85- million-data-leakage-settlement-clea.html "Verizon Opposes Mandate on Holding NSA Phone Records." Bloomberg News, Mar. 27, 2014. http://www.bloomberg.com/news/2014-03-27/obama-nsa-plan-requires- court-ok-for-phone-data-access.html "About Those NSA Intrusions…What Are The Other Options?" Politicus USA, Mar. 27, 2014. http://www.politicususa.com/2014/03/27/nsa-intrusions-are-options- available.html "Sen. Feinstein's Pro-NSA Bill Has Hit a Snag: Obama." Mother Jones, Mar. 25, 2014. http://www.motherjones.com/mojo/2014/03/sen-feinstein-nsa-phone- records "On mounting privacy concerns, WhatsApp CEO defends acquisition." Digital Journal, Mar. 25, 2014. http://digitaljournal.com/internet/on-mounting-privacy-concerns- whatsapp-ceo-defends-acquisition/article/378212 "Obama Plan Would End NSA Bulk Data Collection." New York Magazine, Mar. 24, 2014. http://nymag.com/daily/intelligencer/2014/03/obama-plan-would-end- nsa-bulk-data-collection.html "Microsoft Admits Searching Blogger's Hotmail, Chats For Information." NewsMax, Mar. 22, 2014. http://www.newsmax.com/scitech/microsoft-hotmail-leak-account/ 2014/03/22/id/561109/ "Facebook CEO still unhappy after meeting with Obama." The Columbia [TN] Daily Herald, Mar. 22, 2014. http://columbiadailyherald.com/news/nation/facebook-ceo-still- unhappy-after-meeting-obama "Obama Meets Internet CEOs To Discuss Privacy Issues." WNPR, Mar. 21, 2014. http://wnpr.org/post/obama-meets-internet-ceos-discuss-privacy- issues "Podesta Urges More Transparency on Data Collection, Use." The Wall Street Journal, Mar. 21, 2014. http://blogs.wsj.com/digits/2014/03/21/podesta-urges-more- transparency-on-data-collection-use/ "Microsoft defends its right to read your email." CNN Money, Mar. 21, 2014. http://money.cnn.com/2014/03/21/technology/security/microsoft- email/index.html?iid=Lead "Lawsuit Alleges That Google Has Crossed A 'Creepy Line' With Student Data." The Huffington Post, Mar. 18, 2014. http://www.huffingtonpost.com/2014/03/17/google-data-mining- students_n_4980422.html?ir=Technology For More EPIC in the News: http://epic.org/news/epic_in_news.html ======================================================================== [8] EPIC Book Review: 'Cybersecurity and Cyberwar' ======================================================================== "Cybersecurity and Cyberwar: What Everyone Needs to Know," PW Singer and Allan Friedman http://epic.org/redirect/033114-cybersecurity-cyberwar-singer.html It's unclear whether this book actually contains "What Everyone Needs to Know" but it does succeed in providing an up-to-the-minute picture of the massive changes and revelations occurring in the cyber realm. Authors Singer and Friedman use a plethora of anecdotes to make their point, some revealing how hacking often turns on subtle elements of human psychology - for example how hackers gained access to a Minnesota company by sending a spear-phishing email to key employees on the day of a blizzard with the subject line "Change in Snow Day Polices." Singer and Friedman break their book down into three central themes: 1) "How It All Works"; 2) "Why It Matters"; and 3) "What Can We Do?" The first section is probably the most timeless, if also the most technical. Learning "How It All works" - "it" being the Internet and the cyber domain more broadly - falls squarely within the category of "what everyone needs to know." The authors' lucid descriptions of complicated topics including cryptography, the birth of the Internet, and the changing nature of Internet global governance is well worth the reading time. The second section, "Why It Matters," is a free-wheeling discussion of the last decade's cyber attacks and cyber exploits. The material will be familiar to any reasonably close followers of cybersecurity. For those with little background, Singer and Friedman provide an up-to-date stream of curated revelations; in fact, this list is valuable even to those who track these stories and discussions in real time. The book's third section, "What Can We Do?" is the most theoretical and abstract, and least helpful. This is not entirely the authors' fault; security problems are inherently complex given the variety of actors involved (e.g., Internet users, private companies, the cyber-military industrial complex, the government, hackers, tech enthusiasts). Singer and Friedman make clear that the cybersecurity problem is currently insoluble, and thus, to their credit, seek more to describe than to dictate. Their suggestions mostly fall into the categories of private- public partnerships, attempts to generate international norms of comity, and regulation and information-sharing, and none come across as either exciting or innovative. Singer and Friedman conclude with a truism: As the Internet's value and interactivity penetrate every aspect of society more deeply, our lives will be enhanced but so will our vulnerability. Emerging trends such as cloud computing, Big Data, and the "Internet of Things" will increasingly connect us more deeply to the cyber realm, yet also expose us to greater risks as a natural consequence. We know this already, and ultimately would like more genuine closure than the authors provide. -- David Husband ========================================= EPIC Bookstore ========================================= "Litigation Under the Federal Open Government Laws 2010," edited by Harry A. Hammitt, Marc Rotenberg, John A. Verdi, Ginger McCall, and Mark S. Zaid (EPIC 2010). Price: $75. http://epic.org/bookstore/foia2010/ Litigation Under the Federal Open Government Laws is the most comprehensive, authoritative discussion of the federal open access laws. This updated version includes new material regarding President Obama's 2009 memo on Open Government, Attorney General Holder's March 2009 memo on FOIA Guidance, and the new executive order on declassification. The standard reference work includes in-depth analysis of litigation under: the Freedom of Information Act, the Privacy Act, the Federal Advisory Committee Act, and the Government in the Sunshine Act. The fully updated 2010 volume is the 25th edition of the manual that lawyers, journalists and researchers have relied on for more than 25 years. ================================ "Information Privacy Law: Cases and Materials, Second Edition" Daniel J. Solove, Marc Rotenberg, and Paul Schwartz. (Aspen 2005). Price: $98. http://www.epic.org/redirect/aspen_ipl_casebook.html This clear, comprehensive introduction to the field of information privacy law allows instructors to enliven their teaching of fundamental concepts by addressing both enduring and emerging controversies. The Second Edition addresses numerous rapidly developing areas of privacy law, including: identity theft, government data mining and electronic surveillance law, the Foreign Intelligence Surveillance Act, intelligence sharing, RFID tags, GPS, spyware, web bugs, and more. Information Privacy Law, Second Edition, builds a cohesive foundation for an exciting course in this rapidly evolving area of law. ================================ "Privacy & Human Rights 2006: An International Survey of Privacy Laws and Developments" (EPIC 2007). Price: $75. http://www.epic.org/phr06/ This annual report by EPIC and Privacy International provides an overview of key privacy topics and reviews the state of privacy in over 75 countries around the world. The report outlines legal protections, new challenges, and important issues and events relating to privacy. Privacy & Human Rights 2006 is the most comprehensive report on privacy and data protection ever published. ================================ "The Public Voice WSIS Sourcebook: Perspectives on the World Summit on the Information Society" (EPIC 2004). Price: $40. http://www.epic.org/bookstore/pvsourcebook This resource promotes a dialogue on the issues, the outcomes, and the process of the World Summit on the Information Society (WSIS). This reference guide provides the official UN documents, regional and issue-oriented perspectives, and recommendations and proposals for future action, as well as a useful list of resources and contacts for individuals and organizations that wish to become more involved in the WSIS process. ================================ "The Privacy Law Sourcebook 2004: United States Law, International Law, and Recent Developments," Marc Rotenberg, editor (EPIC 2005). Price: $40. http://www.epic.org/bookstore/pls2004/ The Privacy Law Sourcebook, which has been called the "Physician's Desk Reference" of the privacy world, is the leading resource for students, attorneys, researchers, and journalists interested in pursuing privacy law in the United States and around the world. It includes the full texts of major privacy laws and directives such as the Fair Credit Reporting Act, the Privacy Act, and the OECD Privacy Guidelines, as well as an up-to-date section on recent developments. New materials include the APEC Privacy Framework, the Video Voyeurism Prevention Act, and the CAN-SPAM Act. ================================ "Filters and Freedom 2.0: Free Speech Perspectives on Internet Content Controls" (EPIC 2001). Price: $20. http://www.epic.org/bookstore/filters2.0 A collection of essays, studies, and critiques of Internet content filtering. These papers are instrumental in explaining why filtering threatens free expression. ================================ EPIC publications and other books on privacy, open government, free expression, and constitutional values can be ordered at: EPIC Bookstore: http://www.epic.org/bookstore ================================ EPIC also publishes EPIC FOIA Notes, which provides brief summaries of interesting documents obtained from government agencies under the Freedom of Information Act. Subscribe to EPIC FOIA Notes at: http://mailman.epic.org/mailman/listinfo/foia_notes ======================================================================= [9] Upcoming Conferences and Events ======================================================================= "Privacy, Security, and Secrecy After Snowden." Featuring EPIC Appellate Counsel Alan Butler. New York, Cardozo School of Law, April 2, 2014. For More Information: http://www.cardozo.yu.edu/events/privacy-security-and-secrecy-after- snowden. "Data Privacy in the Digital Age." Featuring EPIC Executive Director Marc Rotenberg. Indianapolis, IN, April 4, 2014. For More Information: http://mckinneylaw.iu.edu/events/current.cfm?eid=206. "Techno-Snooping: Privacy, Technology and the Evolving Rule of Law." Ginger McCall, EPIC Associate Director. Colby College, Waterville, ME, April 6, 2014. For More Information: http://epic.org/2014/04/techno-snooping-privacy-techno.html. "EPIC's Contemporary Privacy Litigation: Challenging The Surveillance State." Featuring EPIC Appellate Counsel Alan Butler. Concord, NH, UNH School of Law, April 8, 2014. For More Information: http://law.unh.edu/events/2014/04/epics-contemporary-privacy-litigation- challenging-the-surveillance-state. Fourth Annual International Summit on the Future of Health Privacy. Washington, DC, June 4-5, 2014. For More Information: http://patientprivacyrights.org/summit/. IEEE Presents "Reintroducing Norbert Wiener in the 21st Century." Boston, 24-26 June 2014. For More Information: http://21stcenturywiener.org. SAVE THE DATE: EPIC's 2014 Champions of Freedom Dinner, Hosted by Bruce Schneier: http://epic.org/june02. ======================================================================= Join EPIC on Facebook and Twitter ======================================================================= Join the Electronic Privacy Information Center on Facebook and Twitter: http://facebook.com/epicprivacy http://epic.org/facebook http://twitter.com/epicprivacy Start a discussion on privacy. Let us know your thoughts. Stay up to date with EPIC's events. Support EPIC. ======================================================================= Privacy Policy ======================================================================= The EPIC Alert mailing list is used only to mail the EPIC Alert and to send notices about EPIC activities. We do not sell, rent or share our mailing list. We also intend to challenge any subpoena or other legal process seeking access to our mailing list. We do not enhance (link to other databases) our mailing list or require your actual name. In the event you wish to subscribe or unsubscribe your e-mail address from this list, please follow the above instructions under "subscription information." ======================================================================= About EPIC ======================================================================= The Electronic Privacy Information Center is a public interest research center in Washington, DC. It was established in 1994 to focus public attention on emerging privacy issues such as the Clipper Chip, the Digital Telephony proposal, national ID cards, medical record privacy, and the collection and sale of personal information. EPIC publishes the EPIC Alert, pursues Freedom of Information Act litigation, and conducts policy research. For more information, see http://www.epic.org or write EPIC, 1718 Connecticut Ave. NW, Suite 200, Washington, DC 20009. +1 202 483 1140 (tel), +1 202 483 1248 (fax). ======================================================================= Support EPIC ======================================================================= If you'd like to support the work of the Electronic Privacy Information Center, contributions are welcome and fully tax-deductible. Checks should be made out to "EPIC" and sent to 1718 Connecticut Ave. NW, Suite 200, Washington, DC 20009. Or you can contribute online at: http://www.epic.org/support Your contributions will help support Freedom of Information Act and First Amendment litigation, strong and effective advocacy for the right of privacy and efforts to oppose government and private-sector infringement on constitutional values. ======================================================================= Subscription Information ======================================================================= Subscribe/unsubscribe via web interface: http://mailman.epic.org/mailman/listinfo/epic_news Back issues are available at: http://www.epic.org/alert The EPIC Alert displays best in a fixed-width font, such as Courier. ------------------------- END EPIC Alert 21.06------------------------