DOJ Asks The Supreme Court To Give It Permission To Search Data Centers Anywhere In The World
from the world-is-[potentially]-yours dept
Having been told “no” twice by the Second Circuit Court of Appeals, the DOJ is asking the Supreme Court to overturn the decision finding Microsoft did not need to hand over communications stored in foreign data centers in response to a US warrant.
The Appeals Court told the DOJ that statutory language simply didn’t agree with the premise pushed by the government: that US-issued warrants should allow the law enforcement to dig through “file cabinets” not actually located at the premises (United States) searched. The court noted jurisdictional limitations have always been part of the warrant process (although recent Rule 41 changes somewhat undercut this). That the information sought is digital rather than physical doesn’t change this. The court suggested the DOJ take it up with Congress if it doesn’t like the status quo. The DOJ has proposed legislation but likely feels a Supreme Court decision in its favor would be a swifter resolution.
The DOJ’s 207-page petition [PDF] actually only contains about 30 pages of arguments. The bulk of the petition is made up of previous court decisions and oral argument transcripts covering the DOJ’s losses at the lower level. The Table of Contents gets right to the point, utilizing the section header “The panel’s decision is wrong” to set the tone for its rehashed arguments.
The DOJ quotes the dissenting judges from the Appeals Court’s decision, one of which makes the ever-popular “appeal to 9/11” argument:
Judge Raggi also emphasized the exceptional importance of this case and the “immediate and serious adverse consequences” of the panel’s ruling. “On the panel’s reasoning,” she explained, if the government had been able to show in early September 2001 probable cause to believe that the 9/11 perpetrators “were communicating electronically about an imminent, devastating attack on the United States, and that Microsoft possessed those emails,” a federal court would not have been able to issue a Section 2703 warrant if Microsoft had stored the emails outside the United States, “even though [Microsoft’s] employees would not have had to leave their desks in Redmond, Washington, to retrieve them.”
All well and good, if you like that sort of thing, but the facts of the case are far less dire:
In December 2013, the government applied for a warrant requiring Microsoft to disclose email information for a particular user’s email account. See App., infra, 2a, 8a-10a. The government’s application established probable cause to believe that the account was being used to conduct criminal drug activity.
This is how most arguments for expansions of law enforcement reach and grasp go: talk about how it will be used to stop terrorists; actually use it to hunt down normal criminals.
The petition admits Congress meant for domestic laws to only be applied domestically before arguing certain “applications” of US law should be seen as permissible inversions of Congressional intent. The DOJ argues Microsoft’s United States offices should permit worldwide searches of its data centers. Once again, the government’s arguments that stored communications are no different than paper files in a file cabinet (made when it wants broadly-written electronic storage searches to be seen as no more intrusive than a residence search) works against it. This interpretation of the Stored Communications Act means any service provider anywhere could be made to hand over documents stored overseas as long as they have a US office where a warrant can be served. This would be the case even if the service provider has no US storage locations and nothing more than a US-based “storefront” for convenience.
Microsoft has already responded with a lengthy blog post. It points out the better way forward is not to have the Supreme Court reinterpret a 30-year-old law, but rather to work with US service providers and Congress to build a better law that addresses the world as it is now.
The litigation path DOJ is now trying to extend in parallel to legislative progress seeks to require the Supreme Court to decide how a law written three decades ago applies to today’s global internet. The previous decision was soundly in our favor, and we’re confident our arguments will be persuasive with the Supreme Court. However, we’d prefer to keep working alongside the DOJ and before Congress on enacting new law, as Judge Lynch suggested, that works for everyone rather than arguing about an outdated law. We think the legislative path is better for the country too.
The post also points out cooperation with foreign law enforcement is a much faster process than has been portrayed by the DOJ, which insists it takes “weeks” to see results of these cooperative efforts. Following the Charlie Hebdo attack, Microsoft was able to turn over US-stored communications to French law enforcement in under an hour.
What the DOJ doesn’t seem to understand (or genuinely just doesn’t care about) is a decision granting it the power to seize communications from anywhere in the world would result in foreign governments expecting the same treatment when requesting communications stored in the US.
Should people be governed by the laws of their own country? If the decision in our case were reversed, it would subject every person in the world to every other country’s legal process. The email of a person who lives and works in Dublin would be subject to an American warrant issued by a U.S. court just as an American would be subject to an Irish warrant. Our customers tell us they want to be governed by the laws of their own government, and they deserve the certainty of knowing what laws govern their data.
If the Supreme Court decides to grant the DOJ’s petition, this won’t be argued until the next session, leaving the DOJ plenty of time to work on its legislative proposals. Hopefully, it’s actually working with US service providers on this, rather than thinking it’s the only stakeholder of importance in the legislative process.