Latest news with #ElectronicPrivacyInformationCenter
The Independent
23-05-2025
- Politics
- The Independent
Privacy and hunger groups sue over USDA attempt to collect personal data of SNAP recipients
Privacy and hunger relief groups and a handful of people receiving food assistance benefits are suing the federal government over the Trump administration's attempts to collect the personal information of millions of U.S. residents who use the Supplemental Nutrition Assistance Program. The lawsuit filed in Washington, D.C., on Thursday says the U.S. Department of Agriculture violated federal privacy laws when it ordered states and vendors to turn over five years of data about food assistance program applicants and enrollees, including their names, birth dates, personal addresses and social security numbers. The lawsuit 'seeks to ensure that the government is not exploiting our most vulnerable citizens by disregarding longstanding privacy protections,' National Student Legal Defense Network attorney Daniel Zibel wrote in the complaint. The Electronic Privacy Information Center and Mazon Inc.: A Jewish Response to Hunger joined the four food assistance recipients in bringing the lawsuit. The White House did not immediately respond to a request for comment. The Supplemental Nutrition Assistance Program, or SNAP, is a social safety net that serves more than 42 million people nationwide. Under the program formerly known as food stamps, the federal government pays for 100% of the food benefits but the states help cover the administrative costs. States also are responsible for determining whether people are eligible for the benefits, and for issuing the benefits to enrollees. As a result, states have lots of highly personal financial, medical, housing, tax and other information about SNAP applicants and their dependents, according to the lawsuit. President Donald Trump signed an executive order March 20 directing agencies to ensure 'unfettered access to comprehensive data from all state programs' as part of the administration's effort to stop ' waste, fraud and abuse by eliminating information silos.' That order prompted Elon Musk's Department of Government Efficiency and the USDA to ask states and electronic benefit vendors to turn over the info earlier this month. Failing to do so may 'trigger noncompliance procedures,' the USDA warned in a letter to states. Some states have already turned over the data, including Alaska, which shared the personal info of more than 70,000 residents, according to the lawsuit. Other states like Iowa plan to turn over the information, the plaintiffs say. They want a judge to declare the data collection unlawful, to order the USDA to destroy any personal information it already has, and to bar the agency from punishing states that fail to turn over the data. ___
Associated Press
23-05-2025
- Politics
- Associated Press
Privacy and hunger groups sue over USDA attempt to collect personal data of SNAP recipients
Privacy and hunger relief groups and a handful of people receiving food assistance benefits are suing the federal government over the Trump administration's attempts to collect the personal information of millions of U.S. residents who use the Supplemental Nutrition Assistance Program. The lawsuit filed in Washington, D.C., on Thursday says the U.S. Department of Agriculture violated federal privacy laws when it ordered states and vendors to turn over five years of data about food assistance program applicants and enrollees, including their names, birth dates, personal addresses and social security numbers. The lawsuit 'seeks to ensure that the government is not exploiting our most vulnerable citizens by disregarding longstanding privacy protections,' National Student Legal Defense Network attorney Daniel Zibel wrote in the complaint. The Electronic Privacy Information Center and Mazon Inc.: A Jewish Response to Hunger joined the four food assistance recipients in bringing the lawsuit. The White House did not immediately respond to a request for comment. The Supplemental Nutrition Assistance Program, or SNAP, is a social safety net that serves more than 42 million people nationwide. Under the program formerly known as food stamps, the federal government pays for 100% of the food benefits but the states help cover the administrative costs. States also are responsible for determining whether people are eligible for the benefits, and for issuing the benefits to enrollees. As a result, states have lots of highly personal financial, medical, housing, tax and other information about SNAP applicants and their dependents, according to the lawsuit. President Donald Trump signed an executive order March 20 directing agencies to ensure 'unfettered access to comprehensive data from all state programs' as part of the administration's effort to stop ' waste, fraud and abuse by eliminating information silos.' That order prompted Elon Musk's Department of Government Efficiency and the USDA to ask states and electronic benefit vendors to turn over the info earlier this month. Failing to do so may 'trigger noncompliance procedures,' the USDA warned in a letter to states. Some states have already turned over the data, including Alaska, which shared the personal info of more than 70,000 residents, according to the lawsuit. Other states like Iowa plan to turn over the information, the plaintiffs say. They want a judge to declare the data collection unlawful, to order the USDA to destroy any personal information it already has, and to bar the agency from punishing states that fail to turn over the data. ___
Daily Mail
20-05-2025
- Daily Mail
Urgent warning to Americans over 'dangerous' technology quietly rolled out in 80 airports
You look up. A camera captures your face. Within seconds, you've been scanned, stored, and tracked—before even reaching airport security. Without ever handing over your ID, the Transportation Security Administration (TSA) already knows exactly who you are. This is happening at 84 airports across the US. And chances are, you didn't even notice. Marketed as a tool to enhance security, TSA's facial recognition system is drawing criticism for its potential to track Americans from the terminal entrance to their final destination. While the agency insists the scans are voluntary, many passengers say they're unaware that opting out is even an option. Behind these sleek, touchless scanners lies a vast biometric database, which is raising concerns among experts about how the data might be used, or misused, by the very government that collects it. Jeramie Scott, senior counsel at the Electronic Privacy Information Center, described the facial recognition as 'an invasive and dangerous surveillance technology.' 'That will ultimately accelerate the use of our faces as our ID, and that has some very important implications for privacy, civil liberties, civil rights and our democracy,' he added. TSA's facial recognition program, known as Credential Authentication Technology with Camera (CAT-2), scans a traveler's face in real time and matches it to the photo on their government-issued ID. Once verified, passengers can proceed without ever showing their physical license. The technology is already in use at major US airports, including Los Angeles International, Atlanta Hartsfield-Jackson, and Chicago O'Hare. But this is only the beginning. TSA plans to expand the program to more than 400 airports in the coming years. Gerardo Spero, TSA's Federal Security Director for Pennsylvania and Delaware, said: 'Identity verification of every traveler prior to flying is a key step in the security screening process. 'This technology enhances our ability to detect fraudulent IDs such as driver's licenses and passports at checkpoints, and it increases efficiency by automatically verifying a passenger's identity. We just want to ensure that you are who you say you are.' However, the initiative has drawn significant criticism from privacy experts, civil rights groups, and lawmakers across the political spectrum. Behind these sleek, touchless scanners lies a vast biometric database, which is raising concerns among experts about how the data might be used, or misused, by the very government that collects it One concern is the lack of comprehensive federal regulations governing the use of facial recognition technology. Speaking to HuffPost, Scott warned that 'what may be the safeguards today does not mean they will be the safeguards tomorrow.' According to the TSA, passengers who are uncomfortable with the facial recognition system can choose to opt out and request a manual ID check. Saira Hussain, a senior staff attorney at the Electronic Frontier Foundation, regularly declines the facial scan when she flies. But she says TSA agents often respond with statements like, 'We already have your information, so it's not like you're giving us anything more.' TSA's long-term vision, outlined in its technology roadmap, is to create a fully 'touchless' and 'frictionless' airport experience, transforming your body into your boarding pass. But what's marketed as convenience by the agency is viewed as surveillance by others. Travis LeBlanc, a lawyer and former member of the Privacy and Civil Liberties Oversight Board, warns that TSA's placement within the Department of Homeland Security raises serious concerns about the use of traveler data. 'TSA is part of the Department of Homeland Security, which is also responsible for immigration enforcement,' LeBlanc said. 'There are many potential uses for these images.' In January, the Trump administration removed LeBlanc and two other Democratic board members. He is currently suing the U.S. government to be reinstated, arguing that the dismissal was unlawful. Despite the criticism, TSA remains committed to expanding the program. In a recent statement, the agency said biometric screening will 'improve security effectiveness' and 'enhance the passenger experience.' For now, opting out remains an option. But as summer travel ramps up and facial recognition systems roll out to more airports, passengers are left to weigh the trade-off between speed and privacy.
Politico
19-05-2025
- Business
- Politico
Trump's U-turn on data privacy
With help from Maggie Miller and John Sakellariadis Driving the day — Experts warn that the Consumer Financial Protection Bureau's recent data brokerage rule reversal is the latest move by the Trump administration to erode Americans' data privacy protections. HAPPY MONDAY, and welcome to MORNING CYBERSECURITY! Have you guys ever been to a murder mystery party before? My roommate threw an outstanding one this weekend. Despite accusations thrown my way, I was not the murderer. If anyone wants to come to the next one, or if anyone has any gossip, tips or coffee recs, drop me a line at dnickel@ Follow POLITICO's cybersecurity team on X at @RosiePerper, @johnnysaks130, @delizanickel and @magmill95, or reach out via email or text for tips. You can also follow @POLITICOPro on X. Want to receive this newsletter every weekday? Subscribe to POLITICO Pro. You'll also receive daily policy news and other intelligence you need to act on the day's biggest stories. Today's Agenda President Donald Trump will sign the Take it Down Act. 3 p.m. The House Veterans' Affairs Technology Modernization Subcommittee holds a hearing on 'Improving Software Licensing Management.' 3 p.m. At the Agencies PRIVACY PLEASE? — The Consumer Financial Protection Bureau ended its plans last week to block data brokers from selling consumers' personal data — including financial information and Social Security numbers — to third parties. Experts warn that the move is the latest in a long line of decisions from the Trump administration to erode data privacy protections for Americans. Under the Biden administration's purview in early December, the bureau proposed a rule to close a loophole under the Fair Credit Reporting Act, the federal law that protects Americans' personal data collected by consumer reporting agencies. The rule would have required data brokers to get explicit permission from consumers before collecting and selling their data. The CFPB, under Director Russ Vought, revoked the proposal via a formal notice published Thursday in the Federal Register, declaring it no longer 'necessary or appropriate.' Justin Sherman, a senior fellow at the Atlantic Council's Cyber Statecraft Initiative and scholar in residence at the Electronic Privacy Information Center, told your host that the decision to disregard the rule 'seems to fly against the important, ongoing discussion about protecting data from exploitation and foreign adversaries like China.' — The data on the line: The data broker industry brings in billions of dollars each year compiling personal information on nearly everyone in the U.S. — including Social Security numbers, court testimonies, addresses and location history — and sells them to companies, law enforcement bodies and intelligence agencies. 'Data brokers trade deeply personal, sensitive information about us,' Caroline Kraczon, a law fellow focusing on consumer privacy at the Electronic Privacy Information Center, told your host. She added that employment information and biometric data are often sold to third parties like advertisers, financial institutions, law enforcement and intelligence agencies — or anyone willing to pay. The potential harm goes far beyond cyberspace — research has long shown that the data compiled by brokers can pose a risk to personal safety. The Electronic Privacy Information Center cautions that the information profiles data brokers put together can be weaponized by abusers to track down survivors of domestic violence. — Privacy priority? The Trump administration has faced sharp backlash from lawmakers and the private sector over its handling of sensitive information. Experts warn that backtracking on the proposal hands a free pass to data broker firms — which have been easy targets for cybercriminals — to sell sensitive information on Americans to the highest bidder. The Department of Government Efficiency has been wrapped up in a sea of litigation over its access to sensitive information across federal agencies. The concern has made its way to Capitol Hill, where lawmakers recently raised the alarm over reports of DOGE accessing personal information from government entities to make a 'master database' to track undocumented immigrants. Last week, the National Labor Relations Board's inspector general launched an investigation into a whistleblower's recent account of DOGE taking potentially sensitive data from the board. Kraczon said that the Trump administration has signaled 'their intention to ignore how data brokers harm Americans and to give a free pass to companies to invade our privacy and put us in harm's way.' The CFPB did not respond to a request for comment on the decision to revoke the rule. — What's been done before: The Biden administration — in addition to the rescinded CFPB rule — cracked down on data brokers through a directive that prevented firms from selling sensitive information to U.S. foreign adversaries. Public officials have also worked to combat brokers' often unregulated access. Texas Attorney General Ken Paxton in January accused a data broker owned by insurance giant Allstate of illegally compiling, using and selling data from millions of drivers to insurance companies without their permission. State legislatures have responded swiftly to the rise in data brokers and increased reports of hackers gaining access to these massive banks of sensitive information. State Houses in Oregon, California, Texas and Vermont have passed laws to require data brokers to register with their state offices. In February, the California Privacy Protection Agency fined data brokerage firm National Public Data over allegedly violating a California state law that requires data brokers to register and pay an annual fee. 'This is not some abstract financial regulation issue,' Sherman said. 'We need to be making sure that companies that are handling Americans' sensitive data are doing so responsibly. That includes getting consent. That includes providing people the rights they're entitled to, and that includes making sure that they have good cybersecurity.' On The Hill FIRST IN MC: CRYPTO THEFT CONCERNS — Two senators are pushing the U.S. attorney general and the Treasury Department to share more on the Trump administration's efforts to combat frequent cyberattacks from North Korean ransomware groups that have swiped billions of dollars in cryptocurrency. In a letter sent to Treasury Secretary Scott Bessent and Attorney General Pam Bondi today, shared exclusively with MC, Sens. Jack Reed (D-R.I.) and Elizabeth Warren (D-Mass.) referenced the February cyberattack on crypto firm Bybit, where North Korean-backed hackers stole nearly $1.5 billion in digital currency — one of the largest known thefts in cryptocurrency ever. 'North Korea relies on cryptocurrency theft to subvert U.S.-led international sanctions and to undermine the security of the United States and our Indo-Pacific allies,' the senators wrote. The senators asked Bessent and Bondi to share how the administration plans to enhance efforts to prevent North Korean cryptocurrency crime, as well as challenges the administration faces in combating this type of theft. They also requested information on steps Congress can take to support enforcement efforts to hinder future crypto heists. Industry Intel FIRST IN MC: COME TOGETHER — Six technology companies are forming a new initiative to advocate for better cyber partnerships between the U.S. and its foreign allies. Velos, Forescout, Google Cloud, Dell Technologies, Trellix and Carahsoft announced today the formation of the Strategic Cybersecurity Coalition, which will focus on modernizing 'antiquated foreign military sales and foreign military financing processes to include cybersecurity solutions,' according to a statement from the companies. The SCC will work closely with U.S. government policymakers to incentivize allies 'to achieve cyber defense capabilities that support U.S. policy interests and adopt U.S. cybersecurity solutions,' and foster relationships with Congress, the Defense and State Departments and within the private sector. 'We look forward to working with the SCC to provide access for our partners and allies to the most effective tools needed to defend against cyber threats while championing American technology and innovation in the global cybersecurity landscape,' said Ron Bushar, Google Public Sector's chief security officer. Vulnerabilities FIRST IN MC: (CYBER) SCHOOL IS IN SESSION — Cybersecurity firm Check Point is highlighting the cyber vulnerabilities in an often-overlooked sector of U.S. critical infrastructure — education. In the report, out today and shared exclusively with MC, the firm found that while schools are rapidly digitizing, they are often limited in cybersecurity infrastructure and IT resources, which makes them 'increasingly vulnerable to cyberattacks.' The report also noted that the most common attack methods against the education sector include QR code phishing, ransomware attacks and exploitation of reused or weak passwords, unpatched software or misconfigured cloud tools. To combat this, the report says, school districts should enforce multi-factor authentication across its systems; train students, staff and faculty on cybersecurity risks; and establish an incident response plan with communication strategies, defined rules and recovery steps to reduce damage in the event of a cyberattack. Quick Bytes BACK TO BASICS — The company behind the Signal clone app TeleMessage, which was used by at least one Trump administration official, was breached earlier this month. Micah Lee writes for WIRED that the hacker got in thanks to a basic misconfiguration. FUTURE OF WARFARE — Tech billionaire Palmer Lucky tells 60 Minutes why he thinks AI-powered, autonomous weapons are the future of warfare. ROMANIAN ELECTION INSECURITY — The Romanian government issued new warnings of a Russian-linked disinformation campaign in the wake of the country's presidential election, POLITICO's Tim Ross and Andrei Popvoiciu reported on Sunday. Also Happening Today The American Bar Association holds its virtual '2025 AI and the Practice of Law Summit.' 12 p.m. The Center for a New American Security holds a virtual discussion on 'Maintaining America's AI Edge.' 2 p.m. Chat soon. Stay in touch with the whole team: Rosie Perper (rperper@ John Sakellariadis (jsakellariadis@ Maggie Miller (mmiller@ and Dana Nickel (dnickel@
Gizmodo
07-05-2025
- Politics
- Gizmodo
With Its Destruction of Government Data Silos, DOGE Is Building a ‘Surveillance Weapon'
There's a reason the government's vast trove of data is compartmentalized. Generally speaking, the United States has a piss poor track record when it comes to data privacy. One of the few protections that the federal government offers people is siloing data. Information the U.S. Census Bureau collects about you isn't handed over to the Internal Revenue Service and so on and so forth. But as President Donald Trump mounts attacks on one of the federal government's few safeguards, the U.S. must also confront its overall messy surveillance history. A quick Google search on data silos will tell you that they're inefficient and need to be eliminated. But as John Davisson, senior counsel at the Electronic Privacy Information Center, told Gizmodo: 'Personal information held by the federal government is siloed for good reason.' For the U.S., that reason is Watergate. The scandal revealed that the federal government conducted extensive surveillance on 'opposing political parties, civil rights activists, and others it sought to silence,' Victoria Noble, a staff attorney at the Electronic Frontier Foundation, explained via email. In response, Congress implemented the Privacy Act of 1974, which placed restrictions on how agencies can share data, amongst other things. But in March, Trump issued an executive order titled 'Stopping Waste, Fraud, and Abuse by Eliminating Information Silos' that basically directed agencies to give the federal government 'unfettered access' to information. Then, last month, two whistleblowers confirmed that the Department of Government Efficiency is building a master database at the Department of Homeland Security. Per Wired, DOGE is using information from DHS alongside other agencies like the Social Security Administration and voting records. Don Bell, policy council at the Project On Government Oversight, told Gizmodo via email that these moves are part of an 'unprecedented effort to dismantle longstanding guardrails to protect our privacy rights and civil liberties.' Or, as Davisson more bluntly stated, 'The DOGE isn't hoarding our personal data for efficiency, fraud detection, or any of the other flimsy reasons it's cited. The DOGE is building a surveillance weapon…That's what this is about: consolidating power.' There's really no getting around the federal government having information about you. Sometimes, it's needed for legitimate business. Limiting access to that information is one way of 'preventing authoritarian abuses,' Noble said. And by itself, DHS is already pretty damn authoritarian. It operates an extensive surveillance network that has targeted immigrants, Muslims, communities of color, and more. Still, it doesn't know everything about everyone. However, as Bell explained, 'Giving [DHS] virtually unfettered access to sensitive information on millions of people…would enable the government to use its already powerful tools to supercharge mass surveillance.' The master database will likely target immigrants first and foremost, but its use would likely expand, which would have even more chilling consequences. As Davvison noted, 'The more a government entity knows about us, the more it can exert control over us.' His words echo a warning by former Sen. Sam J. Ervin (D-NC), the Privacy Act's authorizer, who stated in its introduction, 'The more the Government or any institution knows about us, the more power it has over us. When the Government knows all of our secrets, we stand naked before official power.' Noble says that control could lead to authorities 'retaliat[ing] against criticism of government officials, undermin[ing] political opponents or perceived personal enemies, and target[ing] marginalized groups.' Keep in mind this is the same president who labeled election workers, journalists, judges, and really anyone who doesn't agree with him as 'enemies'. DOGE has already used AI to look for disloyalty amongst federal workers, according to Reuters. For advocates, there is still time to strengthen existing protections and develop new ones. Davisson recommended the 'expan[sion] [of] the ability of judges and individuals to step in when the executive branch goes rogue.' In addition, Bell said Congress should conduct more oversight and recommended 'strengthening the independence of the inspector general'. But in addition to strengthening protections, it's important to look at what got us here. It's easy to frame the Trump administration as uniquely evil, but as the saying goes, nothing comes from nothing. At the same time that the Trump administration ignores some laws, it is building on a precedent established by others. Overall, the federal government has dedicated more of its energy to legislating surveillance than establishing guardrails against it. For example, the Patriot Act authorized unprecedented levels of surveillance, and, last year, Congress reauthorized Section 702 of the Foreign Intelligence Surveillance Act, which allows for warrantless surveillance, including domestically. Yes, DOGE's actions are cartoonishly evil. But how can it be a surprise that someone would eventually blatantly ignore laws when legislators know about and have failed to prevent federal agencies from buying data from brokers to circumvent the Bill of Rights? At some level, it is silly to expect the same government that tracks and watches you to protect you from its surveillance. However, the Trump administration shows the consequences of a federal government that has historically poured its energy into establishing and justifying its mass surveillance.
