The FCC voted today to propose rules that would finally apply telecommunications privacy protections to the internet. We urge adoption of these privacy protections, with clear language to ensure that consumers have meaningful control over their privacy in ways that cant be undermined by carriers.
This long-overdue step is not only consistent with the law, its pretty clearly required by it. Nevertheless, the agencys action is provoking fierce opposition (and bogus arguments) from giant broadband carriers like Verizon, Comcast, and AT&T, which dont want the FCC to enforce the law. With todays action the FCCs proposal will be opened for public comment, after which the agencys five members will vote on whether the protections will actually go into effect.
The FCC and its chairman Tom Wheeler are to be praised for taking this step, which, like the victory for network neutrality before it, promises to be a huge milestonein this case, in the preservation and restoration of our right to communicate privately. Too often, regulatory agencies become captive to the desires of the industries theyre supposed to regulate, so its reassuring to see an agency resolutely press forward with its mission in the face of howls and screams from industry, which is salivating at the prospect of eavesdropping on internet communications in a way that theyve never been allowed to do when it comes to telephone calls.
Americans have a right to a communications infrastructure that protects privacy. They may choose to use that infrastructure to do business with companies like Google and Facebook that offer free services in exchange for a certain amount of monitoring (and that monitoring is problematic in many ways), but that same privacy-invading business model must not be permitted to penetrate the very wires over which we communicate. Unlike with online services, we cannot choose to avoid broadband carriers if we want to connect to the internet. And broadband connectivity is not an ad-supported servicewe pay our ISPs.
For now the question is whether the FCC will go far enough, or whether its proposal will be weakened under pressure from industry and its allies in Congress. Heres what wed like to see in the FCCs final rules:
- A sufficiently broad definition of the information that is protected. As I discussed in greater detail here, the law requires companies to protect the confidentiality of information that relates to the quantity, technical configuration, type, destination, location, and amount of use of a telecommunications service. Such information is called CPNI. The question is how that general description will be defined in the regulations as they apply specifically to broadband internet.
- Meaningful choice. Information collected about a customer by the carriers by virtue of the service they provideCPNIshould not be shared except with the full opt-in consent of that customer. That consent should be meaningful, i.e. truly optional and not buried in a 42-page click-through agreement written in dense legalese.
- Access. Consumers should be able to access CPNI to see what data, if any, a carrier is holding about them and their internet usage.
- Transparency. Internet carriers need to make crystal clear how they will use any information they collect about customers.
- No Pay for privacy. A big danger is that customers will be forced to pay for privacy protections that under the law should be their right. That may initially take the form of special discounts for those who agree to give up their privacy, but will quickly become equivalent to extra charges for those who wish to preserve that privacy. The result will be that the underprivileged (and disproportionately minority) population that lacks the discretionary income to devote to privacy will lose a right given to more affluent Americans. The FCC needs to include protections that prohibit carriers from forcing customers to pay extra for their privacy.
- No spying on content. Many of the rules under discussion would cover communications metadata (who and what a person is communicating with), but the FCC must also ban any eavesdropping on the content of customer communications (what a person is actually saying) under all circumstances. No customer should be allowed to agree to a discount in return for letting the phone company listen in on their phone calls, and theres one simple reason for this: even if the customer agrees, the other people that customer is talking with have not agreed to have their calls listened to, and would have no way to know that monitoring is taking place. The same should apply to the internet: if Im having an online chat with you, my privacy should not be violated just because youve made a deal with the carrier. That would be a profound violation of privacy that is not permitted in other contexts.
Discussions of these elements of privacy protection can be found in excellent white papers produced by the and , among other places.
The good news is that most or all of these elements appear to be mentioned in the FCCs new proposal as issues on which the commission would like to hear feedback. Now the process of submitting comments to the FCC beginssomething that any American can doto press the agency to actually include good rules that cover these important protections. More on that to come
Learn More 勛圖眻畦 the Issues on This Page
-
Press ReleaseMay 2025
Disability Rights
Privacy & Technology
Disability Rights And Privacy Advocates Raise Concerns With Proposed Autism registry. Explore Press Release.Disability Rights and Privacy Advocates Raise Concerns with Proposed Autism Registry
WASHINGTON The 勛圖眻畦, the Autistic Self Advocacy Network (ASAN), and 80 other disability rights, civil rights, and public health organizations sent a letter to Secretary of Health and Human Services Robert F. Kennedy, Jr. today raising significant concerns with the National Institutes of Healths (NIH) proposal to create a national autism registry. The registry was detailed during an April 21 presentation by NIH Director Jay Bhattacharya, which he described as a real-world data platform for developing national disease registries, including a new one for autism. The Department of Health and Human Services (HHS) has since claimed it is not creating an autism registry, but the department has failed to engage with autistic people and advocates, exacerbating the lack of clarity. Instead of engaging with the communities this proposal would impact most, federal health agencies have taken every opportunity to shut disabled and autistic people out of the conversation, leaving unanswered questions, a sense of alarm, and deepening mistrust, said Vania Leveille, 勛圖眻畦 senior legislative counsel. Trust in federal health data requires affirmative, good faith engagement with autistic people, appropriate safeguards for privacy, and ensuring any proposal helps not hurts the communities impacted. The letter outlines the many unanswered questions left by NIHs data platform proposal, including what data it will collect, what sources it will rely on, how it will anonymize and secure the data. It also highlights the increased risk of surveillance, stigmatization, and marginalization from data collection, particularly for disabled people who have a long and troubled history with government efforts to find and track disability for the purpose of eliminating it. Its no secret that this proposal has created a lot of fear and confusion in the autistic community. said Colin Killick, executive director of the Autistic Self Advocacy Network. We continue to advocate and support research into autism that autistic people want conducted, but it is critical that autistic peoples private data not be shared without our consent. We hope the administration answers our questions to shine light on how autistic people and our rights will be protected. The letter also establishes three key steps NIH and HHS must take to establish trust in its proposed data platform: Meaningful communication with autistic people and advocates; fundamental privacy safeguards to prevent misuse and abuse; and ensuring the data platform advances the well-being of autistic people, people with disabilities, and the public health while minimizing potential harms. The letter is here: /documents/letter-to-hhs-secretary-robert-f-kennedy-jr-on-concerns-with-proposed-autism-registry -
Press ReleaseMay 2025
Privacy & Technology
Aclu Demands Social Security Administration Turn Over Docs On Doges Access To Americans Data. Explore Press Release.勛圖眻畦 Demands Social Security Administration Turn Over Docs on DOGEs Access to Americans Data
WASHINGTON The 勛圖眻畦 today urged the U.S. District Court for the District of Columbia to grant a preliminary injunction and order expedited processing of a Freedom of Information Act (FOIA) request sent to the Social Security Administration (SSA). The FOIA request, originally filed in February, seeks urgent transparency about the so-called Department of Government Efficiencys (DOGE) secretive efforts to access and analyze Americans sensitive personal information controlled by the Social Security Administration. In its FOIA request, the 勛圖眻畦 asked for any records that reveal whether DOGE or its representatives have sought or obtained access to databases containing personally identifiable information, financial records, health care data, or other sensitive government-held records of Americans. The request also sought information on DOGEs use of artificial intelligence (AI) to analyze government data. Despite the urgency of the situation, the SSA declined 勛圖眻畦s request for expedited processing and has so far failed to respond to the 勛圖眻畦s appeal. Also concerning is the recent news that DOGE has already started removing some protections around personal data, such as Social Security numbers, birth dates, employment history, disability records, and medical documentation. Todays filing marks a critical step in uncovering the full extent of DOGEs access to the U.S. Social Security Administrations database, said Michelle Fraling, Skadden Fellow with the 勛圖眻畦s Center for Liberty. Recent reports that DOGE intends to consolidate federal data into a centralized system only heighten the need to obtain this information. The public has a right to know, now, who is accessing their Social Security numbers, financial records, and medical history. This comes amidst DOGEs obsessive race to build a single centralized database with vast troves of personal information about millions of U.S. citizens and residents, a campaign that seriously implicates individuals privacy rights. One major concern is that the data consolidated by DOGE could be used against political foes or for targeted decisions about funding or basic government services. There is also concern about the risk of exposing data to hackers and other adversaries. A new report from the 勛圖眻畦 analyzes the vast array of surveillance, privacy, and cybersecurity risks of data consolidation, and the technical issues and legal implications those efforts pose. As DOGE embarks on unprecedented efforts to consolidate federal data, the American people have a right to understand exactly what it is they are doing, said Cody Venzke, senior policy counsel at 勛圖眻畦. For decades, agencies have been required by federal law to give access to our data only if it was necessary for federal employees to carry out their duties. Failure to meet those requirements increases the risk that our data will be mishandled, misused, or exfiltrated in a data breach. -
Press ReleaseApr 2025
Privacy & Technology
+2 Issues
Human Rights First Joins Aclu And Nyclu In Amicus Brief To Protect First Amendment Rights And Interests Of Ngos Advocating For U.s. Sanctions. Explore Press Release.Human Rights First Joins 勛圖眻畦 and NYCLU in Amicus Brief to Protect First Amendment Rights and Interests of NGOs Advocating for U.S. Sanctions
Today, Human Rights First, the 勛圖眻畦 (勛圖眻畦), and the New York Civil Liberties Union (NYCLU) filed an amicus brief with the U.S. District Court for the Eastern District of New York, in support of Democracy for the Arab World Nows (DAWN) efforts to block an individual sanctioned for violence in the Israeli occupied West Bank from accessing information about DAWNs advocacy for sanctions against him. The brief argues that various protections, including the First Amendment and reporters privilege, bar the court from granting the discovery requested in this case. The brief also emphasizes how such discovery requests, if granted, would put civil society groups at serious risk of irreparable harm and chill their vital advocacy work on human rights and corruption issues. In August 2024, Isaac Levi Pilant was sanctioned by the U.S. government under the West Bank sanctions program, for attacking and forcefully expelling Palestinians from a West Bank settlement. At the time, human rights groups, media outlets, and witnesses had documented Pilants alleged role in violent attacks against Palestinians, and DAWN had publicly recommended that the U.S. government impose sanctions on him and others for such violence. The sanctions against Pilant were lifted in January 2025, after President Trump effectively terminated the West Bank sanctions program. Pilant then filed an application against DAWN and its executive director, Sarah Leah Whitson, pursuant to a U.S. law that provides a mechanism for foreign litigants to obtain discovery from people and entities in the United States.The application seeks a court order for information related to DAWNs investigation of Pilant and its sanctions advocacy efforts. Pilant says he seeks the information for use in a possible future defamation case in Israel against an Israeli human rights organization. The brief explains how the U.S. government has established frameworks and processes to encourage nongovernmental organizations (NGOs) to share sensitive information that can assist it in more effectively implementing various human rights and corruption sanctions and visa restriction programs. Undermining the protections for NGOs to securely and confidentially share this information would not only impact the ability of the U.S. government to use such tools to hold human rights abusers and corrupt actors accountable, but it would also put NGOs, victims of abuse, and others in civil society in jeopardy by opening them up to retaliation and harassment from people they accuse of human rights violations. Human rights and corruption sanctions are impactful tools of accountability because they threaten the reputations and financial interests of abusers. Forcing NGOs to share information about their sanctions advocacy would put them at grave risk of violence and retaliation from repressive governments and powerful private individuals, said Amanda Strayer, Senior Counsel for Accountability at Human Rights First. U.S. courts should not become a forum for sanctioned actors to harass and seek retribution against civil society groups that advocate for measures to hold them accountable. The brief also argues that Pilants broad discovery request implicates information protected under the First Amendment and the reporters privilege, which provide grounds to reject his request under the Section 1782 statute. Supreme Court precedent requires the Court to give weight to the serious First Amendment and policy considerations before granting such a request. In this case, these considerations should result in the Court denying Pilants discovery request. It is the nature of human rights reporting that it often draws the ire of accused human rights violators. But the law is clear that such individuals cannot coopt U.S. courts in an attempt to harass and endanger human rights organizations and the victims of abuses whose stories they safeguard. Thats why this is an easy case, and we hope the court has no trouble concluding that the First Amendment protects DAWNs rights to free speech and association, and bars enforcement of the meritless request for intrusive discovery, said Nathan Freed Wessler, Deputy Director of the 勛圖眻畦 Speech, Privacy, and Technology Project. NGOs can play a critical role in providing accountability for human rights abuses, and the Constitution protects them from being forced to reveal certain confidential aspects of that work, said Bobby Hodgson, assistant legal director at the New York Civil Liberties Union. DAWN is being targeted by a foreign litigant implicated in serious human rights violations in an effort to weaponize our court system to silence critics. We urge the court to reject these requests and recognize that the discovery process does not create an end run around the First Amendment. -
PodcastMay 2025
Free Speech
+2 Issues
Know Your Digital Privacy Rights With Esha Bhandari And Daniel Kahn Gillmor. Explore Podcast.Know Your Digital Privacy Rights with Esha Bhandari and Daniel Kahn Gillmor