Google Data

Posted by Soo Young Kim, Head of Marketing, Get Your Business Online

In May, the Court of Justice of the European Union established a “right to be forgotten.” Today, we published an op-ed by David Drummond, senior vice president of corporate development and chief legal officer, in the U.K.’s The Guardian, Germany’s Frankfurter Allgemeine Zeitung, France’s Le Figaro and Spain’s El Pais, discussing the ruling and our response. We’re republishing the op-ed in full below. -Ed.

When you search online, there’s an unwritten assumption that you’ll get an instant answer, as well as additional information if you need to dig deeper. This is all possible because of two decades worth of investment and innovation by many different companies. Today, however, search engines across Europe face a new challenge—one we’ve had just two months to get our heads around. That challenge is figuring out what information we must deliberately omit from our results, following a new ruling from the European Court of Justice.

In the past we’ve restricted the removals we make from search to a very short list. It includes information deemed illegal by a court, such as defamation, pirated content (once we’re notified by the rights holder), malware, personal information such as bank details, child sexual abuse imagery and other things prohibited by local law (like material that glorifies Nazism in Germany).

We’ve taken this approach because, as article 19 of the Universal Declaration of Human Rights states: “Everyone has the right to freedom of opinion and expression; this right includes freedom to hold opinions without interference and to seek, receive and impart information and ideas through any media and regardless of frontiers.”

But the European Court found that people have the right to ask for information to be removed from search results that include their names if it is “inadequate, irrelevant or no longer relevant, or excessive.” In deciding what to remove, search engines must also have regard to the public interest. These are, of course, very vague and subjective tests. The court also decided that search engines don’t qualify for a “journalistic exception.” This means that The Guardian could have an article on its website about an individual that’s perfectly legal, but we might not legally be able to show links to it in our results when you search for that person’s name. It’s a bit like saying the book can stay in the library, it just cannot be included in the library’s card catalogue.

It’s for these reasons that we disagree with the ruling. That said, we obviously respect the court’s authority and are doing our very best to comply quickly and responsibly. It’s a huge task as we’ve had over 70,000 take-down requests covering 250,000 webpages since May. So we now have a team of people individually reviewing each application, in most cases with limited information and almost no context.

The examples we’ve seen so far highlight the difficult value judgments search engines and European society now face: former politicians wanting posts removed that criticize their policies in office; serious, violent criminals asking for articles about their crimes to be deleted; bad reviews for professionals like architects and teachers; comments that people have written themselves (and now regret). In each case, someone wants the information hidden, while others might argue it should be out in the open.

When it comes to determining what’s in the the public interest, we’re taking into account a number of factors. These include whether: the information relates to a politician, celebrity, or other public figure; if the material comes from a reputable news source, and how recent it is; whether it involves political speech; questions of professional conduct that might be relevant to consumers; the involvement of criminal convictions that are not yet “spent”; and if the information is being published by a government. But these will always be difficult and debatable judgments.

We’re also doing our best to be transparent about removals: for example, we’re informing websites when one of their pages has been removed. But we cannot be specific about why we have removed the information because that could violate the individual’s privacy rights under the court’s decision.

Of course, only two months in, our process is still very much a work in progress. It’s why we incorrectly removed links to some articles last week (they have since been reinstated). But the good news is that the ongoing, active debate that’s happening will inform the development of our principles, policies and practices—in particular about how to balance one person’s right to privacy with another’s right to know.

That’s why we’ve also set up an advisory council of experts, the final membership of which we’re announcing today. These external experts from the worlds of academia, the media, data protection, civil society and the tech sector are serving as independent advisors to Google. The council will be asking for evidence and recommendations from different groups, and will hold public meetings this autumn across Europe to examine these issues more deeply. Its public report will include recommendations for particularly difficult removal requests (like criminal convictions); thoughts on the implications of the court’s decision for European Internet users, news publishers, search engines and others; and procedural steps that could improve accountability and transparency for websites and citizens.

The issues here at stake are important and difficult, but we’re committed to complying with the court’s decision. Indeed it’s hard not to empathize with some of the requests we’ve seen—from the man who asked that we not show a news article saying he had been questioned in connection with a crime (he’s able to demonstrate that he was never charged) to the mother who requested that we remove news articles for her daughter’s name as she had been the victim of abuse. It’s a complex issue, with no easy answers. So a robust debate is both welcome and necessary, as, on this issue at least, no search engine has an instant or perfect answer.

Posted by David Drummond, Senior Vice President, Corporate Development and Chief Legal Officer

Posted by Richard Salgado, Director Law Enforcement and Information Security

Last year, President Obama directed the Intelligence Community to be more transparent about government surveillance programs, which led to a promise by the Office of the Director of National Intelligence to release a transparency report concerning national security orders it issues on an annual basis. Today, the U.S. government released its first transparency report containing statistics around national security orders for user data to Internet and telecom companies. This is a step in the right direction of increasing trust in both government and Internet services, and it demonstrates again that governments can embrace transparency while protecting national security. We applaud this first step, and strongly encourage other countries to follow suit, though there is still more to be done.

First, the government reports in a manner that makes it impossible to compare its report with the report of companies, such as the Google Transparency Report. Specifically, the government has chosen to disclose an estimated number of “targets” that it has surveilled, rather than the number of “accounts” at issue. This means that where the “target” is an organization composed of many people, and the government uses FISA to require disclosure of information from many different providers about the many accounts used by those people, covering a broad array of services, it may only report that there was one target. By contrast, in our methodology, and that used by other companies, we each would count the number of accounts impacted by a particular surveillance request. The government could provide more meaningful transparency by specifying the number of accounts too.

Second, we would like to see the federal government report on its national security demands with more information about the targets than it does today. Companies like Google can only provide a limited snapshot of how national security authorities are used. The Department of Justice, however, can provide a complete picture. To that end, we support legislation proposed by Senator Franken in August of 2013 that would mandate that the U.S. government release statistics around the number of both citizens and non-citizens whose information is collected and the scale and scope of the search and review of that data.

Finally, we gave early support for USA Freedom Act provisions which would allow companies to provide greater detail about the volume, scope, and type of national security demands that we ourselves receive for user data. Last month, the House version of the USA Freedom Act made improvements on the terms set out by the Department of Justice, and we hope that the Senate paves the way for companies to share more details about the national security demands that we receive.

I’m excited to see how far this debate has come; a year ago almost no one would have imagined that the federal government would release data about its national security demands to companies. These steps show that national security and transparency for the public are not in competition. We also hope that governments around the world will follow the lead of the U.S. government and be more open about the national security demands they serve on service providers and put out comparable transparency reports. Congress, and other governments around the world, should build on these steps.

Posted by David Lieber, Senior Privacy Policy Counsel 

Although the recent debate around government surveillance has focused on the reach of the National Security Agency (NSA) and the Foreign Intelligence Surveillance Act (FISA), we have long supported efforts to update the Electronic Communications Privacy Act (ECPA) so that the government must obtain a warrant to require a provider to disclose content stored with the provider. 

The ongoing campaign to update ECPA reached a significant milestone today. For the first time, a majority of Members in the U.S. House of Representatives have gone on record to support bipartisan legislation (H.R. 1852) sponsored by Representatives Yoder (R-KS), Graves (R-GA), and Polis (D-CO) that would create a bright-line, warrant-for-content rule for electronic communications. 

This common-sense reform is long overdue. While well-intentioned when enacted in 1986, ECPA no longer reflects users’ reasonable expectations of privacy. For example, an email may receive more robust privacy protections under ECPA depending on how old it is, whether it has been opened, and where it is stored — while users attach no importance to these distinctions. The Department of Justice itself has acknowledged that there is no principled reason for this rule. 

In 2010, a federal appeals court said that ECPA itself is unconstitutional to the extent that it authorizes the government to obtain the content of emails without a warrant. Google agrees with the court that the Fourth Amendment requires that the government issue a search warrant to compel a provider to disclose the content of communications that a user stores with a provider. 

Congress should send a clear message about the limits of government surveillance by enacting legislation that would create a bright-line, warrant-for-content standard. Now that a majority has gone on record to support this common sense update, we once again urge Congress to expeditiously pass legislation to update ECPA.

Posted by Sixtine Fabre, Associate Program Manager, Google Cultural Institute

US Amphibious Force Training for Invasion, The George C. Marshall Foundation

• Telegram from Dr. Martin Luther King Jr. to President Kennedy, June 1963
• Request to meet with Kennedy on the day of the March on Washington, August 1963
• The Civil Rights Act of 1964, July 1964

The Internet policy world ripe with fascinating policy issues. From government surveillance and data security to patent reform and copyright to free expression and open access to information, there has never been a more exciting time to get involved. We’re excited to launch the 7th summer of the Google Policy Fellowship, connecting students of all levels and disciplines with organizations working on the forefront of these and other critical issues for the future of the Internet. Applications are open today for North America and Latin America, and students of all levels and disciplines are welcome to apply before Friday, April 14, 2014. 

This year’s organizations include: 

• American Library Association 
• National Consumers League 
• National Hispanic Media Coalition 
• Open Technology Institute, New America Foundation
• Public Knowledge
• TechFreedom
• Center for Democracy and Technology
• Global Network Initiative 
• R Street 
• iKeepSafe 
• ConnectSafely 
• The Citizen Lab 
• Samuelson-Glushko Canadian Internet Policy & Public Interest Clinic
• American Association of People with Disabilities
• Future of Privacy Forum
• Technology Policy Institute
• Future of Music
• Electronic Frontier Foundation
• US Hispanic Chamber of Commerce
• Internet Education Foundation
• Fundación Karisma 
• Asociación por los Derechos Civiles
• Derechos Digitales 
• Article 19 Mexico 

More fellowship opportunities in Asia, Africa, and Europe will be coming soon. You can learn about the program, application process and host organizations on the Google Public Policy Fellowship website.

Posted by Susan Molinari, VP Public Policy 

The revelations about government surveillance practices—both in the U.S. and globally—over the past eight months have sparked a serious and overdue debate about the nature and scope of existing laws and programs. Today, many organizations and companies are participating in “The Day We Fight Back,” a series of events and awareness campaigns highlighting the urgent need for surveillance reform around the world.

Google recognizes the very real threats that the U.S. and other countries face, but we strongly believe that government surveillance programs should operate under a legal framework that is rule-bound, narrowly tailored, transparent, and subject to oversight.

In December, along with other technology companies, we unveiled a set of government surveillance reform principles that address many of the recent concerns around government surveillance. In Congress, Representative Sensenbrenner (R-Wis.) and Senator Leahy (D-Vt.) have introduced legislation—the USA Freedom Act—that would codify many of these principles. As they both noted when introducing this bill, government surveillance programs “have come at a high cost to Americans’ privacy rights, business interests and standing in the international community.”

The USA Freedom Act reflects some of the key recommendations made by the President’s Review Group on Intelligence Communications and Technologies as well as the Privacy and Civil Liberties Oversight Board. We support this legislation and we urge Congress to enact it into law.

But there’s more that can be done as we consider appropriate reforms to government surveillance laws. Congress should update the Electronic Communications Privacy Act (ECPA) to require governmental entities to obtain a warrant before they can compel online companies to disclose the content of users’ communications. Legislation introduced by Senators Leahy and Lee (R-Utah) in the Senate and Representatives Yoder (R-Kan.), Graves (R-Ga.), and Polis (D-Colo.) in the House would achieve that goal. More than 100 companies, trade associations, and consumer groups—and more than 100,000 Americans—have signed on to support this important update to ECPA, which no longer reflects users’ reasonable expectations of privacy.

We will continue to press Congress to adopt these important measures, which would represent significant progress in the broader effort to reform government surveillance laws. If you want to receive updates from us, please visit google.com/takeaction and sign up.

Posted by Rob Mahini, Policy Counsel

Once upon a time, Tax Day meant pens and pencils, paper forms, and long waits at the post office. Now, the Internet makes tax day much simpler — online software and e-Filing now allows everyone a much smoother Tax Day experience. Unfortunately, the Internet also makes something else easier: tax identity theft that allows scammers to do things like file for fraudulent tax refunds or apply for jobs.

As the FTC noted earlier this month, “identity theft has been the top consumer complaint to the FTC for 13 consecutive years, and tax identity theft has been an increasing share of the Commission’s identity theft complaints.” In fact, tax ID theft accounted for more than 43 percent of the FTC’s ID theft complaints, “making it the largest category of identity theft complaints by a substantial margin.”

With this in mind, the FTC hosted events around the country last week as part of its Tax Identity Theft Awareness Week, to educate consumers about the risks of tax identity theft and how to avoid becoming a victim. The IRS also released a video this month to educate taxpayers on what to do if they are victimized by tax ID theft.

At Google’s Good To Know site, consumers can learn about the many ways that they can protect all of their data, including their SSN, tax forms, and other information that tax identity thieves are after. For example:

• Don’t reply if you see a suspicious email, instant message or webpage asking for your personal or financial information. Identity thieves try to use these phishing techniques to steal your information such as your social security number or other tax info. 
• If you see a message from someone you know that doesn’t seem like them, their account might have been compromised by a cyber criminal who is trying to con you into providing your SSN or other sensitive information. 
• Don’t send your password via email, and don’t share your password with others — thieves that gain access to your accounts can then steal your tax identity. Legitimate sites won’t ask you to send them your passwords via email, so don’t respond if you get requests for your passwords to online sites.

The ease and convenience of the Internet has helped simplify tax filing. And following these tips will help keep your tax information safe in the process.