iGeneration

Charlie Osborne
Home / News & Blogs / iGeneration

Google admits Patriot Act requests; Handed over European data to U.S. authorities

By | August 11, 2011, 9:22am PDT

Summary: Google is the next major company to admit Patriot Act issues, as it admits to handing over data held in a European datacenter back to U.S. intelligence.

Google has become the latest company to admit the vulnerabilities of an insecure European cloud due to the USA PATRIOT Act.

Google has handed EU data stored in European datacenters back to U.S. law enforcement, by using the Safe Harbor framework to transport data across the Atlantic.

Specifically, U.S. intelligence, according to one source, asked Google to hand over data stored in a European datacenter.

Admitting to complying with Patriot Act requests, it follows Microsoft’s admission earlier this year, proving that EU-based data is insecure and at risk from U.S. inspection, if local subsidiaries are linked to a U.S. based headquarters.

Google confirmed this to German media group WirtschaftsWoche.

The search giant had received numerous requests — the total number is unknown — for which it complied with, compelled to under U.S. law.

Because of National Security Letters, companies can be ‘gagged’ from disclosing such facts to the press and the public, if information is deemed to pertain to national security.

It should come as no surprise that Google has complied with Patriot Act requests.

After the news broke a few months ago, exclusively by ZDNet, that Microsoft would hand over EU-stored data back to U.S. law enforcement, it set a precedent that other U.S. based companies operating in Europe would also have to comply.

The European Parliament, shortly afterwards, cited these issues in the Civil Liberties and Justice committee, and demanded an explanation from U.S. authorities asking why EU data was not safe from U.S. inspection; sparking a diplomatic outrage between the two continents.

It is likely that in the coming months, after the European Parliament resume after the summer break, that an official inquiry will explore avenues raised by the European insecure cloud.

What is clear, however, is that any U.S. company — whether it be Google, Microsoft, Amazon, Apple or any other cloud service provider — operating in Europe, cannot protect European data against U.S. inspection.

Background reading:

Also read ZDNet’s Patriot Act series:

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “iGeneration”

Topics

U.S., Google Inc., European Union, USA PATRIOT Act, Regulations, Government, Zack Whittaker

Zack Whittaker, a criminologist who studied at the University of Kent, Canterbury, is a journalist, writer and broadcaster.

Disclosure

Zack Whittaker

I worked briefly with Microsoft UK in 2006 but no longer have any connection with the company. Regardless, I remain impartial and unbiased in my views.

I don't hold any stock or shares, investments or industrial secrets in any company, but have signed confidentiality agreements with a number of UK and U.S. organisations, whose names I am not at liberty to disclose.

I was involved with Kent Union, the University of Kent's student union, undertaking voluntary, non-salaried, elected positions between early 2009 and mid-2010.

No other company, body, government department, non-governmental organisation or third sector organisation employs me or pays me a salary in any capacity whatsoever.

As a freelance journalist, whenever expenses are given and taken by a company that is not CBS Interactive, these will be disclosed in each relevant post to ensure transparency.

I currently work with a UK law enforcement unit, but this is an entirely separate position which bears no connection to other work.

(Updated: 23rd October 2011)

Biography

Zack Whittaker

Zack Whittaker, criminologist who studied at the University of Kent, UK, is a journalist, writer and broadcaster.

After studying criminology at university, though still in his early-20's, he has already had a series unconventional work and voluntary positions. He has worked with researchers studying neurological illnesses like Tourette's syndrome (which he suffers from), has given lectures on the nature of disabilities in the public community, and occasionally ends up speaking on television and radio discussing the events of the day.

He first had academic work published at the age of 22, then still an undergraduate, and has been cited by a wide range of publications: from the Huffington Post, Business Insider, AllThingsDigital, The Atlantic Wire and CBS News.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
19
Comments
Add Your Opinion

Join the conversation!

Just In

It dont matter!
jgustafson@... 12th Aug
The US builds a back door into all companies that have control over networks for matters of national security. This is not different than any other country overseas. If they forgot to require the information they just use one of their hired guns to hack the info they need anyway. This is not secrete that most of the EU countries steal info via hacking but if the US makes a law to take it legally than everyone is upset. Not that I am not saying it is right but that they are calling the kettle black.
View in thread
0 Votes
+ -
Message has been deleted.
facebook@... Updated - 11th Aug
0 Votes
+ -
I thought Google wouldn't do evil
LBiege 11th Aug
hoho, how many more emperor's new cloth slogans do they have?
0 Votes
+ -
What evil?
facebook@... 11th Aug
@LBiege Google was lawfully providing information. I would expect no less of them, or any company. I would have a problem with Googile if it willfully broke the law.
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
swmace 11th Aug
@facebook@...
I do have to wonder, though, whether Google challenged the Patriot Act requests in court or whether they just gave up the data. I'd at least like the company holding my data to fight the request until it is ordered by a judge. No indication whether Google did or did not do that.
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
retohaeni.net Updated - 11th Aug
It isnt just US ccompanies with EU subsidiaries. All companies - being they service providers or customers - with a significant US presence are subject to US law and therefore to the US Patriot act.

Disclaimer: I am the Chief Security Advisor for Microsoft Switzerland and blog at www.retohaeni.net. My opinions do not necessarely represent Microsoft.
0 Votes
+ -
Contributr
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
zwhittaker 11th Aug
@retohaeni.net You are right, of course. You can see this clarified and built upon in the previous articles I have written -- handily added to the end of this article. Thanks very much for your comment Reto, it's very much appreciated.
0 Votes
+ -
I'll say it again
John L. Ries Updated - 11th Aug
Multinational corporations are bound to follow the laws of the jurisdictions in which they do business, especially the ones that issued their charters and in which they are headquartered (US corporations, as a practical matter, have to give US law precedence). People should keep that in mind when deciding whether to entrust their data to such organizations.

To that extent, it doesn't matter whether you're talking about MS, Google, Lenovo, or anyone else.
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
facebook@... 11th Aug
@John L. Ries

+1. A fairly basic concept to grasp.
0 Votes
+ -
So Google now has egg on face and foot in mouth
Joe_Raby 11th Aug
After lambasting China's laws and trying to sneak past them, Google now admits that they have already conceded to US law.

What a bunch of F$&#in' hypocrits!
0 Votes
+ -
Hmm...
Joe_Raby 11th Aug
EU-based data is insecure and at risk from U.S. inspection, if local subsidiaries are linked to a U.S. based headquarters

What happens if HQ is outside the US, but there is a smaller US office?

Does it really matter anyway? There are massive network interconnects between the hemispheres and most run through some kind of US-run company. Who is to say that the US gov't won't just mandate packet filters on a company like Level3?
0 Votes
+ -
Just a thought...
Joe_Raby 11th Aug
Are US Conservatives isolationists? Seems that way.

Quick, put them all in a plastic bubble where they want to be. Don't forget to put an airhole in it.... wink
0 Votes
+ -
Ad FAIL
Joe_Raby 11th Aug
I get an ad for a Canadian bank with an immigrant savings plan. FAIL!
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
Rama.NET Updated - 11th Aug
Zack
Weren't you cursing Microsoft for doing such thing and praising Google not honoring Chinese request? What happened all of a sudden did you get divorse notice from Google?
0 Votes
+ -
Contributr
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
zwhittaker 11th Aug
@Rama.NET Citation needed.
0 Votes
+ -
Great spy tool!
Rick_R 11th Aug
"What is clear, however, is that any U.S. company ? whether it be Google, Microsoft, Amazon, Apple or any other cloud service provider ? operating in Europe, cannot protect European data against U.S. inspection."

And what's to stop some Middle Eastern country from passing similar laws to get at sensitive U.S. or E.U. data--"under our laws, if you are providing services to our citizens you must provide information we request on national security grounds" ...?
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
tom.musgrave@... 11th Aug
These comments appear to be missing the point.

Of course all companies follow national laws. The problem arises when national law restricts your ability to do 'honest' business.

Amazon, Google, Microsoft and the rest will be denied the opportunity to do any Colo, hosting or 'cloud' based business with European public sector organizations.

That's not very patriotic or good for business..
0 Votes
+ -
Errr....
Gisabun 11th Aug
We'll see how much people complain about Microsoft compared to when Microsoft had the same issue - or I'm sure Apple will have [if not already].
0 Votes
+ -
RE: Google admits Patriot Act requests; Handed over European data to U.S. authorities
deaf_e_kate 12th Aug
Use the cloud at your peril. i am so surprised just how many cannot see its a bad idea entrusting your data to an organisation - there's a reason that want to look after your data.......
0 Votes
+ -
It dont matter!
jgustafson@... 12th Aug
The US builds a back door into all companies that have control over networks for matters of national security. This is not different than any other country overseas. If they forgot to require the information they just use one of their hired guns to hack the info they need anyway. This is not secrete that most of the EU countries steal info via hacking but if the US makes a law to take it legally than everyone is upset. Not that I am not saying it is right but that they are calling the kettle black.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix