Papers, Please!

The Identity Project

Category Archives: Secret Law

Nov 18 2016

What does Donald Trump’s election mean for our work?

We endorsed neither Hillary Clinton, Donald Trump, nor any other candidate for elected office. So what does the presumptive election of Donald Trump as President of the U.S. — when the electors cast their ballots on December 19, 2016, and the votes are counted on January 6, 2017 — mean for the work of the Identity Project?

First and foremost, it means that our work, and the need for it, will continue — as it has under previous administrations, both Democratic and Republican.

Human and Constitutional rights are, by definition, no more dependent on the party affiliation of the President, if any, than on our own. Freedom is universal. Our defense of the right of the people to move freely in and out of the U.S. and within the country, and to go about our business, without having our movements tracked and our activities logged or having to show our papers or explain ourselves to government agents, has been and will remain entirely nonpartisan.

We will continue to criticize those who restrict our freedoms and infringe our rights, regardless of their party, just as we have criticized the actions of both the Obama and Bush administrations and of members of Congress and other officials of both parties, many of whom remain in power despite the changes at the top.

Attacks on our liberty have been, and remain, just as bipartisan as our resistance to them. This is especially true of the imperial power which the Presidency has been allowed to accrue, and which is exercised through Presidential proclamations, executive orders, and the secret law (or, to be more accurate, lawlessness) of Federal agency “discretion”. Those who acquiesced in the expansion of Presidential power and executive privilege because they thought that it would be used to their benefit by a President of their own party have only themselves to blame if that power is later used against them by a new President of a different party, or without allegiance to a traditional party hierarchy.

Many of the most imminent ID-related threats are those that arise from existing laws or extrajudicial administrative practices, the limits of which — in the absence of legislative or judicial oversight and checks and balances — are set solely by executive order. Where President Trump can make changes to ratchet up repression, to register and track both U.S. and foreign citizens, and to monitor and control our movements within the country and across borders, with the stroke of a pen, we don’t expect that he will hesitate to wield the power he has inherited to govern by issuing public decrees or by giving secret orders to his minions.

In some of these cases, Federal officials and the homeland-security industrial complex of contractors, confident that the incoming occupant of the White House will bless their efforts to anticipate has desires, may take action even before they are ordered to do so. This seems especially likely, in our area of concern, with respect to (1) the DHS implementation schedule and requirements for the REAL-ID Act,  (2) the TSA’s longstanding desire to enforce and eliminate exceptions to a de facto ID requirement for air travel that lacks any basis in statute and contravenes the U.S. Constitution and international law, and (3) expanded use of ID and surveillance-based pre-crime profiling (President-to-be Trump calls it “extreme vetting”) as the basis for control of movement, especially across borders.

We will be watching closely and reporting on signs of activity on all these fronts, some of which are already visible.

Now more than ever, we need your support — not just helping us to defend your rights, but asserting your rights and taking direct action to defend them yourselves. “The limits of tyrants are prescribed by the endurance of those whom they oppress.”

We invite you to join us in our continued resistance to all lawless attacks from any and all sides on our Constitution, our freedom, and our human rights.

Aug 19 2016

An apology from the State Department

We got a pleasant surprise this week: a phone call from Eric F. Stein, the head of the State Department’s FOIA-processing office.

Mr. Stein’s name and signature appeared on a bizarre letter we received last month, telling us that one of the unanswered Freedom Of Information Act requests we’d been bugging the State Department about for the last five years would be “dismissed” if we didn’t respond immediately to say that we were “still interested” in the records we had requested.  To make it harder to respond, there was no phone number or e-mail address in the letter.

“I want to apologize to you directly for that letter,” Mr. Stein said. “I’m sorry we sent you that letter. It was sent by somebody who had the authority to use my signature, but we should never have sent it to you. I’m still trying to find out why it was sent. Somebody is supposed to look at the file before they send out one of these letters. You laid it out very clearly in your letter, and you’re right: Nobody could have looked at that file, and everything you had done to follow up on your request, and thought that you weren’t interested in a response any more. I’ve just had an all-hands meeting of my department and told my staff not to send out any more ‘still interested’ letters until we can be sure that we are following the procedures we said we would follow.”

Read More

Aug 11 2016

Yes, we still want the State Department to answer our 5-year-old FOIA requests

In the latest episode of the FOIA follies, we recently received a bizarre letter letter from the U.S. State Department asking us whether we are “still interested” in receiving a response to one of several of our requests for State Department records that have each gone unanswered for more than five years.

The Department of Homeland Security is the leader in improper denial of FOIA requests and wrongful withholding and redaction of records, and has the largest backlog of unanswered requests. The State Department typically practices a different strategy of denial by delay, and has most of the oldest unanswered requests of any Federal department. A five-year wait for an answer from the State Department to a simple FOIA request is routine, although clearly illegal.

The latest letter we got from the State Department threatens to “close” one of our cases and take no further action on our request — in flagrant violation of the FOIA statute — unless we respond by fax (who still has a fax machine these days?) or snail-mail to confirm our continued interest in having the State Department fulfill its legal obligation to provide us with the records we’ve requested, including those about what happened to our complaints of human rights violations and the supplemental “long form” some passport applicants are asked to fill out, among other issues.

We’ve written back to the State Department (by snail-mail, since their letter included no phone number or email address) to tell them that yes, we really do want them to release the records we asked for five years ago — as they should know, since we already formally appealed their failure to answer our request within the time limit set by the law. (In response, they said they wouldn’t accept any administrative appeal until they answered our original request, making it impossible to challenge an illegal delay without filing a Federal lawsuit.) We’ve been making formal written requests at least annually since then for updates on the status of our requests and when the State Department estimates it will answer. (Each year, they set their estimated response dates back another year.) In the meantime, we made additional FOIA requests to the State Department on other subjects  in 2014 and 2015. We have yet to actually get an answer from the State Department to any of our FOIA requests, regardless of how long ago we made them.

The Freedom Of Information Act does not require periodic expressions of continued interest in receiving late responses. But even though it isn’t required, we have provided repeated, explicit written expressions of continued interest in each of our requests.  It would make no sense to allow a government agency to use the fact that it hasn’t responded to a request for government records within the legal deadline as an excuse never to respond at all.

In response to complaints from numerous advocates for government transparency, both the Department of Justice (OIP) and the FOIA ombudsman’s office (OGIS) of the National Archives and Records Administration have recently issued guidelines for the use of “still interested?” letters, if they are used at all.  In May 2016, OGIS wrote to the State Department urge it to  implement the OGIS recommendations regarding “still interested?” letters to FOIA requesters.

The State Department’s Chief FOIA Officer has claimed, both in her most recent annual report in March 2016 and in her response to OGIS in May 2016, that “we can assure you that DOJ guidance and OGIS recommendations are being thoroughly followed”.  As we discuss in our reply to the State Department , which we have also sent to OGIS, the “still interested?” letter we received makes clear that this isn’t true.

“Freedom of information” means nothing if government agencies can, with impunity, ignore the law. A government agency’s own delay in complying with the law shouldn’t be an excuse never to comply at all.

Jul 06 2016

Watchlist Soup

nofly-nogun

Congress  is again debating the proposals we wrote about last year to deny firearms licenses or permits to anyone “suspected of supporting” terrorism.

We stand by our earlier analysis and our condemnation of this proposal as (1) another step from sanctions against criminal conduct to pre-crime predictive policing, and (2) an expansion of the collateral consequences of secret, unconstitutional, extra-judicial, administrative blacklisting decisions.

But there seems to be a lot of confusion about what is really being proposed. This diagram shows what is already happening with the “No-Fly” and “No-Gun” lists, and what it would mean to merge them.

The proposed “No-Fly, No Buy” law currently under debate in Congress would add the TSDB as a third source (yellow arrow at center right of flow chart) of entries in “No-Gun” list in NCIC, in addition to Federal and state felony convictions and certain misdemeanor crimes of domestic violence. Everything else on this diagram except the one yellow line already exists and would remain the same.

Click the image above for a larger version, or click here for a full-page PDF of the flow chart with a key to all the acronyms.

Jun 09 2016

How does the TSA decide if you are who you say you are?

An ongoing trickle of still-incomplete responses by the TSA to a Freedom Of Information Act (FOIA) request we made in June 2013 continues to shed more light on the TSA’s procedures for air travelers who don’t have ID credentials the TSA deems satisfactory.

It’s difficult to compile statistics from files in the image format in which the TSA has released them, but we can make some anecdotal observations about what happens to people who try to fly without “acceptable” ID. Read More

Apr 05 2016

Class action challenges Federal blacklists (“watchlists”)

The broadest and most fundamental legal challenge to the waging of the US “War on Terror” through standardless, secret, extra-judicial government blacklists was filed today in the Federal court for the district in Virginia where the National Counterterrorism Center (NCTC), Terrorist Screening Center (TSC), and Transportation Security Administration (TSA) are headquartered. (Video backgrounder and interviews with plaintiffs and attorneys; more video interviews; PACER links)

Both an individual complaint (Elhady et al. v. Piehota at al.) and a class action complaint (Baby Doe et al. v. Piehota et al.) were filed. Presumably, that is so that  that the individual complaint for injunctive and declaratory relief could go forward even if class action certification  is denied, while the class action lawsuit could go forward even if the named plaintiffs are delisted. (An earlier, similar lawsuit was dismissed as moot after the plaintiffs were told they were no longer on blacklists.) Almost all of the individual complaint is repeated in the class action complaint, so if you are going to read just one, read the class action complaint which includes additional plaintiffs and their stories.

The case takes its name from the first of the listed representatives of the class of people on US government blacklists (“watchlists”):

Plaintiff Baby Doe is a four year old toddler.

He was seven months old when his boarding pass was first stamped with the “SSSS” designation, indicating that he had been designated at a “known or suspected terrorist.”

While passing through airport security, he was subjected to extensive searches,  pat downs and chemical testing.

Every item in his mother’s baby bag was searched, including every one of his diapers.

Let’s get one thing straight from the start: as we’ve noted before, calling the “Terrorist Screening Database” (TSDB) and similar lists “watchlists” is at best misleading euphemism, and at worst Orwellian doublespeak.

The government uses the term “watchlist” to avoid the stigma deservedly associated with the label “blacklist”, with its connotations of McCarthyism and J. Edgar Hooverism. A “watchlist” suggests a list of people who are being watched, a component of a system of surveillance or investigation. “Watchlisting” might, one presumes, lead to eventual intervention such as the criminal prosecution or an application to a court for a restraining order or injunction. But inclusion on the TSDB occurs after, not before, a decision to intervene is (secretly) made, and the consequences of listing in the TSDB are not limited to mere passive surveillance or watching. Each listing on the TSDB includes a “handling code” which determines what happens to the people who are deemed (typically by automated pattern-matching algorithms) to match the listing.

As the litany of horror stories in the complaint in Baby Doe v. Piehota makes clear, and as we’ve seen in previous incidents, being “watchlisted” can trigger  consequences ranging from denial of transportation by common carriers to freezing of bank accounts, inability to rent an apartment, or inability to get or keep a job, even with a private non-governmental employer.  As when a jury must decide which of a progression of more and less serious offenses to convict a defendant of, without knowing what sentences are mandated for any of those offenses, it’s not clear whether the Federal administrative staff in the secret rooms reviewing the secret dossiers of derogatory information and deciding which secret lists to put people on, or which secret “action codes” to assign them, even know what the full panoply of collateral consequences of their decisions will be.

The US government doesn’t have to issue binding orders to convert “watchlisting” into de facto blacklisting. As the complaint filed today points out, “Defendants disseminated the the records pertaining to Plaintiffs from its terrorist watch list to foreign governments with the purpose and hope that those foreign governments will constrain the movement of the Plaintiffs in some manner.” We saw one of the ways that can work during the trial of Dr. Rahinah Ibrahim’s challenge to her placement on the no-fly list.  The US government successfully used a “POSSIBLE NO BOARD REQUEST” message to induce a foreign airline to refuse to transport Dr. Ibrahim’s daughter, a US citizen, even though the US claimed that she was merely on a “watchlist” and not on the no-fly list.

It’s time to to reject the government’s “watchlist” doublespeak, and start calling the TSDB what it is: a government blacklist.

The first of the named defendants, Christopher Piehota, is the Director of the Terrorist Screening Center (TSC), an inter-agency entity responsible for the TSDB and nominally under the control of the FBI.

Most of the previous attempts to challenge actions taken against individuals as a result of their being listed in the TSDB have foundered on an elaborate shell game of buck-passing between businesses and government agencies. Airlines that refuse to transport blacklisted people (or those with similar names) say that they are only following (secret) orders from the government. Normal judicial review of actions by the TSA and CBP, the components of the DHS that issue no-fly orders (or refuse to issue permission for boarding pass issuance — the default is now “No,” not “Yes”) is precluded by a special law, 49 U.S.C. § 46110. No trials are allowed, and appellate courts are allowed to review these decisions only on the basis of the “administrative record” created by the DHS itself, which will show only that the DHS action was based on “watchlist” status as determined by the TSC, and not the basis (if any) for the FBI’s “watchlisting” decision.

The only previous cases in which District Courts have been able to consider no-fly decisions, and the only trial in a no-fly lawsuit, have been when the FBI, and not just the DHS or DHS components, has been named as a defendant. Today’s cases follow in that line, challenging the blacklisting decisions by the FBI.

To head off lawsuits of exactly this sort, the government has recently shifted nominal final authority over no-fly decisions from the FBI to the TSA. In theory, the government claims, the TSA could now decline to issue a no-fly order, even after the FBI has put someone on the no-fly list. It’s unclear, however, whether this has ever happened, or in what circumstances or on what basis it might happen. The possibility seems remote: Even the FBI, in practice, acts as a rubber-stamp for the decisions of FBI and DHS agents who make effectively final blacklisting decisions when they “nominate” people for listing in the TSDB. According to today’s complaint, 98.96% of the 468,749 people “nominated” for Federal “watchlists” in 2013 were added to those lists by the TSC.

The plaintiffs in the lawsuits filed today are represented by Gadeir Abbas, Lena Masri, and co-counsel from the Council on American-Islamic Relations, who have been leading the legal campaign against US government blacklisting, harassment, and interference with the rights and freedoms of Muslim and other Americans.

Feb 25 2016

Why the Judicial Redress Act is worthless

Yesterday President Obama signed the Judicial Redress Act into law.  European Union Commissioner for Justice Věra Jourová described the new law as, “a historic achievement [that] will ensure that all EU citizens have the right to enforce data protection rights in U.S. courts…. The entry into force of the Judicial Redress Act will pave the way for the signature of the EU-U.S. Data Protection Umbrella Agreement.”

Is the Judicial Redress Act really so historic? And will it actually “ensure that all EU citizens have the right to enforce data protection rights in U.S. courts”?

Sadly, no.

Europeans should not be fooled by statements such as those from Commissioner Jourová or her counterparts in other EU institutions. As we know from our own experience in court as US citizens, there are almost no real-world cases in which the Judicial Redress Act will provide any actual protection or enforceable legal rights to citizens or residents of the EU, or anywhere else.

The Judicial Redress Act gives some foreign citizens some of the rights that US citizens currently have, with respect to some of the uses and misuses by the US government of their personal information.  But in no case will any foreigner have more rights under the Judicial Redress Act than US citizens have under the Privacy Act.

Serious scrutiny of the terms of the Privacy Act, and of the history of attempts by US citizens to use the Privacy Act to protect themselves against misuse of our personal information by the US government, has been largely absent from the debate about the Judicial Redress Act. But from our experience as parties to one of the key lawsuits attempting to assert Privacy Act claims by US citizens in relation to one of the most controversial categories of personal information being transferred from the EU to the US — passenger name records (PNRs) for international airline flights — we have learned an important lesson that Europeans need to know: the Privacy Act is so limited and riddled with exceptions that it is almost worthless. It is because the Privacy Act is useless, not because the US government follows fair personal information practices in its dragnet surveillance, that there are so few examples of successful litigation against the US government by US citizens under the Privacy Act.

All of the limitations and exceptions that always rendered the “protection” of the Privacy Act inadequate — even for US citizens — will continue to render the protection of the Judicial Redress Act inadequate for foreigners, in all of the same ways, and in additional ones.

What are these exceptions and limitations? In order to make sense out of the Judicial Redress Act, it’s essential to understand the exemptions in the Privacy Act, as courts have interpreted them.

Federal agencies can exempt themselves from almost all of the requirements of the Privacy Act with respect to “investigatory material compiled for law enforcement purposes,” a catch-all category that has been applied to records of dragnet surveillance and other information compiled and used for “pre-crime” profiling, even when the data subjects have never been accused or suspected of any crime. All an agency has to do to opt-out is to publish a notice in the Federal Register that a particular system of records has been declared exempt by the agency that maintains the records. An agency can wait to promulgate such a notice until after it receives a request for access to records, a request for an accounting of disclosures, or a request for correction of records.

Read More

Jan 08 2016

DHS doubles down on its big lie about ID to fly

Just days after posting an out-and-out lie on DHS.gov about whether states that want to comply with the REAL-ID Act have to give other states unconditional access to their drivers’ license and ID database (they do, contrary to what the DHS claims), the DHS has posted an equally blatant lie about whether domestic air travelers do or will have to show ID (they don’t and they won’t, contrary to what the DHS claims).

Today’s whopper is part of a press release attributed to Secretary of Homeland Security Jeh Johnson, announcing arbitrary dates for “enforcement” of alleged REAL-ID Act requirements. One might expect those dates and requirements to be spelled out in the U.S. Code or in regulations published in the Federal Register. But rulemaking by press release, Web posting, or Tweet has become the norm for the DHS as part of its enforcement of standardless, discretionary, and secret adminstrative “law”.

Today’s announcement by the DHS comes in the midst of a new round of vigorous debate by state officials as to whether to agree to comply with requirements of the REAL-ID Act that they continue to find objectionable — especially with respect to its mandate for a distributed but integated and nationally accessible ID database. It also comes almost simultaneously with the introduction in both houses of Congress of bills to repeal the REAL-ID Act.

The REAL-ID Act does not purport to create any legal obligation on states to comply. It can’t: The Federal government has no authority to compel the enactment of state legislation. If financial carrots in the form of Federal grants to fund REAL-ID Act implementation aren’t sufficient to win over states that stand up for their residents’ rights, the only stick the Federal government has available to induce those states to comply with the REAL-ID Act is the threat to harass, delay, or prevent residents of those states from traveling by air.

Today’s DHS press release and Tweet make that threat explicit.

Read More

Dec 28 2015

TSA may require virtual strip-searches for flyers

The TSA may try to prevent (some) people who can’t or won’t submit to virtual strip-searches from traveling by air, according to a Privacy Impact Assessment (PIA) update quietly posted on the DHS website a few days before Christmas:

TSA is updating the AIT [“Advanced (sic) Imaging Technology”] PIA to reflect a change to the operating protocol regarding the ability of individuals to opt out of AIT screening in favor of physical screening. While passengers may generally decline AIT screening in favor of physical screening, TSA may direct mandatory AIT screening for some passengers as warranted by security considerations.

The DHS and TSA may have hoped that nobody would notice this change in “operating protocol”, but the new requirement for some air travelers to submit to virtual strip-searches has already been challenged in at least two Federal Circuit Courts of Appeal, as discussed further below.

Read More

Dec 18 2015

Are TSA actions subject to judicial review?

The real test of whether the TSA is above the law isn’t whether TSA or DHS officials, flacks, or lobbyists claim that there are legal procedures which (hypothetically) permit judicial oversight of TSA actions. The real test is what happens when real people object to specific conduct by TSA staff and contractors, or private parties such as airlines acting at the behest of the TSA, and ask the courts to review and decide whether the TSA or its minions are breaking the law or violating the US Constitution.

Nobody has done more to test the real-world limits of TSA lawlessness than our friend Sai, who has been waging a one-person, pro se legal crusade against the TSA for its disregard of the Constitution and of a variety of Federal laws providing for transparency, fairness, and due process. Sai’s pending lawsuits against the TSA include one of the most important challenges anyone has made to the TSA’s claims of authority for secret lawmaking, as discussed below.

Remarkably, and unlike most of those aggrieved by TSA general disregard for the law as well as more specific misconduct, Sai has even had some success. But that limited success gives a sense of just how outrageous is the TSA’s disregard for the law, and how far it has to go before the courts will rein it in.

Read More