Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft: We Offer Up User Data To Law Enforcement 2 Percent of the Time

Posted by timothy on from the so-one-in-50 dept.

Nerval's Lobster writes "In its second announcement of the kind, Microsoft revealed [Friday] that it received more than 37,000 requests for information on customers of its Skype, Azure and other services from law enforcement agencies around the world. The count does not include requests made using "National Security Letters" issued by the FBI or other U.S. federal agencies that have the force of a warrant or subpoena, albeit without the oversight or control provided by the courts that issue those sorts of orders. During the first six months of 2013, Microsoft received 37,196 requests that covered a total of 66,539 customer accounts. The company refused to provide any information in response to 21 percent of those requests. It provided "non-content data" in response to 77 percent of the requests – non-content data usually includes information such as names or basic subscriber information rather than information on the content of messages or other details describing online activity of those customers. In 2.19 percent of cases, however, Microsoft reports having provided "customer content data" – which includes the content of messages or data stored in accounts owned by Microsoft companies. Ninety-two percent of requests for customer content came from U.S. law-enforcement agencies."

6 of 54 comments (clear)

  1. MShafted by MrDoh! · · Score: 4, Insightful

    Amazing how they thought the Scroogled attack ads were a good idea when they're handing nearly everything over too.

    --
    Waiting for an amusing sig.
  2. Stop this artificial distinction of 'metadata' by Anonymous Coward · · Score: 5, Insightful

    What the summary actually says is that they offer up user data to law enforcement 77% of the time.

    1. Re:Stop this artificial distinction of 'metadata' by gl4ss · · Score: 4, Insightful

      what it _actually_ means is that 77% of the time law enforcement has bothered to go through the legal track and 23% of the time it's just some duud agent/officer calling MS up "hey givez data!".

      and in 2% of cases they requested content data.

      however - this is just the LEGALLY requested data - relating to just normal legal police work, like for finding address of some blackmailer and what have you. there can be no mention of the intercepts they're not allowed to talk that even happened... so that data is NOT in these stats so these stats are just smokescreen. the metadata dumps are an entirely different animal!

      --
      world was created 5 seconds before this post as it is.
  3. Metadata was provided in 77% of requests by guanxi · · Score: 5, Insightful

    Even Slashdot's editors don't know the value of metadata, calling it "non-content data", at least on the front page post? Click through the link and read the sub-headline: "Microsoft provided metadata in 77 percent of more than 37,000 law-enforcement requests for information".

    Your metadata is as valuable as the content. Otherwise, why would the NSA and Facebook invest so much in it?

    1. Re:Metadata was provided in 77% of requests by guanxi · · Score: 5, Informative

      From Microsoft's FAQ:

      Non-content data refers to basic subscriber information, such as the e-mail address, name, location and IP address captured at the time of registration. Below is an example of exactly what law enforcement receives when Microsoft produces basic subscriber information, using a test account registered by a Microsoft employee. Although we changed the name and are masking the extension for security reasons, all other information is exactly what Microsoft produces to law enforcement.
      Field Value
      Login First.Last@xxxxxxx.com
      PUID 0006BFFDA0FF8810
      First Name First
      Last Name Last
      State Washington
      Zip 98052
      Country US
      Timezone America/Los_Angeles
      Registered from IP 65.55.161.10
      Date Registered {Pacific} 10/24/2007 1:05:18 PM
      Gender M
      Last Login IP 64.4.1.11

      The PUID in the above table stands for âoePersonal User ID,â which is a unique alpha-numeric code generated for each registered Microsoft account. Other non-content data may include IP connection history, an Xbox Gamertag, and credit card or other billing information. We require an official, document based request, such as a subpoena, before we will consider disclosing non-content data to law enforcement.

  4. Should be 0% or 100% by houghi · · Score: 4, Interesting

    Where I used to work we gave 100% IF THERE WAS A COURT ORDER. Otherwise we gave nothing. There should be no exception.

    One time police officers came in asking for data and they were escorted out with the insight that we would get the data aside and IF they would be coming back within the week with a court order, we would have it ready. If later, we would have to look for it again.

    More then once have I told officials to take a hike. And this about serious crimes where I am completely willing to go the extra mile once they give me the court order.

    The issue I have is that if I would give the information without a court order, I would be guilty of breaking the law. However they are still allowed to ask for it and they do, trying to use their imaginary authority to impress some who might be more gullible.

    --
    Don't fight for your country, if your country does not fight for you.