American Judge Claims Jurisdiction Over Data Stored In Other Countries

American company by Todd+Knarr · 2014-04-26 04:47 · Score: 5, Informative

I think the fact that it's an American company being ordered to produce the data factors in here. The judge does have jurisdiction over the company, which makes it a different situation from ordering a company in another country to turn over data stored there. If you want to get out of a country's legal jurisdiction, you need to be out of their jurisdiction.

Re:American company by Anonymous Coward · 2014-04-26 04:56 · Score: 1

Too bad that rule does not apply to American companies' money. It is fine for MS to hide their money in Ireland but woe to them if they have any information on their servers there.
Re:American company by K.+S.+Kyosuke · 2014-04-26 05:00 · Score: 3, Insightful

What if it breaks the law of the foreign country in question?

--
Ezekiel 23:20
Re:American company by Anonymous Coward · 2014-04-26 05:07 · Score: 4, Insightful

Then the company is going to have to choose which country's laws to break, and suffer the consequences. In the extreme case, this will result in companies deciding that it's not worth operating in particular sets of countries.
Re:American company by LifesABeach · 2014-04-26 05:34 · Score: 1

Market Share is not the Issue, it's Taxes.
Re:American company by Jane+Q.+Public · 2014-04-26 05:39 · Score: 1

It's a multinational company.

Microsoft's Irish branches are Irish companies. Its U.S. branches are U.S. companies. If they are all owned by the U.S. company, I suppose this might hold. But I'm not exactly an attorney specializing in international affairs, so I don't claim to be an expert in this.

What bothers me primarily is that more and more, the erstwhile "leaders" of the U.S. (I use the term leaders very loosely, because I think many of them are incompetent at actually leading) have seemed to think they have legal jurisdiction over the world.

I hate to disabuse them of that notion, but they really should be disabused of that notion.
Re:American company by knightghost · 2014-04-26 05:39 · Score: 3, Interesting

What if I encrypted a block of my data, broke those blocks up, then stored separate (non-duplicate) pieces in every country in the world? Would a court need to get every country's permission to assemble the data? Is the data an entity that has to be pursued independently of the owner (me)? Or as the owner, can my citizenship country (or a country that is pursuing me) instead demand all pieces based on me as the owner?
To summarize: Is my data legally independent from me?
Re:American company by Anonymous Coward · 2014-04-26 05:42 · Score: 1

I think the fact that it's an American company being ordered to produce the data factors in here. The judge does have jurisdiction over the company, which makes it a different situation from ordering a company in another country to turn over data stored there. If you want to get out of a country's legal jurisdiction, you need to be out of their jurisdiction.
Cute theory you have there. Ironically enough, it does not carry over worth a shit into that other realm that we supposedly cannot escape, along with death; taxes.
Seems many a rich American businessman, as well as their American companies, hide trillions in offshore tax havens.
Why the fuck the legal system isn't going after THAT shit makes it crystal clear as to where the corruption is focused, but also makes it clear that one illegality shouldn't be overlooked for another.
Re:American company by Anonymous Coward · 2014-04-26 05:50 · Score: 2, Insightful

They don't hide their money, that is illegal. What they really do is use evey tax loophole they can to shift money around to the most favorable spot on he planet for tax purposes. They report every red cent to the US agencies, and use every trick they lobbied to put into the book to say "Neener neener its legal and you can;t have any."
Been this way for about 20 years or more now, thank you Reagan.
Re:American company by Anonymous Coward · 2014-04-26 05:53 · Score: 2, Informative

"Why the fuck the legal system isn't going after THAT shit [...]"
Cause they've been paid not to. Lobbied, bought and paid for, our tax system is literally the best money can buy now.
Re:American company by Anonymous Coward · 2014-04-26 05:59 · Score: 1

Microsoft's Irish branches are Irish companies. Its U.S. branches are U.S. companies. If they are all owned by the U.S. company, I suppose this might hold. But I'm not exactly an attorney specializing in international affairs, so I don't claim to be an expert in this.

If they can claim ownership of the Irish earnings in their US annual reports (or even do stuff like borrow money using those earnings as collateral) then it seems reasonable for the US Judge to either assume they can tell the Irish or other companies what to do, or assume they are committing fraud or theft.
On a related note if a company can declare in the USA that it is making X billions why can't it be required to pay taxes[1] on those said billions? If they are owned by some unrelated Irish company then they shouldn't pay US taxes on it, but then the US company shouldn't be able to behave as if the money belongs to them.

What bothers me primarily is that more and more, the erstwhile "leaders" of the U.S. (I use the term leaders very loosely, because I think many of them are incompetent at actually leading) have seemed to think they have legal jurisdiction over the world.

What bothers me is that they do - go ask Kim DotCom, Snowden, etc.
If they didn't actually have jurisdiction in practice it wouldn't bother me at all.
[1] To avoid double taxation - just require them to pay to USA the difference in US vs Irish tax. If Ireland taxes them more than the USA then they don't have to pay anything. If Ireland taxes zero, then they pay the full to the USA. If they don't like that then they should behave more like separate companies. e.g. the Irish Microsoft CEO can ignore the US CEO on what to do with the billions of US dollars ;).
Re:American company by QuasiSteve · 2014-04-26 05:59 · Score: 3, Insightful

Right - that's why AMS-IX opened 'their' NY location as a separate company, so that U.S. jurisdiction can't touch their Dutch operations.
https://ams-ix.net/newsitems/1...
Or so their lawyers are interpreting anyway - probably nothing a stroke of the pen in the U.S. can't make disappear.
Re:American company by Em+Adespoton · 2014-04-26 06:01 · Score: 5, Interesting

I think the fact that it's an American company being ordered to produce the data factors in here. The judge does have jurisdiction over the company, which makes it a different situation from ordering a company in another country to turn over data stored there. If you want to get out of a country's legal jurisdiction, you need to be out of their jurisdiction.
What is an "American" company? MS Europe is incorporated in Ireland, has a datacentre in Ireland, and pays taxes in Ireland. The FBI should be approaching the Irish authorities for access to this data.
Or look at it another way: Is Sony USA an American company, or a Japanese company? If it's a Japanese company, that means that the Japanese have the right to all data stored on Sony USA servers.
Or let's take this further: let's say the government of China had reason to believe that Cisco China had an NSA backdoor in its products as they were being deployed in China, and so ordered Cisco USA to turn over all emails, technical specifications and documentation.
Rinse and repeat with pretty much any middle east country and Haliburton.
This is a dangerous precedent for the US to set, as their only possible responses to foreign country's requests for similar information would be either "sure, here it is" or "sorry, we have a bigger army. Don't mess with us." Land of the Free much?
Re:American company by St.Creed · 2014-04-26 06:08 · Score: 3, Informative

Data is legally owned and controlled by somebody, and that's the one getting the subpoena. So as far as I know the law over here (IANAL) the answer is yes: the court that can claim jurisdiction can apply its laws and if they say they can order you to give up the data and decrypt it, then you have to.
In my (amateur) opinion, the only way Microsoft would have gotten out of this one is if they had sold the data to another company that would reside in Ireland and that would be legally independent. Say, "MicrosoftDataHolding Ireland". However, *that* company could be ordered by the Irish courts to turn over the data to the Irish government, independent of what Microsoft USA would want. They wouldn't even be part of the case.

--
Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
Re:American company by Frobnicator · 2014-04-26 06:11 · Score: 5, Informative

I think the fact that it's an American company being ordered to produce the data factors in here.
Close, but wrong.
Being ordered to produce data is called a subpoena. That is the normal tool for producing emails and documents. A subpoena orders the company to find the documents meeting the criteria and produce them for the court.
A search warrant allows LEOs to enter the building, search for everything themselves, and seize anything that might appear to satisfy the warrant. So they would enter the server room and immediately seize any computer that looks like it might have the email on it.
The unnamed government agency got a warrant to seize a bunch of computers, and are acting under the guise that they are asking for specific information.
It is completely the wrong tool. It would be nice to think it was a simple mistake, picking the wrong tool to get information. ... unless it is an agency looking to do far more than find some specific emails. Unfortunately it is probably the latter, given that everything is under seal and they are demanding to allow US federal agents into a non-US facility to seize servers.

--
//TODO: Think of witty sig statement
Re:American company by St.Creed · 2014-04-26 06:12 · Score: 2

Well... let's follow up on the argument a bit.
If MS Europe is *really* independent, they can now turn down the request of MS USA for the data and the request will have to go through the Irish courts. But if they are *not* all that independent, and the data is not in fact controlled by them but by MS USA, then they can't interfere, MS USA will have to comply and I can just imagine what the tax authorities are going to do the morning after they produce the data: go after MS with a pretty big hammer.
Interesting case, this :)

--
Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
Re:American company by ColdWetDog · 2014-04-26 06:26 · Score: 1

Nope. The jurisdiction concerned about the information would need two things: Your physical presence and a rubber hose.

--
Faster! Faster! Faster would be better!
Re:American company by davester666 · 2014-04-26 06:28 · Score: 1

The data is in the cloud, therefore it should be publicly available to everyone.

--
Sleep your way to a whiter smile...date a dentist!
Re:American company by Em+Adespoton · 2014-04-26 07:24 · Score: 1

You touched on, but kinda missed my point:
International Megacorps are beholden to no country and all countries at the same time. Nobody wants to cut themselves off from the US market, so they're going to play by US rules. But by that measuring stick, nobody wants to cut themselves off from the EU market or the Eastern market either (can't say the same for the mid-east).
Re:American company by Lawrence_Bird · 2014-04-26 07:25 · Score: 1

So if I store a document in a vault provided by an American company in a foreign country, they must turn it over? Suppose the American company owns a building which they rent space in. Must they turn over documents stored there by third parties who are renting space?
Re:American company by Grishnakh · 2014-04-26 07:36 · Score: 1

Exactly. If this were an Irish company, located in Ireland, this wouldn't be an issue. It's no different than if the Court wanted access to your banking records in Switzerland. You're an American citizen, living in America, and sitting in an American courtroom, so they have the legal right to this information or money. If you refuse to comply, they can lock you up. If you're a Swiss citizen, living in Switzerland, and currently sitting somewhere in Europe, they have no power over you.
There's a simple lesson here: don't do business with American companies if you don't like American laws that might affect those companies (and by extension, you, as a customer of theirs). Don't worry about where the data physically resides; the only important factor is the nationality of the company. And if it's a multinational, that's even worse, because now you need to worry about the laws of ALL the countries that company is located in and does business in. The precedent this case sets is that now, an Irish court also has the right to data stored by MS on servers located in the USA, since MS is located in both countries. So the safe thing to do is to simply avoid multinationals altogether.
Re:American company by ScudBee · 2014-04-26 07:42 · Score: 1

And if an American company keeps customer data in paper files in a storage facility in another country -- do they have to turn over that data too?
Re:American company by CanEHdian · 2014-04-26 07:45 · Score: 1

How about Dutch servers (Leaseweb) rented by a company based in Hong Kong (Megaupload)?

--
When the copyright term is "forever minus a day", live every day like it's the last.
Re:American company by Anonymous Coward · 2014-04-26 07:57 · Score: 1

If the company can't legally do business in both the US and the other country then it will have to choose one over the other.
oooo I like this idea! They should close up shop in the US and move to other countries. As they are closing up shop they should send a final windows update that shreds the \windows \PF\Office* directories on any US based computer while saying they don't want to be held responsible for anything done in the US using their software....
Kernel Panic!
Re:American company by St.Creed · 2014-04-26 07:57 · Score: 1

Oh I agree, but that's usually why multinationals *do* have a real home. In case of Microsoft, it's the USA. So they're stuck with their laws. Their only solution is to give up control on part of their assets and split, but they'll fight tooth and nail to avoid that. So they're stuck. Or rather, they're not stuck - *we* are stuck. Because MS will just *shrug* and hand over the data, eventually.

--
Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
Re:American company by pjt33 · 2014-04-26 08:00 · Score: 1

It's not quite that simple. You also have to avoid companies which might be bought out by an American or multinational company at some point in the future.
Re:American company by sumdumass · 2014-04-26 08:02 · Score: 3, Informative

It's been that way a lot longer than 20 years. The difference now is that instead of buying large yachts and other luxury items as business expenses that can be depreciated then resold as a capital gain later, other countries have lowered their tax rates so moving the funds around makes more sense.
But if you really want to blame a president, you can blame Clinton because all of this off shoring wasn't prevalent until he became president and enacted policies that globalized companies in the way we see them today. You can say it was in the works before he was president, but he enacted NAFTA and several other free trade agreements that made this possible and likely.
Re:American company by Grishnakh · 2014-04-26 08:32 · Score: 1

Well that's pretty hard to predict, so you just need to be prepared to abandon a company quickly if they are bought out by an American or multinational. It goes back to that "don't put all your eggs in one basket" axiom, plus the idea of being self-reliant when possible.
Re:American company by Aighearach · 2014-04-26 08:37 · Score: 1

Under US law a renter is legal possession of the property they are renting, so no. As to the vault that you're not renting but that the company is storing your document in, yes.
Re:American company by Aighearach · 2014-04-26 08:40 · Score: 1

There is no precedent here, this is an obvious outcome of a basic issue. MS did a "hail Mary" trying to get a new type of protection, and (predictably) failed.
MS was always a US company, and US courts always had jurisdiction over any evidence in their possession or under their control.
Re:American company by Aighearach · 2014-04-26 08:43 · Score: 1

Yes, there is no difference and there never was. The legal issue is if it is under your control. Even forming a foreign company doesn't help, if it is a wholly owned a subsidiary. You'd need a foreign partnership with other companies that you can't directly control, but that you still trust. And that is hard to come by at any price. So that game involves being able to control the company in reality, but not on paper. MS is probably too big to make that game work. And that works for random documents, but not for taxes.
Re:American company by swb · 2014-04-26 09:07 · Score: 2

This is a dangerous precedent for the US to set, as their only possible responses to foreign country's requests for similar information would be either "sure, here it is" or "sorry, we have a bigger army. Don't mess with us." Land of the Free much?
This is exactly what multinationals do. They love to have some weird, three-room office in an industrial park near the airport in someplace like Ireland that they can use as their tax headquarters to shelter a bunch of income from American taxes, but then keep their business headquarters in the US so they can run to the State Department every time they have an issue with a non-US government.
This is a big reason why these tax dodges suck -- they get to dodge taxes but use the government to do their bidding. You want to be an Irish company? Great, see how little weight the Irish Ministry for Foreign Affairs can throw around.
Re:American company by Grishnakh · 2014-04-26 09:22 · Score: 1

Well, that's basically what I said in my post above, with my analogy about the US citizen in a US court trying to hide information about their holdings in a foreign bank account.
Re: American company by sumdumass · 2014-04-26 09:25 · Score: 1

The thing about it is, and lets simplify this as you being the one in court, if the court orders you to turn something over, you cannot say it's in another country and be done with it. You can say you sold it, disposed of it, or otherwise no longer have access or control over it, but if you still maintain control over it, you will be held accountable for either turning it over or failing to.
Now this might work differently if you are a third party from another country and I'm in court because I know you. This essentially would be the case if you paid me to do your email on servers inside your country. I would still be held accountable for failing to turn it over and might be able to make the case that I don't have legal access to it depending on you and the other country's laws. But I cannot hide something in another country and expect not to be subject to any court's orders on it when I remain in their jurisdiction- which seems to be the case here.
Re:American company by mark-t · 2014-04-26 10:05 · Score: 1

If the servers are located in country B, and appear to be breaking a law in country A, how does country A get country B to confiscate the servers when no law is being broken in country B?

--
File under 'M' for 'Manic ranting'
Re:American company by sumdumass · 2014-04-26 10:20 · Score: 2

More likely than not, it is because no matter how nasty and illegal you want to think hiding those assets off shore in havens might be, there is a possibility that it is done legally even if not ethically.
Look at it this way, several years ago, I purchased a rehab home. I moved into it, rented the old home out which made it my primary residence. I then used a grant through the utility company paid for by the state in order to remove the old plaster and lath, install modern insulation, seal the walls and drywall them. I had to pay for the ceilings but the rest came from the state through the utility company. But I also replaced the single pain windows with a tax program the state had so the difference in the trim actually allowed the purchase of the drywall on the ceilings. So essentially, I gutted and insulated the entire home, upgraded the windows for free if you accept spending money I would have already paid in taxes as not being a new expense.
I then replaced the aging roof shingles (slate) with Owens Corning 25 year shingles under another program for energy efficiency by the feds granted to the state. Because I went from slate to asphalt shingles, I had to install a venting system and all which ended costing me about $3000 but everything else was covered by the program. But there is more, I bought new appliances too with another energy grant through the utility company which was through the state so I ended up only paying 40% of the cost of those.
Basically, by the time it was all said and done, I spend about 5 years of my taxes on an investment home instead of paying the state and federal governments and got a bunch of free (think refunds) money on top of what I would have paid in. It was all legal as long as I lived in the house another 5 years. I sold it off at the height of the real estate bubble and made a killing. This was a tax shelter much the same way as those off shore havens work. It's all legal even though you think they shouldn't be.
The tax code is so complex that even IRS officials cannot follow it enough to stay out of trouble with their own taxes. What is obvious isn't always illegal and what is illegal may only be illegal in certain situations. And what is obviously illegal can be perfectly legal if your accountant structures something specifically with the intent of making it legal. Then again, people have been wrong before and get busted for thinking their illegal thing was legal but it turned out to be illegal. If that confused you a bit, it was supposed to just like the tax code.
Re:American company by Frobnicator · 2014-04-26 10:35 · Score: 4, Insightful

Data is legally owned and controlled by somebody, and that's the one getting the subpoena.
Read it again. Even the /. summary covers it properly.
They did not get a subpoena, which would have forced Microsoft to turn it over. The used a search warrant, which allows the (unspecified) government to swoop in and seize the servers. Located in Ireland. Using a US's renound paramilitary law enforcement. In Ireland. Seizing Irish equipment from an Irish branch of the company, used by Irish people and defended by an Irish police force.
The (unspecified) US government agency requested the ability (and the judge authorized) to enter the Irish facility and take the machines by force if necessary -- that is how search warrants work.
The fact that they even requested it is troubling. The fact that the agency was granted it is fairly terrifying. If this doesn't get taken down in an appeal, the article and summary are correct, it means the US government is basically declaring sovereignty over the world even more than before. This isn't Afghanistan or Iraq, but Ireland they would be using force against.

--
//TODO: Think of witty sig statement
Re:American company by radarskiy · 2014-04-26 11:02 · Score: 3, Informative

Stop lying.
The actual articles says *nothing* about US agencies gaining physical access purely on the basis of a US warrant.
From the actual article:
"A search warrant for email information, he said, is a "hybrid" order: obtained like a search warrant but executed like a subpoena for documents. Longstanding U.S. law holds that the recipient of a subpoena must provide the information sought, no matter where it is held, he said."
So the instrument really is more like a subpoena in that it forces action on the recipient, in this case to retrieve the data from the foreign location. It does not authorize any US official to seize the data from the foreign location without the involvement of the foreign authorities.
This ruling literally does NONE of the things you accuse it of.
Re:American company by mark-t · 2014-04-26 11:27 · Score: 1

There's a big difference... since in your example, person C was actually *IN* country A while the law was being broken. In this case, the data servers reside in country B, and were never actually in A's jurisdiction.

--
File under 'M' for 'Manic ranting'
Re:American company by _KiTA_ · 2014-04-26 11:50 · Score: 1

"We know you have a house in Ireland, but you're an American, and we demand you let us federal agents into your Irish estate."
Somehow, I imagine Ireland or the EU are not going to be enthused about this.
Re:American company by Anonymous Coward · 2014-04-26 12:11 · Score: 1

The judge says you are incorrect.
FTA:

A search warrant for email information, he said, is a "hybrid" order: obtained like a search warrant but executed like a subpoena for documents. Longstanding U.S. law holds that the recipient of a subpoena must provide the information sought, no matter where it is held, he said.
Re:American company by gmhowell · 2014-04-26 12:35 · Score: 1

Now consider US military successes and failures.
Win, lose, or draw, the invaded nation is going to have a helluva mess to clean up.

--
Jesus was all right but his disciples were thick and ordinary. -John Lennon
Re:American company by Rich0 · 2014-04-26 12:36 · Score: 1

What if I encrypted a block of my data, broke those blocks up, then stored separate (non-duplicate) pieces in every country in the world? Would a court need to get every country's permission to assemble the data? Is the data an entity that has to be pursued independently of the owner (me)? Or as the owner, can my citizenship country (or a country that is pursuing me) instead demand all pieces based on me as the owner?
To summarize: Is my data legally independent from me?
They would simply ask you nicely to produce the data within some period of time. Then if you didn't do it they'd just lock you up until you did.
In just about any country the court is only going to ask you nicely to do something once. So, think about that before you put data you might be asked to produce in a place where you might have trouble getting to it.
Re:American company by Rich0 · 2014-04-26 12:45 · Score: 1

This is a dangerous precedent for the US to set, as their only possible responses to foreign country's requests for similar information would be either "sure, here it is" or "sorry, we have a bigger army. Don't mess with us." Land of the Free much?
How is that a dangerous precedent for the US to set? As you just pointed out, they can say that they have a bigger army, and that is true. It would be a dangerous precedent for another country to set for sure.
In practice this is how most countries have operated since the dawn of time. They fully expect their citizens and corporations to collaborate with them in intelligence gathering against other nations, and they expect those same citizens and corporations to not collaborate with other nations in intelligence gathering against them. It is a double standard to be sure, but one which EVERYBODY upholds.
To some extent you just have to pick a side and stick with it. If you're a retired Iranian general with knowledge of all kinds of classified information, then unless you intend to never return to Iran you'd be stupid to move to the US, and vice-versa. You have to know that you're going into a jurisdiction where those in power have the ability to compel you to do something that would be considered treason by your mother country. If you feel like you were born in the wrong country then you can always change sides once, but what you can't do is play both sides.
If these companies don't want to be subject to US law, then they should refrain from owning property in the US, being listed on a US stock exchange, selling in US markets, and so on. However, if they want to be able to call a US police department when somebody breaks into their building, then they can expect those same US police to come knocking on their door when they want something that they have access to. That is true of every nation on the planet.
Re:American company by Anonymous Coward · 2014-04-26 13:53 · Score: 1

This ruling literally does NONE of the things you accuse it of.,/p>
So the company is not being forced to act as an agent of the local government in a foreign country. I thought so.
It's exactly as the GP says it is. You and the judge are trying to call a cow a duck. Double plus ungood.
Re:American company by rtb61 · 2014-04-26 15:48 · Score: 1

It automatically breaks the law of the foreign country. It is after all a search warrant and if the country has similar laws requiring a search warrant then the foreign part of the company is protected by law of that country. In this case the simple answer is, the warrant is issued, then served locally, then the company forwards the request and the foreign part of the company then refuses citing local law at their location. So locally they adhered to the law in both locations, both nothing happens and stupid judge is left to look like stupid judge ie the local court can not act against the part of the company and it's staff that are operating overseas. They can only issue an order to the company to attempt to obtain that data, the can not force that data to be handed over.

--
Chaos - everything, everywhere, everywhen
Re:American company by thej1nx · 2014-04-26 21:45 · Score: 1

Likewise for the invading nation, looking as the price paid in the past.
Re:American company by Aryden · 2014-04-27 01:31 · Score: 1

lol this was a legitimate threat used by M$ during the monopoly suits.
Re:American company by Gonoff · 2014-04-27 01:42 · Score: 1

Now consider US military successes and failures.
Win, lose, or draw, the invaded nation is going to have a helluva mess to clean up.
So is the USA. You have a lot of citizens who identify with their perceived ethnic origins. You would have the IRA upset with you as well...

--
I'll see your Constitution and raise you a Queen.
Re:American company by Gonoff · 2014-04-27 01:56 · Score: 1

Well that's pretty hard to predict, so you just need to be prepared to abandon a company quickly if they are bought out by an American or multinational.
If the USA starts acting in an illegal manner, there might be moves to block such acquisitions. Yes, the USA would then start to block foreign buyouts of its companies. If that continues, eventually over 4% of humanity would be structurally, financially and socially isolated from the rest of the planet. Trade wars tend to favour the bigger players. It does not look like the USA is going to stay one of those forever.

--
I'll see your Constitution and raise you a Queen.
Re:American company by Mabhatter · 2014-04-27 04:18 · Score: 1

I can see right off the bat what they are trying to pull here. Imagine all the discovery processes that would be screwed over if somebody like Apple could have just moved their email servers for top managers to another country! I mean they get the email at their office in California, but the SERVICE is in Apple Ireland, so the US DOJ cannot discover those. That sounds like what was going on here.
If you have legal ACCESS to it, the court can compel you to PROVIDE it. Just hiding it on a service in another country is not enough to protect it anymore. Clever play, but the courts didn't fall for it.
Re:American company by Mabhatter · 2014-04-27 04:22 · Score: 1

it's about who is being investigated. If the government is investigating a case against a manager in California, then going to the Legal department in California and requesting those email for that employee who accessed those emails INSIDE CALIFORNIA is perfectly acceptable. This sounds like the attempt was to say the emails were in a server in Ireland so the US government cannot see those. The judge says the manager/employee still has to provide the emails that they had access to because the court ordered the PERSON to provide the emails, not the company in Ireland.
Re: American company by jxander · 2014-04-27 06:12 · Score: 1

Doesn't matter if the company is American. The warrant should not extend beyond our borders.
I'm an American citizen, but I also own land in another country. Could a US court issue a warrant to search that area, without consent of the local government?

--
This signature is false.
Re:American company by mpe · 2014-04-27 06:30 · Score: 1

What is an "American" company? MS Europe is incorporated in Ireland, has a datacentre in Ireland, and pays taxes in Ireland.

It's most likely the tax bit which is most important to Microsoft here. With them being more worried about the IRS than any US court :)
Re:American company by Muros · 2014-04-27 08:53 · Score: 1

To avoid double taxation - just require them to pay to USA the difference in US vs Irish tax. If Ireland taxes them more than the USA then they don't have to pay anything. If Ireland taxes zero, then they pay the full to the USA. If they don't like that then they should behave more like separate companies. e.g. the Irish Microsoft CEO can ignore the US CEO on what to do with the billions of US dollars ;).
I'm a bit hazy on this myself, but I believe the way it works is this: under Irish law, the profits are to be taxed in the US. Under US law, the profits are taxed there when they are repatriated from the subsidiary to the parent company. So, the profits are never repatriated, they are instead sitting in a dollar account in a US bank (to avoid losses due to currency fluctuations) belonging to the Irish subsidiary of the US company, until such a time as congress decides to lower tax rates so they can take it all back "home" (it is already back in the US, just untaxed) for free. Until then, banks will be more than willing to lend them whatever money they want or need in the US, because they have this massive pile of cash lying about.
Re:American company by davester666 · 2014-04-27 15:38 · Score: 1

The NSA has the data already, they just refuse to share. So this other agency has do to it the hard way, and get a real warrant.

--
Sleep your way to a whiter smile...date a dentist!
Re:American company by Lawrence_Bird · 2014-04-28 02:04 · Score: 1

A safe deposit box is a rental.
Re:American company by Aighearach · 2014-05-02 21:13 · Score: 1

Nope.
Re:American company by Rich0 · 2014-05-08 01:00 · Score: 1

as stated in the article, what happens when microsoft releases the user's data and it is encrypted by a company independent of microsoft, do they now go after the user?
Just leave the Microsoft CEO in jail for contempt until they come up with the keys. I suspect they'll figure out a solution fairly quickly. Maybe after a year or two the court can decide that they really couldn't come up with it.
That's what courts routinely do to individuals who don't disclose their keys. Simply telling the court that you don't have it isn't likely to get you far.

A possible solution? by Decrepitude · 2014-04-26 04:51 · Score: 1

The problem is that most of the large computer and internet companies are American. I can think of two solutions. 1) Governments set up their own sovereign companies to duplicate the US companies services 2) The large US companies (who appear not to like this ruling) could establish foreign owned subsidiaries in those countries.

Slightly misleading... by Anonymous Coward · 2014-04-26 04:52 · Score: 2, Insightful

The judge said that the warrant served on Microsoft is valid, meaning that Microsoft, which has control of the servers in Dublin, can be required to use its access to its own servers to turn over information within its control. Nothing Earth-shattering here.

Re:Slightly misleading... by Anonymous Coward · 2014-04-26 04:56 · Score: 1

Exactly. It strikes me as akin to requiring Microsoft via subpoena to provide documents they have stored on paper in Ireland vs. busting down the door of their Ireland office and confiscating them.
I'm not really sure what it means for data to "reside" in a particular country, but if the only copy is on a physical disk in a physical location, that's pretty straightforward. The fact that it may be copyable over a network doesn't change the fact that it's a physical record just like a piece of paper.
Re:Slightly misleading... by Richard_at_work · 2014-04-26 05:00 · Score: 2

And what happens when Ireland, the UK, the EU etc pass laws which specifically prevent Microsoft et al from responding to such warrants when they are issued from countries where the data does not reside?
Microsoft would be between a rock and a hard place.
Re:Slightly misleading... by Barsteward · 2014-04-26 05:00 · Score: 1

Only if the data belongs to american citizens, they shouldn't have access to Irish citizens' data

--
"The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
Re:Slightly misleading... by Trepidity · 2014-04-26 06:18 · Score: 2

That's precisely why Microsoft is opposing this order, not so much to avoid turning this particular data over, but because it may damage their European business. Microsoft has made a big marketing push in Europe trumpeting that their cloud products comply with EU data-protection laws, and this has been somewhat successful: several big companies and universities have signed up with Office 365 as their email/calendaring provider, in part because they were convinced that doing so is compatible with their obligations under EU law. Google in particular has usually not been in the running, because they can't or won't certify that data in Google Apps for Business is treated in accordance with European regulations, whereas Microsoft has been claiming that data in Office 365 is.

--
10 PRINT CHR$(205.5+RND(1)); : GOTO 10
Re:Slightly misleading... by rossdee · 2014-04-26 06:18 · Score: 1

Sent it to them at 300 baud
Re:Slightly misleading... by Immerman · 2014-04-26 06:52 · Score: 1

Ah, but it's not Irish citizen's data - it's Microsoft's data about Irish citizens. Possession is 9/10ths of the law after all. I'd bet you good money that the EULA even says something to that effect down around page 29475.

--
--- Most topics have many sides worth arguing, allow me to take one opposite you.
Re:Slightly misleading... by X.25 · 2014-04-26 07:45 · Score: 1

The judge said that the warrant served on Microsoft is valid, meaning that Microsoft, which has control of the servers in Dublin, can be required to use its access to its own servers to turn over information within its control. Nothing Earth-shattering here.
Unless servers actually belong to a business entity registered in Ireland (Microsoft office there or whatever), which is subject to EU laws and regulations, not to US judge opinions and wisehs.
If server belongs to company registered in Ireland (regardless of who is the 'parent' company), they would likely be breaking EU laws and regulations if they would follow orders from US judge.
Do you have objections to Chinese judge ordering Huawei to disclose personal data of their US customers?
If you don't, I guess there is nothing to debate then.
I have problems with both, though.
Re:Slightly misleading... by Aighearach · 2014-04-26 09:00 · Score: 1

If you're debating about what you have "objections" to, that is a discussion better had on a thread about legislation. A thread about legal rulings hopefully centers around understanding what the law actually is right now, and potential differences of understanding on what that is.

Re:No jurisdiction by fustakrakich · 2014-04-26 04:54 · Score: 2

They're not demanding from the countries. They're going after Microsoft, which happens to have offices in the US. Either way, those who believe should encrypt their mails. The rest can hide their secret messages in spam.

--
“He’s not deformed, he’s just drunk!”

Re:No jurisdiction by devman · 2014-04-26 04:59 · Score: 4, Informative

Microsoft, however, is subject to the jurisdiction of the U.S. Federal Court system, and when a Magistrate Judge orders them to produce something, they are compelled to produce it. It doesn't really matter where the something is. Basically the court is saying the search warrant can be executed like a subpoena.

From the linked article:
A search warrant for email information, he said, is a "hybrid" order: obtained like a search warrant but executed like a subpoena for documents. Longstanding U.S. law holds that the recipient of a subpoena must provide the information sought, no matter where it is held, he said.

Already in place.... by CaptainOfSpray · 2014-04-26 05:11 · Score: 3, Informative

EU law already makes it illegal to pass "personal data" to any location which lacks the protections available in Europe. The so-called Safe Harbor provisions apply for te US situation, but everyone who understands the EU law knows that the Safe Harbor arrangements are just smoke and mirrors - they afford precisely no protection at all - they exist to enable EU companies to export data to the US while claiming they have complied wth the law.

--
"Cock Up Your Beaver" does not mean what you think. This sig is intended to clog filters and annoy do-gooders

US Court did *not* say corporations are people ... by drnb · 2014-04-26 05:12 · Score: 2

With apologies to various political hacks in the judiciary, corporations are not people ...

Actually the U.S. Supreme Court did *not* say that corporations are people. What the court actually said is that *groups of people* have the same rights as individual people, and that the nature of that group -- corporation, labor union, activist group, etc -- does not matter.

I apologize of actually reading the court decision rather than relying on the characterization of it by the talking heads on TV.

Re:Actually the rich are losing in this case ... by Curunir_wolf · 2014-04-26 05:14 · Score: 1

The question is: who does have legal jurisdiction on data stored in a given country? The courts of that country, or the courts of the nationality of the company who manages the data storage?

There are myriad of such questions. But the answer is always the same, "whatever is in the best interests of the richer guy".

You are wrong. The richer guy is Microsoft in this case and the richer guy is being told to hand over his overseas data.

Nope. Microsoft may have a lot of money, but the guy they're up against here is the US Federal government, an entity with nearly $3 TRILLION per year in revenues (and $4 TRILLION per year in expenditure), clearly by far the "richer guy".

--
"Somebody has to do something. It's just incredibly pathetic it has to be us."
--- Jerry Garcia

Re:No jurisdiction by cHiphead · 2014-04-26 05:21 · Score: 1

This pretty obviously needs to be a subpeona, a search warrant is from a law enforcement standpoint and that has zero use for data in a physical location outside the US. It's an attempt to end run around the system and it's far reaching and needs to be quashed immediately.

--

This is my sig. There are many like it, but this one is mine.

Good job. by nashv · 2014-04-26 05:25 · Score: 1

The judge has now made sure that no American company will ever admit to having stored any data anywhere, or risk losing business.

--
Entia non sunt multiplicanda praeter necessitatem.

And Denmark just sold its digital IDs to USA... by Anonymous Coward · 2014-04-26 05:30 · Score: 5, Interesting

Denmark recently sold its digital infrastructure (digital identities, national bank payments, etc) to a US company. The Danish government said there was nothing to worry about, because the servers would still be in Denmark. Thank you, USA, for proving the Danish government wrong.

Re:And Denmark just sold its digital IDs to USA... by cheesybagel · 2014-04-26 06:13 · Score: 1

You should know better than that.

Re:US Court did *not* say corporations are people by cryptolemur · 2014-04-26 05:32 · Score: 2

Amusingly enough, "corporation" comes from latin word meaning a "group of people"... so where's the difference?

Get the facts. by MouseTheLuckyDog · 2014-04-26 05:35 · Score: 2

I mean come on!
This is reported on by Reuters, and they do not supply a link to the ruling itself. Which means they probably state the ruling all wrong and also leave out important details. In fact one detail I see at once is missing. Whose emails are these?

They could be Boris Putins,.or Kim Dotcoms, in which case I would have severe problems with the judges orders.
Or they could be Dread Pirate Roberts, or even Microsofts operating emails stored in Dublin just to avoid having to turn them over in which case I would have no problems with the judges orders.

In any case please get us all the facts before putting up such a story.
Is that really too much to ask?

Re:Get the facts. by Cow+Jones · 2014-04-26 18:17 · Score: 1

Talking about "facts"... who is Boris Putin?

--

Ah, arrogance and stupidity, all in the same package. How efficient of you. -- Londo Mollari

Re:No jurisdiction by Brett+Buck · 2014-04-26 05:39 · Score: 4, Informative

The search warrant analogy is completely spurious. An American court cannot compel a search of a foreign property. But they can certainly compel an American company (or individual) to produce information owned by the company that happens to reside in a file folder in another country, or be liable for contempt of court.

Sensationalism, thy name is slashdot.

Brett

Re:No jurisdiction by LifesABeach · 2014-04-26 05:40 · Score: 1

I was wondering if it also applies to agents, franchises, and licensees of a person?

Re:International cyber law enforcement system??? by LifesABeach · 2014-04-26 05:41 · Score: 1

A Judge asks for information to make a decision, and because of that, the Judge is corrupt?

Re:No jurisdiction by Yakasha · 2014-04-26 05:50 · Score: 1

This pretty obviously needs to be a subpeona, a search warrant is from a law enforcement standpoint and that has zero use for data in a physical location outside the US. It's an attempt to end run around the system and it's far reaching and needs to be quashed immediately.

I see lots of money being made in the WAN acceleration industry.

Cyber Law? by ultranova · 2014-04-26 05:51 · Score: 2

The question is: who does have legal jurisdiction on data stored in a given country? The courts of that country, or the courts of the nationality of the company who manages the data storage? This is a matter that has to be decided by International treaties. While we're at it, let's try to establish an International cyber law enforcement system. In the meantime.

Why would I want to build an enforcement system when I don't know who's rules it will end up enforcing? Chinas? North Koreas? NSAs?

--

Forget magic. Any technology distinguishable from divine power is insufficiently advanced.

Re:US Court did *not* say corporations are people by LifesABeach · 2014-04-26 06:04 · Score: 1

Then when that group of peoples actions kill a person, it should be treated as Murder? or Industrial Accident?

Re:International cyber law enforcement system??? by Frobnicator · 2014-04-26 06:04 · Score: 1

No, because the judge and (LEOs) are using the wrong tool.

A subpoena is an order to produce a document (or to require a person to appear). This is the tool they would normally use to get an email or any other document. The LEOs do not get any access except to have the document produced.

A search warrant is an order allowing LEOs to immediately search everything they want, and then seize whatever they think satisfies the warrant.

Normally a subpoena is used to get an email. The company searches their databases and provides it. Using a search warrant is absurd, it means the police break into the server room, and say "This computer seems like it might have email, we're seizing it."

Of course, that may be EXACTLY what the LEOs are trying to do in this case, but barring some exceptional power-grab by LEOs, it is the wrong legal tool.

--
//TODO: Think of witty sig statement

Re:No jurisdiction by budgenator · 2014-04-26 06:05 · Score: 1

The alternative would be to go in and physically remove the server; then have all the data on the drives vulnerable to the whims of law enforcement.

--
Apocalypse Cancelled, Sorry, No Ticket Refunds

Re:No jurisdiction by Kjella · 2014-04-26 06:13 · Score: 3, Insightful

In what appears to be the first court decision addressing the issue, U.S. Magistrate Judge James Francis in New York said Internet service providers such as Microsoft Corp or Google Inc cannot refuse to turn over customer information and emails stored in other countries when issued a valid search warrant from U.S. law enforcement agencies.

Emphasis mine. I read this to mean that if you use any US owned mail provider the FBI can subpoena anything they want through a US judge. That just seems horribly wrong and would put the world wide operation of any company at the mercy of the jurisdiction where they're headquartered. By this logic the NSA can get a subpoena to demand all US companies turn over any information they got anywhere in the world. You could never trust a foreign company to follow local laws. If this stands it's a horrible precedent.

--
Live today, because you never know what tomorrow brings

Re:International cyber law enforcement system??? by LifesABeach · 2014-04-26 06:24 · Score: 1

The Judge ordered the information, there's not much a LEO can do except comply; or appeal to a higher court. This could be considered a stalling tactic. As for the reference to the judge as a tool; now I see comedy.

Re:No jurisdiction by Coditor · 2014-04-26 06:26 · Score: 1

If the data in question is protected by a foreign law from being disclosed to anyone, such as personal information protected by the EU, then if the company were to disclose this information to a third party such as the court, it would be in violation of that country's laws. Damn if you do and damned if you don't. Who do you want to piss off more? International law is highly complex and probably shouldn't be handled by judges at a local level. I would expect the state department would get involved, as it might cause all sorts of grief to the country.

American? by JimSadler · 2014-04-26 06:35 · Score: 1

These days the public has a concept of what an American company is but i'm not so certain that the law shares the same concept. Corporations are multi-national these days and frankly the nature of multi national corporations sucks bilge water. Here is why: Going into WWII the Coca Cola company felt that they would take heat for producing product in Germany. So they created the Fanta line of sodas. That way they could still make money on all those lovely Nazi soldiers while keeping the public unaware that they were actively doing business within the Reich. Meanwhile IBM was actually aiding in the data handling of people inside the concentration camps. Wouldn't a normal person assume that these companies would have been seized and shut down with their assets held for the war effort? Who made money by allowing these conditions to exist?

Re:American? by Dwedit · 2014-04-26 07:44 · Score: 2

http://www.snopes.com/cokelore...

In related news... by vomitology · 2014-04-26 06:40 · Score: 1

Every company based in America just packed up its stuff and left the country. Democracy in action!

--
~Knowledge is knowing that a tomato is a fruit, but Wisdom is knowing not to put it in a fruit salad.

The other countries need protect jurisdiction by mysidia · 2014-04-26 06:41 · Score: 1

I would suggest a law that forbids information to be retrieved from servers for the purposes of satisfying a warrant or supposed legal order that has not been validated by a court within jurisdiction.

The question is: who does have legal jurisdiction on data stored in a given country? The courts of that country, or the courts of the nationality of the company who manages the data storage?

Re:The other countries need protect jurisdiction by nbritton · 2014-04-26 07:45 · Score: 1

The question is: who does have legal jurisdiction on data stored in a given country? The courts of that country, or the courts of the nationality of the company who manages the data storage?
Any court that has personal jurisdiction over the corporation. Which is to say wherever the company is incorporated or resides. At a minimum the Federal and State court where the company is incorporated will have personal jurisdiction. There are no jurisdictional borders when it comes to corporations, ether the court has personal jurisdiction over the company or it doesn't, and if it does it can issue any warrant it wants on the corporation. The court can't send it's agents to another country to execute the warrant, but they can find the corporation in contempt or charge them with obstruction of justice.
Re:The other countries need protect jurisdiction by mysidia · 2014-04-26 08:53 · Score: 1

Any court that has personal jurisdiction over the corporation. Which is to say wherever the company is incorporated or resides.
Good news, everyone... Microsoft US, Inc. and Microsoft Ireland, Inc. are separate corporations with their own separate trustees/agents. The court might want to issue a search warrant for officers to visit Microsoft Ireland's premises and seize potential evidence, BUT only Microsoft US has a presence in the US, therefore, the court has no ability to hold Microsoft US in contempt for some other company's choices.

And also... no law gives US police officers the right to take a flight to ireland and try to act upon the warrant, AND no law allows or requires Ireland police officers to receive a copy of the warrant and honor it.
Particularly, if the laws of Ireland prohibit transportation of any books/records overseas containing account information, logs, activity information, financial transaction details, or anything with evidence of use on Ireland customers, without each customer submitting a pen and paper signed consent form, for instance..
Re:The other countries need protect jurisdiction by Aighearach · 2014-04-26 09:07 · Score: 1

MS resides in Washington State, if Ireland manages to hold them in prison to prevent them complying with the order, that is fine. They might rethink their Irish strategy when they get back, though. ;)

Re:No jurisdiction by Immerman · 2014-04-26 06:49 · Score: 1

Now you're getting it. Deal with an American company, you deal with American law, in addition to local law. If those conflict then it simply comes down to which law the company is least willing to break.

Consider, the opposite precedent is even worse - if Microsoft is allowed to hide it's records simply because it stored them overseas then *every* company (and private individuals as well) can reasonably be expected to do the same. Using the company as your private piggy bank? Keep the financial records offshore so the IRS can't demand them. Dealing in the illegal arms trade? Make sure all your records and merchandise remain in countries that don't mind and you can operate openly in the US. All the benefits of operating as an American company, plus the ability to easily sidestep any attempt to crack down on you.

What we really need is a body of international law (treaties could work) governing the regulation of international companies. As it is now the companies are in many ways above the law, they need only dance between jurisdictions enough to muddy the waters and they can get away with almost anything.

--
--- Most topics have many sides worth arguing, allow me to take one opposite you.

Re:No jurisdiction by physicsphairy · 2014-04-26 06:54 · Score: 3, Insightful

Microsoft does not own the information; they as a third party own the server on which someone else's information resides, a server which is held and taxed as a foreign asset outside US regional jurisdiction. It's one thing to compel Microsoft as a transnational company to produce one of their corporate records regardless of where they have stored it: agreeing to subject themselves to the US judicial system is part of incorporating in the US. It's entirely another when they are being told their foreign offices are actually territory of the US government and anyone or anything which resides there must submit to the pleasures of the US judicial system.

If I had written a letter in Britain and put it in a British safety deposit box I don't think the court would have the guts to demand it, even if the bank were jointly owned in the US. But scan that letter and store on the server and suddenly it's free game. Why? Because now it's easy to sneak the data out of the country without bothering the local authorities? Good news for people torrenting.

I suppose if you live in other countries you should doublecheck that any web companies you do business with do not also have a US presence because if they do any of your data could be subject to requisition by the US government even if it's data which has never left your country.

--
When things get complex, multiply by the complex conjugate.

Re:The nationality of the company by Immerman · 2014-04-26 07:02 · Score: 1

Actually I'm pretty sure that if you were subpoenaed to deliver your tax documents or other records that were stored in your house in Ireland, you'd still be legally required to provide them. And it sounds like electronic search warrants are typically handled more like a subpoena than a traditional search warrant - i.e. the company provides the data rather than officers going in to seize it. So no, the US law enforcement has no jurisdiction to search the Ireland offices (without local cooperation), but Microsoft certainly does, and they would be the ones doing the actual work. The question is only if they are allowed to hide their data outside of US jurisdiction while still claiming possession.

--
--- Most topics have many sides worth arguing, allow me to take one opposite you.

Re:US Court did *not* say corporations are people by bussdriver · 2014-04-26 07:04 · Score: 1

The court is corrupt; their reasoning is often quite poor for educated, experienced and honorable judges. That is no more likely to be true than a Priest is safe around children; the title doesn't give them unquestionable character.

A group of people is entirely different than a legal corporation! I can't believe they'd do something so idiotic... while I expected the result, I found their justification embarrassingly flawed; I expected better BS.

The history of the word "corporation" is NOT the same as a legal corporation. It's just a word given to it, it could have been any word. It is not simply "a group of people" and never has been

Besides, the legal entities between unions, activists, religions, and corporations are fundamentally different in their purposes and needs - they should not be equated and to lump them together just because they (almost always) involve multiple people is gross over simplification. In addition, activists and religions have much less need for a legal entity for their survival - they can actually thrive simply as "a group of people."

I find the reasoning as flawed as religious / traditional marriage vs legal marriage being the same thing; when they are only similar by name and history (in that the law sprung from the commonality between popular religions.)

--
Democracy Now! - uncensored, anti-establishment news

Re:No jurisdiction by Brett+Buck · 2014-04-26 07:14 · Score: 1

That's a much better argument than the the one I was commenting on (made by MS lawyer), but hardly a trump card.

The FBI (or any other agency/court) can certainly argue for a subpoena for data given to a third party. Whether they ever actually get it or not is another story.

Party A hands Party B an envelope, and says "store this for me". Party B happens to store it in a foreign country. Said foreign country happens to have a law that requires people holding information for others to protect it.

Later, Party A is taken to court and the envelope is argued to be evidence in the case. Party B can certainly be served in a US court and required to produce the envelope. It doesn't matter whether the foreign laws happen to preclude you from having it, Party B can still be held in contempt.

It doesn't even have to be a foreign country - it's fairly common to hold US reporters in possession of information germane to a case in contempts, and that is argued to be a violation of the US Constitution. The US constitution certainly (or at least should) trumps the laws of a foreign country in a US court.

US courts are absolutely NOT required to consider foreign law in order to act. If it is an action in a US court, they are compelled to follow US law, period. If MS ends up caught between a rock and a hard place, tough shit.

While the information itself may not be in the jurisdiction of the court, MS certainly is. The only place that foreign law might come into is if it is a treaty provision (in which case it is indeed US law) or when/if someone tries to forcibly acquire it, i.e. attempt to execute a search warrant to take it without MS assistance. That probably won't fly, and is a flagrant violation without action in the foreign court. If a foreign court refuses to allow the information to be released, then they may never get the envelope, but it can certainly be requested and Party B can certainly be punished for not responding.

There is nothing new here.

The ruling makes sense. by nbritton · 2014-04-26 07:18 · Score: 1

Where the servers reside is simply not relevant because the corporation resides within the jurisdiction of the court, corporations are people and because a company is one legal entity the court has jurisdiction over all of the company, regardless of where it's assets are physically located. It's called personal jurisdiction and the ruling is correct, it will be upheld if appealed. If you don't want to be subject to american jurisdiction then don't incorporate in america, it's really that simple.

Microsoft US != Microsoft Ireland by vilain · 2014-04-26 07:26 · Score: 1

As far as I know, multinational companies are really a collection of separate companies, all incorporated in the countries they are physically located in and pay taxes in that country. It's the reason why much of Apple's income is held by foreign versions of Apple. Yes, they all report to the mothership, but that mothership doesn't have sovereignty or jurisdiction over it. I'd love for some Irish barrister to send a letter telling this Judge to go feck-off along with a subpoena the Judge's phone records because he's "being investigated" for child trafficking. Then hijinks ensue.

Re:Microsoft US != Microsoft Ireland by Aighearach · 2014-04-26 09:09 · Score: 1

If the subsidiary is wholly-owned then the parent company does indeed control the information and has to produce it. The tax-game stuff is not a loophole created by lack of jurisdiction, it is loopholes created by the specific ways the tax laws are written to favor certain strategies.

Re:No jurisdiction by Frobnicator · 2014-04-26 08:05 · Score: 1

The FBI (or any other agency/court) can certainly argue for a subpoena for data given to a third party. Whether they ever actually get it or not is another story.

That is correct. They can use a subpoena for it.

A subpoena tells the organization to collect the documents and turn it over in a reasonable time frame.

But they are not using a subpoena. They are using a search warrant.

A search warrant allows LEOs to search the buildings and seize anything that looks like it might have the stuff in the warrant. As in, "These servers look like they might have email, remove them all from the building." A search warrant and a subpoena are radically different legal instruments. A search warrant is usually used when there is an immediate need to collect the data in fear that the person might destroy it and the LEOs have an immediate need to remove it.

It is an unspecified government agency, and because it is a search warrant they WILL just seize entire servers and search them at their leisure. That is the difference between a subpoena and a search warrant, and LEOs absolutely love search warrants.

The problem is they are using the entirely wrong legal tool.

--
//TODO: Think of witty sig statement

Re:International cyber law enforcement system??? by Frobnicator · 2014-04-26 08:11 · Score: 1

The Judge ordered the information, there's not much a LEO can do except comply; or appeal to a higher court. This could be considered a stalling tactic. As for the reference to the judge as a tool; now I see comedy.

Yes, a judge can order the information for himself, but that isn't what happened. Almost always it is the LEOs demanding the warrants, and that is what happened here.

The LEOs go to the judge and say "we need a search warrant", or "we need a subpoena". The judge reviews the request and signs off.

In this case the officers requested a search warrant, which allows the seizure of equipment. They want to capture entire servers, make images of them, and then store the servers for the court.

The correct legal instrument is a subpoena, which allows the company to search for the documents and provide them to a court. The reason to use a search warrant to seize the machines is if there is an immediate need to remove them. If there was a fear that the machines would all be wiped and the contents destroyed. This is unlikely to be the case with Microsoft. The other reason to use a search warrant by the unspecified government agency is that they want to mirror the machines and search it for other content beyond the specific emails. Unfortunately that looks like it is their goal, not obtaining the specific emails and documents but to make mirrors of the servers for their own purposes.

--
//TODO: Think of witty sig statement

So this is an "American" problem? by argStyopa · 2014-04-26 08:13 · Score: 1

How is this different than French judges insisting that the internet use French, German judges trying to ban Nazi logos in global games hosted elsewhere, etc?

I mean seriously, there's like a story a week about some dumbass judge thinking he can tell the internet what it can and cannot do?

It's about the "stupid", not the "America". Although those are often enough synonymous, I admit.

--
-Styopa

Re:So this is an "American" problem? by Aighearach · 2014-04-26 09:11 · Score: 1

There is plenty of stupid to go around, I can assure you.
And yes, French courts could issue any sort of ruling they want against French companies. If you're a French company and there is some French law about online language, you'd be well advised to obey it.

Renders US Cloud services useless by prefec2 · 2014-04-26 08:26 · Score: 1

For EU companies it is now impossible to store user related or other sensitive data on servers or cloud nodes provided by US American companies. Data privacy regulations in the EU would prohibit the use of such infrastructure. Even though there is a "safe harbor" treaty.

Re:No jurisdiction by FlyHelicopters · 2014-04-26 08:36 · Score: 1

Yes, but generally the FBI cannot go into an office in Ireland and physically take something, the local security forces would be correct in stopping them.

And I'd be shocked if MS's main server hubs are not guarded by real security forces.

Re:No jurisdiction by El_Muerte_TDS · 2014-04-26 08:47 · Score: 1

Except that the Microsoft servers in Ireland are owned by a different legal entity, Microsoft Ireland (or something), and not the US Microsoft.
It works for taxes... so it must work for other government thingies, right?

Re:No jurisdiction by Aighearach · 2014-04-26 08:48 · Score: 1

As an American it seems pretty obvious that if I deal with an Irish company, that company could be forced to release information about me or held for me in response to orders from Irish courts.

I'm surprised people are surprised by this, and it raises the question; with a user id that low, have you made it your whole life without turning to page 2 for the rest of stories about legal disputes? Do you really not read the whole newspaper? How could you not know, and yet somehow be a "nerd" in this age of globalization?

Re:Credibility by fnj · 2014-04-26 08:50 · Score: 1

It's the Evil Empire of today, baby, and it's going bankrupt just like the last Evil Empire did, and then we'll be rid of the fuckers. It's going to take time though.

Re:No jurisdiction by Aighearach · 2014-04-26 08:55 · Score: 1

A search warrant and a subpoena are radically different legal instruments.

This seems to be in the form, "they are different, therefore they are very different. They're so radically different they're not even exactly the same!"

If you have to stretch that far, it shows you're not confident in the level of difference. If it turns out that they're actually very similar, especially if the hypothetical subpoena is from a LEO, then the judge might reasonably weigh that difference against MS refusing to produce relevant information, and find that in the balance justice is better served by ordering the production of the evidence without a bunch of extra procedure. Especially if MS's defense is that they have a right to the information, but with a different legal device. Their defense, at face value, is claiming they won't be harmed in any way because they can just subpoena them for it anyways. The obvious implication between the lines is that they will try not to comply with the subpoena.

Re:Actually the rich are losing in this case ... by Aighearach · 2014-04-26 09:02 · Score: 1

Tell me again, which US Prosecutor is it with a $3T budget?

Re:Spanish Civil Law? by Kernel+Kurtz · 2014-04-26 09:28 · Score: 1

Normally don't respond to ACs but America also thinks it can prosecute anyone, anywhere for committing a crime against American citizens.

Spain thinks the same for crimes committed against Spanish citizens.

The issue is 'control' by Bruce66423 · 2014-04-26 10:10 · Score: 1

A subsidiary company has a separate board of directors. It is the task of those directors to run the company in the interests of the shareholder, in accordance with local law. In this case, given that the company is subject to European Data Protection legislation, it would be for the local directors to refuse to obey the court order - and invite MS USA to sack them at an AGM. By the time the AGM comes along, there's a good chance that either the Irish courts will have got involved, or the US government will realise that the enforcement of this will ensure that NOONE uses American companies for any purpose, and that the non-American alternative to Google and MS will gain market share....

Re:No jurisdiction by Frobnicator · 2014-04-26 10:25 · Score: 1

Not at all.

One says "You are not to be trusted, we are taking everything into our possession and searching it ourselves." The other says "You are able to provide the materials, do so."

Read the article and the released ruling. The unspecified agency requested and received legal demand to force their way into an Irish facility and seize their computers.

In some ways I would like to see the (currently unspecified) government agency attempt to execute the warrant. They will have US forces use force to invade a facility in Ireland, staffed by the Irish, presumably with Irish security guards and Irish police being called. The actions would immediately turn this from a US-specific argument into an international conflict. Could be fun to watch it play out.

--
//TODO: Think of witty sig statement

Americans vs. Russians by msobkow · 2014-04-26 11:11 · Score: 1

The Americans like to complain about Russia's "invasion" of Crimea, and claim that it's a power grab.

But with this decision, the judge is trying for a GLOBAL power grab the likes of which the world has never seen.

Quite frankly, the US judge and administration can go fuck themselves. YOU ARE NOT THE WORLD.

--
I do not fail; I succeed at finding out what does not work.

Re:Spanish Civil Law? by Kalriath · 2014-04-26 11:46 · Score: 1

Crimes against humanity can always be prosecuted. By the ICC if necessary.

--
For a site about things like basic rights, Slashdot users sure do like to censor "dissent".

Re:Hello world! by Kalriath · 2014-04-26 12:06 · Score: 1

The number of countries that had to change their own laws to permit their banks to previously-illegally hand over data to the IRS under that law is staggering. All because the US government included an enforcement clause allowing them to seize ("tax") essentially 30% of any foreign bank's US holdings if they withheld any data from the IRS.

And to think, this was all in aid of making sure US citizens with no remaining link to the US barring a passport continue to pay US taxes to a government that doesn't represent them any more. Oh, and don't bother trying to renounce your citizenship. They can just ignore you.

I'm surprised any business risks having US presence with such a hostile government.

--
For a site about things like basic rights, Slashdot users sure do like to censor "dissent".

More than meets the eye? by sim2com · 2014-04-26 15:01 · Score: 1

This is so out of the ordinary that I am forced to come out with a conspiracy theory. I mean... we are talking of a certain country's court granting a "search warrant" for data stored in another country... this is pretty hard to swallow under any normal circumstances. My conspiracy theory follows... 1) The Irish police knows their courts cannot (for some reason) grant a subpoena to obtain the data they want. If a subpoena is impossible, then a search warrant would definitely be out of the question. 2) To circumvent the legal barrier to their investigation, they ask their American counterpart to request an American court for a search warrant (which they figured an American court will grant). Granting a search warrant is one thing, performing the actual search in another country is another issue. 3) Since directly executing the search warrant is legally impossible (even if legally granted), the American LEO can asks the Irish LEO to perform the search on its behalf based on existing treaties for law enforcement agencies to help each other in crime investigation. 4) The end result is the Irish police can get what they want even if their own courts cannot legally grant them the power to get the data they want. I can be dead wrong, of course, but for some reason, this case looks and smells fishy. If my theory is correct, is this being done with the full knowledge and blessing of the Irish courts? (This is possible because an Irish court may want to assist the Irish police, but the court's hands are legally tied by precidence). I wonder how the Irish people will feel?

Re:US Court did *not* say corporations are people by drnb · 2014-04-26 16:23 · Score: 1

Amusingly enough, "corporation" comes from latin word meaning a "group of people"... so where's the difference?

Latin is not to be taken literally in modern english. For example to decimate does not mean we will kill 10%. :-)

data ownership needs to change by samantha · 2014-04-26 19:16 · Score: 1

It is data about a person, in many cases it is literally the documents, calls, emails, tweets, IMs of people to people. That clearly belongs to the persons themselves, not to some company that wrote an app used to interact with that data or the companies providing the pipes for it to travel across. So that it is an American company really has nothing to do with it if we see it from the logical point of view of who the data belongs to. If it belongs to a European then it is government by European law. People are also confused about cloud storage and data center storage of information. Storage is not ownership.

Re:Hello world! by Ihlosi · 2014-04-26 21:15 · Score: 1

I'm surprised any business risks having US presence with such a hostile government.

Businesses are in fact taking the second option: If they don't do business with US persons, they can mostly ignore FATCA. Try opening a stock market account as a US person in a foreign country - most financial institutions will probably refuse you.

Sigh by Old+Aylesburian · 2014-04-26 21:34 · Score: 1

Yet another example of attempted USA extraterritorialism.

Jurisdictional creep by Leofcwen · 2014-04-27 04:22 · Score: 1

I wonder how the US would take it if a judge in another country made use of that claim for their benefit? It might be claimed that because company X chose to operate in their jurisdiction they accepted their jurisdictional boundaries. Various governments have already claimed jurisdiction in other countries for years, which is why they may claim tax on money earned by people working abroad, even though they may have done none of that work in that country...

Re:No jurisdiction by Mabhatter · 2014-04-27 04:32 · Score: 1

but the way email search warrants are enforced is more like a supeona. They COMPEL the EMPLOYEES IDENTIFIED to turn over emails. While this is handled by system administrators, the LAW is focused on the employee and which chair they sit in. So even if you are using email hosted in Iraq, you ACCESSED those emails from your desk in New York and the government expects you to ACCESS those emails again and provide them to the court. The fact that they are in another country is irrelevant.

Consider if you owed somebody money on a car. Sure you could drive the car to Canada where that company cannot go. But the Legal contract you signed was in the USA so they can just lock you in jail for contempt until you tell somebody to Canada and get the car to fulfill the contract. This is a similar ruling. There's nothing "new" legally here other than you can't hide behind a foreign email server.

Re:Trend of Anti-Americanism by US government by Mabhatter · 2014-04-27 04:42 · Score: 1

no they don't. It means they have to have SEPARATE NETWORKS if they want separate protection. In this case an admin from Redmond clearly has ACCESS to those servers in Dublin. So those emails are "controlled" by the US company. The article is unclear on where the CUSTOMER in this case is coming from. I'm thinking that the CUSTOMER is PAYING Microsoft USA to host their email and those just happened to be in Ireland. Microsoft USA is taking the money, so they need to provide the data to the court.

If you want data in other countries to be protected you cannot ACCESS IT from the USA.

Re:Credibility by Maritz · 2014-04-27 07:22 · Score: 1

I have many big problems

You could have stopped here; I think on the whole it's more coherent, and certainly more factual.

--
I do not want your cheap brainburning drugs. They are useless for work. And I am a working man today.

Re:It's all legal by sumdumass · 2014-04-27 08:53 · Score: 1

I don't disagree, i was just making the point that reprehensable and unethical does not neccesarily translate to illegal. If you think that kind of behavior needs to stop, the tax code needs changed. We don't need to punish the companies, just remove the incentives for doing it. That can be with removing tax breaks or lowering taxes or a combination of those as well as other things.

And yes, lowering taxes is a viable option when it means collecting taxes hidden in offshore investments or which is alreaady being paid to foreign governments.

M$ is in a US jurisdiction... by metaforest · 2014-04-27 16:49 · Score: 1

So if they can legally access the data stored on the Irish servers, they must produce that information.

This is really simple:

One cannot refuse a court ordered demand for documents just because those documents are stored in safe deposit box in Switzerland. If the person in possesion of the deposit box key is before a US court, they must produce the documents stored in that Swiss bank, as ordered, come hell or high water.
(IANAL) but this is just common sense. Is M$ Legal really this stupid?

Re:No jurisdiction by mr_mischief · 2014-04-28 01:50 · Score: 1

Microsoft is a US company. Microsoft can't relieve itself of US jurisdiction by telling the judge "oh, sorry, we, here in the US, moved that data offshore."

Slashdot Mirror

American Judge Claims Jurisdiction Over Data Stored In Other Countries

136 of 226 comments (clear)