Feeds

EFF sues US over passenger data

Tell us more

Choosing a cloud hosting partner with confidence

The US Government faces a lawsuit demanding information about the controversial programme which forces airlines to disclose information about European travellers to the US.

The suit follows the Government's apparent refusal to give up information following a freedom of information request.

The Electronic Frontier Foundation (EFF), the digital rights group, has filed the case against the US Department of Homeland Security (DHS). The suit demands that the DHS release records about how collected data is handled, maintained, used, disclosed and secured.

The EU and the US agreed a controversial deal in 2004 which forced airlines to disclose information to the US. The European Parliament objected to the deal and the European Court of Justice (ECJ) ruled it illegal.

The ECJ's decision said that the previous agreement broke European rules on a technicality after the European Parliament had opposed it on grounds of substance. The substance of the deal was never tested by the ECJ, which made no further decision once it found the technical flaw in its implementation.

The EU and US then agreed a very similar deal which critics said granted the US even more power to gather and process data, but which the European Commission said gave it more control over data. That deal is an interim one, and a new agreement must be signed on a more permanent basis by next summer.

The deal means that 34 pieces of information about passengers gathered by airlines at the time of booking are automatically passed to US authorities before a plane even lands in the US.

The EFF is now seeking information about the handling of that data. "Travellers may give up a lot of personal information when they make flight reservations," said Marcia Hofmann, an attorney at the EFF. "Those travelling between Europe and the United States deserve to know who gets to see that data, how the information is protected, and whether those practices comply with EU law.

The EFF had previously asked for that information under the Freedom of Information Act, but the DHS failed to respond to their request, it said.

The case has been filed under the Freedom of Information Act in the District Court of the District of Columbia seeking access to records under the FOI Act.

Copyright © 2006, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Security for virtualized datacentres

More from The Register

next story
Spies, avert eyes! Tim Berners-Lee demands a UK digital bill of rights
Lobbies tetchy MPs 'to end indiscriminate online surveillance'
Inequality increasing? BOLLOCKS! You heard me: 'Screw the 1%'
There's morality and then there's economics ...
How the FLAC do I tell MP3s from lossless audio?
Can you hear the difference? Can anyone?
Google hits back at 'Dear Rupert' over search dominance claims
Choc Factory sniffs: 'We're not pirate-lovers - also, you publish The Sun'
While you queued for an iPhone 6, Apple's Cook sold shares worth $35m
Right before the stock took a 3.8% dive amid bent and broken mobe drama
4chan outraged by Emma Watson nudie photo leak SCAM
In the immortal words of Shaggy, it wasn't me us ... amirite?
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.