Microsoft Ordered To Hand Over Overseas Data to U.S. Law Enforcement -- Redmondmag.com

Microsoft Ordered To Hand Over Overseas Data to U.S. Law Enforcement

A magistrate judge ruled that search warrants for online overseas data do not function in the same manner as warrants for physical data stored out of the U.S.

By Chris Paoli
04/29/2014

In a first-of-its-kind ruling, a U.S. district court judge has ordered that Microsoft must provide customer e-mail data to U.S. law enforcement with a valid search warrant, even though the data is being stored in a Dublin, Ireland-based server.

U.S. Magistrate Judge James Francis in New York said that the company had no claim to challenge the previous search warrant for the customer data and said that warrants for electronic data differs from traditional warrants. ISPs cannot deny law enforcement access to information, even if stored overseas.

"Even when applied to information that is stored in servers abroad, an SCA Warrant does not violate the presumption against extraterritorial application of American law," wrote Francis in his ruling. "Accordingly, Microsoft's motion to quash in part the warrant at issue is denied."

Further, Francis stated that if law enforcement agencies were forced to coordinate with their foreign counterparts to obtain the data sought after, "...the burden on the government would be substantial, and law enforcement efforts would be seriously impeded."

In response, Microsoft said it disagreed with the magistrate judge and acknowledges that this is just the first step in the company's legal options. David Howard, corporate vice president and deputy general counsel for Microsoft said that the next step is to take Microsoft's challenge to a district and then eventually to a federal court of appeals.

"The U.S. government doesn't have the power to search a home in another country, nor should it have the power to search the content of email stored overseas," wrote Howard in a blog post.

Howard also disagreed that warrants for digital content should be treated differently and that the same channels law enforcement must go through to obtain physical data stored overseas should extend to data stored in overseas servers. "We just believe the government should have to follow the processes it has established for obtaining physical evidence outside the United States," said Howard.

Microsoft plans to seek review from a federal district judge on Friday.

About the Author

Chris Paoli (@ChrisPaoli5) is the associate editor for Converge360.

Featured

Microsoft Kills 30-Day Data Retention Policy for Copilot in Fabric

Microsoft this week announced several usability improvements coming to Copilot in Fabric in preparation of its general availability release later this year.
Using Microsoft Office to Build a Network Diagram 2

Now that we've set up our process, let's dig in with the actual execution.
Microsoft Graph 'Activity Logs' Feature Goes Live

Microsoft announced the general availability of the "activity logs" capability in Microsoft Graph, giving administrators more options to track user activity and identify patterns of potential misuse.
Fallout from Microsoft's 'Midnight Blizzard' Saga Hits Feds

When the Russian attack group Midnight Blizzard successfully breached Microsoft corporate e-mail accounts late last year, it apparently managed to steal U.S. government agency e-mails, too.
PowerShell Script Used in Phishing Attack May Be AI-Generated

A PowerShell script being used in a novel malware campaign may have been created by AI, according to security researchers at Proofpoint.