A Justice Department inspector general’s report shows that for seven years the Federal Bureau of Investigation violated statutory law designed to restrict the agency’s surveillance power. During this period, the agency sought individuals’ records under the business records provision of the PATRIOT Act without adopting proper “minimization procedures” to protect privacy of US persons.
The FBI’s use of orders under Section 215 between 2007 and 2009 was examined by the inspector general. Whether the FBI complied with recommendations the inspector general made back in March 2008.
Section 215 makes it possible for the government to obtain “any tangible things,” such as books, records and other items from a business, organization or entity. They are supposed to be “relevant” to an “authorized investigation to obtain foreign intelligence information not concerning a US person or to protect against international terrorism or clandestine intelligence activities.” But the standard for relevance is very low.
The Section 215 provision is set to expire on June 1, and, as Senator Rand Paul comprehensively outlined while he held the Senate floor for over ten hours, there are many reasons to not reauthorize the provision. This report, which was completed eleven months ago but is dated May 2015, adds substantially to those reasons.
Under the PATRIOT Improvement and Reauthorization Act of 2005, the law required that certain “minimization procedures” be adopted to ensure the handling of US persons’ data was done appropriately. It was not until March 7, 2013, that the Attorney General and the Justice Department officially incorporated these procedures into requests for records. (Marcy Wheeler points out the Justice Department did not actually fully comply with legally required procedures until after NSA whistleblower Edward Snowden disclosed information.)