DEPARTMENT OF HOMELAND SECURITY Border and Transportation Directorate

Similar documents
COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER. to the DEPARTMENT OF HOMELAND SECURITY

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER U.S. CUSTOMS AND BORDER PROTECTION DEPARTMENT OF HOMELAND SECURITY

GAO HOMELAND SECURITY. Key US-VISIT Components at Varying Stages of Completion, but Integrated and Reliable Schedule Needed

Case 1:17-cv Document 1 Filed 07/19/17 Page 1 of 15 IN THE UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

EPIC seeks records related to alternative screening procedures in CBP s biometric entry/exit program. 1

a GAO GAO HOMELAND SECURITY Planned Expenditures for U.S. Visitor and Immigrant Status Program Need to Be Adequately Defined and Justified

CRS Report for Congress

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER. to the DEPARTMENT OF HOMELAND SECURITY DATA PRIVACY AND INTEGRITY ADVISORY COMMITTEE

United States Government Accountability Office GAO. Report to Congressional Committees

Arrival and Departure Information System Information Sharing Update

BEFORE THE DEPARTMENT OF HOMELAND SECURITY WASHINGTON, D.C.

Immigration: Globalization. Immigration Practice Group Lex Mundi March 4-7, Rome, Italy

US-VISIT Program, Increment 2 Privacy Impact Assessment

Recent Privacy Developments in the United States, Particularly with Respect to Travelers Using Air Transport

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER THE DEPARTMENT OF HOMELAND SECURITY. [Docket No. DHS ]

Fact Sheet: Electronic System for Travel Authorization (ESTA)

Approximately eight months after the terrorist

Achieving Interoperability

COMMENTS OF THE ELECTRONIC FRONTIER FOUNDATION

EUROPEAN PARLIAMENT COMMITTEE ON CIVIL LIBERTIES, JUSTICE AND HOME AFFAIRS

American Immigration Lawyers Association. 918 F Street, N.W. Washington, D.C (202) November 1, 2004

Comments on Border Crossing Information System of Records Notice 73 Fed. Reg Docket No. DHS

8 USC NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

GAO. VISA SECURITY Additional Actions Needed to Strengthen Overstay Enforcement and Address Risks in the Visa Process

Frequently Asked Questions: Electronic System for Travel Authorization (ESTA)

DEPARTMENT OF HOMELAND SECURITY BUREAU OF CUSTOMS AND BORDER PROTECTION. 8 CFR PARTS 212, 214, 231 and 233 (CBP DEC ) RIN 1515-AD36

Privacy Impact Assessment. April 25, 2006

8 USC 1365b. NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

CRS Report for Congress

Office of Inspector General

Going with the flow. Helping border agencies to exploit technology convergence to gain consistent, comprehensive and automated border management

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER. to the DEPARTMENT OF HOMELAND SECURITY U.S. CUSTOMS AND BORDER PROTECTION

IN THE UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

Privacy Act of 1974; Department of Homeland Security, U.S. Customs and Border

Nonimmigrant Overstays: Brief Synthesis of the Issue

What is US-VISIT? United States Visitor and Immigrant Status Indicator Technology (US-VISIT) Biometric Services

GENERAL AVIATION APPLICATION

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER THE DEPARTMENT OF HOMELAND SECURITY. [Docket No. DHS ] February 27, 2012

Case 3:19-cv SK Document 1 Filed 01/17/19 Page 1 of 11

GAO. VISA WAIVER PROGRAM Limitations with Department of Homeland Security s Plan to Verify Departure of Foreign Nationals

Special Report - House FY 2013 Department of Homeland Security Appropriations and California Implications - June 2012

BEFORE THE EUROPEAN COMMITTEE ON LEGAL COOPERATION OF THE COUNCIL OF EUROPE PLENARY MEETING OCTOBER 11-14, 2010

GENERAL AVIATION ACCESS APPLICATION

UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

VISA INFORMATION FOR J-1 EXCHANGE VISITOR STUDENTS

UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

Report for Congress. Border Security: Immigration Issues in the 108 th Congress. February 4, 2003

GAO. HOMELAND SECURITY: Prospects For Biometric US-VISIT Exit Capability Remain Unclear

32440 Federal Register / Vol. 73, No. 111 / Monday, June 9, 2008 / Rules and Regulations

INSTRUCTIONS FOR FILLING OUT THE BOISE AIR TERMINAL - APPLICATION FOR NON SIDA AOA ACCESS BADGE. Revised October 19, 2016

NON SIDA VEHICLE ACCESS BADGE/GA

REDMOND MUNICIPAL AIRPORT INITIAL ID APPLICATION AOA ID

DEPARTMENT OF HOMELAND SECURITY. U.S. Customs and Border Protection [ ] Agency Information Collection Activities:

CRS Report for Congress

DEPARTMENT OF HOMELAND SECURITY. 8 CFR Part 217. Docket Nos. USCBP and USCBP CBP Dec. No RIN 1651-AA72 and RIN 1651-AA83

GEORGIA DEPARTMENT OF CORRECTIONS Standard Operating Procedures

Immigration 101. USCIS overview. AIFC Prescott, Arizona

Testimony and Statement for the Record of. Marc Rotenberg President, EPIC. Hearing on. Employment Eligibility Verification Systems (EEVS) Before the

CRS Report for Congress

CORPORATE HEADQUARTERS

Policy Framework for the Regional Biometric Data Exchange Solution

Global Entry Program. Information Guide

AIRPORT SECURITY IDENTIFICATION BADGE APPLICATION

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER. to the DEPARTMENT OF HOMELAND SECURITY U.S. CUSTOMS AND BORDER PROTECTION

Schedule of Fees for Consular Services, Department of State and Overseas. SUMMARY: Further to the Department s proposed rule to amend the Schedule of

GAO. BORDER SECURITY Joint, Coordinated Actions by State and DHS Needed to Guide Biometric Visas and Related Programs

Instructions for Employment Eligibility Verification

ID ACCESS BADGE APPLICATION FOR AOA and NON-SIDA

Public Consultation on the Smart Borders Package

Case 1:06-cv CKK Document 31 Filed 05/18/09 Page 1 of 7 IN THE UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

ICE. I.C.E. Under D.H.S. Customs and INS Investigations DRO

13462/18 BN/cr 1 JAI.1 LIMITE EN

ST. CLOUD REGIONAL AIRPORT FINGERPRINTING AND BADGE APPLICATION

TESTIMONY OF. JOHN WAGNER Acting Deputy Assistant Commissioner Office of Field Operations

Public Consultation on the Smart Borders Package

ST. CLOUD REGIONAL AIRPORT FINGERPRINTING AND BADGE APPLICATION

COMMENTS OF THE ELECTRONIC PRIVACY INFORMATION CENTER. to the DEPARTMENT OF HOMELAND SECURITY

CATHOLIC LEGAL A IMMIGRATION INC. September 18, 2009

Mykonos Ports EU FastPass Project IISA 2014 Chania

a GAO GAO HOMELAND SECURITY First Phase of Visitor and Immigration Status Program Operating, but Improvements Needed

The Legal Workforce Act 1 Section-by-Section

Opinion 07/2016. EDPS Opinion on the First reform package on the Common European Asylum System (Eurodac, EASO and Dublin regulations)

Case 1:14-cv KMW Document 24 Entered on FLSD Docket 04/10/2015 Page 1 of 9

Instructions for Employment Eligibility Verification

Users Guide to the Automated Gates (For Foreign Nationals)

U.S. Citizenship and Immigration Services Transformation

Toward More Effective Immigration Policies: Selected Organizational Issues

for fingerprint submitting agencies and contractors Prepared by the National Crime Prevention and Privacy Compact Council

INFRASTRUCTURE, SAFETY, AND ENVIRONMENT

PRESENTATION TITLE. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Job Aid: Images of Documents Typically Used by Lawfully Present Immigrants

Marc R. Rosenblum. MPI Webinar July 30, E-Verify: Analysis and Recommendations for Reform

Case 1:11-cv JDB Document 3 Filed 02/17/12 Page 1 of 7 UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

IN THE ILLINOIS SUPREME COURT

DHS Biometrics Strategic Framework

August 25, Comments on Non-Federal Entity Data System (NEDS) System of Records Notice (SORN) [73 Fed. Reg ] Docket No.

Instructions for Employment Eligibility Verification

Immigration Spotlight

Agency Information Collection Activities; Revision of a Currently Approved Collection:

Section-by-Section Summary of the February 23, 2006, Chairman s Mark of the Comprehensive Immigration Reform Act of 2006

Transcription:

DEPARTMENT OF HOMELAND SECURITY Border and Transportation Directorate Docket No. DHS-2007-0002 Interim Rule United States Visitor and Immigrant Status Indicator Technology Program COMMENTS OF THE ELECTRONIC PRIVACY INFROMATION CENTER By notice published August 31, 2004, the Department of Homeland Security ( DHS ) published an interim rule expanding and further defining the population affected by the United States Visitor and Immigrant Status Indicator Technology ( US-VISIT ) Program. 1 According to the interim rule, US-VISIT is an integrated, automated entryexit system that records the arrival and departure of aliens; verifies aliens identities; and authenticates aliens travel documents through comparison of biometric identifiers. 2 The interim rule expands the program to the 50 most highly trafficked land border ports of entry in the United States, and further defines the population of aliens who are required to provide biometric identifiers and other identifying information. 3 In response to DHS s expansion of US-VISIT, the Electronic Privacy Information Center ( EPIC ) calls on the agency to take definite steps to guard against the dangers of mission creep, to take additional factors into account as it determines the effectiveness of the US-VISIT exit pilot programs, and to recognize a right of judicial review for individuals adversely affected by the system. 1 Interim Rule, 69 Fed. Reg. 53317 (proposed Aug. 31, 2004). 2 Id. at 53318. 3 Id.

Introduction On January 5, 2004, DHS published an interim rule authorizing the first phase of US-VISIT. 4 It required travelers using non-immigrant visas to provide fingerprints, photographs, or other biometric identifiers upon arrival at, or departure from the United States at air and sea ports of entry. 5 The program s entry-exit system is based upon a vast network of databases containing alien arrival and departure data accessible from machine-readable visas, passports and other travel documents. 6 Since January 5, 2004, aliens entering the U.S. on a nonimmigrant visa at designated air and seaports have been required to submit fingerprints and photographs. 7 These biometrics are used for identity and background checks. 8 The information contained within US-VISIT is used not only in furtherance of the program itself, but is also shared with other law enforcement systems. 9 I. DHS Must Take Measures to Ensure Mission Creep Does Not Occur Within US-VISIT In its previous comments on US-VISIT, EPIC urged DHS not to expand the use of biometric identifiers beyond the purpose for which they were initially collected. 10 This issue remains critically important because the interim rule reflects DHS s intention to disclose information maintained within US-VISIT to a broad variety of law enforcement entities whose activities may bear no relationship to US-VISIT s goals. According to the US-VISIT Increment 2 Privacy Impact Assessment, US-VISIT collects information about travelers to determine whether an individual: 4 Interim Rule, 69 Fed. Reg. 468 (proposed Jan. 5, 2004). 5 69 Fed. Reg. at 53318. 6 Id. at 53319; 8 U.S.C. 1731(a)(2) (2004). 7 69 Fed. Reg. at 53320. 8 Id. 9 Id. at 53319. 10 Comments of the Electronic Privacy Information Center, Docket No. BTS 03-01, available at http://www.dhs.gov/dhspublic/interapp/editorial/editorial_0440.xml (hereinafter EPIC Comments ). 2

Should be prohibited from entering the U.S.; Can receive, extend, change, or adjust immigration status; Has overstayed or otherwise violated the terms of their admission; Should be apprehended or detained for law enforcement action; and Needs special protection/attention (e.g., Refugees). 11 According to the interim rule, however, information collected and maintained within US- VISIT could be used for much broader purposes. The interim rule states that US-VISIT information may be disclosed to: other law enforcement agencies at the federal, state, local, foreign, or tribal level, who, in accordance with their responsibilities, are lawfully engaged in collecting law enforcement intelligence information and/or investigating, prosecuting, enforcing, or implementing civil and/or criminal laws, related rules, regulations, or orders. 12 The US-VISIT Increment 2 Privacy Impact Assessment explains that such broad sharing helps DHS and other law enforcement agencies to work more cooperatively and effectively in achieving their national security and law enforcement objectives. 13 Toward this end, DHS will provide the FBI direct access to US-VISIT information with only Memoranda of Understanding in place to minimize any privacy impacts. 14 Though DHS provides in the interim rule an extensive explanation of the legal basis for US-VISIT, nothing seems to authorize widespread disclosure of data for purposes wholly unrelated to the entry-exit system s goals. 15 11 Department of Homeland Security, US-VISIT Program, Increment 2 Privacy Impact Assessment at 3 (Sept. 14, 2004) at http://www.dhs.gov/dhspublic/interweb/assetlibrary/privacy_pia_usvisit.pdf. 12 69 Fed. Reg. at 53324. 13 US-VISIT Program, Increment 2 Privacy Impact Assessment at 5. 14 Id. 15 69 Fed. Reg. at 53319-53320. 3

Acknowledging the danger of mission creep within US-VISIT, the interim rule states that DHS recognizes the importance of privacy rights and will further define the purpose of US-VISIT and the limitations on data collection, maintenance, and use through updates to the Privacy Impact Assessment. 16 EPIC urges the agency to detail and pursue clear policies on data collection and use limitations in a revised Privacy Impact Assessment as soon as possible. Since January 2003, DHS has been collecting personal information and biometric identifiers of thousands of travelers entering this country every day. Given the extensive sharing of US-VISIT information between DHS and other law enforcement entities, there is a high likelihood that this information will be used for purposes beyond the legal authority by which US-VISIT was created. To further the important objective of guarding against mission creep, EPIC again urges DHS to consider the application of international privacy standards to the collection and use of personal information obtained for non-u.s. citizens. The international community has recognized that all individuals have rights in their personal information, regardless of nationality. As discussed in EPIC s previous comments, US-VISIT s collection and use of personal information of non-u.s. citizens violates the principles of the OECD Privacy Guidelines of 1980, 17 the United Nations Guidelines for the Regulation of Computerized Personal Files of 1990, 18 the European Union Data Protection Directive, 19 and the Universal Declaration of Human Rights, 20 to which the 16 69 Fed. Reg. at 53324. 17 Organization for Economic Cooperation and Development, Guidelines Governing the Protection of Privacy and Trans-Border Flow of Personal Data, OECD Doc. 58 final (Sept. 23, 1980), art. 3(a), reprinted in M. ROTENBERG ED., THE PRIVACY LAW SOURCEBOOK 2003, 330 (EPIC 2003) (hereinafter PRIVACY LAW SOURCEBOOK ). 18 United Nations, G.A. Res. 45/95, Guidelines for the Regulation of Computerized Personal Files (Dec. 14, 1999) prin. 5, reprinted in PRIVACY LAW SOURCEBOOK at 368. 19 Parliament and Council Directive 95/46/EC of 24 October 1995 on the Protection of Individuals with 4

United States is an original signatory. 21 A number of countries, including Brazil, Japan, and China, 22 have objected to DHS s collection and use of biometric and personal information about their citizens. As it expands US-VISIT, DHS should recognize the danger of continuing to disregard international human rights standards, and strive to align its practices with the principles articulated by international guidelines for protecting privacy. As a final matter, EPIC commends DHS s expressed commitment to continually evaluate the need to store certain types of data and adjust the system accordingly. 23 However, EPIC reiterates the importance of retaining only the information absolutely necessary to carry out the narrow objectives of the program. II. DHS Must Evaluate the Accuracy and Security Implications of the US-VISIT Exit Pilot Programs DHS has implemented US-VISIT exit pilot programs at Baltimore-Washington International Airport and the Miami Seaport, which are testing different methods of processing to determine the most accurate and efficient collection of information from aliens departing from the United States. 24 These programs implement several methods of data collection, including self-serve kiosks and hand-held scanners. 25 According to the interim rule, the programs will be evaluated based on: Regard to the Processing of Personal Data and on the Free Movement of Such Data, reprinted in PRIVACY LAW SOURCEBOOK at 371. 20 United Nations, Universal Declaration of Human Rights, G.A. Res. 217A(III), U.N. GAOR, 3d Sess., U.N. Doc. A/810 (1948), art. 12, reprinted in PRIVACY LAW SOURCEBOOK at 318. 21 EPIC Comments, supra at 3-4. 22 See Larry Rohter, Brazil Seeks to Bypass Fingerprinting, NY Times, Jan. 14, 2004, at A9; Japan to Demand U.S. Erase Fingerprints, Photos After Visitors Leave Country, Mainichi Daily News, Sept. 29, 2004, available at http://www12.mainichi.co.jp/news/mdn/search-news/916107/us2dvisit-0-1.html; FM: US Urged Not to Fingerprint Chinese, ChinaDaily.com, March 24, 2004, available at http://www.chinadaily.com.cn/english/doc/2004-03/24/content_317687.htm. 23 69 Fed. Reg. at 53324. 24 Id. at 53320. 25 Id. 5

(1) The cost of each option, including the impact on staffing and necessary personnel; (2) how well the alternative supports all necessary aliens being processed and requisite law enforcement functions; and (3) how conducive the alternative is for tourist and commercial travel. 26 It is hard to imagine how the most accurate and efficient system can be determined by this set of criteria without any consideration of the rate of error associated with each system. Use of biometrics carries a risk of misidentification both false positives and false negatives. 27 DHS should also consider the systems accuracies as the agency evaluates the best way to collect such data. The interim rule also suggests that DHS is not considering security concerns as part of its evaluation. A large database containing personal information along with biometric identifiers is always subject to dangers of abuse, unauthorized access, and mission creep. DHS has stated a commitment to protecting the privacy interests of those affected by US-VISIT. It is important for the agency to follow through on this commitment by ensuring that it methods of biometric data collection are secure. III. DHS Should Recognize a Right of Judicial Review For Individuals Adversely Affected by US-VISIT EPIC commends DHS for its decision to establish a three-step redress process through which individuals may dispute the accuracy of information contained within the US-VISIT system. 28 EPIC notes that the Privacy Act of 1974 provides rights to access and correct information only to U.S. citizens and permanent residents, and that individuals subject to US-VISIT generally do not have such rights under the law. 29 However, in the interest of creating the most privacy-friendly system possible, EPIC 26 Id. at 53321. 27 See generally Electronic Privacy Information Center, Biometric Identifiers, at http://www.epic.org/ privacy/biometrics (last updated March 30, 2004). 28 69 Fed. Reg. at 53332-53333. 29 5 U.S.C. 552a(a)(2). 6

strongly urges DHS to consider providing a right to judicial review if an individual affected by US-VISIT finds the appeals process established by DHS unsatisfactory. A determination using US-VISIT information can have an immense impact on the lives of those subject to the system. Non-immigrant visitors may not have rights consistent with those provided by the Privacy Act, but ideally should have an avenue of appeal to a third party independent of the agency responsible for maintaining the system. Conclusion For the foregoing reasons, EPIC believes that DHS, in its continued implementation of US-VISIT, must further protect against the dangers of mission creep, evaluate the accuracy and security of its pilot program, and recognize a right of judicial review for individuals adversely affected by the program. Respectfully submitted, Marc Rotenberg Executive Director David L. Sobel General Counsel Marcia Hofmann Staff Counsel Paul Jones IPIOP Law Clerk ELECTRONIC PRIVACY INFORMATION CENTER 1718 Connecticut Avenue, N.W. Suite 200 Washington, DC 20009 (202) 483-1140 7

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback