A social media and phone surveillance system ICE bought access to is designed to monitor a city neighborhood or block for mobile phones, track the movements of those devices and their owners over time, and follow them from their places of work to home or other locations, according to material that describes how the system works obtained by 404 Media.
Commercial location data, in this case acquired from hundreds of millions of phones via a company called Penlink, can be queried without a warrant, according to an internal ICE legal analysis shared with 404 Media. The purchase comes squarely during ICE’s mass deportation effort and continued crackdown on protected speech, alarming civil liberties experts and raising questions on what exactly ICE will use the surveillance system for.
“This is a very dangerous tool in the hands of an out-of-control agency. This granular location information paints a detailed picture of who we are, where we go, and who we spend time with,” Nathan Freed Wessler, deputy project director of the American Civil Liberties Union’s (ACLU) Speech, Privacy, and Technology Project, told 404 Media.
We need to be more careful than that, no one wants to end up on a list when a non-profit is required to show its books.
Should be a very private and affordable for-profit with some reasonable way to keep payments off the books
Are nonprofits required to track who they receive donations from? I could be wrong, but I don’t think they are. They have to have financial records, but I don’t think that means maintaining a donor list.
It depends on the details of the non-profit. In the circumstances I see, you’re not required to make it public, but you ARE required to provide the list to the government.
I can say, If you started a non-profit and used it to track ice, they most certainly would obtain a list of your doners if they had to go and take it from the hands of your payment provider. Even most crypto isn’t fully safe because of banking reporting required
That’s a good point, they’d definitely just subpoena your bank records. If crypto is used properly, it can be nigh impossible to trace, though. Bitcoin isn’t very private at all on the blockchain, but if you send over lightning network, my understanding is that it becomes effectively impossible to track, unless your adversary controls enough lightning network nodes to track the payment as it bounces between nodes. They wouldn’t need to control the whole path, but they would need to control nodes VERY close to origin and destination, ideally the adjacent nodes, and enough of those in the middle to be reasonably sure they can accurately follow the money. The lightning network doesn’t leave a detailed ledger behind, so only way to trace a payment is to be involved in its processing, which means controlling the nodes the money passes through on its way to the recipient.
Of course, that’s way too obscure and unknown for the vast majority of people, so I don’t see a nonprofit succeeding that way these days. Maybe if crypto actually does get mainstream, but that’s still a pretty big if.
Heh onion routing for bitcoin payments, that’s pretty neat. The receiver ends up hanging a bit in the wind.
Maybe it could be a steam game or something with pausible deniablilty
Actually, the way the payments are structured, no money moves AT ALL if ANYONE in the chain tries to back out. It maintains the trustless nature of crypto. I don’t recall the specifics of how it’s done, though.
No, hanging in the wind as being the receiver. Kinda like tor exit nodes can’t hide. Unlike tor exit nodes (well for the time being) you can get hit for recieving the money and paying for something deemed illegal wiht it.
Ah, I see what you mean. Yes and no. The receiver does need to somehow communicate the destination to the sender, I believe typically through an invoice of some sort. Been a long time since I kept up, so the details are getting hazy. Anyway, there are only two times that lightning network usage requires a publicly visible blockchain transaction: when you want to put coins on the lightning network and when you want to take them back off to the blockchain. You open a channel with a node basically saying “I’ll put X amount in this channel in if you’ll put in Y amount (one of them can be zero, i.e. send or receive only), and here’s a signed transaction you can publish on the blockchain to get your money back at any time.” Any time you make a transaction over the lightning network, you rewrite that cashout transaction so the balance shifts by however much you’re sending plus any fees you agree to pay, but you do it in such a way that you only really give them the signed transaction if they prove they’re gonna pass on what you want to send to the next node, and this process repeats with every node in the chain until everyone agrees to move the money.
All that to say there’s really no record of any transaction ever happening outside of however your balance changes between putting it on the network and taking it back off. There’s no record of who sent what, how many transactions it took, what path any transaction took to get there, nothing at all except initial and final balance. Now, this does mean that if the money is withdrawn, there’s evidence you’ve been paid, but not for what, by who, by how many people, over how many transactions, or a anything else but the final total amount from all transactions. If they just spent everything they received back over the lightning network, there’s effectively no real evidence that any real transactions ever occurred.
Of course, this hypothetical nonprofit is almost certainly going to be paying a company that wants US dollars. They’ll probably have to cash out in a highly traceable way, and actually buying the ICE data will require a highly traceable bank transfer or other conventional payment method. In that sense, you’re right, the nonprofit gets left exposed. But they could completely mask who sent money.