Lara YeretsianCould Contact Tracing in the COVID-19 Era Become Unreasonable Search?
People should be very concerned about the privacy implications of these programs, which seek to gather personal information such as health and location data.
May 18, 2020 at 10:01 AM
5 minute read
As states across the country get back to business, scientists and public health professionals are cautioning that testing and contact tracing must be in place if we have any hope of preventing future outbreaks of the coronavirus. Countries in Europe and Asia have adopted programs to identify potential carriers and track their interactions, but the United States is just beginning to look at how a successful tracing program can be implemented and managed.
In a nutshell, the point of contact tracing is to identify where people who've tested positive for COVID-19 go and with whom they've interacted. Tracing necessarily implicates information of more than one person. Once the subject of tracing has opted in and agreed to be tracked, they've opened the door for friends, colleagues and casual acquaintances to be on the government's radar screen.
It sounds like something out of 1984 or Brave New World. People should be very concerned about the privacy implications of these programs, which seek to gather personal information such as health and location data. On April 30, Senators Roger Wicker (R-Miss.), John Thune (R-S.D.), Jerry Moran (R-Kan.), and Marsha Blackburn (R-Tenn.) introduced legislation that they claim "would provide all Americans with more transparency, choice, and control over the collection and use of their personal health, geolocation, and proximity data."
The COVID-19 Consumer Data Protection Act (CCDPA) covers "precise location data" and "proximity data," which the bill defines as a person's past or present physical location, and it would require companies to disclose to consumers at the point of collection how their data will be handled, to whom it will be transferred, and how long it will be retained. Companies would be obligated to delete or de-identify all personally identifiable information when it is no longer being used for the COVID-19 public health emergency.
It sounds good, but if you're a criminal defendant, it could be horrific. You could find yourself kissing rights guaranteed to you under the constitution goodbye. Think of all the ways your personal information could be used, starting with providing your exact location to law enforcement when it lacks probable cause for a search warrant. It's no stretch to envision searches and seizures that would otherwise run afoul of Fourth Amendment protections arising out of contact tracing.
What's to stop the government from using your geolocation data to build probable cause, to find and arrest you when they would not otherwise have had that ability? What's to prevent police from tracking you through another party's proximity information? How easy could it be to use your information to track down cohorts, individuals for whom there was no probable cause or reasonable suspicion? Location data could suddenly provide law enforcement with carte blanche to go after suspects in contravention of centuries of established legal principle. When society stops protecting the rights of those suspected of crimes, it stops protecting everyone's rights.
The CCPA, as drafted, would apply only to companies subject to Federal Trade Commission regulation, as well as not-for-profit entities and common carriers. It does not cover governmental entities, such as police departments and prosecutors. It authorizes state attorneys general to enforce its provision and provides no private right of action.
Who will monitor how your information is collected, and who will ensure that it is used only for pandemic-related purposes? Once the information is no longer needed for the public health emergency, who will confirm that it has been de-identified or destroyed? How will your interactions and connections be forgotten?
Traditional tracing methods involve manually recording who has tested positive and everyone they've been in contact with in recent weeks. Technology companies, including Google and Apple, have developed software applications to help governments track the spread of COVID-19 using Bluetooth technology. The ramifications of these developments are frightening. Just as with DNA data—which has been repurposed from ancestry sites to assist with cold-case criminal investigations—geolocation and proximity data could become a never-ending resource for law enforcement.
We've unwittingly and unwarily given up claims to personal privacy simply by virtue of being part of the cell-phone, laptop, tablet, cloud-driven world we live in. It will be difficult to unwind the spool into which we've happily entered. But there is a way to remove blinders and look carefully at what is happening in this moment. It is absolutely critical that we arrest and reverse the spread of the coronavirus, but our constitutional rights don't need to become the next victim of the pandemic. Any data privacy protections must include unconditional restraints on government's use of our personal information.
Lara Yeretsian is a Los Angeles criminal defense attorney and principal of Yeretsian Law. She worked on the legal teams defending Michael Jackson, Scott Peterson and other high-profile criminal prosecutions.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
'Nothing Is Good for the Consumer Right Now': Experts Weigh Benefits, Drawbacks of Updated Real Estate Commission Policies
FTC Issues Final Rule Banning Most Noncompetes, but Immediate Legal Challenges Ensue
6 minute read
Calif. Employers On Tight Deadline to Comply With New Workplace Violence Prevention Law
7 minute readTrending Stories
- 1Gibson Dunn Sued By Crypto Client After Lateral Hire Causes Conflict of Interest
- 2Trump's Solicitor General Expected to 'Flip' Prelogar's Positions at Supreme Court
- 3Pharmacy Lawyers See Promise in NY Regulator's Curbs on PBM Industry
- 4Outgoing USPTO Director Kathi Vidal: ‘We All Want the Country to Be in a Better Place’
- 5Supreme Court Will Review Constitutionality Of FCC's Universal Service Fund
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
