Just in case you needed more proof of the iron law of data collection, consider this McClatchyDC story about how almost 5000 people had their personal information swept up and shared with nearly 30 federal agencies because they ordered a book.
The book was about how to beat lie detectors and the government was not amused. Apparently they were a little confused about the First Amendment and worried that maybe some of their employees had used the information to beat their employment polygraph tests. Let’s put aside, for the moment, that the diversion techniques—let alone polygraphs themselves—have yet to be proven effective or reliable.
Many of the 4,904 people on the list had nothing to do with the Federal Government so you would think their names would have been deleted and their personal information expunged. Just kidding. Of course you wouldn’t think that and, of course, their information wasn’t deleted. Instead, the government has decided to hold onto it “just in case.” To understand how illegal this probably is, consider the rationale for the Department of Defense’s retention of the data: the DOD Inspector General says that they can retain information on non-DOD personnel “when their activities have directly threatened the functions, property or personnel of the Department of Defense.” When they have to stretch the facts this far, you know you’ve caught them with their hands in the cookie jar—remember, we’re talking about purchasing a perfectly legal book.
There’s little doubt that this data will be further abused and it’s entirely likely that it will find new uses, just as the iron law demands.