Google knew of data collection
Google’s harvesting of e-mails, passwords and other sensitive personal information from unsuspecting households in the United States and around the world was neither a mistake nor the work of a rogue engineer, as the company long maintained, but a program that supervisors knew about, according to new details from the full text of a regulatory report.
The report, prepared by the Federal Communications Commission after a 17-month investigation of Google’s Street View project, was released, heavily redacted, two weeks ago. Although it found that Google had not violated any laws, the agency said Google had obstructed the inquiry and fined the company $25,000.
On Saturday, Google released a version of the report with only employees’ names redacted.
The full version draws a portrait of a company where an engineer can easily embark on a project to gather personal e-mails and Web searches of potentially hundreds of millions of people as part of his or her unscheduled work time, and where privacy concerns are shrugged off.
A Google spokeswoman said Saturday that the company had much stricter privacy controls than it previously did, in part because of the Street View controversy.
As early as 2007, the report says, Street View engineers had “wide access” to the plan to collect payload data.
The Street View program used special cars outfitted with cameras. Google first said it was just photographing streets and did not disclose that it was collecting Internet communications called payload data, transmitted over Wi-fi networks, until May 2010, when it was confronted by German regulators. Eventually, it was forced to reveal that the information it had collected could include the full text of e-mails, sites visited and other data.