By Oded Green
On April 6, 2011, the Senate Judiciary Committee held a hearing regarding a proposed update to the Electronic Communications Privacy Act (ECPA) in light of cloud computing and other technological developments that have occurred since the statute was enacted more than two decades ago. The ECPA is comprised of three laws — the Wiretap Act, the Stored Communications Act, and the Pen Register Act — which govern when certain parties, including law enforcement and other governmental authorities, may access communications and related data and to whom they may disclose those communications and data.
According to Senate Judiciary Committee Chairman, Patrick Leahy, with the explosion of cloud computing, social networking sites and other new technologies, determining how to bring ECPA into the digital age is one of Congress’ greatest challenges. He added that ECPA is “hampered by conflicting standards that cause confusion for law enforcement, businesses and consumers.” For example, the content of a single e-mail could be subject to as many as four different levels of privacy protections under ECPA, depending on where it is stored, and when it is sent.