Thousands of Privacy Violations Exposed in Internal Audit
Documents provided by Edward Snowden to the Washington Post revealed that the NSA committed 2,776 privacy violations in a single year preceding a May 2012 internal audit. These were not hypothetical concerns or edge cases. They represented documented instances where the agency overstepped its legal authority to collect communications data.
Among the more striking revelations was an incident in 2008 where the NSA inadvertently intercepted a large volume of phone calls originating from Washington, D.C. The cause was a technical error that confused the international dialing code for Egypt (20) with the D.C. area code (202). While the mistake itself was notable, the more concerning detail was that this violation was never reported to the oversight bodies responsible for monitoring the agency.
The audit figures themselves only covered NSA headquarters in Maryland. Government officials speaking anonymously indicated the total number of violations would be substantially higher if other NSA operating units and regional collection centers were included.
Deliberate Routing of Communications Through Domestic Infrastructure
Perhaps more troubling than accidental collection errors was the NSA’s deliberate practice of routing international communications through U.S. fiber-optic cables. This had the effect of commingling foreign communications, which the agency had some legal authority to monitor, with purely domestic ones that required far greater legal protections.
The Foreign Intelligence Surveillance Court (FISC), the secret judicial body tasked with overseeing these programs, ruled this practice unconstitutional. In a separate finding, the NSA had retained more than 3,000 telephone call record files in direct defiance of a FISC order. The number of individual calls or people represented in those files remained unknown.
Oversight Systems That Could Not Actually Oversee
The FISC’s chief judge, Reggie B. Walton, acknowledged a fundamental limitation in the court’s oversight capacity. The court lacked the ability to independently investigate compliance issues and depended almost entirely on the NSA’s own internal reporting to carry out its mandate. This created a circular arrangement where the entity being overseen was also the primary source of information about its own conduct.
Congressional oversight faced similar constraints. Lawmakers could access classified documents only in secure facilities where note-taking was prohibited. Fewer than 10 percent of members of Congress had the practical ability to review these materials. Senator Dianne Feinstein, who chaired the Senate Intelligence Committee, was reportedly unaware of the May 2012 audit until contacted by journalists working on the story.
Transparency Promises Undermined by Agency Actions
President Obama had publicly pledged to make surveillance programs more transparent, stating that public confidence in these programs was essential. Yet the administration did not voluntarily disclose the violations documented in the audit.
In a particularly revealing sequence of events, the NSA retroactively moved an on-the-record interview with its director of compliance to off-the-record status. This occurred after Obama’s speech calling for greater openness. The gap between stated commitments to transparency and the agency’s actual behavior underscored the central problem these documents revealed.
The Debate That Could Not Happen
The fundamental issue raised by these disclosures extended beyond any individual violation. A meaningful public debate about the proper boundaries of government surveillance required access to accurate information about how these programs actually operated. The documents showed that neither the public, nor Congress, nor even the courts possessed the information that existing rules said they should have.
Without that foundation of facts, any discussion about where to draw the line between security and privacy remained incomplete. The Snowden disclosures did not just reveal specific abuses. They exposed the structural impossibility of informed democratic oversight over programs operating in near-total secrecy.
