[kostya-kow]

>Most other "free" web services aren't much better.

Most non-free web services are equally happy giving away your data to the government. Apple, MS and all the other companies are no better than Google.

And Google is not the problem -- it is just a symptom. The problem is the government that does not respect the rights of people.

[gnosis]

My use of the term "free" was not intended to imply that "non-free" web services were any better.

I used the term to highlight that what most people consider "free" web services actually have a price.

That price is usually your privacy.

[spankalee]

Free has nothing to do with it. Go ahead and pay for the same services, but it'll do nothing to protect your data from a search warrant.

[gnosis]

Actually, it does have something to do with it.

When you don't pay for a service in money, the company providing that service has to find some other way of generating money.

Often they do this by collecting and selling data about you.

Now, that doesn't mean that just because you paid for a service they won't do the same thing. But they'll will have more incentive to protect their paying customers than some service which consider you and your data as the commodity.

[spankalee]

Sorry, paid or not still doesn't have anything to do with whether or not a company will comply with a lawful order, or how much that company will push back. The incentive and willingness to push back isn't related to how much a single user pays, but considerations like the principles of the company, and the estimated aggregate losses from the perception that a company doesn't protect their user's data. Google, for instance, has a much higher potential loss from this perception than a smaller company that charges.

Also, Google does not sell information about their users. They target ads. The difference is huge.

[jkrems]

This has nothing to do with privacy and free services. Yes, that is a problem, but it has no connection at all to this case. It's about emails and private chats being given to the government without any limitations. It's about non-US citizens having zero protection or due process when they use US-based cloud services. That's a couple of degrees more severe than "Google is storing personal details about you and may give them to the government". It basically means that foreigners upload their data de-facto directly to NSA servers when they use US cloud services.

[embolism]

You can't separate the two. The reason why foreigners are uploading their data to the NSA when they use Google is because of the way Google makes its money and engineers its services.

Compare this to Apple's iMessage or FaceTime - Apple cannot decrypt the contents of the messages, and therefore cannot give the contents to the government.

They designed the service this way because their users pay for the service as part of the cost of the devices they sell so they don't require access to the data for behavioral profiling.

[jmillikin]

  > Compare this to Apple's iMessage or FaceTime - Apple
  > cannot decrypt the contents of the messages, and
  > therefore cannot give the contents to the government.

This is not correct.

First, when you buy a new iPhone, the way you authenticate yourself is by entering your Apple ID and password. Once entered, your new device will begin receiving iMessage data. This means that Apple is capable of provisioning a virtual device with your credentials, which will receive your messages. From there, they can be either stored or forwarded to third parties.

Second, your iPhone runs binaries distributed by Apple. There is no technical reason why these binaries could not contain code to forward historical messages to Apple or to a third party. Even if they don't now, a future update to iOS (which you won't be able to audit) could introduce such code.

The only way to have private communication is for all parties to run open-source clients. Each party must have the technical skill to audit the source code, or there must be at least one (preferably multiple) trusted third-party auditor. They must distribute encryption keys through a separate channel which does not depend on the communication host.

In other words, the standard Thunderbird+GPG+keyparty system that is popular among nerds but has seen no uptake among the general population.

[magicalist]

Even leaving behind the arguments that Apple was incorrect on iMessage history being inaccessible to them, what about the rest of Apple's services (like all your icloud email, your contacts, calendar, etc) that certainly can be turned over with a warrant?

Your conclusion does not follow.