Wikileaks.com for Accountability
If a public organization doesn't embrace transparency, transparency will be thrust upon it forcibly. For any institution, its electronic records are so detailed and subject to revelation in so many ways that the institution must find a way to pre-empt their inopportune public disclosure. Better to come clean with information now – before the lawsuit (think deposition) or the FOIA request or the hacker break-in brings the information to light.
The climate research unit at the University of East Anglia is learning directly how disconcerting unexpected disclosure can be.
Someone – whether an outside hacker spy or an inside whistleblower – has leaked volumes of e-mails, software, source code and programmer notes to the world. As a world leader on climate modeling, the university is shocked to see its internal discussions hung out for public scrutiny.
Some emails suggest the university's scientists had earlier tried to destroy records to prevent their disclosure under a freedom of information request. Other records arguably depict programmers manipulating data for key climate modeling software in a deceptive manner. Some emails appear to show researchers misallocating expenses against a US government research grant.
Some observers speculate all these records had been assembled for a freedom of information request, and after the request was denied, an internal whistleblower elected to liberate them. Once information leaves the confines of the institution, it's easy to broadcast through channels like Wikileaks.com.
Separately, another institution on which technology has violently imposed transparency is international banking. An IT staffer at LGT Group stole secret bank customer records and sold them to the German tax authorities, who used them to prosecute tax evaders. “Liechtenstein Under Siege Clings to Bank Secrecy to Outdo Swiss,” Bloomberg.com 2/27/08.
Then a US Senate investigative committee data-mined Homeland Security records of foreign visitors to uncover a pattern of Swiss bankers coming to the US illegally to solicit deposits from rich American taxpayers. These unsavory revelations -- made possible by new technology -- has devastated the long-standing industry of secret bank accounts in places like Switzerland. The US has largely closed down that industry as an avenue for tax evasion and other crime. Kevin McCoy, “IRS: Offshore tax crackdown should produce 'billions',” USA Today, Nov. 17, 2009.
So in this technological age of leaks and sousveillance, what are institutions to do? Here are three mild examples of proactive transparency:
* New York City allows web-empowered citizens to track their government's performance on details like response times on calls to the fire department or the street maintenance crews.
* The City lets the same citizens monitor how the city is spending federal stimulus dollars.
* 15 local governments in South Carolina now post their full check registers online so citizens can scrutinize how the governments spend cash and which vendors get how much money.
Update November 29, 2009: After thinking about it, the University of East Anglia has decided that radical transparency is the only logical policy. In the wake of the hacker break-in described above, the University has announced it will reveal "all" of its climate data as soon as possible.
–Benjamin Wright
Mr. Wright teaches Data Retention and Security Law at the SANS Institute, where he emphasizes how critical public communications are to good information security.
Related post: Whistleblowers with cameras