Do you feel FB did something wrong here, and if so could you elaborate? I don't see this as much different from subpoenas of phone records, for example.
Well for one, they handed a bunch of personal details on the friends of the suspect, and the police department published them unredacted. Being friends with a suspect can be problematic, apparently. No one wants to be known as the FB friend of a serial killer.
While most people on hn probably know about this, you would be surprised at what the general public would think about this story. I hope it gets spread further in the media so more people know exactly what fb(and other social networking sites) keeps tabs on and what info they give out to law enforcement.
"Keeping track of these records is required by law."
What law? Which records? There are websites, such as those which provide anonymous web access, which say that they don't keep any records, or keep IP addresses only, or keep records for no more than 30 days, or whatever. Are they lying to us, or are they intentionally breaking some law? Exactly how can I be forced to keep any kind of log, for any period of time?
It's a really complicated legal issue, and the last thing you would want to do as an international company is shoot yourself in the foot by deleting "evidence".
FB is an American company, and the crime of which the article speaks happened in the US, and the article you cite says:
"The United States does not have any Internet Service Provider (ISP) data retention laws similar to the European Data Retention Directive. All attempts have failed:"
THEREFORE: Under what law was FB required to retain the data, which was eventually handed over under subpoena?
The location of its legal tax headquarters is up for debate; Additionally, Facebook has corporate offices all over the world in different countries:
https://www.facebook.com/careers/locations
Italy, India, Canada, New Zealand, Belgium, etc.
Clearly it's not just a "US" company and only has to follow "US" laws.
Taxes are not involved in the question. When it comes to US cases, FB only has to follow US laws. Therefore, data generated by US-based users should not be retained.
But I think i remember something about Facebook having european offices in Ireland, so for us Facebook users in the European Union it's the Irish and EU laws they have to abide.
But I havent got a clue about what law regulates theese things.