I’m traveling to the US mainland for the first time in my life in a few weeks.
I am not overly stressed about privacy, but I have read that US immigration can really overstep their boundaries. Are there any simple specific steps to take on my devices to protect my privace when going through US border control?
Remove my main accounts from my phone/tablet and use dummy accounts? Or just removing my biometrics?
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
For all hard drives you are looking to bring, look into plausible deniability using a hidden volume. Veracrypt supports this.
Don’t carry huge amounts of cash. Our police will steal it from you saying they think it was ill-gotten and you have to go to court to get it back. It’s called civil forfeit.
Turn off biometrics. You can be compelled to submit a fingerprint or pose for a camera. You can’t be compelled to reveal something you know (self-incrimination). Though that hasn’t stopped at least one judge from keeping someone indefinitely detained.
For the most part, our country isn’t a nightmare. But it can become one very easily under certain conditions. This is the rare outcome you hope to avoid that realistically won’t occur for most visitors.
I think you’re overthinking it. I used to go into the US often for business and I have never had any of my electronic devices searched. The best advice is to leave your phone at home and buy a cheaper pre-paid travel phone. Not because of privacy but what if it’s lost, stolen, or confiscated? It’s no big deal losing a burner phone.
Honestly, if you have any older or formatted devices I’d just bring those.
Ultimately you shouldn’t cross the US border carrying devices or encrypted data which you aren’t prepared to unlock for DHS/CBP, unless you’re willing to lose the hardware and/or be denied entry if/when you refuse to comply.
If they decide to, you’ll be handed this: “You are receiving this document because CBP intends to conduct a border search of your electronic device(s). This may include copying and retaining data contained in the device(s). […] Failure to assist CBP in accessing the electronic device and its contents for examination may result in the detention of the device in order to complete the inspection.”
Device searches were happening a few hundred times each month circa 2009 (the most recent data i could find in a quick search) but, given other CBP trends, presumably they’ve become more frequent since then.
In 2016 they began asking some visa applicants for social media usernames, and then expanded it to most applicants in 2019, and the new administration has continued that policy. I haven’t found any numbers about how often they actually deny people entry for failing to disclose a social media account.
In 2017 they proposed adding the authority to also demand social media passwords but at least that doesn’t appear to have been implemented.
Well, on my ESTA, they said the social medias disclosure is optional. Just a tool to help you confirm your intents visiting the US (or to be withheld against you as well) https://esta.cbp.dhs.gov/faq?lang=en&focusedTopic=Privacy and Security&answerToDisplay=How will CBP use my social media information collected through the additional question that was added to the ESTA application in December 2016%3F
Buy a gun
Come on, don’t give them objectively terrible advice.
Although it’s the most 'Murican advice! Which doesn’t help make it less terrible.
When going through customs, turn your devices off, and make sure they’re pin or password locked.
They still can try to compel you to open them by saying they won’t let you go, and they can keep you detained for a long time.
Disable fingerprint and face scan.
People keep saying that they can’t for e you to enter your pin, but they can enforce biometrics.
I’m pretty sure that immigration in the US can just confiscate your devices if you are not a citizen .
CBP can and does “detain” travelers’ devices at (or near) the border, without a warrant or any stated cause, even if they are US citizens.
Here is part of the notice they give people when they do:
Maybe what I was thinking was that they can’t deny entry to citizens. Im not sure exactly, but there was some benefit citizens had.
Yeah, everyone keeps saying stuff like the US respects the rights of foreigners. They don’t.
A foreigner who is in the US legally can own a business, run for political office, own land, have a professional job like doctor, teacher, lawyer.
I am a US citizen but live in a foreign country as a resident and I can’t do any of those things here even though I am here legally. Only citizens are allowed to do those things here.
So in that regard, I’d say the US respects foreigners right.
Yeah, and it’s fully legal for them to take any money you have and claim it’s related to drug money (even if you’re a citizen). You can always get it back if you fight for it but…
Don’t bring things with you that you don’t want taken from you (unless you have to).
Traveling with large sums of cash is kind of dumb anyway. Especially in this day and age. Worst case scenario you can just use crypto to move money around.
Take only fresh installed devices with you with only the absolute necessary data and applications. Create a new email address for anything on this device.
The best advise I can give you is to not draw attention. I live in the US but when even I have traveled abroad and came back they have never asked to see a personal device.
Maybe bring a burner device just in case
If you are doing something illegal then you should definitely bring a new device. If you are not doing something illegal then you should just bring your normal device and keep it locked/off when entering.
They can force biometrics but not pin, but they will only do that if you’re already in super deep trouble for breaking the law. Just be normal and you’ll have no issues.
Also don’t say or do anything that draws attention. Do not joke about blowing up planes while going though air port security. It is really dumb but people do it anyway. Also don’t bring Firearms but hopefully that is very obvious
(I don’t know your sex, so if this doesn’t apply, disregard it.)
Depending on what state you’re going to, make sure you’re not using any ovulation tracking apps. If you are or might be pregnant, it’s dangerous to go to red states right now, especially if the authorities know about it.
dangerous?
I’m not from the us
The US Federal government no longer protects reproductive freedoms like they did a few years ago, so some states have been cracking down on procedures like abortion and using data from places like Facebook to gather evidence. Depending on the state, having this data might lead to legal headache, but I’m not sure how likely that is.
Only if you are looking for an abortion. However, from a privacy perspective it is best to keep all that data private for obvious reasons.
If there’s an emergency, and you need an abortion to save your life, they’ll let you die.
Okay, yes, but what does this have to do with my period tracking apps?
If they find out you’re pregnant, some states will arrest you for trying to leave the state to seek an abortion. Basically, they’ll make sure you die before you can get an abortion.
They’re arresting tourists from other countries for being pregnant? On the basis that they might… go home and get an abortion? I don’t completely follow.
You know this thread is about US federal immigration, right?
I’m not super in tune with everything that happens in the backwards US states but this doesn’t sound like something that is happening. Yes, I’ve heard that some states are or have inquired about getting data from health apps about period tracking, and I’ve read the articles about the nefarious ways that they could use that data, but I’ve seen nothing about the impact that could have on tourists.
They are not. I live in such a red state and I’m not sure I’d want yo visit as a tourist.
While using a clean phone with nothing on it sounds like a good plan, it also looks very suspicious and can attract more attention. So take that into account when traveling regardless of the destination. Just like anonymization on your browser, the goal is to blend in, not stand out.
Honestly, it depends a lot on where you’re coming from and what you look like. And to be frank, it’s a little overblown to be paranoid enough to go that far, unless you are a high profile person of interest like a journalist or someone involved in politics. If you’re just an ordinary bloke going on vacation or attending a conference, you will be fine with basic precautions.
Look European. Don’t be Asian and especially don’t be African. Got it.
It isn’t unusually to take a burner device to a foreign country
For people in this community, sure. Compared to the general population, not really. Imagine an international airport on a typical busy day. The number of people going through that aiport who are using burner phones is almost negligible.
It wouldn’t necessarily just be burner phones. Many people wouldn’t want to take a valuable phone traveling in case it gets stolen. Or maybe their phone isn’t compatible with the US’s networks.
My point is that they aren’t going arrest you over it. Also they don’t see what’s on your phone nor do the randomly seal it. It isn’t New Zealand quiet yet.
Wipe your phone, restore from backup once you’re in.
This is actually the best answer here. It’s a good habit for any border crossing.