On November 13 I posted to this blog about protected state death records being removed from the Social Security Death Index (SSDI) effective November 1. Additionally, Congressman Sam Johnson (R-TX) would be calling for hearings on removal of SSN’s sometime in 2012. Now we have learned that the there is a movement to remove all Social Security numbers from all genealogy web sites as a US Senator believes having them posted on the Internet are a cause of identity theft. (The precipitating issue is the same- a deceased child's identity was stolen- they are two different deceased children involved).
There are many newspaper articles on computer hacking into government and financial services organizations where Social Security Numbers (SSN) are stolen—there have not been any known reports that theft occurred due stealing SSN’s from genealogy websites that post the SSDI. A recent news article where theft of computer tapes with 4.9 million Tricare beneficiaries SSN, birth dates, phone numbers etc. have been stolen is another proof that there is a different source, than genealogy sites of SSN used for identity theft http://tinyurl.com/bnwlj33
Thanks to Rand Fishbein, a member of JGS Greater Washington and a member of the JewishGen Board of Governors, who shared a letter, addressed to "Dear Colleagues" by US Senator Sherrod Brown (D-OH) encouraging Members (of Congress) to support an initiative to end the posting on genealogy websites of Social Security numbers belonging to deceased individuals. Quoting Rand: "The Senator believes that such postings contribute to identity theft and are an unwelcome infringement on the privacy rights of citizens. Needless to say, if this effort succeeds, it is sure to have a significant impact on the family history research community. “Senator Brown serves as the Chairman of the Senate Appropriations Subcommittee on Social Security. Paragraph 7 below shows the lack of understanding of what genealogists require and why! As the letter is not posted to an accessible website I am copying it below: (I purposely did not mention the name of the constituent) [Note: the Death Master File is the basis of the Social Security Death Index]
November 14, 2011
I encourage you to join me in writing letters to genealogy websites urging them to remove and no longer post the Social Security numbers of deceased individuals.
Earlier this year, I learned of the plight of my constituent, XXXX. In the wake of her three-month old daughter’s death, XXXX discovered that her daughter's Social Security number was posted on various genealogy websites and that her daughter's Social Security number had been fraudulently used on an IRS Tax return filing.
In response to XXX situation, I sent letters to the Social Security Administration (SSA), the Federal Trade Commission (FTC), and the Chief Executive Officer of Ancestry.com. I encouraged the FTC and SSA to investigate the practices of websites like Ancestry.com, and asked the FTC to work with the Internal Revenue Service (IRS) to ensure victims of this
type of tax fraud are provided with a prompt remedy.
Social Security numbers of deceased individuals are available to the public through the Death Master File (DMF), which contains information on more than 82 million deceased individuals. The SSA created the DMF as the result of the Freedom of Information Act (FOIA) lawsuit where the court held that, based on the Privacy Act, an individual's privacy rights are extinguished at
death and required the SSA to release the Social Security number, surname, and date of death of deceased individuals.
The SSA provides the data that compromises the DMF to the Department of Commerce's National Technical Information Service (NTIS), which sells the data to various entities such as Federal, state and local governments; financial, investigative, credit reporting, and medical research organizations; and public customers--including genealogy websites.
Many DMF purchasers use the data to prevent fraud by updating financial information and freezing deceased persons' accounts. But, DMF data can also be used for fraudulent purposes. We are all aware that identity theft is growing problem, and posting such personally identifiable information on publicly available genealogy websites is an easy mark for criminals.
Genealogy websites are not violating the law in posting Social Security numbers, but genealogical research must be balanced against the need to protect individuals and families from identity theft and fraud. Given the breadth of information available on these websites--full names, birth dates and death dates--Social Security numbers provide little additional benefit to family history researchers.
Please join me in the effort to educate genealogy websites about the unintended consequences of making Social Security numbers readily available to the public. Letters will be sent to the following companies due to their disclosure of Social Security numbers on their websites:
Ancestry.com; Genealogy.com' Familysearch.com; GenealogyBank.com,
Genealogy.About.com, Ssdi-search.com, Familytreemagazine.com, vitalrec.com
If you would like to sign onto the letters or have any questions, please contact Erin Richardson in Senator Brown's office at 202-224-2315 or Erin_Richardson@brown.senate.gov
Unites States Senator"
Accompanying this was a model letter to Ancestry.com asking them to remove and no longer post Social Security numbers on their website as it leads to identity theft.
The IAJGS is taking these recent access issues very seriously. When there is more information on either of the proposed hearings --House Ways and Means and Senate Appropriations it will be posted.
Jan Meisels Allen
IAJGS Vice President
Chairperson, IAJGS Public Records Access Monitoring Committee