US Border Officers Don’t Always Delete Collected Traveler Data

The authority to conduct such searches should simply be removed. Border searches are nominally for the purpose of preventing the importation of something that's illegal to import, but it's trivial to transfer information that's illegal to import (e.g. child pornography) over the internet instead.

neither do the people that work at most of the cell phone stores(verizon, spring, etc)... i knew a couple guys that worked at them and they all were in cahoots to steal private photos from female owned cameras. and then shared them in a massive repo.<p>this is why i dont let anyone touch my tech.

As someone who has &quot;nothing to hide&quot;, the prospect of such search is why I don&#x27;t consider travelling to USA a possibility. Or at least not with my phone &#x2F; laptop.

What a surprise, right?

I’d be more surprised if anyone in customs&#x2F;border security actually deleted the collected data. Deleting collected data would imply that they were competent and procedures were being followed, or that procedures exist.

There&#x27;s unlikely to be any real control put on this, so assuming that this is &quot;a new normal&quot; we need to work out how best to deal with it. I found a couple of articles which cover some precautions but aren&#x27;t quite &quot;paranoid enough&quot; (warning: both of these articles showed me full-paged ads):<p><a href="https:&#x2F;&#x2F;www.computerworld.com&#x2F;article&#x2F;3209648&#x2F;android&#x2F;the-paranoid-android-travelers-data-protection-checklist.html" rel="nofollow">https:&#x2F;&#x2F;www.computerworld.com&#x2F;article&#x2F;3209648&#x2F;android&#x2F;the-pa...</a><p><a href="https:&#x2F;&#x2F;www.wired.com&#x2F;2017&#x2F;02&#x2F;guide-getting-past-customs-digital-privacy-intact&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.wired.com&#x2F;2017&#x2F;02&#x2F;guide-getting-past-customs-dig...</a><p>We need a nice, clean, to-the-point github readme style list. Off the top of my head:<p>- Backup contents of device to two places, confirm both, delete it all from device<p>- Record all personal accounts on the phone, make sure the login&#x2F;email&#x2F;passwords are known, then remove them all<p>- Factory reset the device (if asked about why it&#x27;s &quot;blank&quot;, say that you bought it recently, specifically for the trip. Work out some reasonable excuse)<p>- Create a throwaway account, set that up as the only account on the phone<p>- Encrypt the device<p>- Don&#x27;t use biometric unlocks<p>- Use a relatively simple passcode that isn&#x27;t related to any of the ones you may regularly use (unless you already have a regularly used &quot;burner&quot; passcode)<p>- Remove your local &#x2F; home sim card before going through customs (if asked, you&#x27;re planning to buy one that&#x27;s local to the country you&#x27;re visiting)<p>- Any data that you may need to get back on to your phone once you&#x27;re through customs should be made available somewhere online and accessible via credentials you can either remember or have stored elsewhere. Possibly through a chain of dependence such as remember the credentials to download the VPN config, then access further documents &#x2F; details via the VPN.<p>I fundamentally treat phones and laptops as disposable devices so that, if they&#x27;re lost or stolen there should be minimal life impact. If they&#x27;re the only store of photos of your kids precious milestones, then you&#x27;re doing it wrong (you&#x27;re also probably not someone suspicious, but in that case you shouldn&#x27;t be subjected to government departments stealing said photos).

Completely by accident. There was never any intent to mine that information, no sir.