DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

MN: Minneapolis Police Officer’s Data Misuse Claims Head to Retrial

Posted on March 20, 2021 by Dissent

There’s an update to litigation stemming from misuse of a Minnesota state database. The case began in 2013, when Amy Krekelberg received a  notice from Minnesota’s Department of Natural Resources that informed her that an employee had abused his access to a government driver’s license database and snooped on thousands of people in the state, mostly women. Krekelberg was one of them.

In 2017, the St. Paul City Council agreed to pay her $29,500 to settle charges.

In 2019, an audit revealed that her information — which, according to a Wired report —  would include things like her address, weight, height, and driver’s license pictures—had been viewed nearly 1,000 times since 2003, even though she was never under investigation by law enforcement. Krekelberg later learned that over 500 of those lookups were conducted by dozens of other cops, many searching her records in the middle of the night.

In a 2019 jury trial against the city of Minneapolis and two officers, a jury awarded her $585,000 that included punitive damages.

Now, however, there will be a new trial. Bloomberg reports that a federal appeals court ordered a new trial. The order recaps the history briefly:

Officer Amy Krekelberg of the Minneapolis Police Department (“MPD”) sued more than forty local government entities and employees for, among other  things, violating the Driver’s Protection Privacy Act (“DPPA”), 18 U.S.C. § 2721 et seq. By the time of trial, only three Defendants remained: the City of Minneapolis (“City”) and MPD Officers Heather Young and Matthew Olson. The remaining claims involved 74 alleged DPPA violations based on 74 impermissible accesses of Krekelberg’s driver’s license data by 58 MPD police officers. The jury returned a verdict for Krekelberg, awarding both compensatory and punitive damages. Defendants appeal, claiming that based on certain evidentiary and jury-instruction errors, they should receive a new trial. The City claims that as a matter of law, it cannot be liable for 72 of the 74 DPPA violations for which it was held vicariously liable. Defendants also challenge the jury’s punitive-damages award. For the reasons discussed below, we affirm in part, reverse in part, vacate the judgment, and remand for a new trial.

You can read the court’s reasoning in the appellate order.

In June, 2019, in noting the jury’s decision, I had commented:

I’ve been following the Minnesota law enforcement snooping case for years now, and while I’m glad to see that the jury awarded punitive damages, I’m disturbed that other police officers backed their misbehaving fellow officers instead of supporting the fellow officer whose privacy had been repeatedly violated.

Nationwide: has snooping/misuse of police and state databases been reduced over the years, or are there just less audits that would find it? And what is the attitude of officers towards those who do snoop or misuse databases — and do they (still) support their colleagues or their victims? Is snooping excused or shrugged off by most officers? Is it more likely to be tolerated if the target of the inappropriate search is a fellow female officer or a female?   Have we made any progress as a society?  These cases were not just workplace privacy issues or data protection issues — they are also generally issues of sexism and civil liberties.

With the growing use of facial recognition technology, civil liberties groups like EFF have repeatedly raised the need for protections and checks on access to databases. But has it happened? A November, 2020 news report suggests that there have not been significant changes in limiting or monitoring access to databases, although some states have made efforts.

How many current cases like Kekelberg’s will we find if audits are conducted?

No related posts.

Category: Government SectorInsiderU.S.

Post navigation

← Federal Police arrest hacker suspected of the largest data leak in Brazil
UK: Details of ‘vulnerable kids’ uploaded to Birmingham City Council website in ‘serious’ data breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Obligations under Canada’s data breach notification law
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information
  • UK police arrest four in connection with M&S, Co-op and Harrods cyberattacks (1)
  • At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy
  • Avantic Medical Lab hacked; patient data leaked by Everest Group
  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DeleteMyInfo Wins 2025 Digital Privacy Excellence Award from Internet Safety Council
  • TikTok Loses First Appeal Against £12.7M ICO Fine, Faces Second Investigation by DPC
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.