What just happened

Six Democratic lawmakers have asked Director of National Intelligence Tulsi Gabbard to explain something that sounds like a plot twist in a tech thriller. They want to know whether Americans who use commercial VPNs and appear to be abroad are being treated as non-US persons under the governments surveillance rules. If so, those users might lose the usual Fourth Amendment protections against warrantless spying.

Why this matters

Here is the awkward logic set out in the letter. VPNs hide where you actually are by routing your internet traffic through a server somewhere else in the world. Intelligence guidance says that when a persons location is unknown, the default assumption is that they are a foreign person. That means an American connected to, say, a VPN server in Amsterdam could look just like a Dutch internet user to an agency collecting data in bulk.

Who signed the letter

  • Senators: Ron Wyden, Elizabeth Warren, Edward Markey, Alex Padilla
  • Representatives: Pramila Jayapal, Sara Jacobs

Which surveillance rules are involved

The letter points to two separate authorities:

  • Section 702. A statutory program that lets the US collect foreign electronic communications in bulk. It has congressional oversight and requires approval from the Foreign Intelligence Surveillance Court. The government says it is meant to target people abroad, but it can and does sweep up large volumes of Americans communications. That program is set to expire next month and is a major topic of debate in Congress.
  • Executive Order 12333. A broader, older directive that governs many foreign surveillance activities. It allows bulk collection with fewer legal constraints than Section 702 and operates under guidelines approved by the attorney general rather than a court.

How VPNs and the rules collide

Commercial VPNs route traffic through servers that could be anywhere. One IP address might represent thousands of users at once. To a system collecting huge amounts of data, an American who appears to come from a foreign IP address may be treated like a foreigner. The letter notes that intelligence community targeting procedures and Department of Defense signals intelligence rules both include a presumption that unknown-location subjects are non-US persons unless proven otherwise.

What the lawmakers asked for

The letter does not claim the government has definitely collected Americans VPN traffic under these rules. That kind of detail is probably classified. Instead, the lawmakers asked Gabbard to publicly clarify whether using a VPN can affect Americans privacy rights and what steps, if any, consumers can take to ensure they keep constitutionally protected privacy.

Additional points the letter raises

  • Federal agencies, including the FBI, NSA, and FTC, have recommended VPNs as privacy tools in certain contexts. That makes the situation confusing for consumers.
  • Americans spend billions on VPN services each year, and many popular providers are based overseas or route traffic through foreign servers.
  • The same foreignness presumption can apply under both Section 702 and Executive Order 12333, potentially exposing VPN users to bulk, indiscriminate surveillance.

The bottom line

The lawmakers want a clear public answer: if you use a commercial VPN and your traffic looks foreign, do you lose the privacy protections the Constitution is supposed to provide? Consumers have been told to use privacy tools, but they have not been given clear guidance about this particular tradeoff. The letter asks the intelligence office to spell out what people can do to keep their rights intact.

Short and not cozy: your VPN could make you invisible to geo-restrictions and visible to US surveillance authorities. Lawmakers want the intelligence community to explain which of those effects matters more.