What is Subpoena?

A subpoena compels production of evidence. For privacy, this matters because companies holding your data can be forced to hand it over—making data minimization your best protection.

Types of Subpoenas

Subpoena Ad Testificandum

• Requires testimony
• Appear in court/deposition
• Answer questions under oath

Subpoena Duces Tecum

• Requires production of documents
• Business records, communications
• What tech companies receive

Who Can Issue Subpoenas

Grand Jury Subpoenas

• Criminal investigations
• Issued by prosecutors
• Broad scope
• Target may not know

Trial Subpoenas

• Court proceedings
• Either party can request
• Judge approval required

Administrative Subpoenas

• Government agencies
• SEC, IRS, DEA, etc.
• Varies by agency authority

What Companies Must Provide

Typically Must Provide

• Subscriber information
• Account records
• Transaction history
• Stored communications (rules vary)

What They Can't Provide

• Data they don't have
• Data that's encrypted (if no key)
• Data they've deleted

Privacy Protections

Data Minimization

• Can't subpoena what doesn't exist
• VPN no-logs policies
• Encrypted email providers
• Ephemeral messaging

Challenging Subpoenas

• Companies can fight overbroad requests
• Motion to quash
• Negotiate scope
• Requires legal resources

User Notification

• Some companies notify users
• Unless gag order prevents
• Transparency reports document requests

Subpoena vs Warrant

Aspect	Subpoena	Warrant
Issuer	Court/prosecutor	Judge only
Standard	Relevance	Probable cause
Scope	Often broader	Specific
Content	Mostly non-content	Content allowed

Best Practices

For Users

• Use services with minimal data retention
• Enable encryption
• Understand provider's legal policies
• Check transparency reports

For Services

• Collect minimum necessary
• Clear retention policies
• Encrypt user data
• Challenge overbroad requests