FISA 702 Expired: Your Emails Are Still Under Surveillance

At midnight on Saturday, June 12, 2026, Section 702 of the Foreign Intelligence Surveillance Act lapsed for the first time since 2008. No dramatic announcement. No court orders halting data collection. No NSA analyst shutting off the lights. The statute died quietly — and the surveillance it authorized kept running without interruption.

Key Takeaways

• Section 702 of FISA expired at midnight June 12, 2026, the first statutory lapse since 2018, after the House voted 198–218 against a three week extension.
• The FISA Court's annual collection certifications, last approved in March 2026, remain legally valid until March 2027 regardless of whether the underlying statute exists.
• The FBI can still query the Section 702 database for Americans' communications — without a warrant — under those certifications through at least March 2027.
• Documented FBI abuses include warrantless searches targeting 141 Black Lives Matter protesters, 19,000 donors to a single congressional campaign, two sitting members of Congress, and multiple journalists.
• Privacy advocates including the Electronic Frontier Foundation called the expiration a victory while simultaneously warning that surveillance continues on autopilot.

What Is Section 702?

Section 702 of the Foreign Intelligence Surveillance Act is the legal authority that lets the NSA collect the electronic communications of foreign nationals located outside the United States — without seeking individual warrants. Congress enacted it in 2008 to modernize an older surveillance framework after the government's post-9/11 warrantless wiretapping programs became legally untenable.

The targeting is supposed to be foreign. The collection is not. When an American journalist emails a source in Cairo, when an activist messages a colleague in London, when an attorney contacts a client in Beirut — those communications get swept up too. This is what the government calls "incidental collection," a clinical phrase for bulk acquisition of Americans' private correspondence without any individualized judicial review.

Once that data enters the NSA's database, the FBI can search it. The critical detail: FBI analysts can query the database for Americans' communications without first obtaining a warrant from any court. The Brennan Center for Justice has documented that the government "has engaged in widespread violations" of even the modest limits Section 702 places on those searches.

How Bad Have the Abuses Actually Been?

The scale of documented misuse is not abstract. Declassified FISA Court opinions revealed that FBI analysts ran more than 278,000 queries that the Department of Justice itself determined violated bureau standards. The Foreign Intelligence Surveillance Court characterized the pattern as representing "persistent and widespread violations."

Among the confirmed targets: 141 Black Lives Matter protesters. More than 19,000 donors to a single congressional campaign. Two sitting members of Congress. Multiple U.S. government officials. Journalists and political commentators — targeting journalists via email has a real playbook, documented repeatedly in CPJ investigations. One analyst ran queries on online dating matches. The average in the most recently reported year: more than 10 improper searches every single day.

These were not edge cases caught by a functioning oversight system. They were the cases that made it into declassified court opinions — a subset of a larger universe of queries that remains classified.

What Happened at Midnight on June 12?

The House voted 198–218 against a three week extension of Section 702 on June 11. Nineteen Republicans voted no on constitutional grounds — arguing the law enables warrantless surveillance of Americans. Democrats, citing President Trump's nomination of Bill Pulte as acting Director of National Intelligence, refused to back renewal while Pulte — who has no intelligence community experience — was positioned to take control of the NSA on June 19. Republicans accused Democrats of holding national security hostage. The statute lapsed.

Intelligence officials argued in the days before the vote that roughly 60% of the President's daily intelligence briefing derives from Section 702 collected material. NPR's account of the lapse noted that the Pulte nomination introduced a political wild card that scrambled the usual bipartisan coalition that has reauthorized Section 702 since 2008.

Why Surveillance Didn't Stop: The Certification Loophole

Here is what the expiration actually means in practice: nothing, until March 2027.

The FISA Court renewed its annual collection certifications in March 2026. Those certifications are what actually authorize NSA collection and the directives sent to U.S. telecommunications companies requiring them to hand over data. The statute is the legal foundation for those certifications — but the certifications themselves have their own independent validity period.

Nothing in FISA says that certifications evaporate if Congress lets the underlying statute lapse. The legal architecture treats them as separate instruments. Collection of new foreign targets under the existing March 2026 certifications continues. FBI queries of the Section 702 database for Americans' communications continue. As one legal expert quoted by CBS News put it directly: "Section 702 will not go dark. That is a myth."

State of Surveillance described the situation precisely: the statute is gone, the wiretaps are not.

Why Email Users Should Care

The 702 database is, in significant part, an email database. The NSA collects electronic communications — which means email content, email metadata, and email attachments. When Americans exchange messages with anyone abroad, those emails can enter the database. You do not need to be a foreign intelligence target. You do not need to be suspected of any crime. You need only to have emailed someone overseas.

For journalists, the implications are severe. Press freedom has hit a 25-year low globally, and the 702 database represents a mechanism by which the FBI can reconstruct a reporter's foreign source communications without ever appearing before a judge. The database query leaves no fingerprint visible to the journalist or their source. There is no notice, no subpoena, no opportunity to challenge the search.

This is also why email security for journalists extends well beyond encryption. Even end to end encrypted email protects content in transit. Section 702 collection happens at the provider level, before encryption protects the communication from government access. The metadata — who emailed whom, when, how often, from where — is accessible regardless of content encryption, as our guide on what email metadata reveals about you explains in detail.

What Do Advocates Actually Want?

The EFF's post expiration statement is titled "The 702 Ultimatum: Warrant Requirement or Bust." The demand is straightforward: before the FBI queries the Section 702 database for any American's communications, it must obtain an individualized warrant from a judge. The government would have to demonstrate probable cause. A court would have to approve the search.

That requirement does not exist today. The 2024 Reforming Intelligence and Securing America Act (RISAA), which was the last reauthorization, included what supporters called "modest reforms" — but none imposed a warrant requirement for FBI backdoor searches. The Brennan Center, EFF, ACLU, Center for Democracy and Technology, and more than 20 allied organizations have maintained the same position: no reauthorization without a warrant requirement.

Congress now has until March 2027 — when the FISA Court certifications expire — before surveillance actually stops. The political dynamics are unchanged. The certification autopilot has removed any urgency from the legislative calendar.

What Changes — and What Doesn't

The practical effect of the June 12 expiration is limited but real. The NSA cannot add new targets to the collection program once the existing certifications run out in March 2027. Without reauthorization, the entire program eventually winds down rather than renewing automatically. Advocates treat the lapse as leverage: Congress cannot quietly extend the program without taking a recorded vote. That is not nothing.

What has not changed: your emails are in the database. FBI analysts can still search them. The queries run today are legal under the surviving certifications. The documented abuses of the past — the BLM searches, the congressional donor sweeps, the journalist queries — were conducted under the same legal architecture that remains in force.

The statute lapsed. The surveillance did not. The next deadline is March 2027, and the fight over whether Americans will ever get a warrant requirement before the government reads their email correspondence is exactly where it was before Saturday's midnight expiration — unresolved, and running on autopilot.

Sources: Brennan Center: Section 702 Resource Page | NPR: FISA 702, a key U.S. spy tool, has lapsed. Now what? | EFF: Victory! 702 Has Expired | State of Surveillance: Certification Loophole.