Executive Order (E.O.) 13526 , Sec. l.7 (e) states "Compilations of items of information that are
individually unclassified may be classified if the compiled information reveals an additional
association or relationship that ( 1) meet s the standards for classification under this order; and (2) is
not otherwise revealed in the individual items of information."
How much personally identifiable information, often gathered without informed consent (they change policies all the time without notifying people), needs to be aggregated into one database until it becomes a risk to national security for it to leak?
Do you think that America might have some enemies who could use the names, phone numbers, and profiles of a third of the United States to do some damage? What if the server had contained location history,browsing history, or shopping history gathered from every site with a share button (which is a tracker) embedded at the bottom of the page. What if that server had contained home addresses, job history, family connections, facial recognition data? How much is too much?
China and Russia (and pretty much any major country) has literal armies of people who's entire job is to gather and weaponize this kind of data.
At which point should the government step in and force companies to treat these increasingly common and indescribably immense compilations of valuable data to be treated as classified?
There really needs to be some national discourse about this kind of thing.