Anonymous whistleblowing: what you need to know
Anonymous whistleblowing can expose the misbehavior of corporations and governments. In this article, we explain the importance of anonymity and privacy for potential whistleblowers and discuss how NordVPN can help activists and journalists in the pursuit of truth.
What are the risks of whistleblowing?
To blow the whistle safely and successfully, you need to understand the risks:
- You might get demoted or lose your job if your identity is revealed while you’re working at the company or organization.
- You might be seen as a traitor and bullied if you stay within the company and your colleagues suspect you blew the whistle.
- You might be blocklisted by other companies in the same industry if your identity is revealed.
- You might face legal action if it is revealed that you participated in illegal activities or if your whistleblowing is considered illegal by the state. However, law enforcement agencies might be more lenient to whistleblowers.
- You might get sued under the False Claims Act, or by your company if whistleblowing breaches your employment contract.
What can lead back to you?
Many things can help investigators to reveal your identity, from the devices you use to collect and share sensitive information to hard copies of documents you leak or even the people you’ve spoken to. However, if you are serious about keeping your identity anonymous, you might want to know how information about you, the whistleblower, can be collected by authorities and result in a whistleblower claim.
Computers
Most employers have monitoring software installed on their computers to track everything you do, from your internet browsing history to what files you’ve accessed, copied and shared. Queries for large quantities of data that you’ve never requested before, unknown USBs to move files, suddenly encrypted connections – all of this might raise suspicion or let them track you.
Let’s not forget that all social media and email accounts track your IP address and location. They keep a log of previous sessions too. Once you secure your accounts, don’t forget that the files you share can carry metadata. Word, Excel or PDF documents can all show who created the file and when and where they did it.
Networks log all information
At work, your company might record keystrokes, screenshots, or programs on your device. They could even implement total network monitoring. Network monitoring records your timestamps (what time you log on or off the company network) and any abnormal traffic patterns.
Using a VPN or the Tor Network will help keep you private and secure, but bear in mind that the people who monitor your networks might become suspicious at any traffic they can’t decipher. Its also a good idea to always use networks that aren’t controlled by the company.
Use NordVPN to hide your traffic!
Phones
Phone use also carries a significant risk of being exposed. All modern smartphones have GPS features and can tell service providers your location even when the GPS is turned off. Imagine the information someone could gather by listening to your past conversations on unencrypted calling and messaging apps.
Hard copies
Scanned and printed documents can also give out a lot of information about their source. Printers and scanners tend to keep timestamps and user information. Most printed documents have tracking codes that could help detect which printer was used to print it out.
Also, don’t forget that your handwriting can easily reveal your identity. Signed documents, handwritten notes, even an address written on an anonymous letter sent to an independent newspaper – all can be associated and linked back to you.
Money
Less and less people use cash, and the use of electronic payments makes it incredibly easy to track their every move. Electronic transactions leave a trail. A cup of coffee you bought at a café or a bus ticket to the other side of town can help an investigator discover when and where you met with someone and possibly blew the whistle.
Other people
It might not come as a surprise, but other people can be the reason why you won’t stay anonymous for long. Have you spoken to someone about an issue at work that then hit the headlines of the New York Times? It’s very likely you will become a scapegoat. Did you meet a journalist at a local bar? There will be plenty of witnesses to confirm that you were there.
Magazines or whistleblower reward agencies will do their best to hide your identity, though being a “confidential whistleblower” might not always be possible. They might ask you to reveal and confirm your identity to file a case against your company or to prove that the documents you provided are legitimate.
If you think that there’s a chance that you’ll need to reveal your identity, consider getting a lawyer – sometimes you can even obtain confidential informant status. Lawyers can help you understand what type of information will be valid (or not) in any potential court cases. They will also be able to represent you to other parties so you don’t ever need to meet anyone in person.
How can NordVPN help?
There are many things you need to consider if you want to blow the whistle and remain anonymous. NordVPN can help you to:
- Hide your IP address and your location so that your internet browsing activity cannot be seen by any prying eyes.
- Encrypt your traffic so that your traffic can’t be intercepted or deciphered by the company you work for, or anyone else for that matter.
- Secure you on public Wi-Fi if you need to use an outside connection to blow the whistle. Not many people realize that public Wi-Fi spots are often unsecured and unencrypted, this means that criminals or spies could decipher what you’re doing online.
We understand that anonymous whistleblowing is a risky business and that sometimes, remaining anonymous might not be possible for reasons entirely out of your control. If you decide to take the risk, make sure your actions are part of the fight for the greater good! Depending on your situation, you may also qualify for our emergency VPN access.