On June 6 2013, the Washington Post and The Guardian simultaneously published NSA internal slides from a classified presentation titled "PRISM/US-984XN Overview." The slides identified nine companies and described the collection program in operational detail.

The Privacy and Civil Liberties Oversight Board's July 2014 report on the Section 702 program confirmed PRISM's legal basis and operational parameters, including the scale of US-person "incidental collection." The PCLOB is an independent federal oversight body.

Following the Snowden disclosures, NSA Director Alexander testified before Senate and House committees. His testimony confirmed the programs' existence and legal authorization while defending their operational necessity.

Snowden also disclosed Boundless Informant, an NSA analytics tool showing billions of records collected monthly. The tool's existence and data contradicted Alexander's 2012 Senate testimony that the NSA did not collect data on millions of Americans.

All nine named companies issued denials of "direct access" to servers. The denials were technically accurate in the narrow sense that NSA did not have unrestricted server access but obscured the legal compulsion to provide data on demand under FISA court orders.

Unlike the Room 641A program, PRISM operated under explicit Section 702 FISA authorization. The PCLOB found the program legally authorized. The constitutional concerns relate to incidental US-person collection, not to the absence of legal authority.

Snowden worked as a contractor for Booz Allen Hamilton at an NSA facility in Hawaii. His access to PRISM documents came from his legitimate work role. He transmitted the documents to journalists Greenwald and Gellman before traveling to Hong Kong.

Following the disclosures, all major named companies began publishing annual transparency reports disclosing FISA request volumes. These reports confirmed ongoing legal compliance with FISA court orders, corroborating the program's continuing operation.

Apple, Google, Microsoft, Facebook, and other PRISM-listed companies consistently and specifically denied providing NSA with 'direct access' to their servers. Post-Snowden reporting and subsequent legal proceedings established that companies received Section 702 orders through FISC and provided responsive data through secure government portals — a court-ordered process, not a backdoor arrangement. This distinction matters: framing PRISM as a secret voluntary corporate conspiracy to share user data without legal process misstates the documented mechanism, which involved compelled disclosure under classified judicial authority.

The FISC reviews Section 702 certifications annually and has issued opinions — some of which were declassified post-Snowden — finding compliance violations and requiring remediation. The court's 2011 opinion finding certain upstream collection techniques violated the Fourth Amendment (later modified) demonstrates that judicial oversight identified and constrained NSA overreach. While critics argue FISC oversight is insufficiently adversarial, the existence of compliance findings and mandated remediation is inconsistent with a characterisation of Section 702 as a completely unchecked or wholly secret programme operating outside any legal accountability.

On June 6 2013, the Washington Post and The Guardian simultaneously published NSA internal slides from a classified presentation titled "PRISM/US-984XN Overview." The slides identified nine companies and described the collection program in operational detail.

The Privacy and Civil Liberties Oversight Board's July 2014 report on the Section 702 program confirmed PRISM's legal basis and operational parameters, including the scale of US-person "incidental collection." The PCLOB is an independent federal oversight body.

Following the Snowden disclosures, NSA Director Alexander testified before Senate and House committees. His testimony confirmed the programs' existence and legal authorization while defending their operational necessity.

Snowden also disclosed Boundless Informant, an NSA analytics tool showing billions of records collected monthly. The tool's existence and data contradicted Alexander's 2012 Senate testimony that the NSA did not collect data on millions of Americans.

Snowden worked as a contractor for Booz Allen Hamilton at an NSA facility in Hawaii. His access to PRISM documents came from his legitimate work role. He transmitted the documents to journalists Greenwald and Gellman before traveling to Hong Kong.

Following the disclosures, all major named companies began publishing annual transparency reports disclosing FISA request volumes. These reports confirmed ongoing legal compliance with FISA court orders, corroborating the program's continuing operation.

Unlike the Room 641A program, PRISM operated under explicit Section 702 FISA authorization. The PCLOB found the program legally authorized. The constitutional concerns relate to incidental US-person collection, not to the absence of legal authority.

Apple, Google, Microsoft, Facebook, and other PRISM-listed companies consistently and specifically denied providing NSA with 'direct access' to their servers. Post-Snowden reporting and subsequent legal proceedings established that companies received Section 702 orders through FISC and provided responsive data through secure government portals — a court-ordered process, not a backdoor arrangement. This distinction matters: framing PRISM as a secret voluntary corporate conspiracy to share user data without legal process misstates the documented mechanism, which involved compelled disclosure under classified judicial authority.

All nine named companies issued denials of "direct access" to servers. The denials were technically accurate in the narrow sense that NSA did not have unrestricted server access but obscured the legal compulsion to provide data on demand under FISA court orders.

The FISC reviews Section 702 certifications annually and has issued opinions — some of which were declassified post-Snowden — finding compliance violations and requiring remediation. The court's 2011 opinion finding certain upstream collection techniques violated the Fourth Amendment (later modified) demonstrates that judicial oversight identified and constrained NSA overreach. While critics argue FISC oversight is insufficiently adversarial, the existence of compliance findings and mandated remediation is inconsistent with a characterisation of Section 702 as a completely unchecked or wholly secret programme operating outside any legal accountability.