Why I’m Suing to Stop Trump and Musk’s 'DOGE' Data Grab
The U.S. DOGE Service is breaking privacy laws and putting millions at risk—let’s talk about why this matters.
I am suing the federal government over a data privacy crisis engineered by Donald Trump and Elon Musk that’s illegal and dangerous.
Musk’s handpicked team, including unvetted individuals like a teenager who was fired from a previous job for leaking sensitive data, now has direct administrative access to sensitive government data systems. These systems house vital personal data—such as Social Security numbers, banking details, and addresses—for millions of Americans, including veterans, federal employees, and those with student loans.
This initiative, called the “U.S. DOGE Service,” claims to “modernize government tech.” But what’s really happening is a complete disregard for legal safeguards on personal data. The Privacy Act exists to prevent precisely this kind of unauthorized access. The risks are staggering: identity theft, fraud, and political targeting. Once your data is exposed, it’s virtually impossible to undo the damage.
The sheer scale of this program’s impact cannot be overstated. This incursion on our privacy exemplifies how modern authoritarian regimes manipulate technology and law to undermine democratic norms—mirroring the total government control of citizens' data seen in Xi's communist-ruled China and Putin's oligarchy in Russia. Here in the United States, the personal information stored in these systems is meant to be used strictly within the bounds of privacy protections established by decades of legal precedent.
Let’s break down what’s happening, why it’s illegal, and what we’re fighting to change.
What Is the DOGE Program?
On January 20, 2025, Trump signed an executive order transforming the U.S. Digital Service into the “U.S. DOGE Service.” Elon Musk was appointed to lead this initiative, ostensibly to improve government efficiency. In reality, this program has become a politically motivated power grab.
One of DOGE’s appointees, 19-year-old Edward Coristine, was recently given a senior advisory role at the State Department’s Bureau of Diplomatic Technology despite his past involvement with online communities linked to hacking, cybercrime, and white supremacist rhetoric. According to Musk Watch, Coristine previously ran an image-sharing site associated with URLs referencing child exploitation, racial slurs, and violent misogyny. More details on this troubling background can be found here.
DOGE operatives—most, if not all of them Musk’s personal allies pulled into government from his private companies—have been granted unprecedented access to critical data systems across multiple agencies. These systems include the Federal Disbursement System (which manages Social Security and veterans’ payments), the National Student Loan Data System, and personnel records within the Office of Personnel Management (OPM).
Reports from within the agencies reveal that DOGE’s activities have disrupted routine operations. Federal workers describe being sidelined while unqualified DOGE appointees assume control of essential systems. This has led to growing fears among career officials that these records may be manipulated or misused without oversight.
Unsurprisingly, considering that they report to Musk—who thinks he's accountable to no one—DOGE members aren’t adhering to anything resembling established security protocols. Reports indicate that they’re using unsecured devices to access these sensitive systems, and some have histories of leaking confidential information.
Federal cybersecurity experts have labeled DOGE the most significant insider threat risk ever seen.
The consequences of this program go beyond immediate security threats. By undermining the integrity of federal recordkeeping, DOGE’s actions destabilize critical services—including veterans’ benefits, Social Security payments, and loan disbursements—that millions of Americans depend on.
For further context, I explored how authoritarian tactics are at play with the creation of “DOGE” in my Substack post last week:
Why This Violates the Privacy Act
Congress enacted the Privacy Act of 1974 to protect individuals from government overreach in response to the abuses revealed during Watergate. Under the Act, agencies are forbidden from sharing personal records without explicit consent, except under very specific circumstances.
The Act is rooted in a fundamental principle: personal data should only be collected and used in ways that serve legitimate, clearly defined purposes. Agencies are required to establish safeguards to prevent unauthorized disclosures and must provide transparency about how data is stored and shared. Violations of these safeguards aren’t just procedural errors—they are breaches of trust with profound implications for privacy and civil liberties.
DOGE’s operations flout these legal protections. None of the individuals whose data is being accessed—including myself—authorized it. Instead, DOGE leaders are exploiting this data, even integrating it into untested AI systems. Their actions pose immense threats to privacy, security, and democracy.
If this unchecked access continues, we’re looking at real-world consequences: identity theft, financial exploitation, and political retribution. Once breached, personal information can spread irreversibly across the internet. The misuse of this data could enable everything from targeted harassment campaigns to the disruption of individuals’ financial stability.
Who Is Affected?
This breach affects millions of Americans who have interacted with the federal government, including:
Veterans and military retirees receiving VA benefits
Social Security and tax refund recipients
Federal employees and job applicants
Students and families with federal loans
The data at risk includes not only Social Security numbers and financial details but also medical information, biometric data, and employment histories. These details, if exposed, can be weaponized to undermine people’s livelihoods, security, and even their personal safety.
Moreover, the breach raises broader concerns about public trust. As federal data security crumbles under political interference, individuals may become less willing to engage with government programs, fearing that their information could be compromised.
My Personal Stake in This Fight
Now look, let's get personal. For those of you who may not already know who I am—my name is Kris Goldsmith, and I'm a former US Army Sergeant and Iraq War veteran. Rolling Stone calls me “The Neo-Nazi Hunter Next Door.”
I run two nonprofits that actively combat domestic extremism: Task Force Butler Institute and Veterans Fighting Fascism. Our mission is to train veterans in open-source intelligence gathering so they can investigate extremist groups and collect evidence of criminal behavior, and to educate Americans on lawfully combating these extremist threats.
Our team has successfully contributed to the arrests of dozens of neo-Nazis, secured both misdemeanor and felony convictions, and helped facilitate multiple federal lawsuits. Just last month, our work contributed to a $3 million judgment against Patriot Front. That’s the hate group whose flash-mob-style marches go viral on social media every few months—those guys in Best Buy-style uniforms and covering their faces with white neck gaiters.
Because of this work, I’ve already faced political retribution from neo-Nazis. Public reports have revealed that Elon Musk’s team several includes individuals from criminal hacking communities—people who break into accounts, steal personal data, and use it for extortion. Musk’s team is connected to the same kinds of people who have threatened my life.
Last summer, a neo-Nazi was jailed for a hate crime after hand-delivering a death threat to my mother’s home. I’m still dealing with at least two open federal investigations into other threats.
The Trump administration’s recklessness in granting Musk’s team access to sensitive data is exacerbating these dangers. This administration has even defended racists on Musk’s team. Recently, the Wall Street Journal exposed one of Musk’s staff members, Marko Elez, for posting blatantly racist tweets, which resulted in Elez’s resignation. Instead of the Trump Administration distancing itself from the scandal, Elez was publicly defended by both Elon Musk and Vice President J.D. Vance, who then brought him back into a government position.
I’ve spent thousands of dollars trying to protect my data and my safety, but this unlawful data access is putting my life and my family at risk.
These are not abstract concerns—they’re potentially deadly.
And this administration’s deliberate decision to empower extremists puts countless Americans at risk. My personal data is stored in systems managed by agencies like the Department of Education and the Department of Treasury. I’m deeply alarmed that this sensitive information has been exposed due to DOGE’s reckless behavior.
The psychological toll of this situation is immense. Knowing that your personal information is vulnerable creates a constant sense of anxiety. For every American, every interaction with government services now carries the question: Is my data safe? This pervasive insecurity is exactly what privacy laws are meant to prevent.
I’m not alone. Veterans, teachers, and federal employees who have joined this lawsuit face similar risks. The Privacy Act was designed to protect us from exactly these kinds of abuses.
As the Trump Administration continues to demonize and lie about those of us who’ve dedicated our lives to serving our country and our communities, each of us becomes targets for violent MAGA retribution.
What We’re Asking the Court to Do
Our lawsuit seeks immediate judicial intervention. We are requesting:
An injunction to halt DOGE’s unauthorized data access
The retrieval or destruction of unlawfully obtained data
Full restoration of Privacy Act protections within federal agencies
This case isn’t about partisan politics. It’s about safeguarding Americans’ privacy and upholding the rule of law. Courts have an essential role in ensuring that executive overreach does not undermine constitutional rights. By granting injunctive relief, the judiciary can prevent further harm and restore public confidence in government accountability.
How You Can Help
We can’t win this fight without public support. Here’s what you can do:
Stay informed: Share this post and educate others about the dangers of the DOGE program. Visit Protect Democracy to read our filing, and check our their Substack post. If you want to follow my work or support this fight, make sure you’ve subscribed to me here at On Offense with Kris Goldsmith on Substack, where I share updates and tools to combat authoritarianism effectively.
Contact your representatives: Push for congressional oversight of Elon Musk and his through 5 Calls. The 5 Calls website has a tool to connect you with your representatives, and a very helpful script so that you know exactly what to say to make sure your opinion is tallied.
Protect your data: Take steps to secure your personal information. Services like Kanary can help reduce your exposure. (This is the service that I use—it's a women-owned small business, and their customer service is far superior to their big corporate competitors. Make sure you tell them I sent you!)
Privacy is a fundamental right. We can’t allow unchecked access to personal data by those in power. Thank you for standing with us in this critical fight. Now let’s stay on offense.
Stay tuned for updates on the case.
Kris, for those that didn’t work in the federal government but have been recipients of tax refunds and hold student loans, are they able to sue as well? If so, what type of lawyer would they need?
Thanks, Kris! More people need to join this lawsuit. This is abhorrent and CRAZY dangerous what this thief has done and keeps on doing. The spineless republicans allowed this shit to happen. They must pay come 2026. How dare they!! 😤