City of Seattle Email metadata

Dear Bridget Brululo,

Welcome to the City of Seattle Public Records Request Center (PRRC). Your request was received on January 17, 2022 and is appended below.

The reference number for this request is C085851-011722. You will see this number in the title of any communications about this request.

You will hear from a Public Disclosure Officer within five business days regarding the status of your request.

Please visit the City of Seattle Public Records Request Center where you can manage your profile and access your request. Your login ID is: requests@muckrock.com

If a Public Disclosure Officer submitted your public disclosure request into the PRRC on your behalf, please login and complete your new user account by following these steps:

* Access the Public Records Request Center
* Select 'Forgot my Password'
* Enter your 'Login ID' (email address)
* A temporary password will be sent to you via email
* Login with the temporary password
You may now visit the PRRC 'My Records Request Center' anytime!

Request C085851-011722:
" o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/

--- Please respond above this line ---

Dear Bridget Brululo,
This acknowledges receipt of your public disclosure request C085851-011722 received on January 17, 2022 regarding: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/
Pursuant to RCW 42.56.520, this is notification that the City of Seattle has received your public disclosure request. At this time, we anticipate that we will be able to provide the requested records or a first installment of records on or about February 28, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
This communication is in response to your public disclosure request C085851-011722 received on January 17, 2022.
The purpose of this email is to provide a status update regarding your request. Seattle IT needs additional time to respond to your request due to backlog of records requests . At this time, the Department anticipates that it will be able to provide the requested records or a first installment of records on or about March 11, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
This communication is in response to your public disclosure request C085851-011722 received on January 17, 2022.
The purpose of this email is to provide a status update regarding your request. Seattle IT needs additional time to respond to your request due to size and complexity of the request . At this time, the Department anticipates that it will be able to provide the requested records or a first installment of records on or about April 15, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
This communication is in response to your public disclosure request C085851-011722 received on January 17, 2022.
The purpose of this email is to provide a status update regarding your request. Seattle IT needs additional time to respond to your request due to the complexity of your request . At this time, the Department anticipates that it will be able to provide the requested records or a first installment of records on or about May 15, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
II am temporarily filling in for the Information Technology Department Public Disclosure Officer and am coming up to speed on this request.  I apologize for the added delay but will have a more thorough update for you tomorrow.
Sincerely,
Information Technology Department.

--- Please respond above this line ---

Dear Bridget,
I do apologize but it's taking a little longer than I had hoped to finalize my update to you.  I will be in touch no later than this Friday, May 20 with an update.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
Thank you for patience while I looked into this request.  I have the following information to update you with: Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
Emails are sent and received via a third-party service, M365, and stored on a cloud server not on ITD maintained servers.  Please let me know if a) you would like to amend your request to receive these cloud-based records and b) clarify what you mean by headers by May 27, 2022.
Please note, I ran an initial search, and the return was over 36 million items.  If you decide to move forward, please know this will take quite a bit of time to work through. If you would like to provide a date range for your search, that would help reduce review time.

Please also note that the Subject line of emails may contain exempt information, such as attorney client privileged communications, and therefore would require some level of substantive review. Any logs that track IMAP create, read, update, or delete operations and SMTP transaction logs for email servers maintained by the ITD
For both log types, the records you are requesting are kept on an up-to-30 day rolling retention period.  It could be less and that is determined by available storage capacity. These are transitory records as the City does not use them for any governmental purpose.
Unfortunately, by the time I requested the records, the data available at the time of your request had been deleted. We are currently conducting a query into the database where this information is stored to determine if any of that information can be recovered and expect to have more information on that by the end of next week. Call time, number, and call duration for calls made through or received by any PBX operated by the ITD
The records you are requesting are kept on 18 month rolling retention period.  Unfortunately, by the time I requested the records, some of the data available at the time of your request had been deleted.  We are able to retrieve the information that remains in a .csv format but please know that with over 12,000 phone numbers, it will take some time to retrieve and review this information.  We are pulling records from the oldest date available, November 19, 2020 to present. I do not yet have a timeline on when all those records will be available but will update you once I do.
There are several phone lines in the City that are set up to assist the public who may be experiencing difficulties such as the Office of Refugee Affairs, the Utility Discount Program, and several Police units including for Domestic Violence, Hate/Bias Crimes, Sexual Assault, and Elder Abuse.  Due to the sensitivity of those interactions I would like your permission to redact those numbers since you will be posting this information online.  Please let me know if you are agreeable to that.  If I come across other contact lines that deal with similar types of information, I will ask you again for each number.
At this time, the Department anticipates that it will be able to provide the requested records or a first installment of records on or about June 15, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Hi Bridget,
Just wanted to let you know that your message has been received and I will have a more thorough response by the end of the week.
Thank you,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo:

Thank you for your response.  I am going to break up your reply  to make sure I’m understanding each piece as you intended.

“Please let me know if a) you would like to amend your request to receive these cloud-based records and b) clarify what you mean by headers by May 27, 2022. The concept of headers is defined in RFCs 822 and 2822. It is basically everything that's not the body. Please provide these records regardless of where they're stored. I am interpreting this as a request for all metadata or the To, From, CC, BCC, Date/Time, and Subject Lines of each email?

Please also note that the Subject line of emails may contain exempt information, such as attorney client privileged communications, and therefore would require some level of substantive review. I would like to be able to identify specific records if I need to request them in the future, but I also don't need the content of the subject for all records. Would it be possible to replace the contents of the subject line with a unique one way token such as a sha1sum? This would redact the content while still giving me some information that I could use to uniquely identify records for future requests.” I am unclear if you are asking me to remove all subject lines or just the ones that would be exempt?  If there is an email you are interested in, I will be able to identify it based on the file name and row number as we will have the unredacted version of the record provided to you to the extent the record is not exempt.

These are transitory records as the City does not use them for any governmental purpose. These logs could help verify that requested email content isn't deleted after a public records request or could be critical for incident response after a compromise. Are you sure that not tracking deletes is in conformance with public records law and security best practices? As an update to our previous correspondence on May 20, Seattle IT is still building a query to determine whether these transitory records still exist. We should be able to confirm either way and will provide an update on or before June 6.

We are able to retrieve the information that remains in a .csv format but please know that with over 12, 000 phone numbers, it will take some time to retrieve and review this information. What information needs to be reviewed and is there any way I could amend my request to remove the need to review them? I would be fine if all phone numbers for SPD employees were replaced with their serial number and a designator if it's a(n employee's) personal or work number. All other numbers could be replaced with a one way token such as a sha1sum or other one way hash function (any function that provides the same value for the same input). I don't really care about specific pieces of data, I'm really only interested in it's shape. Any records that are considered potentially responsive to a request must be reviewed for possible exemptions.  While there are some SPD numbers that would be considered exempt, it would not be all of them.  There are also some call from numbers that would be exempt, such as those from the Federal Bureau of Investigation. In those instances, we would apply an exemption code and provide an explanation and would not use any other types of identifiers. I’m providing two examples of made-up data of what that would like.  The examples are titled Example Phone Log and Example Exemption Log and you can download them via the portal.

There are several phone lines in the City that are set up to assist the public who may be experiencing difficulties such as the Office of Refugee Affairs, the Utility Discount Program, and several Police units including for Domestic Violence, Hate/Bias Crimes, Sexual Assault, and Elder Abuse. If the above redaction method is deemed insufficient for the sensitivity of these for some reason, please remove these from the list and provide instead a list of which specific numbers are removed and their purpose. Please remove any sensitive number as you come across them following this pattern (remove from request and clearly state which things have been removed and what purpose they serve), and I will explicitly request information on those if needed in a future request. Thank you for your hard work. I am interpreting this as you are agreeing to remove the numbers for the six workgroups listed and I will supply a list of which of those six numbers are being removed with each installment.  I will designate the numbers redacted as Ex. PA.

Please provide clarification or correction by June 6, 2022.  If I do not hear back from you, I will move forward with my interpretations and will assume that you would like me to redact only the subject lines that are exempt, and provide the To, From, CC, BCC, Date/Time, and Subject Lines of each email.

Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
My apologies, I realized the example documents for the phone logs I referenced in my last communication were not attached. I have corrected that and you will find the download instructions at the end of this message.
I've also attached a sample of the headers for an ITD email which, I believe, is what you are asking for based on your last two communications.  Please let me know if that is not the case by June 10, 2022.  Please note that the sample provided is one of just over 180,000 emails returned for a two week period in 2021.  It is going to take a considerable amount of time to review just this set of records.  If there is a date range or other topic you would like me to focus on first, please let me know.  Otherwise, I will work backwards from the date of your request.
Finally, I am sorry to say that I have received confirmation that the iMap and SMTP logs you requested cannot be recovered.

To download your records, please:

* Navigate to the Public Records Request Center. Send Message
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Select this request: C085851-011722.
* Select the 'View Files' button.
* You can download records individually or all at the same time by clicking 'Download All'.
* Please save your records as you may only download them from the system three times. If you do not download your records within 30 days of request closure, the link to your records will expire.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
Unfortunately, after looking at additional records, we determined that removing the subject line would not be enough to eliminate review.  Exempt information such as Hostnames and IP Addresses may exist within the header information and the exempt information does not appear in the same line/lines of the header on some of the emails so review will remain necessary.  The Thread-Topic line would also need to be reviewed as it appears to duplicate the same information as the Subject Line.
The good news is that it appears that emails to/from only ITD employees contains largely non-exempt content. If you are agreeable, we would like to focus on these emails first and remove both the Subject and Thread-Topic lines. This will allow us to review larger amounts of records for each installment. Please let me know by June 17 if that is okay with you.
If we don’t hear from you by then, I will remove the subject line and work from the most recent records backwards.
Sincerely,
Information Technology Department

Dear Bridget Brululo,

Records in response to your public disclosure request C085851-011722 received on January 17, 2022 are now available. The cost for the records is as follows:

Invoice Number: INV22-C085851-1
Total: $1.25

To pay online, please follow these steps:
Please note that you will need to disable any pop-up blockers to make a payment using the system.

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Find this request: C085851-011722.
* Select the 'View Invoices' button.

* Opens a pop-up window showing your invoice: INV22-C085851-1.
* Click on the invoice and then the 'Pay Now' button.
* Continue processing your payment.
* Select 'Done'.
* Once the payment process is done, you are returned to the Public Records Request Center.
* After your payment is successful you will receive an email from our payments center.
Once your payment has been approved, we will send you an email with instructions on how to download your records. Note that City staff must manually upload records. Records will be available one to two business days after payment.

Please let your public disclosure officer (PDO) know if you are unable to pay online; your PDO will work with you on alternative ways to make your payment.

You have 30 days from today's date to pay for your records. If the City does not receive your payment within this time period, your request will be considered abandoned, and you will need to submit a new request.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

--- Please respond above this line ---

Dear Bridget Brululo,
We've just sent an invoice for telephone records.  Please let us know if you don't receive that. Please note that on the telephone records, while the Information Technology Department does have access, we are working with the subject matter experts at the Seattle Police Department (SPD) for review of their phone lines.  Please let us know if you would prefer to work directly with SPD on that subset of records and we will create a duplicate request.
We also wanted to acknowledge receipt of your latest communication and will provide a response shortly.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
We apologize for the delayed response to your June 14 message.  Here is what we have determined: A subset of the email internet headers you have requested are tied to autogenerated systems the City utilizes. The internet headers: Authentication-Results, Authentication-Results-Original, From, In-Reply-To, Message-ID, Received, Received-SPF, References, Reply-To, Return-Path, To, X-CrossPremisesHeadersFilteredBySendConnector, X-MS-Exchange-Authentication-Results, X-MS-Exchange-CrossTenant-AuthSource, X-MS-Exchange-Organization-AuthSource, X-MS-Exchange-Parent-Message-Id, X-MS-TNEF-Correlator, X-OrganizationHeadersPreserved, x-originating-ip, may contain sensitive information such as internal hostnames, internal IP address, and/or software version numbers, the City is currently utilizing.. The release of this information would present a security risk to the City in allowing an outside user to potentially identify and exploit specific vulnerabilities that may increase risk to the confidentiality, integrity, or availability of security, information technology infrastructure, or assets. This information is therefore going to be exempt from disclosure under RCW 42.56.420(4). Reviewing the massive amount of data, you have requested, line by line, to ensure that information is not inadvertently disclosed would take an extraordinarily long time, and delay our ability to provide you records as quickly as we would lik Send Message (Message.aspx?id=85851&q=&showResponse=0&showDraft=0&caller=%2fWEBAPP%2fZAdmin%2fServiceRequests%2fDetails.aspx%3fid%3d85851%26nosid%3dna%26fromsearch%3d1%26view%3d601%26idx%3d6%26prevRequestId%3d94145%26nextRequestId%3d94592%26totrecs%3d16%26staff%3d13777%26closed%3d0%26other%3d%26caller%3d%252fWEBAPP%252fZAdmin%252fServiceRequests%252fSearch.aspx%253f%2526pg%253d0%2526sort%253dsla_date%2526dir%253dASC%2526restore%253d1%2526staff%253d13777%2526closed%253d0%2526other%253d%2526view%253d601%2526showSingleResult%253d1&nosid=na#) e to. We appreciate your willingness thus far to amend your request in ways that we believe will allow as timely a response as possible. We intend to try and isolate the exempt data that poses a security risk and produce the rest of the data as quickly as we can. If you do not need or want automatically generated infrastructure status messages, infrastructure health messages, system job status, security alert & notifications, we can amend your request to reflect this, and it will allow us to move forward more efficiently. Please understand that working with this volume of data takes a considerable amount of time, both in terms of actual processing time and staff time in reviewing these records, so even if you are willing to make the suggested modification to your request, and while we anticipate that such a modification will help things go much more quickly, it is going to still take time to produce the data you are seeking. Sincerely, Information Technology Department

Dear Bridget Brululo,

Thank you for your recent payment to the City of Seattle Public Records Request Center on 07/22/2022.
Within one to two business days, you will receive an email from your public disclosure officer indicating your records are available and instructing you on how to retrieve them. Public Disclosure Request Number: C085851-011722 Invoice Number: INV22-C085851-1 Payment Date: 07/22/2022 Invoice Status: Paid

You can view your payments by logging in to the Public Records Request Center.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

Dear Bridget Brululo,

Records in response to your public disclosure request C085851-011722 received on January 17, 2022 are now available. The cost for the records is as follows:

Invoice Number: INV22-C085851-1
Total: $1.25

To pay online, please follow these steps:
Please note that you will need to disable any pop-up blockers to make a payment using the system.

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Find this request: C085851-011722.
* Select the 'View Invoices' button.

* Opens a pop-up window showing your invoice: INV22-C085851-1.
* Click on the invoice and then the 'Pay Now' button.
* Continue processing your payment.
* Select 'Done'.
* Once the payment process is done, you are returned to the Public Records Request Center.
* After your payment is successful you will receive an email from our payments center.
Once your payment has been approved, we will send you an email with instructions on how to download your records. Note that City staff must manually upload records. Records will be available one to two business days after payment.

Please let your public disclosure officer (PDO) know if you are unable to pay online; your PDO will work with you on alternative ways to make your payment.

You have 30 days from today's date to pay for your records. If the City does not receive your payment within this time period, your request will be considered abandoned, and you will need to submit a new request.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

--- Please respond above this line ---

Dear Bridget Brululo,
Records are now available in response to your request C085851-011722 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/
The records being made available to you at this time include the following: City phone logs minus the Seattle Police Department from November 2021.
To download your records, please:

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Select this request: C085851-011722.
* Select the 'View Files' button.
* You can download records individually or all at the same time by clicking 'Download All'.
* Please save your records as you may only download them from the system three times. If you do not download your records within 30 days of request closure, the link to your records will expire.
If you believe you have received privileged or confidential records in error, please notify the City of Seattle immediately, through the Public Records Request Center or by email. Privileged or confidential records provided or received in error should not be reviewed, used, disseminated, distributed, or copied, and should be destroyed immediately. Thank you in advance for your cooperation.
We have redacted the Utility Discount Program phone number from the records we are providing, as you agreed on May 23, 2021 that we could redact this information in fulfilling your request.
Due to the size and scope of your request, we are providing records to you in installments. We anticipate that the next installment of records will be available on or about August 31, 2022.
Sincerely,
Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
We've received a second check for this public disclosure request.  Since you've already paid for the first invoice, we are returning this check back to you.
Sincerely,
Information Technology Department

Dear Bridget Brululo,

Records in response to your public disclosure request C085851-011722 received on January 17, 2022 are now available. The cost for the records is as follows:

Invoice Number: INV22-C085851-2
Total: $1.25

To pay online, please follow these steps:

Please note that you will need to disable any pop-up blockers to make a payment using the system.
Navigate to the Public Records Request Center.
Select 'My Records Request Center'.
Select 'View My Requests'. You may be asked to login.
Find this request: C085851-011722.
Select the 'View Invoices' button.
Opens a pop-up window showing your invoice: INV22-C085851-2.
Click on the invoice and then the 'Pay Now' button.
Continue processing your payment.
Select 'Done'.
Once the payment process is done, you are returned to the Public Records Request Center.
After your payment is successful you will receive an email from our payments center.
Once your payment has been approved, we will send you an email with instructions on how to download your records. Note that City staff must manually upload records. Records will be available one to two business days after payment.

Please let your public disclosure officer (PDO) know if you are unable to pay online; your PDO will work with you on alternative ways to make your payment.

You have 30 days from today's date to pay for your records. If the City does not receive your payment within this time period, your request will be considered abandoned, and you will need to submit a new request.

Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox.

Dear Bridget Brululo,

Thank you for your recent payment to the City of Seattle Public Records Request Center on 09/28/2022.
Within one to two business days, you will receive an email from your public disclosure officer indicating your records are available and instructing you on how to retrieve them. Public Disclosure Request Number: C085851-011722 Invoice Number: INV22-C085851-2 Payment Date: 09/28/2022 Invoice Status: Paid

You can view your payments by logging in to the Public Records Request Center.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

--- Please respond above this line ---

Dear Bridget Brululo,
Records are now available in response to your request C085851-011722 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/
The records being made available to you at this time include the following: Phone Records.
To download your records, please:

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Select this request: C085851-011722.
* Select the 'View Files' button.
* You can download records individually or all at the same time by clicking 'Download All'.
* Please save your records as you may only download them from the system three times. If you do not download your records within 30 days of request closure, the link to your records will expire.
If you believe you have received privileged or confidential records in error, please notify the City of Seattle immediately, through the Public Records Request Center or by email. Privileged or confidential records provided or received in error should not be reviewed, used, disseminated, distributed, or copied, and should be destroyed immediately. Thank you in advance for your cooperation.
Due to the size and scope of your request, we are providing records to you in installments. We anticipate that the next installment of records will be available on or about 11/9/2022.
Sincerely,
Information Technology Department

Dear Bridget Brululo,

Records in response to your public disclosure request C085851-011722 received on January 17, 2022 are now available. The cost for the records is as follows:

Invoice Number: INV22-C085851-3
Total: $1.25

To pay online, please follow these steps:
Please note that you will need to disable any pop-up blockers to make a payment using the system.

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Find this request: C085851-011722.
* Select the 'View Invoices' button.

* Opens a pop-up window showing your invoice: INV22-C085851-3.
* Click on the invoice and then the 'Pay Now' button.
* Continue processing your payment.
* Select 'Done'.
* Once the payment process is done, you are returned to the Public Records Request Center.
* After your payment is successful you will receive an email from our payments center.
Once your payment has been approved, we will send you an email with instructions on how to download your records. Note that City staff must manually upload records. Records will be available one to two business days after payment.

Please let your public disclosure officer (PDO) know if you are unable to pay online; your PDO will work with you on alternative ways to make your payment.

You have 30 days from today's date to pay for your records. If the City does not receive your payment within this time period, your request will be considered abandoned, and you will need to submit a new request.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

11/14/2022 3:59:23 PM
Name: Bridget Brululo
RE:  Public Disclosure Request Payment
This message is from the City of Seattle's Payment Center.
Please notice the 'Payment Status' below.  If the payment was successful, you will also receive an email from the City of Seattle Public Records Request Center with additional information regarding your request.
Confirmation of your payment(s) made on 11/14/2022 3:59:23 PM by Bridget Brululo for $1.25.
Account Number: 60380
Payment Date: 11/14/2022
Payment Status: AUTHORIZED
Confirmation Code: 156128
Payment Amount: $ 1.25
If the payment was not successful, the 'Confirmation Code' will show 'none'.  Please try the payment process again and if it continues to be unsuccessful, contact the Customer Service Bureau and let them know which department you are requesting records from ( 206-684-2489).
Please add COS_Records-Request-Center-Payments@seattle.gov to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:COS_Records-Request-Center-Payments@seattle.gov)


This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

Dear Bridget Brululo,

Thank you for your recent payment to the City of Seattle Public Records Request Center on 11/14/2022.
Within one to two business days, you will receive an email from your public disclosure officer indicating your records are available and instructing you on how to retrieve them. Public Disclosure Request Number: C085851-011722 Invoice Number: INV22-C085851-3 Payment Date: 11/14/2022 Invoice Status: Paid

You can view your payments by logging in to the Public Records Request Center.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

--- Please respond above this line ---

Dear Bridget Brululo,
Records are now available in response to your request C085851-011722 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/
The records being made available to you at this time include the following: Phone Records.
To download your records, please:

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Select this request: C085851-011722.
* Select the 'View Files' button.
* You can download records individually or all at the same time by clicking 'Download All'.
* Please save your records as you may only download them from the system three times. If you do not download your records within 30 days of request closure, the link to your records will expire.
If you believe you have received privileged or confidential records in error, please notify the City of Seattle immediately, through the Public Records Request Center or by email. Privileged or confidential records provided or received in error should not be reviewed, used, disseminated, distributed, or copied, and should be destroyed immediately. Thank you in advance for your cooperation.
Due to the size and scope of your request, we are providing records to you in installments. We anticipate that the next installment of records will be available on or about 12/21/2022.
Sincerely,
Information technology Department

--- Please respond above this line ---
Dear Bridget Brululo, This email is in response to your public disclosure request C085851-011722 received on January 17, 2022 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/ Upon further review of the records with our subject matter experts it has been found that the "to and from" subset of the email headers may contain sensitive information. The release of this information would present a security risk to the city in allowing an outside user to potentially identify and exploit specific vulnerabilities that may increase risk to the confidentiality, integrity, or availability of security, information technology infrastructure, or assets. This information is therefore going to be exempt from disclosure under RCW 42.56.420(4). The redaction of this information would take significant time to review. We understand that you have stated that you would like the records in a state where they would not need review. The headers that would not require review would include the following: Accept-Language: Content-Language: Content-Transfer-Encoding: Content-Type: Date: List-ID: List-Unsubscribe-Post: List-Unsubscribe: MIME-Version: X-CSA-Complaints: x-CSA-Compliance-Source: X-EOPAttributedMessage: X-EOPTenantAttributedMessage: X-FE-ETP-CONNECTING-IP: X-FE-ETP-METADATA: X-FE-ETP-SENDER-IP: X-Forefront-Antispam-Report-Untrusted: X-Forefront-Antispam-Report: x-job: X-Microsoft-Antispam-Mailbox-Delivery: X-Microsoft-Antispam-Message-Info-Original: X-Microsoft-Antispam-Message-Info: X-Microsoft-Antispam-Untrusted: X-Microsoft-Antispam: X-MS-Exchange-CrossTenant-AuthAs: X-MS-Exchange-CrossTenant-FromEntityHeader: X-MS-Exchange-CrossTenant-Id: X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-OriginalArrivalTime: X-MS-Exchange-Organization-AuthAs: X-MS-Exchange-Organization-AuthMechanism: X-MS-Exchange-Organization-ExpirationInterval: X-MS-Exchange-Organization-ExpirationIntervalReason: X-MS-Exchange-Organization-ExpirationStartTime: X-MS-Exchange-Organization-ExpirationStartTimeReason: X-MS-Exchange-Organization-MessageDirectionality: X-MS-Exchange-Organization-Network-Message-Id: X-MS-Exchange-Organization-SCL: X-MS-Exchange-Processed-By-BccFoldering: X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-MS-Exchange-Transport-CrossTenantHeadersStripped: X-MS-Exchange-Transport-EndToEndLatency: X-MS-Has-Attach: X-MS-Office365-Filtering-Correlation-Id-Prvs: X-MS-Office365-Filtering-Correlation-Id: X-MS-PublicTrafficType: X-MS-TNEF-Correlator: X-MS-TrafficTypeDiagnostic: X-SFMC-Stack: Would this be an acceptable way to receive the records you are requesting. We appreciate your continued cooperation with us on the security measures of these records and are confident that this would be the only additional revision needed to the requested information. Please let us know how you would like to proceed on or before 12/13/2023, otherwise we will proceed with providing the records in a state that requires no review, as previously requested. Sincerely, Information Technology Department

--- Please respond above this line ---

Dear Bridget Brululo,
This email is in response to your public disclosure request C085851-011722 received on January 17, 2022 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/ This message is to inform you of the process with which we will be conducting the review and installments of the records requested. As stated in the previous correspondence the records you are requesting contain sensitive security information in the to/from field of the internet header. This sensitive information includes specific names for City servers, infrastructure, applications. This is highly sensitive information and must be redacted. The amount of content that these records contain, and the nature of the code make it difficult and time-consuming to parse through every line of the code for the sensitive server information. We have gone through these records with our subject matter experts and have determined a review schedule that will be the most efficient for processing these records without halting ITD productions and schedules. We will be conducting 3 hours of review for these records a week, with an installment of records every 8 weeks. With this new schedule in place your next installment of the email headers would be on or before 2/9/2023. If you have any questions, please let us know.
Sincerely,
Information Technology Department

Dear Bridget Brululo,

Records in response to your public disclosure request C085851-011722 received on January 17, 2022 are now available. The cost for the records is as follows:

Invoice Number: INV23-C085851-4
Total: $1.25

To pay online, please follow these steps:
Please note that you will need to disable any pop-up blockers to make a payment using the system.

* Navigate to the Public Records Request Center.
* Select 'My Records Request Center'.
* Select 'View My Requests'. You may be asked to login.
* Find this request: C085851-011722.
* Select the 'View Invoices' button.

* Opens a pop-up window showing your invoice: INV23-C085851-4.
* Click on the invoice and then the 'Pay Now' button.
* Continue processing your payment.
* Select 'Done'.
* Once the payment process is done, you are returned to the Public Records Request Center.
* After your payment is successful you will receive an email from our payments center.
Once your payment has been approved, we will send you an email with instructions on how to download your records. Note that City staff must manually upload records. Records will be available one to two business days after payment.

Please let your public disclosure officer (PDO) know if you are unable to pay online; your PDO will work with you on alternative ways to make your payment.

You have 30 days from today's date to pay for your records. If the City does not receive your payment within this time period, your request will be considered abandoned, and you will need to submit a new request.
Please add seattle@mycusthelp.net to your E-mail contacts/address book to ensure delivery of the record center E-mails to your Inbox. (mailto:seattle@mycusthelp.net)
This is an auto-generated email and has originated from an unmonitored email account. Please DO NOT REPLY.

--- Please respond above this line ---

Dear Bridget Brululo,
This email is in response to your public disclosure request C085851-011722 received on January 17, 2022 regarding the following: o Whom It May Concern:

Pursuant to the Washington Public Records Act, I hereby request the following records:

- Headers (only, not content) for all email sent or received that is currently stored on ITD maintained servers (e.g.: IMAP)
- Any logs that track IMAP create, read, update, or delete operations
- SMTP transaction logs for email servers maintained by the ITD
- Call time, number, and call duration for calls made through or received by any PBX operated by the ITD

Please prioritize these requests in the order stated, delivering results as items are completed.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.

Sincerely,

Bridget Brululo

Upload documents directly: https://www.muckrock.com/ Thank you for reaching out. Please note that this request was completed and closed on 3/13/2023 under failure to pay/pick up. If you would like to continue to pursue obtaining these records, you would need to submit a new request for records as the statute of limitations for this request has now passed.
Sincerely,
Information Technology Department