TLDR
The DOJ released documents exposing 43 or more victims' full names including 24 or more minors with home addresses, while heavily redacting perpetrator names in the same files. Over 200 survivor attorneys filed emergency motions. DOJ removed thousands of documents on February 2, 2026, five days after the initial release — but problems persisted for weeks. The release inverted the statute's intent: victims were exposed, perpetrators were shielded (PAPER TRAIL Project, 2026a; Epstein Records Transparency Act, 2025).
What the Statute Says
P.L. 119-38, the Epstein Files Transparency Act, passed 427-1. Its purpose was to force the release of documents about the powerful people who enabled, participated in, or covered up Epstein's criminal network. Section 2(a)(3) explicitly permits redaction of "information that would constitute an unwarranted invasion of personal privacy" (Epstein Records Transparency Act, 2025). The statute anticipated this exact risk and provided a legal mechanism to prevent it.
The DOJ had the authority to protect victims. It chose not to use it. Or, more precisely, it applied redaction authority aggressively to perpetrator names while failing to apply it to victim names. The result was the precise inverse of legislative intent (PAPER TRAIL Project, 2026a).
January 30: The Release
On January 30, 2026, the DOJ published the second tranche of Epstein files, including Data Sets 9 through 12. Within the release were documents containing unredacted victim names, home addresses, and nude or semi-nude images with faces visible (PAPER TRAIL Project, 2026a).
The Wall Street Journal found at least 43 victims' full names exposed in the release. Twenty-four or more were minors at the time of abuse. Some names appeared more than 100 times in keyword-searchable documents alongside their home addresses. These were not obscure references buried in metadata. They were plaintext names in documents that anyone with a web browser could find, download, and search (PAPER TRAIL Project, 2026a).
Rep. Robert Garcia's letter to the DOJ on February 6, 2026 documented that 31 or more child victim names were exposed (PAPER TRAIL Project, 2026b). Victim attorneys described the release as "the single most egregious violation of victim privacy in one day in United States history."
Five Days
Over 200 survivor attorneys filed emergency takedown motions with SDNY Judges Berman and Engelmayer on February 1, 2026. The motions demanded immediate removal of documents containing victim identifying information (PAPER TRAIL Project, 2026a).
The DOJ did not act until February 2 — three days after the initial release. When it moved, it removed "several thousand documents/media items," acknowledging that the exposure was not a handful of oversights but a systemic failure in the redaction process (PAPER TRAIL Project, 2026a).
Three days. For three days, the full names and home addresses of child abuse victims sat on a government website, indexed by search engines, downloadable by anyone. The damage from those five days cannot be undone. Search engine caches, screenshots, downloads, and reposts distributed the information into channels the DOJ cannot reach.
The Perpetrator Inversion
The redaction pattern in the same release tells the second half of the story. While victim names were exposed, perpetrator names were heavily redacted. The DAG Blanche PEP (Politically Exposed Persons) list — identifying politically powerful individuals in the files — was sent to congressional leadership as a classified document, not released publicly (PAPER TRAIL Project, 2026a).
This created an information asymmetry that precisely inverted the statute's purpose. A member of the public reading the released documents could learn the name and home address of a 15-year-old abuse victim. The same reader could not learn the name of the adult who abused her, because that name was redacted.
The statute was designed to expose the powerful and protect the vulnerable. The DOJ's implementation exposed the vulnerable and protected the powerful. Whether this was incompetence or intention is a question that the Democracy Defenders Fund raised in its Office of Inspector General complaint filed February 6, 2026, and in subsequent FOIA litigation (Democracy Defenders Fund v. U.S. Department of Justice, No. 1:25-cv-02791, D.D.C.) (PAPER TRAIL Project, 2026a).
After February 2
The removal of "several thousand" documents on February 2 did not end the crisis. As of February 26, 2026, CNN reported that dozens of problematic images still remained in the public release. The DOJ fixed additional exposures only after CNN specifically notified the department — suggesting there was no systematic review process running to catch remaining violations (PAPER TRAIL Project, 2026a).
This pattern — fix on complaint, not on audit — indicates that the DOJ did not perform a comprehensive redaction review before the release, nor did it implement one after the emergency takedown. It addressed individual problems as they were reported by journalists and attorneys, one at a time.
What This Means for the Corpus
The documents removed on February 2 are no longer available on the DOJ Epstein Library portal. They may still exist in copies downloaded during the five-day exposure window. They exist in our corpus as processed records, though our pipeline does not surface victim identifying information in any public-facing output.
The privacy crisis creates a methodological obligation for anyone working with these documents. The PAPER TRAIL series does not name victims. It does not publish addresses. It does not reproduce images. This is not because we lack the data. It is because the statute that authorized the release also authorized the protection of victims, and the DOJ's failure to honor that authorization does not transfer the ethical obligation to researchers (Epstein Records Transparency Act, 2025).
The Structural Failure
The victim privacy crisis is not primarily about individual documents. It is about institutional process. The DOJ had months to prepare redactions. It had explicit statutory authority to protect victim privacy. It had 200-plus attorneys on notice that victims needed protection. And it still released 43 names, 24 minors, and nude images with faces visible (PAPER TRAIL Project, 2026a).
This failure matters because it undermines the transparency mandate itself. Every future document release will face pushback from attorneys citing the January 30 debacle. Every argument for withholding documents can now point to the proven harm caused by releasing them without proper review. The DOJ's incompetence in protecting victims became a weapon against the transparency the statute was designed to create.
The 42% of the corpus that remains unreleased may stay unreleased longer because of what happened on January 30 (PAPER TRAIL Project, 2026a). The victims who were harmed by the release may become the justification for withholding documents that would expose the people who harmed them. That is the deepest damage: not just the exposure itself, but the precedent it creates for future concealment.
References
Democracy Defenders Fund v. U.S. Department of Justice, No. 1:25-cv-02791 (D.D.C. 2026).
Epstein Records Transparency Act, Pub. L. No. 119-38 (2025). https://www.congress.gov/bill/119th-congress/house-bill/4405
PAPER TRAIL Project. (2026a). DOJ compliance status — victim privacy crisis, release timeline, and perpetrator redaction pattern [Technical report]. research/doj_compliance_status.md
PAPER TRAIL Project. (2026b). External government sources — Garcia letter, 31+ child victim names [Technical report]. research/external_government_sources.md