I find it strange how some 'privacy activists' are so for leaking private information sometimes and exposing other people's privacy. Not the company that made it, but the names on this list. The appropriate way to do this is to provide a search mechanism of some kind rather than release the DB as a dump. If it has name and birthday as fields, require both to view if you are on the list. If you are, you don't see the contents just "you are on the list" and provide a way to contact the developers to prove more about your identity to see everything that is in the database about you. This doesn't protect against the "bad guys now know they are on the list" point, though. But the list is kind of a strange thing to begin with if it's not a governmental terrorist watch list. I'm still a bit confused as to what this terrorist blacklist is if it's not a governmental blacklist. Who is getting blacklisted from what?