On March 24, 2026, CalMatters published a story about California's prison tablet transition that contained a fact buried three paragraphs down: prisoners at the California Institution for Women in Chino discovered their text messages were being charged at rates higher than the $189 million Securus contract specified. The company had implemented undisclosed per-character billing. After advocates and reporters raised the alarm, Securus issued a $10 credit to every person in that facility and corrected its pricing. No public announcement. No regulatory filing. No consequences. One week later, on April 1, 2026, Yael Eiger, Nino Migineishvili, and Emi Yoshikawa published a peer-reviewed arXiv paper titled 'The System Will Choose Security Over Humanity Every Time': Understanding Security and Privacy for U.S. Incarcerated Users — the first rigorous academic documentation of how incarcerated people face mandatory, inescapable digital surveillance from technologies they cannot configure, opt out of, or control. Together, these two events form a single story: the American carceral system is a closed market where 90,000 California prisoners, and hundreds of thousands more nationwide, are captive users of surveillance infrastructure designed explicitly to maximize institutional control and revenue extraction. They have no self-custody. They have no choice. They have no Exit.

The landscape here is worth understanding precisely. Securus Technologies holds active contracts with over 3,400 prisons and jails across the United States. Viapath, formerly Global Tel Link, operates in almost 2,000. These two companies control the overwhelming majority of incarcerated communications infrastructure in America. There is no third player. There is no open-source alternative. There is no way for a prisoner to reject the system and use something else. The California contract, which runs four years and is worth $189 million, was the result of a legal battle between the two vendors — a competition that by definition could only change which surveillance vendor won, not whether surveillance itself would be deployed. When California needed to switch from Viapath to Securus, the decision was made by the California Department of Corrections and Rehabilitation, not by the 90,000 people who would be forced to use the new system. The market is not competitive in any meaningful sense. It is a duopoly with no exit clause and no user agency.

The billing scandal reveals the mechanism. The Securus contract specified a rate of 3 cents per text message. Prisoners and their families understood this and budgeted accordingly. But when Securus tablets went live at the California Institution for Women in Chino, the actual charge was higher — the company had implemented a per-character billing scheme that was not disclosed in the contract's plain language. A message that cost 3 cents under the old rate cost substantially more under the new one. It took prisoner complaints and CalMatters reporting to surface the discrepancy. Securus then quietly issued a $10 credit to every person at that facility and corrected its billing. No press release. No audit of other facilities. No investigation into how the contract terms were misapplied. The correction happened because external journalists asked questions, not because the system caught it. The arXiv paper documents a broader version of this same dynamic: every aspect of incarcerated users' digital experience — from which apps are available to whether encryption is permitted to how much communication costs — is controlled by vendors and correctional authorities with zero input from the people using the system. As State Sen. Josh Becker told CalMatters: 'It's the injustice of the whole thing. And not only injustice, but also the illogical nature of charging in a world where telecommunications costs are moving closer to free.'

The moment this happened is specific. California's four-year switch from Viapath to Securus was supposed to be complete by the end of 2025. It is now April 2026 and most California prisons still operate with Viapath devices. The full rollout is expected later this spring — meaning there will be more facilities moving to Securus, which means there will be more opportunities for hidden fees, misconfigured billing, and undisclosed pricing schemes to surface. The reason the timeline slipped is the usual one: a massive technology migration is harder than the contract assumed. But the timing of the billing error becoming public, combined with the timing of the arXiv paper landing, created a moment where the structural problem became visible. The paper provides the academic framing; the prison crisis provides the real-world evidence that the framing is correct. Neither event alone would shift how the Freedom Tech community thinks about digital sovereignty. Together, they form a direct rebuttal to the assumption that Freedom Tech is mostly about monetary surveillance and institutional overreach by governments toward individual savers and investors. It is also about populations with no resources, no exit, and no choice — populations that are explicitly designed to have no privacy, no agency, and no control. That is what the California case demonstrates.

Who benefits from this infrastructure, and who doesn't, is obvious. Securus and Viapath benefit from a captive market with no competitive pressure from below. They can implement billing schemes that contradict the contract because prisoners cannot switch vendors. They can charge $0.35 per email and $1.00 per video attachment because the alternatives are not being contacted at all. They control not just the pipes but the pricing, the content filtering, the surveillance logs, and the data exhaust — and they answer only to corrections departments, not to users. California prisoners and their families benefit in no measurable way. A $10 credit after a billing error does not constitute benefit. The ability to send a text message for 3 cents instead of not being able to send one at all is a bare minimum, not a feature. The paper's core finding — that 'the system will choose security over humanity every time' — is not a statement about technology. It is a statement about who gets a voice in how digital systems are designed. Incarcerated people do not. They never do. The system is built that way deliberately.

Our read: This is what digital sovereignty looks like when it is actually absent. Freedom Tech's entire project is built on the assumption that ordinary people should control their own keys, their own data, their own communications infrastructure. That assumption is tested most severely not among libertarian Bitcoin developers or crypto-native investors, but among populations that have been systematically denied agency — and prisons are perhaps the clearest case. The arXiv paper and the Securus billing scandal are not merely stories about extractive pricing or missed deadlines. They are empirical evidence that when a population has no exit, no choice, and no voice, the system optimized for institutional control will exploit that position. Securus did not wake up in March 2026 and decide to deceive California prisoners about character-based billing because the company is evil. It did so because there was no competitive penalty for doing so, no user revolt that could shift its market position, no alternative the prisoners could switch to. The incentive structure is perfectly, purely extractive. The thing that would change this assessment is a credible movement toward open-source, user-configurable, or prisoner-controlled alternatives to Securus and Viapath tablets — or regulatory intervention that puts actual teeth behind contract enforcement and billing transparency. We have seen neither. What we are watching for is whether the combination of the arXiv paper and the CalMatters reporting generates enough pressure on the California legislature to pass more than just a bill about free messaging. We need to see whether anyone is serious about prisoner digital sovereignty, or whether this crisis will be absorbed, a $10 credit issued, and the system left intact.

Watch for three specific signals over the next six months. First: State Sen. Josh Becker introduced legislation to make e-messaging free in California prisons, a hearing is expected in the coming weeks, and the legislature is in session through June. If the bill passes with real enforcement provisions — not just a prohibition on per-message fees but actual audit rights and contractual penalties — that signals serious intent. If it dies quietly or passes with no enforcement mechanism, that signals the crisis was absorbed and the system will continue. Second: the full Securus rollout across California prisons is expected to complete in late spring 2026. Watch for whether new facilities report billing errors, hidden fees, or service degradation during the migration. If the problem repeats in multiple facilities and nothing changes, the pattern is structural. Third: monitor whether the arXiv paper gets picked up by privacy advocacy organizations — the EFF, ACLU, EPIC — and whether it becomes a policy document in campaigns to regulate prison technology. If the paper remains an academic artifact, cited in journals but not weaponized in legislative or advocacy work, that signals the issue will not sustain political attention. The fourth signal is longer-term: the Bitcoin Policy Institute is partnering with Fedi and Cornell's Tech Policy Institute on a two-year study of how policy shapes privacy tool adoption, with the first report expected in April 2026. If that report includes analysis of surveilled and incarcerated populations as a category of users whose privacy decisions are shaped by coercion rather than choice, that signals the Freedom Tech community is beginning to grapple with the fact that digital sovereignty is not a luxury good — it is foundational, and its absence is catastrophic.