Mandatory Retention of Traffic Data: What is next? Prof. Dr. Henrik W.K.Kaspersen Computer/Law Institute Vrije Universiteit Amsterdam- The Netherlands.

Slides:



Advertisements
Similar presentations
Treaty of Lisbon Implications and changes for the area of Freedom Security and Justice Training programme Lisbon Treaty - Ambassadors.
Advertisements

European Commission Enterprise and Industry # European Standardisation: Proposal for a Regulation Presentation to IMCO – 5 October 2011 European Commission.
1. European Commission GHS Implementation Status in the European Community ICCM Dubai UNITAR Side event 4-6 February 2006 Eva Sandberg European Commission.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Purpose MLA and extradition (and other forms of international judicial cooperation) with 3rd countries is part of the external policy of the Union Purpose.
What about a future European Safety Act ? June 8, 2012 Noëlle Lenoir.
Irish Centre for European Law Conference The Law of the Lisbon Treaty.
INTRODUCTION INTO PRIVATE INTERNATIONAL LAW OF THE EUROPEAN UNION Marko Jovanovic, LL.M. MASTER IN EUROPEAN INTEGRATION Private International Law in the.
Eneken Tikk // EST. Importance of Legal Framework  Law takes the principle of territoriality as point of departure;  Cyber security tools and targets.
Monti II Regulation and Enforcement Directive on Posting of Workers CBSP Committee 7 November 2012 Jorma Rusanen.
Privacy and security: Is Europe going banana? Jean-Marc Van Gyseghem Head of Unit « Liberties in the information society » CRID – University.
EU: Bilateral Agreements of Member States. Formerly concluded international agreements of Member States with third countries Article 351 TFEU The rights.
Overview of the Legislative Process
MINISTRY OF FINANCE Counsellor, docent, Dr Tuomas Pöysti1 The Constitutionalisation and Evolution of Penal Law and Control Policy in the European.
An introduction to the EU and its legislation. Member States currently 15 –Austria- Ireland –Belgium- Luxembourg –Denmark- Netherlands –Finland- Portugal.
David Halldearn, ERGEG Conference on Implementing the 3 rd Package 11 th December 2008 Implementating the 3rd Package: An ERGEG Consultation paper.
Legal Framework on Information Security Ministry of Trade, Tourism and Telecommunication Nebojša Vasiljević.
Migration Law Schengen Information System by Konrad Wilk.
European Enforcement Order for uncontested claims JUDr. Radka Chlebcová.
Judgment of the Court of the European Union (Grand chamber) Retention of Telecommunications Data Holly Raiche Director, Internet Society of Australia.
Still lost in space? Why the Lisbon Treaty does not help to guide individuals in search of an effective enforcement of fundamental rights Agata Capik,
The European influence on privacy law and practice Nigel Waters, Pacific Privacy Consulting International Dimension of E-commerce and Cyberspace Regulation.
VICTIMS’ RIGHTS New EU Directive establishing minimum standards on the rights, support and protection of victims of crime 20 September 2012 CABVIS Conference.
REPORTING SUSPECTED FRAUD AND CORRUPTION OLAF.D.2 – Fraud Prevention, Reporting and Analysis Unit Riga – 25 February
European Data Protection Supervisor Pharmaceutical Regulatory & Compliance Congress, Brussels, 7 June 2007 European Privacy and Data Protection Policy.
European Standards on Confidentiality and Privacy in Healthcare Dr Colin M Harper Division of Psychiatry & Neuroscience Queen’s University.
COMPARABLE EU STATISTICS ON CRIME, VICTIMISATION AND CRIMINAL JUSTICE Political Background Elements of an Action Plan European Commission Directorate-General.
Acquis communautaire Community Acquis DEFINITION.
The Brussels II Regulation The Council Regulation no 2201/2003 concerning the jurisdiction and the recognition and enforcement of judgment in matrimonial.
Capacity building workshop on environment and health Public participation and the right to know: Aarhus Convention and PRTR Protocol Monica Guarinoni Sofia,
Fight against terrorism. EU institutional/legal framework A bit of history 1957: European Communities are born.
Eurostat ESTP course on International Trade in Goods Statistics April 2013 Point 2 of the agenda Legal framework for EU trade statistics.
Communications Data Consultations on access and a Code of Practice for voluntary retention Simon Watkin Home Office.
The acquis Council Framework Decision of 19 July 2002 on combating trafficking in human beings (2002/629/JHA). Council Directive 2004/81/EC of 24 April.
2002 Symantec Corporation, All Rights Reserved The EU Regulations and IT security An industry perspective Ilias Chantzos, Government Relations EMEA Terena.
©2012 Morrison & Foerster (UK) LLP | All Rights Reserved | mofo.com Data Protection Masterclass: The New Draft EU Data Protection Regulation 19 September.
EU activities against cyber crime Radomír Janský Unit - Fight against Organised Crime Directorate-General Justice, Freedom and Security (DG JLS) European.
DG Information Society The EU and Data Retention Data Retention Meeting London, 14 May 2003 Philippe GERARD, DG Information Society The positions.
Information Security Legislation Moving ahead Information Security 2001 Professional Information Security Association Sin Chung Kai Legislative Councillor.
European Aviation Safety Agency Head of Aircraft Product Certification
The EU Fight against Environmental Crime – Directive 2008/99 Helge Elisabeth Zeitler DG Justice, Criminal Law.
Course: European Criminal Law SS 2009 Hubert Hinterhofer.
CRIMINAL LAW OF THE EUROPEAN UNION 1 April 2015 THE LISBON TREATY AND CRIMINAL LAW Dr. sc. Zoran Burić Department of Criminal Procedural Law University.
September 12-14, 2006OECD-Eurostat Expert Meeting1 OECD-Eurostat Expert Meeting on Trade in Services Statistics Foreign Affiliates Statistics in Eurostat.
Madrid Forum 6-7 November 2008 Implementating the 3rd Energy Package: An ERGEG Consultation paper Lord Mogg, ERGEG chairman.
REPORTING SUSPECTED FRAUD AND CORRUPTION OLAF.D.2 – Fraud Prevention, Reporting and Analysis Unit Budapest – 11 December
1 TAIEX JHA Workshop on data protection and cloud computing Data transfers to third countries and standard contractual clauses Skopje, 29 May 2014.
Course: European Criminal Law SS 2009 Hubert Hinterhofer.
M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 10 – Information society and media.
By Prof. Dr. PI Yong Wuhan University of China New China Criminal Legislation against Cybercrime in the Common Internet.
Digital Security Focus Area & Critical Infrastructure Protection in H2020 SC7 WP Aristotelis Tzafalias Trust and Security Unit DG Communications.
MOSCOW, NOVEMBER 2007 JUSTICE AND HOME AFFAIRS AND EUROPEAN INTEGRATION PROF DR JAAP W. DE ZWAAN DIRECTOR ‘CLINGENDAEL’ AND PROFESSOR OF EU LAW THE NETHERLANDS.
TAIEX INTERNAL MARKET WEEK IN BUDAPEST November 2004 Co-operation of Customs Administrations Presentation by: Sandro Le Noci – Italian Customs.
Crime Statistics and EU Organised Crime Threat Assessment
EU information review of the year 2011
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Role of Service Providers in Cybercrime Investigations
European case studies relating to the administrative approach
EU legislation on Personal Protective Equipment (PPE)
Introduction to GDPR 09/11/2018.
DIRECTOR ‘CLINGENDAEL’ AND PROFESSOR OF EU LAW
EUROPEAN PUBLIC PROSECUTOR’S OFFICE
Eurojust Presentation outline I. What is Eurojust? II. Objectives and competences III. Legal framework IV. Tasks and Powers V. Eurojust in action VI. Role.
The activity of Art. 29. Working Party György Halmos
Is Data Protection a Fundamental Right Protecting the Individual?
The EDPS: competences and processing of personal data in EU funds
Eurojust Presentation outline I. What is Eurojust? II. Objectives and competences III. Legal framework IV. Tasks and Powers V. Eurojust in action VI. Role.
Working Group on Rail Transport Statistics
European Safety Survey : News on the draft Council and European Parliament Regulation Task Force Victimisation 17 February 2011.
Meeting Of The European Directors of Social Statistics
Presentation transcript:

Mandatory Retention of Traffic Data: What is next? Prof. Dr. Henrik W.K.Kaspersen Computer/Law Institute Vrije Universiteit Amsterdam- The Netherlands

IFIP SEC 2006 Karlstad May 24, 2006 The program Historical background of data retention law Actions within the European Union, influence of European Bodies Emergence, content, implementation of Directive 2006/24/EC Evaluation

IFIP SEC 2006 Karlstad May 24, 2006 Disclaimer Avoiding details Personal view Not all questions may or can yet be answered

IFIP SEC 2006 Karlstad May 24, 2006 Historical background (I) Terrorist attacks Anti terrorist law Council of Europe: Warshaw Convention 2005 European Union instruments Proposal to sign CoE Warshaw Convention 2005 Critical infrastructure 2004/2005 Exchange of information 2004 Adoption Schengen System 2002 Financing Europol 2002 Framework decision on combating terrorism 2001

IFIP SEC 2006 Karlstad May 24, 2006 Historical background (II): availability of traffic data Traffic data is indispensable means Cyber Cime Convention Debate Aspects concerning feasability retention: Different situation EU-other Parties Stronger need in Europe? (Directive 1998/66/EC) Privacy concerns, proportionality Disproportional Burden for industry Societal costs Industry should not take over tasks of LEA

IFIP SEC 2006 Karlstad May 24, 2006 Historical background (III) Compromise in the Cybercrime Convention Art. 20: real time collection of traffic data (Telephony and internet), public/non-public- for the future Art. 18: production order: traffic data as is; production order: subscriber data Art. 16: freezing of vulnarable data

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (I) Isolated drafts/initiatives within third pillar. Communication of Joint Data Registrars in September 2002: mandatory retention in principle should be rejected.

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (II) After Madrid 2004: European Council stresses the need for retention, priority for third pillar April 2004: Joint proposal by France, UK, Sweden, Ireland Elaboration of several drafts: high level of disagreement, not on the principle but on the details

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (III) Intervention (questions) of the European Parliament Framework decision formally rejected in September 2005 First pillar and third pillar Initiative Directive by the European Commission in May 2005 Proposal for a Directive October 21, 2005 Involvement of the European Parliament The ‘royal way’: amend 2002/58/EC

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (IV) Influence of art. 29 Group (Advice 1868/04/EN WP 113): very critical but accepting “without precedent” “Intervention of the Commission will lead to shorter terms of preservation” Terms of preservation should be maximum terms Access conditions? Serious Crime? Periodical assessment Precise definition of traffic data Separation from content Data mining not allowed Data security

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (V) Position of e-Communications Industry Mainly opposition from Euroispa and individual providers Research reports on the feasability and efficacy of retention of internet traffic data Rejection of administrative and financial burden

IFIP SEC 2006 Karlstad May 24, 2006 EU-initiatives (VII) Euroispa (consultation document and Position September 2005) Recognition of responsibility of industry: offering technological advice about ever-changing technology No evidence provided for the necessity of the measure Costs reduce speed of development and undermine competiviness of European industry Doubt about feasability and effectiviness Regulation is disproportionally burdensome and difficult to comply with Financial compensation?

IFIP SEC 2006 Karlstad May 24, 2006 The Emergence of Directive 2006/24/EC Key dates Adoption by the Council: 21 February 2006 Agreement with European Parliament: 15 March 2006 Publication: OJ April 13, 2006 In force: May 3, 2006 Ultimate date of implementation September 15, 2007, or March 15, 2009

IFIP SEC 2006 Karlstad May 24, 2006 Overview of Directive 2006/24/EC Scope Obligation to retain: What? How? How long? How secure? Use Enforcement of Directive

IFIP SEC 2006 Karlstad May 24, 2006 Directive 2006/24/EC: Scope Includes traffic data and subscriber/user data (art. 5) Also cell-identification of cell phone, voic , conferencing, call forwarding etc SMS, enhanced (multi)media services Unanswered calls Public e-communication services

IFIP SEC 2006 Karlstad May 24, 2006 Directive 2006/24/EC: what? Art. 3: Obligation of providers to retain traffic data, in derogation of art. 5,6,9 Directive 2002/58/EC Art. 5: Categories of data to be retained Functional description with regard to type of e- communication ID of source ID of destination ….followed by specification Specification of data necessary to identify

IFIP SEC 2006 Karlstad May 24, 2006 Directive 2006/24/EC: how? Period of retention: 6 month up to 2 years, except particular circumstances of art. 12 No specification, except art. 7 security principles No structure and principles of retrieval, except art. 8 ‘without undue delay’

IFIP SEC 2006 Karlstad May 24, 2006 Directive 2006/24/EC: use Use: domestic law Purpose of retention: Recital 9: in particular organised crime and terrorism on behalf of law enforcement Recital 7: reference to JHA: prevention, investigation, detection and prosecution of criminal offences Previously: serious crime (to be defined by domestic law)

IFIP SEC 2006 Karlstad May 24, 2006 Directive 2006/24/EC: other Art. 10: Yearly provision of statistics to EC Number of cases Time gap Cases where no data was available Art. 12: particular circumstances: market view, further art. 15 of 2002/58/EC? Evaluation 15 September 2010 by the European Commission

IFIP SEC 2006 Karlstad May 24, 2006 Implementation of the Directive Adoption Council: Februari 21, 2006 Agreement with EP, March 15, 2006 Publication OJ: April 13, 2006 In force: May 3, 2006 Ultimate date of implementation: September 15, 2007 or March 115, 2009

IFIP SEC 2006 Karlstad May 24, 2006 International Co-operation Dissemination to other States EU Member States EU Members of Council of Europe Other States Treaty based In absence of treaties US?

IFIP SEC 2006 Karlstad May 24, 2006 Evaluation Directive Form Reach Relation with 2002/58/EC Regulated Limitative specification of data Periodical assessment Limitations, meaning, follow-up Not regulated Access, technical organisation, costs Impact What is next?

IFIP SEC 2006 Karlstad May 24, 2006 In conclusion Data retention: a dramatic step that opens the door for other measures direct threat for fundamental rights necessity is not and cannot be not demonstrated measure hard to challenge regulation is only partial

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.