The 2006 Data Retention Directive requires EU-based Internet Service Providers to store information on customers and their online communications. The Directive is being reviewed by the European Commission, and has been criticised in a number of recent national constitutional court judgments due to its impact on privacy. Its compatibility with the Charter of Fundamental Rights is now being considered by the European Court of Justice. This article describes the likely impact on data retention of further developments in Internet usage, technology and law. It outlines the increasing use of private networks and member community sites that are not subject to the Directive, and the changes in surveillance technology and practice that some member states have proposed in response. It concludes by analysing the key factors to be taken into account in the EC and ECJ reviews, and suggests more proportionate and effective mechanisms for preserving appropriate law enforcement access to communications data.
Sunday, November 21, 2010
The International Journal of Law and Information Technology has just published my new article, Communications Data Retention in an Evolving Internet. I hope this will prove useful for the debate coming any day now as the UK government relaunches its Intercept Modernisation Programme, as well as for the reviews being carried out by the European Commission and Court of Justice:
Saturday, November 20, 2010
This week I've been in Luxembourg to speak at the European Media Days hosted by the Centre National de l'Audiovisuel. Here is my presentation:
Thursday, November 04, 2010
The Guardian has just published my article on the Information Commissioner's Google Street View decision:
Google is facing legal investigations around the world into its Wi-Fi-snooping Street View cars. But after cursory consideration, the UK's information commissioner has forgiven the company this illegal interception in return for a promise to do better in future. Why should any company or government agency care about complying with data protection law if this is the worst they can expect?