• Great articles on other sites
  • RSS Great articles on other sites

  • Analysis, Digital Rights - Written by on Monday, April 14, 2014 9:30 - 1 Comment

    Europe says no to data retention, so why is it an option in Australia?


    This article is by Angela Daly, Research Fellow in Media and Communications Law at Swinburne University of Technology, and Sean Rintel, Lecturer in Strategic Communication at University of Queensland. Both are involved with digital rights group Electronic Frontiers Australia. It originally appeared on The Conversation.

    analysis There has been plenty of technology-related legal activity in the European Union this month. Last week the Court of Justice of the EU (CJEU) ruled that data retention regulations, as they currently stand, are not in accordance with EU law and the European Parliament voted in favour of introducing net neutrality into EU telecoms regulation the week before.

    As Australia is currently in the midst of a data retention inquiry – the second in three years – what effects will this ruling have on the debate?

    What is the data retention directive?
    The particular law at issue is the data retention directive from 2006. The directive applies to data generated by users of electronic communications services and networks, and stipulates that the operators of these services and networks must keep this data on all users for a period of time between six months and two years.

    The kind of data that should be kept includes telephone numbers, account holders’ and recipients’ names and addresses, IP addresses, and location data, but not information about the content of the communications. The purpose of these rules is to ensure that this information is available for “the investigation, detection and prosecution of serious crime”.

    What did the CJEU decide?
    For some time there has been concern that the data retention directive was too intrusive of law-abiding European citizens’ privacy. This resulted in privacy campaigners in Austria and Digital Rights Ireland mounting a challenge to the measures. They argued that the rules were disproportionate and unnecessary to achieve the aim of ensuring data was available for the purposes of fighting serious crime.

    They also argued that the rules were incompatible with the rights to privacy, data protection and free expression contained in the EU’s Charter of Fundamental Rights.

    The CJEU found that, although the retention of data “genuinely satisfies an objective of general interest” (the fight against crime), the data protection rules went beyond what was strictly necessary to achieve this goal. In practice, the rules entailed an “interference with the fundamental rights of practically the entire European population”, with the vast majority of those people not being “even indirectly in a situation which is liable to give rise to criminal prosecutions”.

    The CJEU also condemned the lack of limitations to the access of this data by national authorities and their subsequent use. For instance, there was no restriction on the access and use of the data to the purpose of fighting serious crime. Also of concern to the CJEU was the weakness of security measures around the data, and the fact there was no requirement to retain this data within the EU.

    It’s unclear what exactly is going to happen now since the CJEU declared the data retention rules invalid. Different European countries have had different reactions to the CJEU’s decision. A Finnish government minister responded by saying that Finland must revise its laws on data protection and retention, but it seems that the legislation implementing the data retention directive in Luxembourg will still apply and bind telecoms operators.

    Furthermore, the day after the CJEU’s decision, the Romanian government issued a new draft law that would increase surveillance of its citizens.

    What’s going on in Australia?
    The decision comes at an important point in the data retention debate in Australia. We are currently in the midst of the second inquiry within three years from two successive Commonwealth governments.

    In 2012 the Labor government’s inquiry into potential reforms of National Security Legislation received 240 submissions and 29 exhibits. Many responses pointed to a significant shortcoming in the 2012 discussion paper’s vague proposal for up to two years of mandatory data retention by internet service providers.

    Despite the prominence of the need for mandatory data retention in pro-surveillance arguments, the discussion paper’s proposal for data retention managed to be both so short and so broad as to allow egregious overreach. The proposal was: “… tailored data retention periods for up to 2 years for parts of a data set, with specific timeframes taking into account agency priorities, and privacy and cost impacts.”

    The accompanying definition of data retention was equally vague: “The storage of telecommunications data for prescribed periods of time.” No further information was supplied.

    The 2012 inquiry resulted in a May 2013 report of the inquiry into Potential Reforms of Australia’s National Security Legislation, but no actual reforms were carried out due to the proximity of the looming 2013 election. Just a month later NSA whistle-blower Edward Snowden’s revelations demonstrated that various forms of data retention and mass surveillance were already happening.

    In this climate of increasing disquiet over surveillance overreach, Labor and the Greens initiated another inquiry into the comprehensive revision of the Telecommunications (Interception and Access) Act 1979. This current inquiry asks for responses to the May 2013 Report and the recommendations of the Australian Law Reform Commission’s For Your Information: Australian Privacy Law and Practice report.

    The May 2013 report contains an entire chapter on data retention. While it notes the public backlash against data retention, and recommends oversight mechanisms and an exposure draft of any legislation, it nevertheless treats data retention as a critical part of Australian security policy. At core, the report perpetuates distinctions between “metadata” and “content” that many civil liberties groups argue are increasingly impoverished in the age of “pattern-of-life” searches.

    Implications for Australia
    The May 2013 report spent quite some time discussing the European experience of data retention. The Attorney-General put forward the same data retention directive as the CJEU has just declared invalid as an appropriate model for Australia. The May 2013 report notes that a voluntary scheme was implemented in the UK while controversies occurred in countries with “human rights frameworks that are significantly different to those in Australia”.

    Australia tends to follow rather than lead in security issues, and tends to try to follow traditional allies and those with whom it believes it has most in common. If the UK decides to include more accountability its data retention implementation as a result of the CJEU ruling, this might bode well for Australian civil liberties – but given the fragmented response so far from European countries, arguably the time to look for models is over. It is time for Australians to take their own rights seriously.

    Angela Daly is a former board member of Electronic Frontiers Australia and is currently a general member of the organisation. Sean Rintel is the current Chair of Electronic Frontiers Australia. This article was originally published on The Conversation. Read the original article.

    The Conversation

    submit to reddit

    1 Comment

    You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

    1. Karl
      Posted 14/04/2014 at 1:12 pm | Permalink | Reply

      “Europe says no to data retention, so why is it an option in Australia?”
      Because Australian law doesn’t give a damn about human rights.

    Leave a Comment


  • Get our 'Best of the Week' newsletter on Fridays

    Just the most important stories, one email a week.

    Email address:

    Follow us on social media

    Use your RSS reader to subscribe to our articles feed or to our comments feed.

  • Most Popular Content

  • Enterprise IT stories

    • Super funds close to dumping $250m IT revamp facepalm2

      If you have even a skin deep awareness of the structure of Australia’s superannuation industry, you’ll be aware that much of the underlying infrastructure used by many of the nation’s major funds is provided by a centralised group, Superpartners. One of the group’s main projects in recent years has been to dramatically update and modernise its IT platform — its version of a core banking platform overhaul. Unfortunately, the $250 million project has not precisely been going well.

    • Qld’s Grant joins analyst firm IBRS peter-grant

      This week it emerged that Peter Grant, the two-time former Queensland Whole of Government CIO (pictured), has joined well-regarded analyst firm Intelligent Business Research Services (IBRS). We’ve long had a high regard for IBRS, and so it’s fantastic to see such an experienced executive join its ranks.

    • Westpac dumps desk phones for Samsung Android mobiles samsung-galaxy-ace-3

      The era of troublesome desk phones tied to physical locations is gradually coming to an end in many workplaces, with mobile phones becoming increasingly popular as organisations’ main method of voice telecommunications. But some groups are more advanced than others when it comes to adoption of the trend. One of those is Westpac.

    • Ministers’ cloud approval lasted just a year reverse

      Remember how twelve months ago, the Federal Government released a new cloud computing security and privacy directive which required departments and agencies to explicitly acquire the approval of the Attorney-General and the relevant portfolio minister before government data containing private information could be stored in offshore facilities? Remember how the policy was strongly criticised by Microsoft, Government CIOs and Delimiter? Well, it looks like the policy is about to be reversed.

    • WA Govt can’t fund school IT upgrades oops key

      In news from The Department of Disturbing Facts, iTNews revealed late last week that Western Australia’s Department of Education has run out of money halfway through the deployment of new fundamental IT infrastructure to the state’s schools.

    • Turnbull outlines Govt ICT vision turnbull-5

      Communications Minister Malcolm Turnbull has published an extensive article arguing that the Federal Government needed to do a better job of connecting with Australians via digital channels and that public sector IT projects needn’t cost the huge amounts that some have in the past.

    • NZ Govt pushes hard into cloud zealand

      New Zealand’s national Government announced a whole of government contract this morning for what it terms ‘Office Productivity as a Service’ services. This includes email and calendaring services, as well as file-sharing, mobility, instant messaging and collaboration services. The contract complements two existing contracts — Desktop as a Service and Enterprise Content Management as a Service.

    • CommBank reveals Harte’s replacement whiteing

      The Commonwealth Bank of Australia has promoted an internal executive who joined the bank in September after a lengthy career at petroleum giant VP and IT services group Accenture to replace its outgoing chief information officer Michael Harte, who announced in early May that he would leave the bank.

    • Jeff Smith quits Suncorp for IBM jeffsmith4

      Second-tier Australian bank and financial services group Suncorp today announced that its long-serving top technology executive Jeff Smith would leave to take up a senior role with IBM in the United States, in an announcement which marks the end of an era for the nation’s banking IT sector.

    • Small business missing the mobile, social, cloud revolution iphone-stock

      Most companies that live and breathe the online revolution are not tech startups, but smart smaller firms that use online tools to run their core business better: to cut costs, reach customers and suppliers, innovate and get more control. Many others, however, are falling behind, according to a new Grattan Institute discussion paper.

  • Blog, Enterprise IT - Jul 5, 2014 13:53 - 0 Comments

    Super funds close to dumping $250m IT revamp

    More In Enterprise IT

    Blog, Telecommunications - Jul 5, 2014 12:12 - 0 Comments

    What should the ACCC’s role be in guiding infrastructure spending?

    More In Telecommunications

    Analysis, Industry, Internet - Jun 23, 2014 10:33 - 0 Comments

    ‘Google Schmoogle’ – how Yellow Pages got it so wrong

    More In Industry

    Blog, Digital Rights - Jun 30, 2014 22:24 - 0 Comments

    Will Netflix launch in Australia, or not?

    More In Digital Rights