Communications Data Consultations on access and a Code of Practice for voluntary retention Simon Watkin Home Office.

Slides:



Advertisements
Similar presentations
IMPS Information Management and Policy Services Information Services Directorate A briefing for all University staff November 2004 New Information Legislation.
Advertisements

Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Towards a framework for integrated cross-border law enforcement initiatives Based on the Consultation Paper circulated to CACOLE in July 2008 by Public.
1 Opening the Door: Access to Government Information A primer for Media Students Mohawk College Sept. 18, 2002 Bob Spence Communications Co-ordinator Office.
Internet surveillance in the UK Ian Brown. Signals intelligence Everybody’s at it: Echelon Frenchelon Multinationals “We steal secrets with espionage,
PIPA PRESENTATION PERSONAL INFORMATION PROTECTION ACT.
Data-Sharing and Governance Consultation ANALYSIS OF RESPONSES.
Data Protection and Records Management
The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.
Towards a Freedom of Information Law in Qatar Fahad bin Mohammed Al Attiya Executive Chairman, Qatar National Food Security Programme.
Per Anders Eriksson
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
An overview of the Data Protection Act Legal framework The Data Protection Act 1998 came into force in March 2001, replacing the Data Protection.
1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.
The New EMC Directive 2004/108/EC and the DTI transposition Brian Jones and Peter Howick.
Regulation of Personal Information Daniel Pettitt, Leon Sewell and Matthew Pallot.
Geneva Centre for the Democratic Control of Armed Forces (DCAF) Dr. Hans Born Senior Fellow, 1 November 2005, Geneva 1. SSG:
Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.
1 Freedom of Information (Scotland) Act 2002 A strategic view.
Information Sharing Sheila Logan Information Commissioner’s Office Employability Partnership Event Glasgow 13 August 2009.
What does the VLRC do? The VLRC is a independent government funded organisation that monitors and coordinates law reform in Victoria. The major responsibility.
Information Governance Policies. Business Support and Corporate Information Resources Team… Working to create a knowledge led organisation Information.
Information Assurance Market Research June Executive Summary Small response rate (n=43) General low awareness of information security controls and.
Data Protection Act AS Module Heathcote Ch. 12.
Privacy Impact Assessments Iain Bourne, Group Manager, Policy Delivery Information Commissioner’s Office, UK Workshop on data protection and the internet:
Process of a Bill Parliamentary Law Making – Legislative Process © The Law Bank Parliamentary Law Making Process of a bill 1.
NOT PROTECTIVELY MARKED Child Sex Offender Disclosure Scheme Detective Sergeant Louise Wall National Coordinator for the Child Sex Offender Disclosure.
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
Data Protection and Records Management. Key Responsibilities - Record Management Keep Information Accurate Disclose only if compatible with purpose for.
1 FINANCIAL INTELLIGENCE CENTRE AMENDMENT BILL Briefing to the Select Committee on Finance 10 June June 2008.
Canada’s Lobbying Act Joe Wild Assistant Secretary to the Cabinet for Machinery of Government Privy Council Office Government of Canada.
Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.
PROTECTION OF PERSONAL DATA. OECD GUIDELINES: BASIC PRINCIPLES OF NATIONAL APPLICATION Collection Limitation Principle There should be limits to the collection.
Data protection and European citizens’ initiatives
Data protection and compliance in context 19 November 2007 Stewart Room Partner.
An Introduction to the Privacy Act Privacy Act 1993 Promotes and protects individual privacy Is concerned with the privacy of information about people.
PRESENTATION TO THE PORTFOLIO COMMITTEE ON TRADE AND INDUSTRY COMPANIES BILL [B ] 13 August 2008 By: Bernard Peter Agulhas – Acting Chief Executive.
Cooperation with the Seimas Audit Committee Tomas Mackevičius Deputy Auditor General.
GCSE ICT Data and you: The Data Protection Act. Loyalty cards Many companies use loyalty cards to encourage consumers to use their shops and services.
The EU General Data Protection Regulation Frank Rankin.
Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.
Data Protection Laws in the European Union John Armstrong CMS Cameron McKenna.
Data Protection Officer’s Overview of the GDPR
EU Sanctions on Individuals
CCTV and Surveillance October 2016.
Privacy principles Individual written policies
General Data Protection Regulation
Data protection issues in regulatory investigations
Money Bills Amendment Procedure and Related Matters Bill [B 75–2008]
About the national data opt-out
Data workshop WhOSE DATA IS IT ANYWAY? Alexia Christie
Data Protection & Freedom of Information- An Introduction
Standards and Certification Training
Setting Actuarial Standards
Chapter 9: controlling mechanisms of governmental powers
G.D.P.R General Data Protection Regulations
How is the GDPR enforced ?
General Data Protection Regulations 2018
What is the Data Protection Act (DPA)? 1998
National Statistician’s Data Ethics Advisory Committee
Overview of the main novelties in the new EU General Data Protection Regulation and summary of the main contradictions in the existing Ukrainian data protection.
MODULE B - PROCESS SUBMODULES B1. Organizational Structure
Presented by: Mr. Russell Nari, Deputy Director
What is OAL? The Office of Administrative Law (OAL) ensures that agency regulations are clear, necessary, legally valid, and available to the public. OAL.
Fines, Sanctions and Compensation The teeth in the GDPR & Data Protection Act 2018 by Simon McGarr, CIPP/E Data Compliance Europe.
What Governors need to know about GDPR
Law-making through parliament
“Seven-minute Staff Meeting”
Presentation transcript:

Communications Data Consultations on access and a Code of Practice for voluntary retention Simon Watkin Home Office

Policy Development - Access Any access to communications data by public authorities is an intrusion into someone’s privacy - and must satisfy ECHR principles of necessity and proportionality. “The Government believes it is time to put in place a statutory framework for authorising access to communications data … to regulate access … by investigating bodies.” Consultation Paper, June 1999 Part I Chapter II, Regulation of Investigatory Powers Act Not in force ……. yet.

Policy Development - Access Relevant public authorities listed in the Act Additional Public Authorities Order “A widespread extension of the powers of the state to snoop on its citizens...” Daily Telegraph, June 2002 “The proposals were intended to provide protection and regulation of the access to data.… when you are in a hole you should stop digging and having a full consultation on the issues raised seems the best way to do it.” Home Secretary, June 2002

Revised Proposals Consultation paper “Access to communications data - respecting privacy and protecting the public from crime” published 11 March 2003 Explains public authorities’ functions to prevent and detect crime Explains how communications data is used by public authorities now and with what outcomes Presents revised proposals for restrictions and safeguards.

Safeguards Specifying persons designated to seek access Accreditation of individuals through single points of contact (SPOCs) Compliance with RIPA statutory Code of Practice Oversight by the Interception of Communications Commissioner Sanctions for the abuse of powers to access communications under RIPA Restricting access by purpose (and function?) and by type of data

Further safeguards - The “Double Lock” Potential additional safeguards –judicial authorisation –prior approval by an independent third party –requiring the police to conduct investigations –certification scheme for public authorities

Policy Development - Retention Anti-Terrorism, Crime & Security Act 2001 Voluntary -v- mandatory Path open to deliver mandate if necessary –generally –description specified –particular provider(s) Must specify maximum period for retention Purpose for retention matching RIPA purpose for access

Policy Development - Retention Sunset clause for mandate –ability to issue mandatory direction ceases to have effect 2 years from passing of Act (13 Dec. 2003) –can be extended –must be introduced before original sunset clause comes into effect Gives options for delivery Allows discussion with Industry to continue

Parliamentary Changes Retention “for the purpose of safeguarding national security” or crime related to that Parliament decides that retention is appropriate, provided –consultation with Information Commissioner & Industry first –followed by public consultation Took a year to complete this initial consultation phase. Excessive?

Issues that have emerged All Party Internet Group Report recommendations “Legacy legislation” Multi-agency SPOCs Definition of communications data types “Predictive fishing” Subject access requests Openness and transparency of oversight State of the “technology war”

Issues that have emerged Bespoke systems required. Increase of costs Industry hesitant to volunteer –Information Commissioner’s advice –Possibility of data protection prosecution –potentially a public authority under Human Rights Law –Loss to competitors Would prefer to be mandated than to volunteer

Issues that have emerged All Parliamentary Internet Group Timed to precede public consultation –call for Home Office to drop all retention plans –ignores law enforcement/agencies case –call for negotiations on data preservation –EU-wide discussion to dismantle retention regimes –EU-law enforcement recommendation is for retention and, in specific cases, preservation not preservation alone –Industry presented behind closed doors & came out with high figures

Possible ways forward Industry willing to reveal true retention costs. Not so ‘scary’ after all Work of Technical Group consisting of Industry, agency, independent and Home Office members Data protection issues resolved by s. 28 DPA certification for national security Government to stand with Industry on any human rights challenge CSP’s giving clear indication of what is actually held Need to develop route for retention for all crime to resolve disparity concerns

Striking the right balance How should Government strike the delicate balance between respect for the privacy of the individual and protecting the public from crime? “We need a much broader public debate ….” - Home Secretary, June 2002 Chapter 4 of the access consultation paper describes the challenge for Government, asks what are the public’s privacy concerns are and invites views on the need for a wider review.

Consultation Consultation process Responses by 3 June Next steps

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.