Patrice Riemens on Tue, 8 Apr 2014 22:30:14 +0200 (CEST)


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

<nettime> Kelly Fiveash: European Court of Justice rips up Data Retention


original to:
http://www.theregister.co.uk/2014/04/08/european_court_of_justice_says_data_retention_directive_is_invalid/

See also:
https://www.privacyinternational.org/press-releases/european-court-invalidates-data-retention-directive-says-mass-surveillance-of

(bwo Cyberguerilla.org)


European Court of Justice rips up Data Retention Directive
Rules 'interfering' measure to be 'invalid'
By Kelly Fiveash, 8 Apr 2014


A European Union directive that required ISPs to retain data for two years
has been deemed "invalid", Brussels' highest court ruled today.

The measure "entails a wide-ranging and particularly serious interference
with the fundamental rights to respect for private life and to the
protection of personal data, without that interference being limited to
what is strictly necessary," said (PDF) the European Court of Justice.

It added that the fact that information could be held and subsequently
used without the subscriber or registered user being aware of such
"constant surveillance" actions from spooks and police could intrude on an
individual's private life.

Late last year, Court of Justice Advocate General Pedro Cruz Villalón said
that the seven-year-old EU directive requiring telecoms outfits to retain
details of phone calls and emails - such as traffic and location - clashed
with the 28-member bloc's privacy rights for citizens.

He opined at the time that the 2006 Data Retention Directive "constitutes
a serious interference with the fundamental right of citizens to privacy".

The ECJ has today agreed with that assessment of the EU measure. It said:

    [T]he retention of data for the purpose of their possible transmission
to the competent national authorities genuinely satisfies an objective
of general interest, namely the fight against serious crime and,
ultimately, public security.

    However, the Court is of the opinion that, by adopting the Data
Retention Directive, the EU legislature has exceeded the limits
imposed by compliance with the principle of proportionality.


Damningly, the court added that the directive failed to offer sufficient
safeguards "against the risk of abuse and against any unlawful access to
use of the data".

Worst of all for Brussels' officials nervous about information carelessly
spilling out of the EU into the hands of the US in the wake of master
blabbermouth Edward Snowden's state spying revelations, the directive was
found by the court not to require data to be retained within the 28-nation
bloc.

"The directive does not fully ensure the control of compliance with the
requirements of protection and security by an independent authority, as
is, however, explicitly required by the Charter," it concluded. "Such a
control, carried out on the basis of EU law, is an essential component of
the protection of individuals with regard to the processing of personal
data."


#  distributed via <nettime>: no commercial use without permission
#  <nettime>  is a moderated mailing list for net criticism,
#  collaborative text filtering and cultural politics of the nets
#  more info: http://mx.kein.org/mailman/listinfo/nettime-l
#  archive: http://www.nettime.org contact: nettime@kein.org