Search
Content type: Advocacy
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of its proposal, a new Regulation (the “Proposed Regulation”),(1) would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive(2) (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content type: News & Analysis
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of its proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive2 (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content type: Advocacy
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of the proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content type: News & Analysis
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of the proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content type: News & Analysis
A year ago this week, the UK government published a report entitled 'Transparent Government, Not Transparent Citizens', authored by Dr Kieron O’Hara. It made fourteen recommendations, the most important of which seem not to have been implemented. Meanwhile, the government continues to release data on citizens, and is accelerating these disclosures with some ambitious new policies.
This inaction on privacy and open data is particularly worrying given the UK’s leading role in open data and the…
Content type: News & Analysis
As part of the government’s ambitious Open Data programme, the Cabinet Office announced last year that data from the National Pupil Database (NPD) will be made freely available and accessible to all. The NPD, previously only available to researchers on an academic licence, contains a record for every single state school pupil in the country, covering educational attainment from reception to sixth form, as well as characteristics such as attendance, ethnic background and free…
Content type: News & Analysis
The UK Minister for Education, Michael Gove, today stated in Parliament that he would be moving forward his plans to open up the National Pupil Database, and announced a government consultation on the initiative. The Minister promised that "all requests to access extracts of data would go through a robust approval process and successful organisations would be subject to strict terms and conditions covering their handling and use of the data, including having…
Content type: News & Analysis
Privacy Internationally has submitted two documents to the UK Parliament's Joint Committee reviewing the draft Communications Data Bill. The first submission is an implementation briefing based on our work for the Big Brother Incorporated project, establishing the capabilities and defects of existing surveillance technologies. The second submission focuses on the the majority of the Joint Committee's 21 questions about the social and ethical implications of increased communications…
Content type: News & Analysis
The Home Office constantly insists that trafffic data is not about the content of the pages you look at, but about the sites you visit.
This would have made some sense in 1999 when RIPA was first being debated, but technology has moved on and new open data sources are now available. This allows for vastly more invasive tracking in 2012 than was envisaged in 2000. We’ve done a little bit of work on how…
The English Wikipedia contains 4 million articles, which contain 18 million links out…
Content type: News & Analysis
Last week the Rwandan government tightened its grip on citizens when the parliament's lower house adopted legislation that sanctions the widespread monitoring of email and telephone communications.1 The bill is now awaiting Senate approval.
The law, an amendment to the 2008 Law Relating to the Interception of Communications,2 will empower the police, army and intelligence services to listen to and read private communications, both online and offline, in order to protect "public…
Content type: News & Analysis
Modern communications surveillance policy is about gaining access to modern communications. The problem is that the discourse around communications policy today is almost the same as it was when it was simply a question of gaining access to telephone communications. "Police need access to social network activity just as they have access to phone calls" is the politician's line. We use Facebook as an example here, but most internet services will be similar in complexity and legality.
The…
Content type: News & Analysis
In the PI office, we have daily debates about which platforms to use for our organizational operations. As a privacy charity, we are naturally concerned about the integrity of our own information services and resources, but we frequently receive queries about the best technologies to use from a variety of other organizations, some with very complex threat models.
The sad fact is that we are all poorly served by the range of services currently available. We worry that there is a significant…
Content type: News & Analysis
Imagine a secret government list of suspicions and allegations, fuelled by unsubstantiated rumours provided by anonymous citizens with undisclosed intentions. The information contained in the list would not be measured against any legal burden of proof or supported by any credible evidence, but would – simply by its existence – become “fact”. Imagine, then, if the government could rely upon such “facts” to identify and implicate individuals for illegal behaviour. Such a system would be…
Content type: News & Analysis
By now, UK internet users are probably familiar with major sites asking them to consent to the use of website cookies. This is prompted by the 'cookie law' (aka "Directive 2002/58 on Privacy and Electronic Communications", otherwise known as the E-Privacy Directive), which is proving a privacy trainwreck. Theoretically, the Directive was a good idea - a method of preventing companies secretly following a user from site to site across the web. However, ill-executed law can be worse than no law…
Content type: News & Analysis
Governments have no automatic right of access to our communications. This will sound highly controversial to some, even downright radical. But the demands of national security and crime prevention do not, in fact, immediately trump every other right and responsibility in the complex relationship between citizen and state.
The recent Skype argument is a great example. Skype has always prided itself on being a secure method of communication. Businesses, government agencies, human…
Content type: News & Analysis
Drones are back in the headlines, with the news that the Ministry of Defence plans to develop unmanned underwater vehicles for use in submarine warfare. Human rights groups have already raised concerns over the UK’s use of airborne military drones, which have played a key role in UK operations in Afghanistan since 2008. But drone technology is not limited to military uses: the deployment of ‘civilian’ drones, designed for use in home airspace, may be an emerging trend in UK policing.…
Content type: News & Analysis
Hacking Team is a supplier of “lawful intercept” technology based in Milan. A regular attendee of surveillance industry conferences around the world, last year one of the company’s founding partners told the Guardian that Hacking Team had sold surveillance software to 30 countries across five continents.
Hacking Team’s marketing material promises that it can “defeat encryption” and “attack and control target PCs from a remote location” in a way that “cannot be detected”. The…
Content type: News & Analysis
Earlier this year, Privacy International began research into the corporate social responsibility policies of companies that sell communications surveillance technology. Given that this technology is known to facilitate human rights abuses in repressive regimes around the world, surveillance tech companies that claims corporate responsibility might be expected to address such concerns in their CSR policy documents.
Of the 246 companies known to partake in the communications surveillance…
Content type: News & Analysis
As part of Privacy International's investigation into the mass surveillance industry we have examined hundreds of legal documents, brochures and, most recently, patents. Patents are a form of intellectual property; patent-holders publicly disclose their inventions in exchange for the exclusive rights to use and commercialise them for a limited period of time. Patent registries therefore provide a window into the otherwise murky world of the mass surveillance industry.
We believe…
Content type: News & Analysis
Last week’s revelation that Bahraini human rights activists have been targeted by advanced surveillance technology made by British company Gamma is yet another nail in the coffin of privacy and freedom of expression in Bahrain.
Over the past ten years, Bahraini citizens, among the most internet-connected in the Middle East, have been subjected to increasingly oppressive controls on and intrusions into their online and offline lives. The internet is heavily patrolled, and free…
Content type: News & Analysis
The recent acquisition of Skype by Microsoft, coupled with a series of infrastructural changes, has resulted in a flurry of responses, concerns and analysis of exactly what kind of assistance Skype can provide to law enforcement agencies. Under this heightened scrutiny, Skype released a statement on their blog on 26th July, purporting to re-affirm their commitment to the privacy of their users.
Privacy International are delighted to read that Skype believes that…
Content type: News & Analysis
Privacy International has compiled data on the privacy provisions in national constitutions around the world, including which countries have constitutional protections, whether they come from international agreements, what aspects of privacy are actually protected and when those protections were enacted. We are pleased to make this information available under a Creative Commons license for organizations, researchers, students and the community at large to use to support their work (…
Content type: News & Analysis
Bloomberg reported today that security researchers have identified FinFisher spyware - "one of the world’s best-known and elusive cyber weapons" - in malicious emails sent to Bahraini pro-democracy activists, including a naturalized U.S. citizen who owns gas stations in Alabama, a London-based human rights activist and a British-born economist in Bahrain.
Analysis of the emails by CitizenLab (a project based within the University of Toronto Munk School of Global Affairs) revealed that…
Content type: News & Analysis
The first joint report from the Committees on Arms Export Controls (CAEC), released last Friday, highlighted the importance of careful licensing and independent scrutiny for the export of ‘controlled’ goods, to prevent sales that could ‘facilitate internal repression’ in authoritarian regimes abroad. And as we wrote yesterday, the Committees advised that 10 Downing Street should make good on assurances PI was given in March that the problem of unlicensed surveillance exports would be addressed…
Content type: News & Analysis
The 2012 report of the Committees on Arms Export Controls (CAEC), released last Friday, has raised serious concerns over the government’s approach to arms exports, highlighting the use of British exports to facilitate repression and prolong conflict in authoritarian regimes abroad.
In his oral evidence to the Committees, the Foreign Secretary William Hague, stressed that the government’s position on granting export licences for goods on the Export Control list has not changed:
The long-…
Content type: News & Analysis
Last Friday the Electronic Frontier Foundation received new information from the US Federal Aviation Administration in response to their FOIA demanding data on certifications and authorizations the agency has issued for the operation of unmanned aircraft.
The information includes extensive details about the specific drone models currently flying in US civilian airspace, including those being used by four local police forces. The North Little Rock Police Department in Arkansas is…
Content type: Report
This report was submitted to the Joint Committee on Human Rights. Under the current version of the draft Communications Data Bill, records of every person or entity with whom any given individual has communicated electronically would be collected continuously and stored for one year. These records would include the time of the communication and the location from which it originated.
The Communications Data Bill raises a number of concerns with regards to the right to privacy under Article 8…
Content type: News & Analysis
Privacy is internationally recognized as a fundamental right. Yet the confines of the right to privacy are subject to never-ending games of tug-of-war between individuals, governments and corporations. These games are rarely fair – individuals are often under-informed and lack the capacity to assert and protect their privacy, while those who seek to erode it are increasingly overbearing and secretive. This is particularly the case in developing countries, where the absence of adequate legal and…
Content type: News & Analysis
In the first public admission of its kind, the Home Office's Peter Hill admitted this week that the British government routinely sweeps up the identities of thousands of people in a given area - with a single request to a mobile phone network.
The statement was made during the first hearing of the Joint Committee on the Draft Communications Data Bill, at which Mr Hill (Head of Unit for Pursue Policy and Strategy Unit at the Home Office), Charles Farr (Director of the Office for Security and…
Content type: News & Analysis
This weekend, the Department for Education sponsored an "appathon", allowing attendees access to the National Pupil Database (which holds information like exam results, special education needs, truancy records and eligibility for free school meals on every child at every state school in the country) and inviting people to build "apps".
The database contains over 400 variables and the records of around 600,000 children. With so many variables, it is a relatively simple task to…