Discover and read the best of Twitter Threads about #dataretention
Most recents (11)
.@edri member @laquadrature is today at the CJEU on the #HADOPI case to defend to right to privacy and anonymity online.
Member States are stubbornly demanding the Court to reopen its case law to enable #MassSurveillance
Member States are stubbornly demanding the Court to reopen its case law to enable #MassSurveillance
@edri @laquadrature The HADOPI case basically asks the question whether retention and access to IP addresses associated with civil identity data and the content of a communication (a file shared via P2P) are considered 'serious interferences with privacy rights'
@edri @laquadrature A dozen Member States are here to explain how impossible it would be to prosecute any crime committed online without a complete revamp of the CJEU case law, making the internet a de facto "lawless zone" (words of France)
1/8 Yesterday, @edri member @laquadrature pled at the @EUCourtPress against the French system that puts the internet under #MassSurveillance to fight against the sharing of copyrighted content. The #CJUEHadopi case is important for several #DigitalRights debates at the EU level. 
2/8 #HADOPI was created in 2009 to sanction users suspected of sharing protected content without authorisation. It collects IP addresses shared by rightsholders & requests civil identity data (name, postal & email addresses) from telecom operators to identify & contact suspects.
3/8 @laquadrature’s goal is to challenge access by #HADOPI to this sensitive information, as only serious crimes could justify such access according to @EUCourtPress. Yet, downloading a movie is not a serious crime.
The new CJEU #dataretention judgment in #Dwyer is rich & interesting. Still reading it but just a few 1st quick observations. First, CJEU clearly rejects @EU_Commission proposal for some flexibility by introducing a “tertium genus of infringements” to deal wth serious crime 1/n
It should be reminded that @EU_Commission, in order to satisfy the operational needs 🇪🇺Law Enforcement Agencies, proposed to equate some serious crimes to the level of gravity of “a serious threat to national security” for which CJEU permits general #dataretention.
Read 2/n
👇
Read 2/n
👇
CJEU clearly rejects such an idea of an intermediate category between national security & public security. It maintains that there is a strict hierarchy bt national security on the one hand & all other legitimate aims on the other, incl. fighting most serious forms of crime 3/n
Le @Conseil_Etat aurait-il inventé la pierre philosophale? 🤔Quelques 1eres impressions à chaud sur points importants de l’arrêt sur la conservation des données de connexion
#dataretention #CERens
📣THREAD (1/n)
👇
#dataretention #CERens
📣THREAD (1/n)
👇
D’un côté CdE évite d’entrer en conflit avec la CJUE en rejetant le moyen GVT 🇫🇷 lui demandant écarter arrêt CJUE car la Cour aurait agi ultra vires en ignorant les exemptions introduites par États dans droit UE. La position est forte (la Cour Const.
Allemande🇩🇪 appréciera)2/n
👇
Allemande🇩🇪 appréciera)2/n
👇
Pour CdE la ‘guerre des juges’ serait dévastatrice pour ordre juridique 🇪🇺. Il s’inscrit donc dans logique de ‘dialogue des juges’ en proposant une interprétation conciliatrice entre arrêt CJUE & besoins justice 🇫🇷. Pour le reste il appartient États prendre initiatives politiques
A couple of things I would keep in mind on this saga:
1) The 1st Constitutional Courts which declared unconstitutional the data retention laws transposing the defunct directive, did so in 2009, 2010 & 2011: 1st, the Romanian Const Court ❤️, then the German and Czech Const Courts.
1) The 1st Constitutional Courts which declared unconstitutional the data retention laws transposing the defunct directive, did so in 2009, 2010 & 2011: 1st, the Romanian Const Court ❤️, then the German and Czech Const Courts.
2) Before them, the Bulgarian Supreme Administrative Court annulled a provision of the data retention national law in 2008.
What do these countries have in common? A history of suffering under surveillance states & no rule of law. Maybe they know this leads to bad stuff?
What do these countries have in common? A history of suffering under surveillance states & no rule of law. Maybe they know this leads to bad stuff?
3) The ECJ tried to avoid the problem in a couple of cases, looking at formal issues & competence of the EU to act, when 1st looking at the 2006 Directive.
It couldn’t avoid it any longer when 2 other Constitutional-level tribunals sent it Qs : Austria & Ireland.
It couldn’t avoid it any longer when 2 other Constitutional-level tribunals sent it Qs : Austria & Ireland.
One takeaway on the fringe of #LaQuadratureduNet is how vitally important the purpose of processing is when assessing necessity & proportionality of a measure. See the different analysis for national security v. combating crime & safeguarding public security. #DataRetention 1/
Another takeaway is how important it is to literally dissect the facts of a processing - what data is processed, how & for what purpose (see the IP address analysis) to establish necessity. Reminds me of our work for the Necessity Toolkit at the EDPS, where this was emphasized 2/
See the final version of the Necessity Toolkit here: edps.europa.eu/sites/edp/file… but maybe also check out the first version, very dear to me 😊 edps.europa.eu/sites/edp/file… 3/END
Sobre las consecuencias (severas!! emho) para la legislación penal española LECRIM y Ley25/2007 de la STJUE Asuntos C-623/17 y otros #Privacy #ECJ #PersonalData #PrivacyProtection #DataRetention #NationalSecurity (C-511/18,C-512/18,C-520/18 & C-623/17), abro un breve HILO:👇👇
Tras los atentados terroristas cometidos en Madrid y Londres, la UE estimó que una manera de combatir y perseguir eficazmente el terrorismo y el crimen organizado era mediante la retención de datos de telecomunicaciones...
....para facilitar la prevención, investigación y enjuiciamiento del terrorismo y de otras formas de delincuencia grave. Se aprobó la Directiva 2006/24/CE sobre conservación de datos, muy criticada desde su origen.
Worrying news from Brazil 🇧🇷 The Fake News bill being discussed by Congress imposes mandatory social media account ID registration (!) and seems to be aiming to strict data localization and data retention obligations. 1/5
#LGPD #GDPR #privacy
#LGPD #GDPR #privacy
If you thought mandatory SIM card registration is bad, this is worse. All social media users would have to provide valid Brazilian ID or passports if they’re foreigners & a Brazilian phone number to be able to open a user account. 2/5
It also aims to impose data retention obligations for internet connection logs (!) for 1 year by ISPs and 6 months by online applications. Plans for EU Adequacy post-LGPD may be … problematic. See CJEU in Digital Rights Ireland curia.europa.eu/juris/document… 3/5
#dataretention #GDPR
#dataretention #GDPR
1. se non l'avete letta ieri sera, vi consiglio assolutamente di farlo: è la pubblicazione dell'#AdaLovelaceInstitute sulla #sorveglianzaDigitale contro #COVID. E' assolutamente intelligente: la cosa più intelligente che ho letto sul tema,scritta da persone veramente competenti
2. la pubblicazione è in inglese: adalovelaceinstitute.org/wp-content/upl… leggete il capitolo 3 sul #digital #ContactTracing. E' l'eccellenza
3. leggendola capirete una cosa: a differenza dei nostri "esperti", l'#AdaLovelaceInstitute centra il problema: "Al momento,NON esistono prove sufficienti a stabilire che il #ContactTracing digitale sia una tecnologia efficace per supportare la risposta alla #pandemia"
Finding #1. Looking at it, the only changes I see in the final report are in sentence structure, detailed citation of background documentation. Substantively this finding is unchanged. It's worded differently (and more forensically).
Finding #2: Again, there is a claim of substantial changes made by the Dept. Reading this, the change I see is inclusion of more detail and a clearer enumeration of the logical analysis that was undertaken. The actual conclusion is unchanged.
Finding #3: Again... I'm at a loss to see where the substantial difference is here. And the finding is pretty standard fare. I'll look at Depts argument later... (or tomorrow). The DPC has been consistent (and there is significant case law on #DataRetention).
1. sono convinta che questa vicenda gravissima delle intercettazioni della #esurv finirà a tarallucci e vino, come è finita per #HackingTeam e per quella che io chiamo la legge #Bocassa, la legge che ci ha portato ad essere gli UNICI in EU che hanno #DataRetention a 6ANNI
2. sono convinta perché, lo dico con la chiarezza che mi è propria,NON esistono "check and balances", il sistema è semplicemente fuori controllo, come ha dimostrato lo scandalo #HackingTeam, i cui clienti erano quando di più vicino a Lucifero ci sia in Terra
3. sono convinta xché dopo scandalo #HackingTeam non solo non è cambiato NULLA,non è stata introdotta alcuna forma di controllo reale, trasparenza, regole, ma addirittura magistrati e investigatori hanno preteso legge #Bocassa, che ci ha fatto conoscere nel mondo xun nuovo record
