28 March 2012
Support our work: become a Friend of Statewatch from as little as £1/€1 per month.
EU surveillance of telecommunications
Europol
document confirms that the EU plans a "common EU law enforcement
viewpoint on data retention"
"Proposal for common European Union law enforcement viewpoint on data retention"
The confidential document (Expert meeting on cyber crime: Data retention, full-text: pdf) is a detailed agenda for a meeting in the Europol HQ in the Hague entitled: "Expert meeting on cyber crime: Data Retention" and largely concerns a: "Closed session: discussion amongst experts from Law Enforcement". It confirms a previous Statewatch report, see: EU governments working on draft of a binding Framework Decision , that after the formal agreement on the retention of telecommunications data EU governments are planning to introduce a common policy across the EU (and one that will also be obligatory for applicant countries to implement too). It confirms too the long-standing commitment of the EU's law enforcement agencies (police, customs, immigration and internal security services) to get access to telecommunications data - the agenda sets out a Questionnaire sent out to EU states on 3 December 2001 for a:
"List of minimum and optional data to be retained by Service Providers and Telcos [telephone companies]"
The "data that must be retained by Internet Service Providers: Network Access Systems" includes: User-id and password, assigned IP address, number of bytes transmitted and received, and "Optional": Credit card number or bank account for subscription payments. For "E-mail Servers": IP address, message ID, sender, receiver, user ID. "File upload and download servers": ftp log, IP address, User-id and password and underlined: "Path and filename of data objects up loaded or downloaded". For "Web servers": IP source address, "Operation, ie. GET command", and the "path of the operation (to retrieve html page or image file" - this while information on e-mails is limited to traffic and location data for website usage all the details of web pages visited have to be kept.
The questionnaire also covers "Usenet" and "Internet Relay Chat". For normal phone lines telephone companies will have to keep the following information: numbers called (whether connected or not), date, time, length, plus name, date of birth, address and bank account of the subscriber and types of connection the user has eg: phone, ISDN,ADSL etc. For mobile and satellite users: much the same as for phone plus the "identification and geographical location" of the user - this latter factor means that for mobile phone users not just their usage is logged but also their "geographical location".
This document reflects the lengthy saga of laying down law enforcement "Requirements" for service and network providers developed by the FBI and adopted in secret by the Council on 17 January 1995. An attempt in 1998 to get through revised "Requirements" (known as "ENFOPOL 98") met fierce resistance from civil society and was withdraw. Another attempt in May 2001 (ENFOPOL 29" (which became ENFOPOL 55) was also not adopted because of fears of negative publicity and lack of parliamentary scrutiny. The Europol document however picks up all the main points in ENFOPOL 98 (1998) which later became ENFOPOL 55 (2001): See: Statewatch report: The mystery of the missing minutes
Background documentation
ENFOPOL
55 Council Resolution (dated 20.6.02) on
law enforcement agencies needs (previously ENFOPOL 29 & 98)
ENFOPOL 29 COR 1: updated
version of 14 April 2001
ENFOPOL 29,
Enfopol 98/19 re-visited, 30 March 2001
ENFOPOL 19, 15
March 1999: Interception of telecommunications - Draft Council
Resolution on new technologies (final version of ENFOPOL 98,
this was never adopted)
ENFOPOL 98 REV 2 ,
3 December 1998: Interception of telecommunications - Draft Council
Resolution on new technologies
ENFOPOL 98 REV 1, 10
November 1998: Interception of telecommunications - Draft Council
Resolution on new technologies
ENFOPOL 98, 3
September 1998: Interception of telecommunications: Council Draft
Resolution in relation to new technologies
for full background to this issue
please see Statewatch's Observatories on: EU-FBI
surveillance plan & S.O.S.Europe
Statewatch
News online
| Join Statewatch news e-mail list | If you use this site regularly, you are encouraged
to make a donation
to Statewatch to support future research | Subscribe
to Statewatch online
just £10 a year
© Statewatch ISSN 1756-851X.Material
may be used providing the source is acknowledged. Statewatch
does not have a corporate view, nor does it seek to create one,
the views expressed are those of the author. Statewatch is not
responsible for the content of external websites and inclusion
of a link does not constitute an endorsement.
Spotted an error? If you've spotted a problem with this page, just click once to let us know.
Statewatch does not have a corporate view, nor does it seek to create one, the views expressed are those of the author. Statewatch is not responsible for the content of external websites and inclusion of a link does not constitute an endorsement. Registered UK charity number: 1154784. Registered UK company number: 08480724. Registered company name: The Libertarian Research & Education Trust. Registered office: MayDay Rooms, 88 Fleet Street, London EC4Y 1DH. © Statewatch ISSN 1756-851X. Personal usage as private individuals "fair dealing" is allowed. We also welcome links to material on our site. Usage by those working for organisations is allowed only if the organisation holds an appropriate licence from the relevant reprographic rights organisation (eg: Copyright Licensing Agency in the UK) with such usage being subject to the terms and conditions of that licence and to local copyright law.