18 Apr 2018

DPAs require urgent action on air passenger surveillance

By Maria Roson

The Working Party 29 (WP29) is an advisory body composed of representatives from the data protection authority of each EU Member State, the European Data Protection Supervisor (EDPS) and the European Commission.

----------------------------------------------------------------- Support our work - make a recurrent donation! https://edri.org/supporters/ -----------------------------------------------------------------

On 11 April, the WP29 has requested the Commission to take action and revise Passenger Name Records (PNR), policies based on the Opinion 01/15 of the Court of Justice of the European Union (CJEU). The CJEU found in its opinion on the EU PNR agreement with Canada that the envisaged agreement is in part not compatible with Articles 7, 8, 21 and 52 of the Charter of Fundamental Rights of the European Union. However, no relevant progress has been made concerning this agreement, nor with the PNR agreements with Australia and the US, nor the EU PNR Directive.

The WP29 expressed the concern that there were a number of issues highlighted by the CJEU that need urgent review:

1. Need for clear and precise description of the personal data collected
The PNR Directive, and particularly the PNR agreements with Australia and the US, contain language which is not specific enough and which does not sufficiently describe what kind of data will be collected. This can lead to excessive amounts of data which are not necessary or proportionate for the purposes of the Directive.

2. Exclusion of sensitive data
The Court points out that the transfer of sensitive data requires a precise and particularly solid justification, based on grounds other a simple reference to the protection of public security against terrorism and serious transnational crime. The processing of sensitive data has been prohibited by the EU legislator regarding the PNR Directive, but the agreement with the US allows for sensitive data to be retained and processed.

3. An independent authority needed to monitor disclosure of personal data
The retention of the data for as long as the passengers are in the third country has been considered to be in compliance with the Charter. However, the CJEU held that the access to the retained PNR data must be subject to a prior review either by a court or by an independent administrative body. Neither the PNR agreement with the US nor with Australia includes an obligation in line with the Court’s holding. With regard to the EU PNR Directive, Article 12 (3) makes disclosure of the full PNR data subject to approval by a judiciary authority or an undefined “another national authority competent under national law” after a period of six months.

4. Deletion of PNR data after departure if there is no evidence of risks
The CJEU stated that PNR data could not be stored after the passengers’ departure from the third country except for specific cases for which objective evidence can demonstrate a risk of a passenger. However, none of the instruments includes an obligation to delete it after the departure of the passenger if no objective evidence demonstrates this potential risk. Furthermore, the data retention periods are different in the Directive and PNR agreements for no obvious reason.

5. Limits to disclosures to third countries
The CJEU held that third country authorities which have received PNR data may only transfer that data to another country if the EU has made a PNR agreement with that country or if it has found it to uphold adequate data protection norms. Nonetheless, in the cases of the agreements with Australia and the U, there are no such limitations.

6. Oversight by an independent supervisory authority
The CJEU stressed the necessity of independent oversight of the PNR data protection safeguards of the EU/Canada agreement. This issue does not appear as problematic with a view to the PNR directive and the agreement with Australia, but it is particularly relevant for the agreement with the US. This agreement provides that compliance with the data protection safeguards is primarily subject to review by the Privacy Officers of the Department of Homeland Security, and thus not by an independent administrative body.

Therefore, further protection of passengers’ privacy must be ensured. The PNR agreements with the US and with Australia suffer from a range of deficiencies. As for the EU PNR Directive, it seems clear that it is at least partly not in compliance with the requirements expressed by the CJEU. The European Commission, as Guardian of the Treaties, needs to take urgent action in order to ensure compliance with the Charter of Fundamental Rights, of both the EU PNR Directive and the agreements.

Letter of the Chair of the Article 29 Working Party to EU Commissioners (11.04.2018)
http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=622219

Charter of Fundamental Rights of the European Union
https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:12012P/TXT

EU PNR Directive (27.04.2018)
https://eur-lex.europa.eu/eli/dir/2016/681/oj

FAQ: Passenger Name Records (PNR) (09.12.2015)
https://edri.org/faq-pnr/

Legal Service Opinion on CJEU Data Retention ruling (14.01.2015)
https://edri.org/legal-service-opinion-on-cjeu-data-retention-ruling/

(Contribution by María Roson, EDRi intern)

EDRi-gram_subscribe_banner

Twitter_tweet_and_follow_banner

close
16 Apr 2018

EU “e-evidence” proposals turn service providers into judicial authorities

By EDRi

Today, 17 April, the European Commission unveiled two proposals: a Regulation on cross-border access to and preservation of electronic data held by service providers and a Directive to require service providers to appoint a legal representative within the EU.

The core of the Commission’s “e-evidence” initiative is that national judicial or administrative bodies can ask a service provider, such as Facebook, based in another EU Member State, to produce and to preserve data for the investigation or prosecution of a crime. Currently, national judicial authorities receive and authorise foreign requests, in order to ensure that fundamental rights are protected. The European Union very recently adopted the European Investigation Order to improve the efficiency and speed of cross-border criminal investigations within the EU. Member States had until 22 May 2017 to implement it. Before any proper assessment of this measure has been possible, the EU now seems to be rushing into making these new proposals, following in the steps of the United States.

“The Commission is proposing dangerous shortcuts to allow national authorities to obtain people’s data directly from companies, basically turning them into judicial authorities”, said Maryant Fernández Pérez, Senior Policy Advisor at European Digital Rights (EDRi). “States have legal obligations to respect and defend people’s fundamental rights. Companies do not have such legal obligations. If companies are coerced into handing over citizens’ data, our existing rights are put at risk.”

EDRi is concerned that, if adopted, this Regulation would be putting companies at the same level as a court or a state. In fact, companies would be exempted from liability if they hand over data in response to an illegal or incorrect order. This means that if there is an invalid order which the company complies with (due to fear of sanctions for non-compliance), and if an exception to user-notification is used to keep this order secret, it will be very difficult for the user to defend her/his rights.

The only way to credibly propose any legislation in the area of cross-border access to data would have been to comprehensively improve and enhance the existing judicial cooperation framework. The current framework is based on “mutual legal assistance treaties” (MLATs) for cooperation with countries outside the EU. Inside the EU, the recently adopted European Investigation Order (EIO) facilitates efficient cross-border access to data. The European Commission chose to propose a new legal shortcut to bypass existing measures, maximising risks for fundamental rights violations. The proposals will now be subject to the scrutiny of the European Parliament and Member States gathered in the Council of the European Union.

EDRi’s response and annex to the European Commission’s consultation on cross-border access to e-evidence (16-27.10.2017)
https://edri.org/files/consultations/e-evidence_edriresponse_20171027.pdf
https://edri.org/files/consultations/annexconsultatione-evidence_20171026.pdf

Statement of the ART 29 WP on e-Evidence (07.12.2017)
http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=610177

CLOUD Act: Civil society urges US Congress to consider global implications (19.03.2018)
https://edri.org/cloud-act-letter-uscongress-global-implications/

The U.S. CLOUD Act and the EU: A Privacy Protection Race to the Bottom (10.04.2018)
https://www.eff.org/deeplinks/2018/04/us-cloud-act-and-eu-privacy-protection-race-bottom

European Commission proposals on cross-border access to data (17.04.2018)
https://ec.europa.eu/info/strategy/justice-and-fundamental-rights/criminal-justice/e-evidence_en

 

Twitter_tweet_and_follow_banner

close
12 Apr 2018

We are looking for a new Executive Director

By Kirsten Fiedler

European Digital Rights (EDRi) is an international not-for-profit association of 35 digital human rights organisations from across Europe. We defend and promote rights and freedoms in the digital environment, such as the right to privacy, freedom of expression, and access to information. This job announcement is part of the upcoming leadership change and transition that we are currently preparing for.

The Executive Director provides overall leadership and management of the strategy, policy, resources, operations and communications of EDRi. The Executive Director is responsible for the management of the organisation and all aspects of its operations. S/he should be deeply committed to the organisation’s values and mission and drive forward a joint vision for the organisation in line with the organisation’s objectives. While the Executive Director is not expected to be a specialist in specific operations (campaigns, fundraising, HR, administration, finance, etc), s/he has a sufficient grasp of all domains to ensure that staff members can achieve their objectives and that they and the EDRi members can work well together to achieve the organisation’s mission.

We are an equal opportunities employer with a strong commitment to transparency and inclusion. People from all backgrounds are encouraged to apply and we strive to have a diverse and inclusive working environment.

Job title: Executive Director
Start date: 1 July 2018
Reports to: Board of Directors, the Executive Director’s work is evaluated by the Board on a yearly basis.
Line-manages: policy, advocacy, campaigning, communications, fundraising and organisational support.
Scope: staff members 7, annual budget of approx. 800k euro.

RESPONSIBILITIES

1. Leadership, organisation mission and strategy

  • steer the organisation in its learning, growth and development
  • provide leadership and management for the organisation
  • lead strategic planning processes
  • implement strategic plans and ensure rigorous evaluation
  • prepare general assemblies (GAs) and attend in an advisory capacity
  • support the Board, and prepare quarterly financial and narrative reports
  • formulate annual objectives for all work areas and evaluate them
  • represent the organisation at events
  • support development of policy strategy and taking of tactical decisions

2. Financial sustainability and oversight

  • prepare the yearly budget, oversee expenditure
  • oversee and contribute to the raising of funds from foundations corporations and individual donors
  • maintain good relations with donors and oversee reporting to them
  • oversee fiscal management operating within the approved budget
  • ensure that sound bookkeeping and accounting procedures are followed
  • ensure that the organisation complies with relevant legislation and grant contracts

3. Organisation operations

  • ensure the implementation of Board decisions
  • ensure that the Board is made aware of all matters requiring a Board decision
  • inform the Board of all developments of major significance to the organisation
  • hire staff members,
  • oversee internal human resources policies and ensure staff retention,
  • provide oversight of all staff and organise weekly meetings with staff,
  • foster effective team work and establish a positive work environment,
  • set up and evaluate the individual objectives with staff members,
  • undertake regular one to one meetings with all staff,
  • undertake annual appraisal and identify training needs and opportunities for staff, in order to develop their skills and ensure they do the same with the staff or interns/trainees they oversee,
  • sign contracts and other agreements on behalf of EDRi,
  • give or refuse final approval for any unforeseen use of resources.

QUALIFICATIONS

  • A bachelor’s degree or higher
  • senior management experience would be a plus
  • solid, hands-on financial and budget management skills
  • strong organisational abilities, especially for planning, delegation and project management
  • ability to develop and convey the vision of EDRi’s strategic future to staff, Board, network and donors
  • ability to build trusted relationships with, and to collaborate with and oversee all staff
  • knowledge of EU policy-making processes
  • knowledge and/or experience in understanding the NGO sector
  • awareness and knowledge of the EU’s political environment
  • knowledge of the digital rights field and affinity with EDRi’s values and mission,
  • knowledge and/or experience in the field of human resources management
  • knowledge and/or experience in fundraising unique to nonprofit sector
  • knowledge and/or experience in conflict resolution
  • public speaking skills
  • ability to interface and engage EDRi’s main stakeholders

Attitude

  • Passionate, idealistic, enduring, team player, diplomatic, discreet, patient, mission-driven, self-directed, and committed to knowledge-sharing and high-integrity leadership.

Technical

  • fluency in written and spoken English,
  • fluency in written and spoken second language (ideally French or Dutch),
  • strong written and verbal communication skills,
  • budgeting (oversight, presenting, monitoring),
  • knowledge of free and open source operating systems and software are a plus.

HOW TO APPLY

To apply please send a maximum one-page cover letter and a maximum two-page CV (only PDFs are accepted) by email to julien.bencze[at]edri.org. Closing date for applications is 3 June 2018. Interviews with selected candidates will take place around mid-June, with a start date of (ideally) 1 July.

Twitter_tweet_and_follow_banner

close
10 Apr 2018

We urgently need a policy intern to join our team of superheroes!

By Diego Naranjo

European Digital Rights (EDRi) is an international not-for-profit association of 35 digital human rights organisations from across Europe. We defend and promote rights and freedoms in the digital environment, such as the right to privacy, freedom of expression, and access to information.

Join EDRi now and become a superhero for the defense of our rights and freedoms online!

The EDRi office in Brussels is currently looking for one intern to support our policy team. This is your opportunity to get first-hand experience in EU policy-making and contribute to a change in favour of digital rights and freedoms across Europe. The selected candidate should be able to start as soon as possible. The contract will last until 21 July 2018. The internship is paid 750,- EUR per month.

Key tasks:

  • Research and analysis on data protection, privacy, copyright;
  • Monitoring international, EU and national related policy developments;
  • Organising and participating in meetings and events;
  • Assisting with writing of the EDRi-gram newsletter;
  • Assisting with preparing draft reports, presentations and other internal and external documents;
  • Assisting with preparing communication tasks;
  • Development of public education materials;
  • Find out more about internships at EDRi.

Qualifications:

  • A demonstrated interest in and enthusiasm for human rights and technology-related legal issues;
  • Good understanding of European decision-making;
  • Experience in the fields of data protection, privacy, copyright would be an asset;
  • Excellent research and writing skills;
  • Fluent command of spoken and written English;
  • Computer literacy.

How to apply:

To apply please send a maximum one page cover letter and a maximum two page CV in English and only in .pdf files (other formats – such as doc and docx – will not be accepted) to diego.naranjo(at)edri.org.

We are an equal opportunities employer with a strong commitment to transparency and inclusion. People from all backgrounds are encouraged to apply and we strive to have a diverse and inclusive working environment.

The closing date for applications is 27 April 2018 but we will select candidates as soon as possible as we receive their submissions. Please note that due to scarce resources, only shortlisted candidates will be contacted.

close
10 Apr 2018

Stop the #CensorshipMachine!

By EDRi

In September 2016 the European Commission proposed a controversial Copyright Directive that, if accepted, will threaten our freedoms online.

The European Parliament Committee on Legal Affairs (JURI) is set to vote on the issue in June, and your action is needed to stop the “censorship machine”!

What can you do?

See the list of JURI Committee members and follow the instructions on savethememe.net to contact an MEP through the free calling tool.

Don’t know what to tell them? Use our script to have a few speaking points at hand when you make the call!

#CensorshipMachine – How will the decision be taken? (19.03.2018)
https://edri.org/censorshipmachine-how-will-the-decision-be-taken/

Time to stop the #CensorshipMachine: NOW! (30.11.2017)
https://edri.org/contact-ep-juri/

The Civil Liberties Committee rejects #censorshipmachine (21.11.2017)
https://edri.org/civil-liberties-committee-rejects-censorshipmachine/

Proposed internet filter will strip citizens of their rights: Your action is needed! (28.03.2018)
https://edri.org/proposed-internet-filter-will-strip-citizens-of-their-rights/

Copyright reform: Document pool
https://edri.org/copyright-reform-document-pool/

Our Freedom of Speech Is Threatened by the European Copyright Proposal – Here’s How
(29.03.2018)
https://www.liberties.eu/en/news/ec-delet-article-thirteen/13097

Say No to Online Censorship in Europe! (09.03.2018)
https://www.liberties.eu/en/campaigns/protect-free-speech-campaign-online-censorship/249

5 Devastating Effects of the EU’s Copyright Proposal (29.03.2018)
https://www.liberties.eu/en/news/5-devastating-effects-of-the-eu-copyright-proposal/14659

Twitter_tweet_and_follow_banner

close
06 Apr 2018

Fundamental Rights Agency report: The risks from biometrics and EU IT systems

By Intern

On 27 March 2018, the Fundamental Rights Agency (FRA) published a report entitled “Under watchful eyes: biometrics, EU IT systems and fundamental rights” . The report analyses the impact of technologies used for immigration and security purposes on the right to privacy and data protection.

Currently, three large-scale IT systems relying on biometric data exist in the EU: an asylum, a migration-management and a internal security system . In addition to this, there are advanced plans to set up three new systems for security and border management purposes. Furthermore, legislative proposals have recently been tabled by the European Commission to make these systems interoperable by creating a common search portal and by establishing a common repository with core biographic data of individuals whose data is stored in the different IT systems. The FRA report specifically analyses how large-scale IT systems and interoperability impact fundamental rights enshrined in the Charter of Fundamental Rights of the European Union.

The FRA argues that use of large-scale IT systems presents both risks and opportunities for fundamental rights. On one hand, these systems allow for more robust and timely protection in the field of immigration and security, preventing identity fraud and theft. However, since individuals whose data are stored in large-scale IT systems are in a weak position (think of migrants or asylum seekers), there are many risks for fundamental rights.

First, these systems do not always provide information in an understandable and transparent manner. According to FRA researchers, individuals are not always fully informed about their data being processed and even in case they are, they face difficulties understanding how it is processed. In order to solve this, the FRA has issued three opinions emphasising the need to provide information that covers “all purposes of the data processing and must include information on the subjects rights, in an understandable and transparent manner”.

Second, industry needs to ensure the protection of fundamental rights when designing new solutions. As the state of the art of technology determines the options that the EU and its Member States have when creating new systems, industry and scientific research play a major role when coming up with technical solutions. Therefore, according to FRA, experts on personal data protection should be involved when designing new solutions, to make sure the principles of data protection are embedded in these technologies by design and by default.

Third, these systems need to have strong safeguards to prevent unlawful access to data. The use of IT systems to control irregular migration and to fight crimes and terrorism raises the risk of data being used for purposes not initially envisaged. The risk is even higher with interoperability between IT systems. Therefore, when personal data isbeing processed, the purposes of the processing have to be specified and explicitly defined. In FRA’s opinion, safeguards should be put in place to ensure lawful access to data stored in IT systems in the field of asylum and migration.

Fourth, sharing personal data with third (i.e. non-EU) countries can present risks for persons in need of international protection. In its opinion, the FRA suggests that Member States must “take measures to prevent information that a third-country national has lodged a claim for international protection from being shared with third countries”.

A careful evaluation needs to be done in order to assess the impact that law enforcement authorities access to data stored in IT systems may have on fundamental rights. Most of EU IT systems contain data about individuals who are not suspected of having committed any crimes. Therefore, the FRA suggests that the EU and its Member States should carefully assess the impact that law enforcement access to data stored in IT systems in the field of immigration may have on fundamental rights. The EU legislators should make sure that the “cascade system” safeguards, obliging Member States to first consult national databases linked to criminal investigations before consulting EU IT systems, is retained.

Data quality needs to be ensured. Mistakes in the IT systems used in the field of asylum and migration management can have damaging consequences for individuals. FRA research identified some inaccuracies. Therefore, in order to improve data quality, the FRA suggests that the Council of the EU should “continue to put data quality issues on the agenda to promote the implementation of best practices. FRA also suggests that EU Member States should involve the persons whose data are collected and used in verification procedures”.

Finally, rights of individuals need to be ensured. This means ensuring the effective exercise of the right of access, correction and deletion of personal data. Even though data quality issues are recurrent, complaints about incorrect or unlawful data use are rare. This demonstrates a lack of awareness and understanding of how to exercise the right of access, correction or deletion of inaccurate stored data. Furthermore, this may be exacerbated if IT systems are made interoperable. In this respect, the FRA suggests that EU Member States should raise people’s awareness on their right to access their personal data and that simplified procedures to access, correct and delete personal data should be put in place.

Under watchful eyes – biometrics, EU IT-systems and fundamental rights (28.03.2018)
fra.europa.eu/en/publication/2018/biometrics-rights-protection

EU wastes no time welcoming prospect of Big Brother databases (15.05.2017)
http://statewatch.org/news/2017/may/eu-hleg-interop-report.htm

Norway introduces forced biometric authentication (26.07.201)
https://edri.org/norway-introduces-forced-biometric-authentication/

Swedish border control becomes a privacy nightmare for travellers (13.01.2016)
https://edri.org/swedish-border-control-becomes-a-privacy-nightmare-for-travellers/

(Contribution by Margaux Rundstadler, EDRi intern)

Twitter_tweet_and_follow_banner

close
04 Apr 2018

AptiRo, EFN & Alternatif Bilisim: Digital rights around Europe

By EDRi

Alternative Informatics Association (Alternatif Bilisim)

The Internet Ungovernance Forum, co-organised by the Turkish EDRi member Alternative Informatics Association (Alternatif Bilişim)  was a collective victory in many ways. Held in parallel with the controversial Internet Governance Forum in Istanbul in September 2014, it had symbolic value for Internet freedoms, giving inspiring input with contributions from celebrity technologists as well as renowned experts.

Association for Technology and Internet (ApTI)

Romanian EDRi member Association for technology and Internet (ApTI) led public debates regrading controversial proposals from the Romanian government and the Romanian Intelligence Agency (SRI) regarding the right to privacy. The public debates and actions led to four decisions in the past ten years by the Romanian Constitutional Court that agreed with the organisation’s position.

Electronic Frontier Norway (EFN)

The Norwegian EDRi member Electronic Frontier Norway (EFN) made its breakthrough in national media around 2001-2002 thanks to the “DVD Jon” court case. Jon Lech Johansen was sued and arrested for decrypting a DVD copy control system to view DVDs on the Linux operating system and for writing the programme that enabled the availability on the internet. EFN advocated for his acquittal and full redress.

2015 Internet Report on Turkey released (24.02.2016.) https://edri.org/2015-internet-report-on-turkey-released/

New data protection law in Turkey (20.04.2016.) https://edri.org/new-data-protection-law-in-turkey/

State of emergency worsens digital crackdown in Turkey (16.11.2016) https://edri.org/state-of-emergency-worsens-digital-crackdown-in-turkey/

Icing on the cake: Romanian cybersecurity law unconstitutional (28.01.2015.) https://edri.org/romanian-cybersecurity-law-declared-unconstitutional/

Romania: After PNR, a proposal for retention of tourist data (09.09.2015.) https://edri.org/romania-after-pnr-a-proposal-for-retention-of-tourist-data/

Romania: Culture Ministry rallies copyright lobbyists (24.01.2018.) https://edri.org/romania-culture-ministry-rallies-copyright-lobbyists/

Norway: no more court cases for DVD-Jon (15.01.2004.) https://edri.org/edrigramnumber2-1dvdjon/

Member Spotlight: Electronic Frontier Norway (23.08.2017.) https://edri.org/member-spotlight-electronic-frontier-norway/

 

EDRi-gram_subscribe_banner

Twitter_tweet_and_follow_banner

close
04 Apr 2018

Modern Poland Foundation: protecting access to culture and knowledge

By Modern Poland Foundation

Modern Poland Foundation, EDRi’s member organisation from Poland, is working for the protection of open access to culture and knowledge. This article highlights their most notable successes.

The Modern Poland Foundation built the most popular Polish free online library Wolne Lektury  which has gained an audience of 5,7 million users. Since its launch over 4400 literary texts were published. Tools for digitizing and releasing books in various formatsand via mobile applications, an OPDS catalog, the OAI-PMH protocol and its open API are constantly being developed. All of the software is freely available under the GNU AGPL licence. The library hosts public domain works, edited and adapted for the modern audience, as well as contemporary works acquired for distribution under free licenses.

Between 2012 and 2015, the Foundation was involved in strategic litigation in the area of the public domain. A court decision was sought regarding the term of copyright protection for the works of Janusz Korczak, a Polish-Jewish children’s books author (King Matt the First) and pedagogue. Although his death in 1942 was well documented, some post-WWII laws on missing persons were used to prolong the copyright term of his works to 2017. The court’s decision put an end to this practice, and recognised the Foundation’s reasoning.

Another important intervention by the Foundation was the case of da Vinci’s “Lady with an Ermine”. In 2012, the Polish government paid one million Polish Zloty for using the image of the painting, which is already in the public domain. A FOIA requests was filed by the Foundation to the Ministry of Culture and the Wawel Castle, and brought considerable media attention to the case. The case was used in subsequent interventions in consultations regarding copyright and state involvement in culture.

Within the Prawo Kultury (Law of Culture) project, the Foundation led information campaigns and educational activities on the topic of copyright. These activities included:

  • running a social campaign “I have the right to…” aimed at raising awareness in the area of copyright and to educate the general public about their freedoms regarding limitations and exceptions specified in copyright law
  • organising the annual CopyCamp  conference about copyright since 2012 with the aim of fostering a balanced and multi-sided debate about copyright in its political and social contexts.
  • offering a copyright law help desk
  • helping citizens understand copyright and free licences by running an information website, including a comprehensive guide on copyright
  • organising trainings for non-governmental organisations, public institutions, businesses as well as for artist and student groups
  • editing and publishing a textbook for first year university intellectual property classes together with ready to use slides for download and use by university teachers, under a CC-BY-SA license
  • regularly publishing texts (including translations) crucial to the debate on the shape and changes to the copyright law (including such international authors as: Philippe Aigrain, Eben Moglen, Cory Doctorow)
  • hosting a research project “Right to Culture: Future Scenarios” for the development of scenarios for future creation, sharing and use of culture and the assessment of its impact on the state of society, culture, education, creative sector and copyright system in Europe in the perspective of 2040.

Commission claims that general monitoring is not general monitoring (10.01.2018) https://edri.org/commission-claims-that-general-monitoring-is-not-general-monitoring/

Is anti-plagiarism software legal under EU Copyright legislation? (29.11.2017) https://edri.org/is-anti-plagiarism-software-legal-under-eu-copyright-legislation/

EDRi-gram_subscribe_banner
Twitter_tweet_and_follow_banner

close
04 Apr 2018

IT Pol: Activism made it to the museum

By IT-Pol

In 2005, Danish EDRi member IT-Political Association of Denmark (IT-Pol) successfully advocated for a resolution (B-103) for open standards in IT systems used by the government, which the Parliament adopted unanimously.

In 2007, IT-Pol produced a Linux Live CD containing the Tor anonymity network software combined with encryption and privacy tools (similar to Tails today), that was used in the campaign against the Danish implementation of the Data Retention Directive. While campaign itself was not successful, the CD Polippix gained media attention. A Danish trade union for IT professionals distributed the CD to its members. The distribution of the CD was criticised by the Minister of Justice but nevertheless, years later the CD is still on public display in the Danish Telecoms Museum.

In 2013, a proposal to introduce e-voting (trials) in Denmark was dropped after public criticism from IT-Pol and other organisations at an expert hearing in the Danish Parliament.

No anonymous Internet usage in Denmark? (29.06.2011) https://edri.org/edrigramnumber9-13anonymous-internet-denmark/

Denmark: Our data retention law is illegal, but we keep it for now (08.03.2017) https://edri.org/denmark-our-data-retention-law-is-illegal-but-we-keep-it-for-now/

Denmark allows massive retention of location data for mobile internet (28.06.2017) https://edri.org/denmark-allows-massive-retention-of-location-data-for-mobile-internet/

EDRi-gram_subscribe_banner

Twitter_tweet_and_follow_banner

close
04 Apr 2018

Wikimedia: A licence for success

By Wikimedia Deutschland

In 2014, EDRi member Wikimedia created guidelines on recommended standard licences, datasets and charging for the reuse of public sector information documents – while they are “only” guidelines, they contain strong rules. Wikimedia is now trying to make them the basis for the upcoming reform of the Directive on Public Sector Information (PSI Directive).

Moreover, Wikimedia worked for the new copyright exception in Belgium, freedom of panorama. The same exception was also added to the Armenian copyright law and is now discussed in the Ukrainian, South African, Swedish and European parliaments.

Recent contributions by the organisation to the defence of digital human rights include:

  • Wikimedia switched its sites from http to https, which had the effect that all articles are now available in Iran (which was blocking some before that).
  • Wikimedia is currently suing the NSA over surveillance and the court ruled that we have “legal standing” (a first small victory).
  • Wikimedia celebrated a court decision in Germany about leaving the birthday of a public figure in the article (which might be considered good or bad, depending where one stands).

French intelligence wants Wikipedia to delete online content (10.04.2013)
https://edri.org/edrigramnumber11-7french-spys-want-takedown-wikipedia-content/

Swedish Supreme Court rules against Freedom of Panorama (6.04.2016)
https://edri.org/swedish-supreme-court-rules-against-freedom-of-panorama/

EDRi-gram_subscribe_banner

Twitter_tweet_and_follow_banner

close