Article Preview
TopIntroduction
Those who would give up essential Liberty, to purchase a little temporary safety, deserve neither Liberty nor Safety (Benjamin Franklin, 11 Nov 1755).
Since the September 11, 2001 many western governments have passed laws empowering public authorities with wider rights to gather operational data (Home Office, 2009; Swire & Steinfeld, 2002; Young, Kathleen, Joshua, & Meredith, 2006). For many years public opinion accepted the invasion of personal privacy rights as the sacrifice needed to fight the terror (Rasmussen Reports, 2008). However, slowly, public opinion is shifting back to a state where such measures are considered unacceptable. This is shown by public opinion surveys, such as the one conducted by Washington Post in 2006 (Balz & Deane, 2006), where 32% of respondents agreed that they would prefer the federal government to ensure that privacy rights are respected rather than to investigate possible terrorist threats. This was an 11% increase from the similar survey conducted in 2003.
In the UK, the public authorities, including Police, request investigative data from third-parties on regular basis (Information Commissioner, 2008) and the data protection legislation allows for such requests, even without warrants (European Parliament, 1995; Home Office, 2007). Depending on the way these requests are performed, human and natural rights of the data-subject can be breached, and/or the investigation can be jeopardized (Kwecka, Buchanan, Spiers, & Saliou, 2008). A recent proposal by the UK government went further and recommended allowing the public authorities direct access to data held by Content Service Providers (CSPs), such as mobile telephony providers and Internet Service Providers (ISPs) (Home Office, 2009). According to the public consultation document, there were a few major motivating factors behind this proposal, these included: increasing access speeds to records; allowing for covert enquiries by anti-terror and national security agencies; lowering collateral damage to potential suspects under investigation; and enabling the analysis of data to facilitate the profiling of terrorists activities. In response, concerns were raised that if the proposal was implemented, it would thwart the privacy of Internet users around the globe, in order to increase the security of one nation. This research shows that most of the objectives set out in the proposal can still be achieved while maintaining high level of privacy. It is shown that an investigative system can maintain the privacy of the data subjects and also preserve the confidentiality of investigations. However, both security and privacy must be built into the system at the design stage in order to achieve this (Swire & Steinfeld, 2002).