Brussels, 30 October 2017- The primacy of national courts and law enforcement authorities must be retained in any future legislative initiative to enhance cross-border cooperation in the fight against cybercrime. This was the key message the European Internet infrastructure sector stressed in its response to the European Commission’s public consultation ahead of its upcoming E-Evidence initiative.

Many companies represented by EuroISPA, from access providers, hosting providers, domain name registries to hotlines, have long-standing and effective cooperation with national law enforcement authorities. ISPs are well aware of the role and responsibilities of safeguarding their users’ privacy, thus are well-versed in verifying the authenticity of demands, and whether the relevant national authority has the required competence to address such a request to an ISP. However, ISPs would encounter difficulties in assessing the authenticity of other Member States’ law enforcement authority demands. Additional obligations for ISPs to cooperate with other public authorities would be costly, time-consuming, and risky. On this basis, EuroISPA asserts that direct cross-border cooperation for e-evidence is unsuitable.

Existing tools on the EU level already provide ample options for cross-border cooperation such as the Mutual Legal Assistance procedure (MLA), the European Investigation Order (EIO) and the recently created European Public Prosecutor’s Office. These mechanisms alleviate the abovementioned issues, as ISPs are required to cooperate only with national public authorities. Moreover, disruption to current procedures on the national level could result in legal uncertainty, slowing down the process and hamper ongoing investigations. EuroISPA therefore calls for effective EU-wide implementation of existing measures before drafting new tools.

In the event of any new obligations for ISPs, cost-reimbursement regimes should be a core element. The overwhelming majority of EuroISPA members are SMEs, to whom additional requirements to directly respond to law enforcement requests from other Member States would pose significant economic burdens, as well as a risk to competition. Furthermore, there would be a disproportionate effect on SMEs. Additional resources would need to be channelled to handle cross-border data requests, such as the assessment of their legal basis, secure communication solutions, and translation costs. Many EU Member States already include costs reimbursement for ISPs in national legislation, a principle which should feature in any potential EU legislation.

EuroISPA has long been engaged in political discussions surrounding cross-border cooperation for evidence, in fora such as Europol’s EC3 communications providers advisory group, the European Commission’s DG JUST/DG HOME taskforce on E-Evidence and the European Commission’s former expert group on data retention. Here we gain further knowledge about requirements brought forward by law enforcement authorities, and take the opportunity to bring greater clarity to existing legal regimes that ISPs are subject to. Emphasis is placed on the need for transparency and safeguards to guarantee user confidence in the rule of law on the Internet in the post-Snowden era. As underscored by Chair of the EuroISPA Cybersecurity Committee Dr. Maximilian Schubert, “EuroISPA understands that law enforcement authorities need certain competences, but repeatedly stresses that the key to success lies in the proper application, evaluation and improvement of existing regimes rather than the creation of alleged silver bullets to tackle issues of law enforcement”.

Existing measures should be implemented across the EU and subsequently evaluated and refined. More effective use should be made of the existing arsenal of cross-border investigatory mechanisms, including the MLA procedure, the EIO, and the European Public Prosecutor’s Office, rather than unnecessarily increasing the already significant obligations for ISPs and placing an economic burden on SMEs.

Please find here the EuroISPA E-evidence position paper

Image Creator attribution: Nick Youngson (http://nyphotographic.com/)

 

Brussels – 10.05.2017: The increasing pressure upon Internet intermediaries to police online content risks undermining Europe’s digital ambitions, according to the European Internet Services Providers Association (EuroISPA). Reacting today to the publication of the European Commission’s mid-term review of the Digital Single Market (DSM) strategy, the 2500 ISPs represented by EuroISPA stressed the degree to which current and upcoming DSM proposals in areas such as copyright and hate speech have the risk of undermining ISPs’ ability to drive the economic and social benefits of digitalisation.

The publication of the DSM mid-term review has failed to assuage EuroISPA fears that the EU E-Commerce Directive – the legislative cornerstone of the European digital economy – is under assault in various legislative contexts. The horizontal liability framework of the E-Commerce Directive allows business in the EU to concentrate on developing innovative legal business models that serve their customers, while at the same time ensuring that they have effective systems in place to deal with various types of illegal content.  EuroISPA strongly urges policymakers in all EU Institutions to not underestimate the degree to which this predictable compliance environment is the catalyst for growth in the European economy, and instrumental in ensuring ISPs can rapidly and effectively tackle illegal content online.

Moreover, EuroISPA notes with disappointment that some of the considerable achievements of the DSM strategy – in particular the efforts to end geo-blocking – have been undermined by the lobbying of conservative legacy business models. Consumers and innovative business models lose most from disparities in regulatory regimes across Member States, and it is thus imperative for the European Commission to maintain a high-level of political will in the face of legacy business models that benefit from such.

Ultimately, EuroISPA encourages the Commission to adopt a thorough and evidence-driven approach to the fight against illegal content and the role of Internet intermediaries in such. Indeed, the Commission should :

• Ensure that its various proposals around tackling illegal content are underpinned by procedural safeguards and redress mechanisms for Internet service providers and consumers;
• Ensure that intermediary liability safe harbours are fully protected in EU legislative initiatives, to avoid ISPs being forced to play the role of judge, jury and executioner with regard to the legality of online content;
• Monitor and review the actions of Member States that might undermine the above two principles, and act to ensure that Internet intermediaries across Europe operate in an environment that safeguards digital innovation and citizens’ fundamental rights.

EuroISPA welcomes the Commission’s commitment in the DSM strategy mid-term review to undertake an open and inclusive dialogue with regard to the future of Notice & Action procedures in Europe. EuroISPA members have consistently led the way in the fight against illegal content, from their stewardship of industry hotlines dedicated to fighting child sexual abuse online, to anti-spam and anti-malware initiatives across Europe. In all initiatives, EuroISPA will continue to work with EU-level policymakers to ensure a safe and secure Internet, where the fight against illegal content is underpinned by transparency, legal clarity and the rule of law.