The European Commission has issued assurances to MEPs that Europol’s new decryption platform will not be used to abuse data protection standards and will maintain closely guarded access rights over the data retrieved.
However, some MEPs remain unconvinced that the operation of Europol’s technology will be completely free from abuse, particularly in countries where the rule of law and the independence of the judiciary has been called into question.
Since Europol launched its decryption platform in December last year, MEPs in Brussels have been seeking clarification on whether the technology had gone through the correct data protection protocols, whether it could pose a threat to fundamental rights, and if any third-party private organisations had been contracted to develop the technology.
The platform is currently being used by EU law enforcement authorities to decrypt information obtained during criminal investigations. The technology is able to decrypt access codes to smartphones, computers, laptops, and tablets. It is not, however, able to decrypt live communications.
‘No room for abuse’
The Commission attempted to assuage such concerns on Tuesday (23 March), noting that the development of the technology has been conducted completely in-house and has also gone through necessary data protection assessment procedures.
“There is absolutely no trace of any involvement of private operators in this project,” Olivier Onidi, Deputy Director-General of the Commission’s DG HOME told MEPs in the Civil Liberties Committee.
“The development has been purely done in-house,” he added, noting that this was a condition for the Commission’s funding of the platform, under the institution’s Joint Research Centre.
Onidi also said that ahead of the launch of the project, Europol had conducted its own voluntary data protection assessment and that the European Data Protection Supervisor had competence in ensuring compliance with the relevant EU data protection standards.
Europol has defended its record in using large datasets for criminal investigations while putting forward an ‘action plan’ to appease concerns recently raised over the agency’s ‘illegal’ data use by the EU’s data protection watchdog.