tjmcintyre

tjmcintyre, 11 days ago to random

Ireland, right now.

tjmcintyre, 13 days ago to random

Great story in Computer Weekly discussing the recent CJEU judgment on accessing Encrochat data under the European Investigation Order.

Many, many issues involved but one key finding is that a Member State which intends to use spyware against an individual located in another Member State must notify that other Member State. (Whether or not the spyware would be regarded as "interception of communications" under national law.)
https://www.computerweekly.com/news/366583692/Germany-European-Court-of-Justice-ruling-on-EncroChat-could-lead-to-new-legal-challenges

https://curia.europa.eu/jcms/upload/docs/application/pdf/2024-04/cp240077en.pdf

tjmcintyre, 13 days ago to random

https://www.channel4.com/news/northern-ireland-police-carried-out-industrial-level-spying-on-journalists-high-court-hears

tjmcintyre, 18 days ago to random

How the Irish state fought a rearguard action against the European Court of Justice to keep illegally spying on Irish citizens: https://www.tjmcintyre.com/2024/05/data-retention-in-ireland-when-european.html?m=1

tjmcintyre, 19 days ago to random

Need private voice transcription? MacWhisper is an exceptionally good program to run Open AI Whisper locally on your Mac. Very good free tier and once off payment to upgrade. Handles academic jargon and legal terms better than any other service I’ve seen. No connection with the author other than being a satisfied customer. https://goodsnooze.gumroad.com/l/macwhisper

tjmcintyre, 20 days ago to random

Yesterday's second major surveillance judgment from the CJEU, which I'm just getting to now, is narrow but important.

The CJEU permits access to retained telecoms traffic data for "serious offences". In this case the CJEU clarifies that the authorising body must be able to refuse access if the particular crime being investigated is not in substance a serious offence. It is not enough that crimes of this type carry a possible sentence of 3 years imprisonment. 1/

https://curia.europa.eu/jcms/upload/docs/application/pdf/2024-04/cp240076en.pdf

tjmcintyre, 20 days ago to random

A new open letter signed by more than 270 scientists from 33 countries warning for the risks of the modified CSAM (child sexual abuse) regulation proposed by the Belgian presidency. #chatcontrol
http://csa-scientist-open-letter.org

I've co-signed and can answer media inquiries for Ireland

tjmcintyre, 20 days ago to random

There's a real chance that Tesla has entered a death spiral. The problem is that its cars are so heavily dependant on networked services that a failing company means a bricked car. Now would not be a good time to buy a new one. https://news.yahoo.com/autos/list-tesla-execs-left-elon-212931734.html

tjmcintyre, 22 days ago to random

Today's big data protection news is the #LQDN2 judgment from the CJEU. The question is whether and how IP addresses held by telcos under national data retention law for investigating crime can be accessed by a civil body for investigating file sharing. The case has had a peculiar procedure, having been reheard before the full court and the ultimate judgment looks like a compromise cobbled together to command a majority in the court. 1/

Press release: https://curia.europa.eu/jcms/upload/docs/application/pdf/2024-04/cp240075en.pdf

tjmcintyre, 22 days ago to random

I miss the old Twitter on days like today. Three major data retention/data protection/surveillance judgments out at once from the CJEU but so far barely a peep on X, here, or Bluesky. (Apart from the indefatigable @StevePeers.) The tech law community has lost a great space for conversations.

tjmcintyre, 23 days ago to random

Absolutely astonishing story of Russian agents bombing and poisoning their way across Europe. https://theins.press/en/politics/271205

tjmcintyre, 1 month ago to random

Another piece of GPDR news from yesterday I'm only getting around to: in Case C-768/21 | Land Hessen https://curia.europa.eu/jcms/upload/docs/application/pdf/2024-04/cp240063en.pdf Advocate General Pikamäe gave quite a strong opinion on the duties of data protection authorities to act when they find a data protection breach, stating that "the complaints procedure would serve no purpose if the supervisory authority could remain passive in the face of a legal situation contrary to EU law". This would be very significant if followed by the court.

tjmcintyre, 1 month ago to random

Busy yesterday, so I didn't get a chance to toot out this latest CJEU judgment on damages under the GDPR in GP v. juris GmbH: https://curia.europa.eu/juris/document/document.jsf?text=&docid=284641&pageIndex=0&doclang=en&mode=req&dir=&occ=first&part=1&cid=1356248. As far as I can see it's a useful restatement of basic principle (breach of rights doesn't equate to damage) but other doesn't really clarify the position on the contentious issue of non-material damage and when loss of control amounts to damage.

tjmcintyre, 2 months ago to random

Classifications are funny things.

image/gif

tjmcintyre, 3 months ago to random

When can tech firms voluntarily disclose user data to police? I've written a chapter on the position for firms with an Irish presence (i.e. almost all of them), now on SSRN: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4732793

tjmcintyre, 3 months ago to random

In case you missed it, in the last week or so the European Court of Human Rights has held that:

• An obligation to break end to end encryption for all communications is disproportionate: Podchasov v. Russia https://hudoc.echr.coe.int/eng/?i=001-230854

• Indiscriminate data retention is not necessary in a democratic society: Škoberne v. Slovenia https://hudoc.echr.coe.int/?i=001-230885

Chamber judgments only (not Grand Chamber) but very promising signs from a court which has been more indulgent of surveillance than the CJEU.

tjmcintyre, 3 months ago to random

Fantastic short piece by Rory Cellan-Jones on the fraud that is Craig Wright, with this great paragraph. https://rorycellanjones.substack.com/p/the-battle-of-bitcoin

neil, 10 months ago to random

deleted_by_author

tjmcintyre, 10 months ago to random

Irish Department of Health fined for illegally collecting sensitive personal data on families suing it. "This information included details about plaintiff’s jobs and living circumstances, information about their parents’ marital difficulties and in one case, information received directly from a doctor about the services that were being provided to the plaintiff."

https://dataprotection.ie/en/resources/law/decisions/Inquiry-concerning-the-Department-of-Health

tjmcintyre, 10 months ago to random

Everyone's talking about today's huge CJEU judgment and what it means for Meta.

But there are massive implications for digital evidence in criminal matters also.

Paras.124-139 rule out any argument that platforms may retain data for future sharing with police in criminal investigations without an explicit legal requirement to do so, while also providing that legitimate interest is not a general basis for voluntary sharing of data with police.

1/2

image/png

janwwbosch, 10 months ago to random

@tjmcintyre can't view if you're not logged in to twitter