Telia Company Law Enforcement Disclosure Report July to December 2017
Total Page:16
File Type:pdf, Size:1020Kb
Telia Company Law Enforcement Disclosure Report July-December 2017 TELIA COMPANY LAW ENFORCEMENT DISCLOSURE REPORT JULY TO DECEMBER 2017 Executive summary This is Telia Company’s eighth six-monthly Law Enforcement Disclosure Report. The report aims to offer detailed in- sights into the context and extent of surveillance and collection of, customer data in most of Telia Company’s main markets. It includes statistics on conventional requests in eight of our markets as well as information, as regards all of our markets, on legislation regarding ‘direct access’ and unconventional requests (‘major events’). A summarized version of this report is published in the Telia Company 2018 Annual and Sustainability Report available at annualreports.teliacompany.com. This full report includes more context, including such as information on main goals, definitions, challenges as well as omissions related to our reporting and a list of laws providing governments with direct access, and – added in this report - national laws on mandatory data retention for law enforcement purposes. 1 Telia Company Law Enforcement Disclosure Report July-December 2017 CONTENTS Letter from the general counsel ...................................................................................................................................... 3 About this report ............................................................................................................................................................. 4 What we report ............................................................................................................................................................ 4 Main goals ................................................................................................................................................................... 4 Included in this report .................................................................................................................................................. 5 Challenges and omissions .......................................................................................................................................... 5 Main challenges ....................................................................................................................................................... 5 Omissions ................................................................................................................................................................ 6 Law enforcement disclosure report summary (assured) ................................................................................................. 7 Authority requests 2017 ........................................................................................................................................... 7 Statistics.......................................................................................................................................................................... 9 Authority requests* July – December 2017 .............................................................................................................. 9 Authority requests* January – June 2017 ................................................................................................................ 9 Authority requests* July – December 2016 ............................................................................................................ 10 Authority requests* January – June 2016 .............................................................................................................. 10 Authority requests* July – December 2015 ............................................................................................................ 11 Authority requests* January – June 2015 .............................................................................................................. 11 Definitions ..................................................................................................................................................................... 12 Authority requests – categories in the above tables .................................................................................................. 12 Different types of requests from authorities ............................................................................................................... 13 Unconventional requests and demands ....................................................................................................................... 14 Telia Company’s assessment tool ......................................................................................................................... 14 A. Unconventional requests and demands from 2013 to 2015 .............................................................................. 15 B. Unconventional requests and demands January to June 2016 ......................................................................... 15 C. Unconventional requests and demands July to December 2016 ...................................................................... 15 D. Unconventional requests and demands January to December 2017 ................................................................ 15 Transparency as to specific unconventional requests .................................................................................................. 16 Laws providing governments direct access ................................................................................................................... 17 Laws on mandatory data retention for law enforcement............................................................................................... 21 Government law enforcement disclosure reports .......................................................................................................... 22 Additional transparency ................................................................................................................................................ 23 Questions and Answers ................................................................................................................................................. 24 2 Telia Company Law Enforcement Disclosure Report July-December 2017 LETTER FROM THE GENERAL COUNSEL Millions of customers trust Telia Company to provide tel- where each respective government regularly and pub- ecommunications services and to protect their communi- licly reports about the scope of their surveillance. cations, data and personal information. We publish Law Enforcement Disclosure Reports to contribute to an open Although these publications might not always cover all and transparent world where freedom of expression and kinds of requests and demands, we see publicly shared privacy are at the forefront. government reports as the preferred starting point for discussing best practice for meaningful transparency, Maintaining customer privacy is of utmost importance at based on the fact that a government can cover not only Telia Company: It is one of the pillars of our Code of Re- Telia Company’s but all telecom operators in any re- sponsible Business Conduct. At the same time, Telia spective country and also respond to any questions as to Company and its local subsidiaries – like all telecommu- necessity and proportionality of surveillance. nications companies – are obliged by legislative, admin- istrative, license or law enforcement requirements to re- To supplement government reporting, our aim is to con- spond to requests and demands from authorities to dis- tribute to a meaningful oversight and discussion of the close customer information. Such obligations are speci- proper limits of government surveillance powers. We fied by law and regulations and are based on specific plan to publish a full Law Enforcement Disclosure Report reasons, e.g. enforcing criminal law and safeguarding together with our Annual and Sustainability Report national security. (every year in March) and an update of the statistics every October. According to our policies and procedures, Telia Com- pany discloses information to authorities only to the ex- In this report, we continue publishing statistics covering tent required by law. This is a non-negotiable part of the requests from the police and other authorities in Den- way we are to operate. While our process is intended to mark, Estonia, Finland, Georgia, Moldova, Norway and identify and mitigate potential violations to individuals’ Sweden. We have also added figures provided by au- freedom of expression and surveillance privacy, the ac- thorities in Lithuania. The tables included in this report tual outcome heavily depends on local laws as well as show the number of authority requests in each country the security and capability of local employees. It should based on a court order or other legal demand by the po- specifically be noted that, within this context, govern- lice or other authority. ments also have direct access, i.e. signals intelligence (intelligence gathering through analysis and processing of communication signals) and real-time access without any need to send requests to the operators (technical Stockholm March 20, 2018 systems for more extensive possibilities to monitor tele- communications). Regarding such direct access, Telia Jonas Bengtsson Company has no insight into the extent of surveillance Senior Vice President and General Counsel (when, who and what) and cannot provide statistics. Telia Company What