Do you run on a cloud Down Under, where data's shared and governments plunder... Oz joins US, UK in info search-warrant law

Australia says it will exchange personal deets via CLOUD Act


Add Australia to the ranks of countries agreeing to honor US search warrants under America's CLOUD Act.

The Down Under Five Eyes member on Monday announced it had agreed to the bilateral agreement formally known as the Clarifying Lawful Overseas Use of Data (CLOUD) Act, just one week after the US struck a similar alliance with the UK.

In the US, the partnership would be covered under the CLOUD Act, while in Australia new legislation will have to be written and passed before anything becomes official.

“The CLOUD Act was created to permit our close foreign partners who have robust protections for privacy and civil liberties, such as Australia, to enter into executive agreements with the United States," US Attorney General William Barr said of the deal.

"This agreement, if finalized and approved, will allow service providers in Australia and the United States to respond to lawful orders from the other country without fear of running afoul of restrictions on disclosure, and thus provide more access for both countries to providers holding electronic evidence that is crucial in today’s investigations and prosecutions."

Under the terms of the deal, law enforcement agencies in America, UK, and Australia will be able to present court-issued search warrants to cloud providers and social networks in another nation within the trio, and have the warrants honored. Crucially, that won't involve having to go through multiple overseas courts: the process is pretty much streamlined. That will result in suspects' and other people's personal records and private info being handed over to foreign cops and g-men with ease.

For example, police in Australia would now have a fast-track to serve warrants to US-based Facebook in order to obtain access to user information, cutting out what had been a complex and tedious legal process. For what it's worth, and as far as we understand it, investigators can't demand decrypted copies of encrypted data via this mechanism.

"Current processes for obtaining electronic information held by service providers in other countries risk loss of evidence and unacceptable delays to criminal justice outcomes," commented Peter Dutton, Australian Minister for Home Affairs and the Down-Under representative in the deal.

"When police are investigating a terrorist plot or serious crime such as child exploitation, they need to be able to move forward without delay, but within the law – and the CLOUD Act strikes exactly that balance. This is the way of the future between likeminded countries."

The move also comes as both governments are being accused of infringing on the privacy rights of citizens.

Last week, the US Department of Justice threatened that unless tech companies can figure out an alternative it could consider Australia-like rules to stop the use of end-to-end encryption. ®

Similar topics


Other stories you might like

  • Cisco deprecates Microsoft management integrations for UCS servers

    Working on Azure integration – but not there yet

    Cisco has deprecated support for some third-party management integrations for its UCS servers, and emerged unable to play nice with Microsoft's most recent offerings.

    Late last week the server contender slipped out an end-of-life notice [PDF] for integrations with Microsoft System Center's Configuration Manager, Operations Manager, and Virtual Machine Manager. Support for plugins to VMware vCenter Orchestrator and vRealize Orchestrator have also been taken out behind an empty rack with a shotgun.

    The Register inquired about the deprecations, and has good news and bad news.

    Continue reading
  • Protonmail celebrates Swiss court victory exempting it from telco data retention laws

    Doesn't stop local courts' surveillance orders, though

    Encrypted email provider Protonmail has hailed a recent Swiss legal ruling as a "victory for privacy," after winning a lawsuit that sees it exempted from data retention laws in the mountainous realm.

    Referring to a previous ruling that exempted instant messaging services from data capture and storage laws, the Protonmail team said this week: "Together, these two rulings are a victory for privacy in Switzerland as many Swiss companies are now exempted from handing over certain user information in response to Swiss legal orders."

    Switzerland's Federal Administrative Court ruled on October 22 that email providers in Switzerland are not considered telecommunications providers under Swiss law, thereby removing them from the scope of data retention requirements imposed on telcos.

    Continue reading
  • Japan picks AWS and Google for first gov cloud push

    Local players passed over for Digital Agency’s first project

    Japan's Digital Agency has picked Amazon Web Services and Google Cloud for its first big reform push.

    The Agency started operations in September 2021, years after efforts like the UK's Government Digital Service (GDS) or Australia's Digital Transformation Agency (DTA). The body was a signature reform initiated by Prime Minister Yoshihide Suga, who spent his year-long stint in the top job trying to curb Japan's reliance on paper documents, manual processes, and faxes. Japan's many government agencies also operated their websites independently of each other, most with their own design and interface.

    The new Agency therefore has a remit to "cut across all ministries" and "provide services that are driven not toward ministries, agency, laws, or systems, but toward users and to improve user-experience".

    Continue reading

Biting the hand that feeds IT © 1998–2021