Overview of national data retention policies: Unterschied zwischen den Versionen

(EU directive)

Directive's requirements:

1. the calling telephone number;
2. the name and address of the subscriber or registered user;
   
3. the number(s) dialled (the telephone number(s) called), and, in cases involving supplementary services such as call forwarding or call transfer, the number or numbers to which the call is routed;
4. the name(s) and address(es) of the destination subscriber(s) or registered user(s);
   
5. the date and time of the start and end of the communication;
   
6. the telephone service used;
   
7. the calling and called telephone numbers;
   

Directive's requirements:

1. the calling telephone number;
2. the name and address of the subscriber or registered user;
3. the number(s) dialled (the telephone number(s) called), and, in cases involving supplementary services such as call forwarding or call transfer, the number or numbers to which the call is routed;
4. the name(s) and address(es) of the destination subscriber(s) or registered user(s);
   
5. the date and time of the start and end of the communication;
   
6. the telephone service used;
   
7. the calling and called telephone numbers;
8. the International Mobile Subscriber Identity (IMSI) of the calling party;
9. the International Mobile Equipment Identity (IMEI) of the calling party;
10. the IMSI of the called party;
11. the IMEI of the called party;
12. in the case of pre-paid anonymous services, the date and time of the initial activation of the service and the location label (Cell ID) from which the service was activated;
    
13. the location label (Cell ID) at the start of the communication;
    
14. data identifying the geographic location of cells by reference to their location labels (Cell ID) during the period for which communications data are retained.
    

Directive's requirements:

1. the user ID(s) allocated;
2. the user ID and telephone number allocated to any communication entering the public telephone network;
3. the name and address of the subscriber or registered user to whom an Internet Protocol (IP) address, user ID or telephone number was allocated at the time of the communication;
   
4. the name(s) and address(es) of the subscriber(s) or registered user(s) and user ID of the intended recipient of the communication;
   
5. the date and time of the log-in and log-off of the Internet e-mail service or Internet telephony service, based on a certain time zone;
   
6. the Internet service used;
   
7. the calling telephone number for dial-up access;
8. the digital subscriber line (DSL) or other end point of the originator of the communication;
   

Directive's requirements:

1. the user ID(s) allocated;
2. the user ID and telephone number allocated to any communication entering the public telephone network;
3. the name and address of the subscriber or registered user to whom an Internet Protocol (IP) address, user ID or telephone number was allocated at the time of the communication;
   
4. the date and time of the log-in and log-off of the Internet access service, based on a certain time zone, together with the IP address, whether dynamic or static, allocated by the Internet access service provider to a communication, and the user ID of the subscriber or registered user;
   
5. the calling telephone number for dial-up access;
6. the digital subscriber line (DSL) or other end point of the originator of the communication;
   

Directive's requirements:

1. the user ID(s) allocated;
2. the user ID and telephone number allocated to any communication entering the public telephone network;
3. the name and address of the subscriber or registered user to whom an Internet Protocol (IP) address, user ID or telephone number was allocated at the time of the communication;
   
4. the user ID or telephone number of the intended recipient(s) of an Internet telephony call;
5. the name(s) and address(es) of the subscriber(s) or registered user(s) and user ID of the intended recipient of the communication;
   
6. the date and time of the log-in and log-off of the Internet e-mail service or Internet telephony service, based on a certain time zone;
   
7. the Internet service used;
   
8. the calling telephone number for dial-up access;
9. the digital subscriber line (DSL) or other end point of the originator of the communication;
   

Austria

Belgium

1. Loi du 21 mars 1991 portant réforme de certaines entreprises publiques économiques. Loi; Moniteur Belge , date pub: 27/03/1991 ; ref.: (MNE(2007)58028)
   
2. Arrêté royal du 9 janvier 2003 portant exécution des articles 46bis, § 2, alinéa 1er, 88bis, § 2, alinéas 1er et 3, et 90quater, § 2, alinéa 3, du code d'instruction criminelle ainsi que de l'article 109ter, E, § 2, de la loi du 21 mars 1991 portant réforme de certaines entreprises publiques économiques. Arrêté royal; Moniteur Belge , date pub: 10/02/2003 ; ref.: (MNE(2007)58029)
   

Bulgaria

Cyprus

Reported:

Ο Περί Διατήρησης Τηλεπικοινωνιακών Δεδομένων με Σκοπό τη Διεύρηνση Σοβαρών Ποινικών Αδικημάτων Νόμος του 2007. Νόμος , no.: Ν. 183(Ι)/2007; Cyprus Gazette , no.: 4154 , date pub: 31/12/2007 , page: 01466-01483 ; date into force/en vigueur: 31/12/2007 ; ref.: (MNE(2008)50638)

Czech Republic

public notice (adjustment circuit stored data, transmission of data etc.)

Denmark

Reported:

1. Bekendtgørelse om udbydere af elektroniske kommunikationsnets og elektroniske kommunikationstjenesters registrering og opbevaring af oplysninger om teletrafik. Bekendtgørelse , no.: 988; Lovtidende A , date pub: 13/10/2006 ; date into force/en vigueur: 15/09/2007 ; ref.: (MNE(2007)56962)
   
2. Bekendtgørelse om udbydere af elektroniske kommunikationsnets og elektroniske kommunikationstjenesters registrering og opbevaring af oplysninger om teletrafik. Bekendtgørelse , no.: 988; Lovtidende A , date pub: 13/10/2006 ; date into force/en vigueur: 15/09/2007 ; ref.: (MNE(2007)56966)
   
3. Bekendtgørelse om udbydere af elektroniske kommunikationsnets og elektroniske kommunikationstjenesters registrering og opbevaring af oplysninger om teletrafik (logningsbekendtgørelsen). Bekendtgørelse , no.: 988; Lovtidende A , date pub: 13/10/2006 ; date into force/en vigueur: 15/09/2007 ; ref.: (MNE(2007)56970)
   

Estonia

Reported:

ELEKTROONILISE SIDE SEADUSE JA RAHVATERVISE SEADUSE MUUTMISE SEADUS. seaduse parandus , no.: RTI, 07.12.2007, 63, 397 ; Elektrooniline Riigi Teataja , no.: RTI, 07.12.2007, 63, 397 ; ref.: (MNE(2007)58607)

Finland

1. Viestintäviraston määräys tunnistamistietojen tallennusvelvollisuudesta / Kommunikationsverkets föreskrift om skyldighet att lagra identifieringsuppgifter
   
2. Laki sähköisen viestinnän tietosuojalain muuttamisesta / Lag om ändring av lagen om dataskydd vid elektronisk kommunikation
   

English translation

France

Reported:

Décret no 2006-358 du 24 mars 2006 relatif à la conservation des données des communications électroniques. Décret , no.: 2006-358; Journal Officiel de la République Française (JORF) , date pub: 26/03/2006 ; date into force/en vigueur: 27/03/2006 ; ref.: (MNE(2007)56763)

Germany

no (declared unconstitutional on 2 March 2010)

-

-

-

-

-

-

-

Any person providing or assisting in providing telecommunications services and in so doing allocating subscription IDs or providing telecommunications connections for IDs allocated by other parties (applies to telephony and DSL lines, including prepaid services, but not e-mail services) is to collect, prior to activation, and store the name and address of the allocation holder, the date of birth and in the case of fixed lines, additionally the address for the line, even if such data are not required for operational purposes (§ 111 TKG). The subscriber directories are electronically accessible by all German law enforcement and intelligence agencies (§ 112 TKG).

Working Group on Data Retention (AK Vorrat)

Greece

Hungary

security agencies to perform their duties, and to enable police and the National Tax and Customs Office to investigate intentional crimes carrying a prison term of two or more years

Ireland

Yes.

• with consent of a person to whom data relates or
• in accordance with a court order (including civil litigation) or
• authorised by the Data Protection Commissioner or
• Garda not below rank of Chief Superintendent or
• Officer not below rank of colonel of Permanent Defence Force or
• Officer of Revenue Commissioners not below rank of principal officer

yes, High Courtchallenge brought by DRI (latest updates), still pending

Digital Rights Ireland

See background on Irish law here.

Italy

Reported:

Attuazione della direttiva 2006/24/CE riguardante la conservazione dei dati generati o trattati nell'ambito della fornitura di servizi di comunicazione elettronica accessibili al pubblico o di reti pubbliche di comunicazione e che modifica la direttiva 2002/58/CE.

Latvia

Reported:

1. Kārtība, kādā pirmstiesas izmeklēšanas iestādes, operatīvās darbības subjekti, valsts drošības iestādes, prokuratūra un tiesa pieprasa un elektronisko sakaru komersants nodod saglabājamos datus, kā arī kārtība, kādā apkopo statistisko informāciju par saglabājamo datu pieprasījumiem un to izsniegšanu. Ministru Kabineta noteikumi , no.: 820; Latvijas Vēstnesis , no.: 197 , date pub: 07/12/2007 ; date into force/en vigueur: 08/12/2007 ; ref.: (MNE(2008)50003)
2. Grozījumi Elektronisko sakaru likumā. Likums; Latvijas Vēstnesis , no.: 83 , date pub: 24/05/2007 ; date into force/en vigueur: 07/06/2007 ; ref.: (MNE(2007)54265)
   

Lithuania

Reported:

1. Lietuvos Respublikos asmens duomenų teisinės apsaugos įstatymo pakeitimo įstatymas Nr. X-1444
2. Lietuvos Respublikos elektroninių ryšių įstatymas Nr. IX-2135
   

Luxemburg

Reported:

Loi concernant la protection de la vie privée dans le secteur des communications électroniques

Règlement grand-ducal du 24 juillet 2010 déterminant les catégories de données à caractère personnel générées ou traitées dans le cadre de la fourniture de services de communications électroniques ou de réseaux de communications publics

Malta

Reported:

1. L.N. 198 of 2008 Data Protection Act (Cap. 440) Processing of Personal Data(Electronic Communications Sector) (Amendment) Regulations, 2008
2. L.N. 199 of 2008 Electronic Communications (Regulation) Act (CAP. 399)Electronic Communications (Personal Data and Protection of Privacy) (Amendment) Regulations, 2008
   
   

Netherlands

Poland

Portugal

Reported:

Assembleia da República-Transpõe para a ordem jurídica interna a Directiva n.º 2006/24/CE, do Parlamento Europeu e do Conselho, de 15 de Março, relativa à conservação de dados gerados ou tratados no contexto da oferta de serviços de comunicações electrónicas publicamente disponíveis ou de redes públicas de comunicações

Romania

no, as of 2014

Comisariatul pentru Societatea Civila

Slovakia

Slovenia

Spain

Reported:

LEY 25/2007, de 18 de octubre, de conservación de datos relativos a las comunicaciones electrónicas y a las redes públicas de comunicaciones. Ley , no.: 25/2007; Boletín Oficial del Estado ( B.O.E ) , no.: 251/2007 , date pub: 19/10/2007 , page: 42517-42523 ; date into force/en vigueur: 08/11/2007 ; ref.: (MNE(2007)57464)

Miembros de las Fuerzas y Cuerpos de Seguridad del Estado, cuando desempeñen funciones de Policia Judicial (art.6.2.a)

Funcionarios de la Dirección Adjunta de Vigilancia Aduanera, en el desarrollo de sus competencias como policía judicial (art.6.2.b)

El personal del Centro Nacional de Inteligencia en el curso de investigaciones de seguridad sobre personas o entidades (art.6.2.c)

For the detection, investigation and prosecution of the serious crimes considered in the Criminal Code or in the special criminal laws

Sweden

United Kingdom

Reported:

The Data Retention (EC Directive) Regulations 2007. Statutory instrument (SI) , no.: Statutory Instrument 20; Her Majesty's Stationery Office (HMSO) , no.: ISBN 978 0 11 078328 4 ; date into force/en vigueur: 01/10/2007 ; ref.: (MNE(2007)57200)

The Data Retention (EC Directive) Regulations 2009. Statutory instrument (SI), number: 2009 no 859; Official Journal: Her Majesty's Stationery Office (HMSO), number: SI 2009 no 859, Entry into force: 06/04/2009; Reference: (MNE(2010)53135)

Iceland

Liechtenstein

Norway

Switzerland

• Article 15 Bundesgesetz vom 6. Oktober 2000 betreffend die Überwachung des Post- und Fernmeldeverkehrs (BÜPF), in force 1 Jan 2002
• Verordnung vom 31. Oktober 2001 über die Überwachung des Post- und Fernmeldeverkehrs (VÜPF), in force 1 Jan 2002

Turkey

• Law 5651: Law for regulating publications made on the domain of Internet and fighting crimes made through these publications, in force 4 May 2007
• Law 5397: Law for modifying some other laws, in force 3 July 2005