An EU agency is building a recognition system with biometric data on 400 million travellers. The contractors seem to have overstretched themselves
In future, anyone wishing to enter the European Union without a visa will have to register in a European Travel Information and Authorisation System (ETIAS) via a form on the internet, providing information on the purpose and course of the journey. Only with a travel authorisation can the border be crossed. In an Entry/Exit System (EES), all travellers must then submit four fingerprints and a facial image. The biometric data will end up in a huge archive that will be merged with other databases.
In the EU, the introduction of the new information systems is known as Interoperability. Various difficulties in implementation have already delayed the project by several months, and now more complications are on the horizon. This is stated in a presentation by the French Council Presidency, published by the British civil rights organisation Statewatch. According to it, a questionnaire answered by 24 EU member states showed delays in several countries. „Disrupted supply chains: Chip shortage hampers new EU databases“ weiterlesen
To participate in the Visa Waiver Programme, Israel allows U.S. authorities access to its biometric data. The government in Washington wants to make this mandatory for another 40 countries.
The US government has sent a letter to EU member states announcing an Enhanced Border Security Partnership (EBSP). This would regulate access to fingerprint databases by US border authorities. It would be a condition for countries whose nationals can enter the United visa-free.
The German government also received such a notification via the U.S. Embassy in Berlin on 9 February, the Social Democratic Party-led Ministry of the Interior confirmed in its answer to a parliamentary question. „Essentially, among other things, this is probably intended to enable the exchange of biometric data, among other things of travellers,“ the ministry writes somewhat nebulously, adding that further details are currently being clarified. The regulation is to apply from 2027, it says. „Screening of travellers: U.S. wants to query fingerprint databases in Europe“ weiterlesen
The EU Parliament has accommodated the member states on crucial points, but now demands special attention to fundamental rights. The controversial question is how a state in which a company is based can object to an order.
The French EU Presidency wants to get things moving on the so-called E-Evidence dossier and has scheduled several meetings of the relevant Council working groups since January. However, the Member States and the Parliament have not yet been able to agree on essential points. Today, the issue is once again on the agenda of the meeting of Justice Ministers in Brussels.
Four years ago, the European Commission proposed a Regulation on European Production and Preservation Orders for electronic evidence in criminal matters. The law enforcement authorities of the member states want to oblige internet service providers that are not located in their own country to directly transmit data of their users. These direct contacts between states and companies would bypass the usual legal process. The regulation concerns inventory, traffic and content data. It also covers companies that are based in third countries but offer their services in the EU. For this purpose, they are to designate a „point of contact“ in an EU member state. „What’s the problem with the EU regulation on the release of electronic evidence?“ weiterlesen
In the summer, the Commission presented a four-step legislative package against money laundering and terrorist financing. This includes the establishment of a new authority and the introduction of a bank account register. The proposals are currently being discussed by the Council, slowly now the consultation of the Parliament is starting.
At the beginning of next year, the European Union wants to establish a new Authority for Anti-Money Laundering and Countering the Financing of Terrorism (AMLA). It is expected to become operational in 2024 and fully operational two years later, supervising financial transactions of so-called „high-risk institutions“. A „harmonised risk assessment methodology“ will be used to determine which firms fall into this category. For this purpose, the authority also wants to evaluate reports from the member states. „New authority against money laundering: EU Commission and Europol want to expand financial investigations“ weiterlesen
A new Prüm system will make it possible to query facial images across Europe in the future, and a central biometric EU repository will also be connected to it
For 14 years, the member states of the European Union have been able to query each other’s fingerprints, non-coding DNA data, motor vehicle and owner data. The basis for this is the Prüm Treaty, which was initially signed by seven EU members in the Eifel town in 2005. Three years later, the EU Prüm Decision followed, making the set of rules for improving police data exchange valid throughout the Union. As non-EU states, Norway, Iceland, Switzerland, Liechtenstein and the United Kingdom also participate in the Prüm network.
To mark the tenth anniversary of the Decision in 2018, the Council proposed to extend cooperation to facial images. The Commission recently presented a draft for such a Prüm II. The paper is now being discussed by the member states in the relevant Council working groups, and the position of the interior and justice ministers is to be determined by spring. Afterwards, the Parliament will deal with it. „Facial recognition and police records: European biometric systems to be expanded“ weiterlesen
For years, the EU police agency has been storing dumps of data on crime victims and witnesses. New legislation will legalise this practice. An exception should now apply to information Europol collected before it comes into force.
According to a proposal by the EU Commission for a new Europol regulation, the EU police authority is to be given even more far-reaching powers for its data collections. An Article 18a is envisaged, according to which Europol may keep personal data on victims and witnesses of crimes for a longer period of time. Under the current regulation, this is not allowed.
Three weeks ago, the European Data Protection Supervisor (EDPS) Wojciech Wiewiórowski therefore ordered Europol to delete data records on this category that are more than a year old. Accordingly, further storage is only possible for data on criminals. The governments of the EU member states now want to use a trick to circumvent this order. The new regulation is supposed to allow the questionable storage practice for victims and witnesses retroactively. „New Europol regulation: EU member states want to blindside parliament with renewed time stamps“ weiterlesen
For five weeks, EU member states will simulate attacks on their critical infrastructures. For the first time, the threshold of an armed attack will be surpassed. The rehearsal includes the provision of assistance in accordance with EU treaties, and the NATO case of alliance could also be triggered.
In the summer of 2017, Saudi Arabia almost suffered its first major disaster after a cyber attack. Unknown persons had infected the control system of a petrochemical plant with malware called „Triton“. The apparently planned shutdown of the plant might have caused explosions, possibly leading to the escape of hydrogen sulphide and thus to an environmental disaster with hundreds of deaths. A security system detected the intruder and stopped the sabotage.
Now the EU member states want to prepare for such a hacking attack with a „EU Cyber Crisis Linking Exercise on Solidarity“ (EU CyCLES). The starting point is assumed to be attacks with „significant kinetic effects and casualties“. The EU then activates its technical, operational and political cybersecurity structures. Other member states also provide mutual assistance. „European Cyber Exercise: Digital Attacks from „Blue Land““ weiterlesen