Australia’s Parliamentary Joint Committee on Intelligence and Security (PJCIS) has recommended passing a bill that would allow the country to share communications data with other countries, but only after its 24 report recommendations are enacted first.
If the bill passes, it would allow Australia to obtain an agreement with the US under its Clarifying Lawful Overseas Use of Data Act (CLOUD).
The Telecommunications Legislation Amendment (International Production Orders) Bill 2020, introduced on 5 March, seeks to address Australia’s evolving technological landscape where data previously held in the country is now stored overseas.
Its Explanatory Memorandum states that Australian law enforcement and national security agencies need access to electronic and communications data from foreign communications providers for criminal investigations. Currently, the country has relied on mutual legal assistance from overseas jurisdictions, which it calls a “lengthy process”.
For requests received from foreign governments with a designated international agreement, the bill would remove the blocking provisions that prevent domestic communication providers and tech companies from cooperating with a request from a foreign government, when the request complies with the conditions of the designated international agreement.
However, the committee has outlined 24 recommendations which it thinks should be implemented before the IPO Bill can go ahead.
RELATED RESOURCE
The Total Economic Impact™ of Mimecast
Cost savings and business benefits enabled by using Mimecast with Microsoft 365
One recommendation is that designated international agreements must be published and tabled in the regulations, and are subject to parliamentary scrutiny, as well as to a period of disallowance.
Another recommendation is that the agreement must not be used by a foreign government to target an Australian citizen. Information cannot be obtained to provide to the Australian government or a third-party government, the recommendations state.
Any country wishing to seek this kind of agreement must demonstrate respect for the rule of law, equality and non-discrimination, respect for international human rights, and have clear legal procedures and restrictions governing the use of electronic surveillance investigatory powers.
Furthermore, as some countries still practice the death penalty, including the US, the PCJIS said a minister should receive a written assurance from the government of a foreign country relating to the non-use of Australian-sourced information obtained through the agreement “in connection with any proceeding for a death penalty offence in the country or territory”.
The committee’s last recommendation was that “following implementation of the recommendations in this report, the Bill be passed by Parliament".
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Tech leaders worry AI innovation is outpacing governanceNews Business execs have warned the current rate of AI innovation is outpacing governance practices.
-
Top data security trendsWhitepaper Must-have tools for your data security toolkit
-
SEC data breach rules branded “worryingly vague” by industry bodyNews The new rules announced last week leave many questions unanswered, according to security industry experts
-
The gratitude gapWhitepaper 2023 State of Recognition
-
Latitude Financial's data policies questioned after more than 14 million records stolenNews Some of the data is from at least 2005 and includes customers’ name, address, and date of birth
-
Latitude hack now under state investigation as customers struggle to protect their accountsNews The cyber attack has affected around 330,000 customers, although the company has said this is likely to increase
-
IDCARE: Meet the cyber security charity shaping Australia and New Zealand's data breach responseCase Studies IDCARE is recruiting a reserve army to turbocharge the fightback against cyber crime not just in the region, but in the interests of victims all over the world
-
Australia commits to establishing second national cyber security agencyNews The country is still aiming to be the most cyber-secure country in the world by 2030
