An EU ruling means Denmark must change a recent rule change allowing authorities to broadly log the telecommunications data of the population.
The Danish Ministry of Justice confirmed in a press statement on Tuesday the impact of an EU ruling on the Danish data logging law.
The EU ruling, passed on April 5th, relates to data logging rules in Ireland and means that the Danish rules must be changed to comply with the EU court, the ministry said.
Minister of Justice Mattias Tesfaye said that a new bill on the area would be tabled after the summer parliamentary break. Tesfaye noted his dissatisfaction with the situation.
“Let there be no doubt that the government would have liked to see the EU court reach a different decision,” Tesfaye said in the statement.
“And that is was possible to use information that was logged generally and without differentiation for the purpose of protecting national security and also to prosecute serious crimes like murder and rape,” he said.
The Danish law, which gave authorities greater reach in logging data from private individuals, took effect on March 30th, under a bill passed in parliament by the government and conservative parties on March 3rd.
The new logging rules allowed “the option of general and undifferentiated logging of data if there is a serious threat to national security which is genuine and actual or predicted,” the Ministry of Justice said in a statement as it confirmed the new rules were effective on March 30th.
The ministry said that an assessment based on intelligence service reports had found that those conditions were currently met.
As a result, the law means that telecommunications companies are obliged to log “general and undifferentiated” data from all users, rather than to conduct targeted logging of persons suspected of serious crime. They are also required to register customers with authorities, including users of prepaid services.
Telecommunications companies have stored data from customers for several years despite repeated EU rulings against this in other countries.
The Danish law was passed in part to bypass the earlier rulings, allowing the Danish companies to mass-register data for “national security” purposes.
But data collected in this manner may not be used for investigation of serious crimes, in accordance with the latest EU ruling.
However, general data stored by telecommunications companies may still be used by police during a limited period in which it is stored for reasons other than the logging rules, the Ministry of Justice has concluded.
“In the situation we are in, I think that, overall, we have ended up with something we can live with,” Tesfaye said.