The evolution of security industry regulation in the European Union

ABSTRACT

The European private security sector has grown from a handful of small companies at the end of the Second World War into a multibillion Euro industry with thousands of firms and millions of security staff. In Europe, the demands for security is not just expressed notionally but also officially in The European Agenda on Security stating the European Union (EU) aims to ensure that people live in an area of freedom, security, and justice. This article will begin by exploring the role of private security in society. It will then move on to consider the main phases in the development of private security regulation in Europe. Following on from this, some of the main areas of policy development will be considered, such as European bodies, initiatives, and standards. Finally, the article will explore some of the potential options for the future in better regulating the European private security sector. From a historical perspective, the evolution of private security regulation can be divided into three phases: the laissez-faire, the centrifugal, and the centripetal era – each with its own distinct characteristics and impact on the concurrent industry. In the EU where there is the legal framework for the development of a single market in services, the key social partners have been at the forefront of developing a series of standards and guidance documents which promote standards across borders at the European level. However, the institutions of the EU have been reluctant to intervene at a European level in setting minimum standards of private security regulation. Thus, the changing terrain of the EU relating to security, regulation, and the private security industry means the current trajectory may be in need of an injection of more radical thought and consideration.     

A methodology for the security evaluation within third-party Android Marketplaces

This paper aims to evaluate possible threats with unofficial Android marketplaces, and geo-localize the malware distribution over three main regions: China; Europe; and Russia. It provides a comprehensive review of existing academic literature about security in Android focusing especially on malware detection systems and existing malware databases. Through the implementation of a methodology for identification of malicious applications it has been collected data revealing a 5% of them as malicious in an overall analysis. Furthermore, the analysis shown that Russia and Europe have a preponderance of generic detections and adware, while China is found to be targeted mainly by riskware and malware.     

The Council of Europe Data Protection Convention reform: Analysis of the new text and critical comment on its global ambition

The year 2010 set an important milestone in the development of data protection law in Europe: both Europe's basic regulatory texts, the EU Data Protection Directive and the Council's Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data (Convention 108), were placed at an amendment process, having served individual data protection for many years and witnessed in the meantime technological developments that threatened to make their provisions obsolete. After briefly presenting Convention 108, the analysis that follows will highlight the Council's data protection system currently in effect as well as developments relating to the Convention's amendment so far with the aim of identifying improvements and shortcomings. While doing this two separate points of view shall be adopted: at first a micro point of view will attempt to identify improvements and shortcomings through an ‘insider’ perspective, that is, judging only the merits and difficulties of the draft text at hand. Afterwards a macroscopic view will be adopted, whereby strategic issues will be discussed pertaining to the important issue of the relationship of the suggested draft with the EU data protection system, as well as, the same draft's potential to constitute the next global information privacy standard.     

To block or not to block: European approaches to content regulation,and implications for freedom of expression

Based on the limited effectiveness of state laws, and lack of harmonization at international level a number of states started to introduce policies to block access to Internet content and websites deemed illegal which are situated outside their legal jurisdiction. However, blocking policies are not always subject to due process principles, decisions are not necessarily taken by the courts of law, and often administrative bodies or Internet hotlines run by the private sector decide which content or website should be subject to blocking. Therefore, increasingly, the compatibility of blocking action is questioned with regards to the fundamental right of freedom of expression. This article assesses significant developments at the pan-European level with regards to the development, and implementation of Internet content blocking policies. Adaptation of content blocking policies from certain member states of both the European Union and the Council of Europe will be used to assess the nature and implementation of access blocking policies. It will be argued that there could be a breach of Article 10 of the European Convention on Human Rights if blocking measures or filtering tools are used at state level to silence politically motivated speech on the Internet.     

Energy Security and the Division of Competences between the European Community and its Member States

Abstract: Securing energy supply for Europe has been for decades at the forefront of the energy policies of individual European Community member countries. However, dealing with energy issues in general and securing energy supply in particular is a new phenomenon within the EU's regulatory framework. One important issue which has not yet been discussed by legal scholars and which has been questioned repeatedly by energy experts, is the question who is actually responsible to guarantee security of energy supply in Europe? Is it the European Community alone? Is it the Member States alone? Or is it both? This question cannot be answered without a detailed legal analysis of the EU law in general, and EU law on division of competences between the Community and the Member States in particular. This article seeks to highlight the complications of this area of law within the EU and expand it to cover the energy sector in order to determine who and under what circumstances is responsible for guaranteeing security of energy supply for the consumers within the EU borders.     

打击网络犯罪国际规则的博弈与中国方案

现有的打击网络犯罪国际规范包括公约、协定(指令)和示范法三大类,其中公约类规范是网络犯罪国际规则博弈的焦点。欧洲委员会《布达佩斯公约》和俄罗斯提出的《联合国打击网络犯罪合作公约(草案)》虽然各有特点,但是均存在一定不足,难以成为中国参与网络犯罪国际规则制定的理想法律范本。联合国大会第74/247号决议的通过为网络犯罪规则制定提供了新的发展方向,制定全球性网络犯罪国际公约的中国方案应当以联合国为基础平台,尤其是注重发挥新设立的政府间专家委员会的作用,并将坚持主权原则、体现发展中国家的诉求、推动不同国家打击网络犯罪的协作作为核心主张。具体层面,应以倡导网络空间命运共同体、充分体现中国的经验做法、充分体现网络犯罪治理的时代性与前瞻性为指导理念,同时分总则、定罪、执法程序、国际合作、网络犯罪预防和最后条款等部分进行设计。     

Framing Big Data in the Council of Europe and the EU data protection law systems: Adding ‘should’ to ‘must’ via soft law to address more than only individual harms

On 19 November 2019 the Council of Europe hosted an international conference, immediately preceding the annual plenary meeting of its Committee of Convention 108, on “Convention 108+ and the future data protection global standard”. One of the authors made a presentation on “Comparing the EU and Council of Europe approach to Big Data”, and it is its contents and findings that are further elaborated in this paper; Its aim is, in essence, to incorporate the feedback received and to adapt past research on Big Data, that was mostly relevant to the EU, also on the Council of Europe data protection system. After a few preliminary remarks on Big Data terminology and possible regulatory approaches, Big Data regulation is examined against the EU and the Council of Europe data protection systems. Particular emphasis is given to the Council of Europe regulatory approach both in terms of Convention 108+ and with regard to its Guidelines on Big Data and AI. The authors believe that, because both the EU and the Council of Europe have avoided to refer to Big Data in their basic data protection regulatory texts (a most likely intentional omission), guidance is indeed needed, and it may well come in the form of soft law. The Council of Europe has taken the lead in this through its Guidelines; Their timely, comprehensive and balanced approach showcases the Council's will for such processing to indeed take place, but within a well-regulated environment, albeit not under a rigid regulatory construction.     

Human Rights in the Council of Europe and the EU: Towards ‘Individual’, ‘Constitutional’ or ‘Institutional’ Justice?

Abstract: The European Convention on Human Rights, promulgated by the Council of Europe in 1950, is widely regarded as the world's most successful experiment in the trans‐national judicial protection of human rights. The EU's much more recent judicial and political interest in human rights has also been widely welcomed. Yet, while the crisis currently afflicting the Convention system has not gone unnoticed, the same cannot equally be said of the difficulties presented by the increasing interpenetration of the two systems. Amongst the few who have shown some interest in these problems, the dominant view is that good will and common sense will provide adequate solutions. We disagree. Instead, we detect a gathering crisis which, unless properly analysed and effectively tackled, will only deepen as the EU's interest in human rights develops further. In our view, the problem is essentially conceptual and that, ultimately, it boils down to a much‐neglected question, simple to state but not so easy to answer: is the trans‐national protection of human rights in Europe a matter of ‘individual’, ‘constitutional’ or ‘institutional’ justice?     

Russia: From Energy Villain to Environmental Hero?

Global development of unconventional natural gas sources using hydraulic fracturing techniques has intensified energy security issues and environmental concerns, including freshwater contamination and climate change. Russian energy policy and its natural gas monopoly, Gazprom, have shaped European energy concerns. The discussion presents the goals of the Energy Charter Treaty (ECT) as a response. It describes Russia's controversial involvement in the ECT process and examines the United States’ role as a worldwide model for shale development. This article finds that Russia's ratification of the ECT presents a good solution for environmental and trade relations problems that Russia and European countries face today.     

30 years on - The review of the Council of Europe Data Protection Convention 108

The Council of Europe is engaging in a process of revising its Data Protection Convention (Convention 108) to meet and overcome these challenges. The Council of Europe celebrates this year the 30th Anniversary of its Data Protection Convention (usually referred to as Convention 108) which has served as the backbone of international law in over 40 European countries and has influenced policy and legislation far beyond Europe’s shores. With new data protection challenges arising every day, the Convention is revising its Data Protection Convention. Computer Law and Security Review (CLSR) together with the Intl. Association of IT Lawyers (IAITL) and ILAWS have submitted comments in response to the Expert Committee’s public consultation on this document. CLSR aims to position itself at the forefront of policy discussion drawing upon the high quality scholarly contributions from leading experts around the world.     

EU Accession to the ECHR: Between Autonomy and Adaptation

After the European Union's accession to the European Convention on Human Rights the EU will become subject to legally binding judicial decisions of the European Court of Human Rights (ECtHR) and participate in statutory bodies of the Council of Europe (Parliamentary Assembly; Committee of Ministers) when they act under the Convention. Convention rights and their interpretation by the ECtHR will be directly enforceable against the EU institutions and against Member States when acting within the scope of EU law. This will vest the ECHR with additional force in a number of Member States, including Germany and the UK. All Member States will further be subject to additional constraints when acting under the Convention system. The article considers the reasons for, and consequences of the EU's primus inter pares position under the Convention and within the Council of Europe, and the likely practical effect of the EU's accession for its Member States.     

Multicriteria Decision Aid to support Multilateral Environmental Agreements in assessing international forestry projects

The three Rio Conventions—the United Nations Framework Convention on Climate Change, the Convention on Biological Diversity, and the United Nations Convention to Combat Desertification—face the challenge to create synergies at different levels. The objective of this article is to describe how we have assessed synergies between the Rio Conventions at the project level in the forest sector. Since the complexity of the decision problem is high, we adopted the Multicriteria Decision Aid approach, which can provide a broad insight into the decision problem and find a compromise solution to a problem with multidimensional and conflicting criteria including social, economic and environmental features. The ELECTRE TRI model was used for assessing synergies at the project level, and has been a useful tool to quantify the performance of afforestation and reforestation projects into three categories (synergistic, reasonably synergistic, and not synergistic). For the first time, afforestation and reforestation projects have been assessed in a comprehensive way through decision criteria that reflect global and local interests using a non-compensatory multicriteria method.     

The ‘Strasbourg Effect’ on data protection in light of the ‘Brussels Effect’: Logic,mechanics and prospects

This article considers various factors that will shape the potential effect of the Council of Europe's modernised Convention on data protection (Convention 108+) on non-European states’ regulatory policy. It does so by elucidating the logic and mechanics of this effect in light of the ‘Brussels Effect’ that is commonly attributed, in part, to EU data protection law. The central arguments advanced in the article are that the impact of Convention 108+ beyond Europe will rest primarily on the Council of Europe's ideational power tempered by processes of acculturation, and secondarily on the degree to which the EU is willing to use the ‘Brussels Effect’ as a vehicle for promoting non-European states’ accession to the Convention.     

Climate Change Policies, Energy Security and Carbon Dependency Trade-offs for the European Union in the Longer Term

Energy policy in the European Union (EU) faces two major challenges. The first challenge is posed by EUs commitment to reduce greenhouse gas emissions to the atmosphere in the context of the international agreement on climate change. The second challenge is to keep ensuring European security of energy supply, while its dependency on external sources of energy is projected to increase. In this paper, two long-term alternative climate change policy scenarios for Europe are examined. In the first scenario, EU reduces carbon dioxide emissions by domestic measures; in the second scenario EU maximizes cooperation with the countries of the former Soviet Union (FSU). Impacts on carbon flows between the EU and FSU and on the external energy dependency of the EU are assessed with an applied general equilibrium model, GTAP-E, whose set of energy commodities is expanded with combustible biomass as a renewable and carbon-neutral energy commodity. The results show that there is a trade-off between economic efficiency, energy security and carbon dependency for the EU. The FSU would unambiguously prefer cooperation.     

Diffusion of the Budapest Convention on cybercrime and the development of cybercrime legislation in Pacific Island countries: ‘Law on the books’ vs ‘law in action’

The Council of Europe Convention on Cybercrime,¹ referred to as the Budapest Convention on Cybercrime, has been diffused globally, and is serving as a benchmark or a ‘model law’ for drafting national cybercrime legislation in many countries worldwide. This paper argues that, through the mechanism of ‘state socialization’ combined with incentives, e.g. assistance in building law enforcement capacity, the diffusion of the Budapest Convention has had a profound influence on the development of cybercrime legislation in a number of Pacific Island Countries (PICs).² Some PICs have expressed their great interest in acceding to the Convention and ‘imported’ several provisions from the Convention. This article, nevertheless, contends that these PICs do not seem to consider carefully whether the ‘imported’ law is applicable to their existing law enforcement capacity. It is evident that various domestic factors, such as lack of resources, have deterred the enforcement of cybercrime laws in these countries. As the result, although those PICs would have adequate cybercrime laws ‘on the books’, ‘law in action’ is still feeble.     

Protecting the communication: Data protection and security measures under telecommunications regulations in the digital age

This paper aims to provide a comparative overview and evaluation of various legal frameworks for electronic communications security in light of the recent developments in the electronic communications sector. The article also includes an insight on European Union and Turkish legal environment for data protection security in electronic communications sector.     

Global Politics of Mercury Pollution: The Need for Multi-Scale Governance

This article analyses international legal and policy developments on mercury from the 1970s to the present time, and examines options for continued abatement. Multiple scientific assessments have demonstrated that mercury is an environmental pollutant that can pose a serious threat to human health and development. Currently, the international community is engaged in extensive debate about options for improved mercury governance. This article will critically examine three major policy options under discussion: the creation of a global mercury convention; the regulation of mercury under the Stockholm Convention on Persistent Organic Pollutants; and the development of voluntary partnerships. It is concluded that expanded and better integrated policy efforts are needed across global, regional and local governance scales to address mercury pollution and contamination effectively.     

The status of human cloning in the international setting]

The General Assembly of the United Nations submitted a Declaration on Human Cloning in March 2005. The text of such Declaration was the result of a difficult and long process, taking more than three years. Being a Declaration instead of a Resolution, it has not legal capability in inforcing United Nations members to act according to its recommendations. This article begins with an explanation of several terms referred to cloning. Different countries' legislation on cloning is analyzed. Positions of the same countries at the Convention of the United Nations are as well analyzed. Comparing both countries' views shows that national legislation on cloning is independent and orientated by some countries' particular interests and biological and ethical views on these issues. Future developments on human cloning and its applications will be shared among all countries, both the ones currently allowing and supporting "therapeutic" cloning and the ones now banning it. In such case, it would be important to reach agreements on these issues at an international level. The article discusses possible legislative developments and offers some proposals to reach such agreements.     

The Council of Europe Laundering Convention: A recent example of a developing international criminal law

Conclusion With the Laundering Convention, the Council of Europe has contributed once again to the development of the international criminal law and to the promotion of international criminal law cooperation. The Council has shown that it is possible to elaborate a complex, highly technical convention within a period of less than a year so long as the political will exists. It is now a matter for the individual member states and other states to sign, if they have not done so, or to ratify, if they have already signed the convention. The future of the Laundering Convention lies in the hands of those states that have responsibility for its application. An efficient tool for international criminal law cooperation has been created-it must now be used.This is a revised version of a paper presented at an international workshop on Principles and Procedures for a New Transnational Criminal Law, organized jointly by the Society for the Reform of Criminal Law and the Max-Planck-Institute for Foreign and International Criminal Law, Freiburg, Germany, May 21–25, 1991. The opinions expressed are those of the author and not necessarily those of the Council of Europe.Juris kandidat, Uppsala University 1979. The author was Secretary to the Council of Europe expert committee that elaborated the Laundering Convention.