by APC APC
Introduction
Switzerland is generally not perceived as a country conflicting with international human rights standards. According to United Nations (UN) reports and other specialised human rights sources, basic rights like freedom of speech and association and the right of access to information are normally granted. Problem areas, with obvious deficits and demands for improvement, are the rights of asylum seekers, migrants or religious minorities such as Muslims living in the country.814 In the 2010 World Press Freedom Index published by Reporters Without Borders, Switzerland again shares first place with a number of Nordic countries: “These six countries set an example in the way they respect journalists and news media and protect them from judicial abuse.”815
But in the context of digital access rights, Switzerland is still not at the forefront compared to Nordic countries like Finland. And issues of privacy, amongst other concerns, have been raised regarding new surveillance regulations that are part of national security and telecommunication laws. As in other countries, widespread security considerations – mostly referring to terrorist threats or child pornography – are increasingly threatening and undermining the principles of access and openness, as well as civil rights.
Policy and political background
Most attempts to revise legal instruments and laws in Switzerland have been strongly disputed and criticised in the last years. Even if “most internet users are concerned about security,” according to a 2010 survey on internet use conducted by the Federal Statistical Office (FSO), the proposed law revisions seem to be inappropriate and do not find approval from civil society organisations and the business sector.816
The proposed revision of the Federal Act on Measures for Safeguarding National Security (BWIS)817 wants to introduce new preventive security measures, but was rejected by Parliament in spring 2009. One of the main concerns is the suggested surveillance of non-public spaces. From a human rights viewpoint, a thorough assessment of legally protected interests as well as of the concept of freedom versus security is needed.818 The process of revision is still ongoing and will not be completed until the end of 2012.
Another law that is strongly contested is the Revision of the Federal Act on the Surveillance of Post and Telecommunications (BÜPF). The Federal Department of Justice and Police argues that the act “needs to be adapted to new technological developments, including the Internet” and related communication tools.819 In the BÜPF consultation, from May to September 2010, the official language sounds merely technical, and avoids stating any political implications. Government officials just promise: “Not more but better surveillance.”820
Broad-scale surveillance widely contested
Over the last years the legal instruments and options to increase state surveillance were systematically extended in Switzerland – by the two legislative revisions mentioned, and through other laws still pending. The official tapping of phone lines and computers, wiretapping of private spaces or the use of other surveillance methods are, according to various civil and human rights organisations and networks, “violating several basic rights granted by the constitution and are not appropriate under rule of law considerations.”821 A spokesperson for the Swiss Pirate Party recently said: “[There] are many little steps that we accept in the name of security. But suddenly we have a surveillance state.”822
State security forces are permitted to stake out people in public and generally accessible spaces, including using cameras and bugging devices. But the private sphere has been legally protected since the Secret Files Scandal which shocked the public in 1989.823 Following this, the Federal Court affirmed that measures by security forces interfering in the private sphere needed a judicial writ.824
According to the proposed BÜPF law, internet service providers (ISPs) are forced to upgrade their surveillance and storage capacities to completely control broadband internet communication – in real time. This enables a systematic surveillance of any surfing behaviour of internet users in the country. The technology and devices for surveillance upgrades on behalf of state security must be paid for by the service providers themselves. According to some, the cost could amount to anything from half a million to more than one million Swiss francs, depending on the size of the access provider. The usual compensation for these sorts of collaborative efforts and services will not be given under the new law. Observers predict that most of the 650 ISPs in Switzerland will not be able to afford costly upgrades like this and – except for the bigger market players – will have to close down.825
Federal department pushed to explain
In the first round of the usual consultations on new laws826 between May and September 2010 the proposed BÜPF revisions were harshly criticised by most stakeholders from the business sector and civil society. The strongest concern was raised about the intended installation of Trojan horses on computers of suspects and the lengthening of the current data retention period from six to twelve months. (Under the contested data retention rules, ISPs are obliged to store comprehensive customer data to be delivered to security forces on demand). Another bone of contention is a new broad definition of “access providers”, including all sorts of internet-related services. The broad resistance from various parts of society – including the right-wing Swiss Peoples Party (SVP/UDC), usually at the law and order front – caused some delays in the legislative procedure and pushed the Federal Department of Justice and Police into a crisis where they needed to explain their motives. Since the end of the consultation period, almost a year ago, there has been a remarkable silence.
Until recently: in early June 2011, the Federal Department of Justice and Police launched another consultation regarding a part-revision of the Ordinance on the Surveillance of Post and Telecommunications (VÜPF).827 Observers are surprised that the Ordinance suddenly needs to be revised before the respective federal law (BÜPF) is passed – it normally happens the other way round. One of the official arguments for the hurry is that the Ordinance will allow Switzerland to sign the Council of Europe’s Cybercrime Convention at the beginning of 2012. But critics surmise that an accelerated revision of the Ordinance may circumvent the legislative power of the Parliament without creating the required legislative basis for any new surveillance laws. And the recent VÜPF proposal still includes many of the strongly contested measures from the BÜPF: comprehensive state surveillance of internet traffic, lacking limits of monitoring options and areas, as well as too vaguely defined legitimate targets for surveillance (not only very serious crime or terrorism, as some suggest). The protection of privacy has also not been considered properly.828 This has pushed some in the Swiss media to ask for a “pause for reflection.”829
Substantial privacy concerns
In his proposal regarding the BÜPF revision, the Federal Data Protection and Information Commissioner (FDPIC) found fault with the “too openly defined field of application of the law.” Furthermore, the FDPIC considers the intended catalogue of criminal offences, in the Code of Criminal Procedure (StPO), as “too comprehensive regarding the placement of Trojan horses on computers and smartphones” because this offers “massive interference with the private life of people concerned.” Besides telecommunications, all data on the computer, including private and personal data, can be monitored after the installation of the surveillance programmes. These concerns were not taken into consideration in the BÜPF consultation draft.
The draft law provides access to the information of monitored persons but not for their spouses or communication partners who are not part of the criminal procedure, but were affected by the surveillance and data storage. In his statement the Commissioner further referred to the German Constitutional Court judgement that data retention should be allowed only under certain conditions. In view of this, the planned prolongation of the data retention period to twelve months in Switzerland should be reassessed under aspects of proportionality.830 According to other official sources, such as the Federal Department of Justice and Police, around 50 internet surveillances
have been conducted against criminal organisations (involved in crimes such as blackmailing and money laundering) over the last years.831 This figure does not offer much evidence for the state’s demand for the widespread upgrade of surveillance capacities of Swiss access providers.
The biggest player on the Swiss telecom market, Swisscom and its competitor Sunrise, recently successfully sued the Federal Department of Justice and Police. In its verdict the Federal Administration Court approved the refusal of the two telecom providers to monitor the mobile internet traffic of suspects in police investigations. Costly investments in special devices would be needed for this purpose. And the provisions in law for such forced investments are missing. How the internet may be monitored is also not specified in the draft law nor in the Ordinance. The state ordering the surveillance was therefore judged “unlawful”.832
Since the revelation of a second Secret Files Scandal in summer 2010, and similar incidents, the confidence of the public in security forces has notably decreased. A Swiss daily paper, under the headline “The Secret Files Scandal – a story of lies and deception”, said the recent scandal is “not only a story of over-zealous spies and sluggish controllers but a chronicle of lies and deception – from the secret service up to the Federal Council.” Regarding the continuous revision of the Federal Act on Measures for Safeguarding National Security (BWIS), a parliamentarian and member of the Social Democratic Party announced that “our side will only give hand to it [support the new legislation], if strong control mechanisms are granted.”833 Until now security matters are usually ab/used to increase the power and impact of secret and security services and law enforcement agencies.
Conclusions: A question of credibility and proportionality
As in other European countries, state security and cyber crime continue to be raised as worrying issues in the media and in public opinion. Any social or security issue, such as child pornography or paedophilia, the lack of privacy awareness among social networks users, or other current irritations and abuses in the digital age, give ground to the proponents of all sorts of new laws and protections, and to those who argue for more power and control of society by security forces.
Generally, human and civil rights concerns are raised by the usual suspects, such as civil society organisations, trade unions and left-wing parties, and do not find much support in other political circles. In the case of the BÜPF and VÜPF revisions, a broad alliance of different stakeholders in Swiss society has already shown resistance against the new surveillance laws. The row of unusual suspects ranges from access providers, various business associations and the right-wing Swiss People’s Party (the Christian Democratic People’s Party and the Liberal Party announced themselves indifferent in this matter). Swiss telecom and access providers almost unanimously refuse to be (mis)used as deputy sheriffs for state prosecutions. This broad political concern and alliance offer reason for hope that the planned surveillance act may not be applied.
The analysis of the Swiss human and civil rights situation in the information society shows that the country may be among the best candidates in terms of freedom of expression and access and openness principles, but that all sorts of security concerns systematically violate basic citizen rights – as in many other European countries where human rights are said to be fundamental and respected.
Action steps
If the BÜPF should pass the legislative chambers, civil society networks and business associations may consider calling for a referendum to stop this law, in line with the Swiss tradition of direct democracy. The chances for success are not evident, even considering a broader political alliance, but it will prolong the public discourse on state surveillance and security measures undermining fundamental rights.
Strengthen parliamentarian and public control over any new security and surveillance laws including ordinances.
Establish an independent national human rights institution that complies with the principles relating to the status of national institutions for the promotion and protection of human rights (Paris Principles and Recommendation 6, UN Committee on Economic, Social and Cultural Rights).
Provide more human rights education to parliamentarians (in line with Recommendation 21, UN Committee on Economic, Social and Cultural Rights).
Expunge Article 293 of the Swiss Criminal Code which threatens media and other people with punishment when quoting official sources defined as “confidential” and in doing so contradicts the Federal Open Government Act. n
Links of stakeholders – civil society and business actors
Humanrights.ch (MERS), Focus Switzerland www.humanrights.ch/de/Schweiz/Inneres/Person/Sicherheit/index.html
Amnesty International, Swiss section www.amnesty.ch/en?set_language=en&cl=en
Grundrechte.ch www.grundrechte.ch
Demokratische Juristinnen und Juristen der Schweiz www.djs-jds.ch
Swiss Privacy Foundation www.privacyfoundation.ch
Digitale Gesellschaft www.digitale.gesellschaft.ch
Digitale Allmend blog.allmend.ch
Swiss Internet User Group (SIUG) www.siug.ch
ICT Switzerland www.ictswitzerland.ch
Information Security Society Switzerland (ISSS) www.isss.ch
Swiss Telecommunications Association (asut) www.asut.ch/content/content_renderer.php
TANZANIA
Jamming the news: Taking the struggle online
Collaboration on International ICT Policy for East and Southern Africa (CIPESA)
Lillian Nalwoga
www.cipesa.org