Holyrood policing committee raises concerns about Police Scotland rollout of ‘cyber kiosks’
Police Scotland has bought 41 ‘cyber kiosks’ for use across Scotland following trials in Edinburgh and Stirling
Mobile phone - Image credit: Pixabay
Holyrood’s policing committee has raised concerns about a Police Scotland rollout of equipment for extracting data from electronic devices without confirming the legal basis for using it.
Police Scotland has bought 41 ‘cyber kiosks’ for use across Scotland following trials in Edinburgh and Stirling.
‘Cyber kiosks’ can rapidly search electronic devices such as mobile phones or laptops to look for evidence, helping police at the early stage of investigations.
However, concerns have been raised about the type of personal data that can be accessed, the legal basis for accessing it, the right to privacy and arrangements for data security.
The Justice Sub-Committee on Policing has held sessions on the devices, where significant concerns about the legal basis for the use of kiosks were outlined by both the Information Commissioner’s Office and the Scottish Human Rights Commission.
At a meeting of the sub-committee on 13 September Detective Chief Superintendent Gerry McLean told MSPs the legal basis for accessing data on electronic devices could vary, either being through a warrant, under a statutory framework such as the Misuse of Drugs Act 1971 or “more frequently” under a ‘common-law power’ such as a witness offering police a device saying there was something relevant on it.
Diego Quiroz of the Scottish Human Rights Commission asserted that searching a search of electronic devices should be on a par with a physical search of a property.
He said: “We know that cyber kiosks can access private data – everything from texts to photos and web browsing – and even more sensitive data, such as biometric data.
“My phone has my fingerprints and my voice, for example.
“In a criminal law context, there can even be information about journalistic material or legally privileged information.
“That is incredibly sensitive data, so the framework and its legality are important.
“It is possible to find more private information in a mobile phone than in a bedroom or a house.”
He continued: “Let us keep with that metaphor. The police need a warrant to search a house.
“That being the case, a more or equally intrusive digital measure will certainly require a similar safeguard.
“However, this is the first time that I have heard the police mentioning the idea of using warrants.
“I think that the commission would not be satisfied if there was no similar legal safeguard to that which there is when a house is searched in Scotland.”
Detective Chief Superintendent Gerry McLean told the sub-committee that if there was no legal basis for Police Scotland to continue with the technology, the rollout would not proceed.
However, Police Scotland has confirmed that it is continuing with the introduction of cyber kiosks across Scotland, scheduled for December 2018 and early 2019.
Justice Sub-Committee on Policing convener John Finnie MSP said: “MSPs and the public will be rightly concerned to hear that the police service is very close to rolling out cyber-kiosks while major questions remain unanswered over the legality of using these machines.
“The sub-committee has been at the forefront of raising questions about cyber-kiosks, and we will continue to hold police leadership to account for their decisions in the coming weeks.”
The sub-committee has invited these witnesses to give evidence on the topic again on Thursday 15 November.
Sajid Javid working with developers to create tools that could spot potential instances of online child grooming
A spike in awareness of data privacy means organisations have their hands full
Marketing emails were sent promoting Eldon Insurance and the Leave campaign without recipients’ permission
Police Scotland will outline its business case for upgrading IT systems within the force
Vodafone explores some of the ways IoT is significantly improving public sector service delivery
With the annual worldwide cost of cybercrime set to double from $3tn in 2015 to $6tn by 2021, BT offers advice on how chief information security officers can better...
BT's Amy Lemberger argues that having the right security in place to protect your organisation is no longer just an option. It is a necessity.