Introduction
Upon the passage of the Investigatory Powers Act 2016 in the United Kingdom, Edward Snowden tweeted that the UK had legalised “the most extreme surveillance in the history of western democracy”. On 25 May, the European Court of Human Rights’ (ECtHR) Grand Chamber delivered a judgment in Big Brother Watch and Others v UK. It ruled that the UK’s bulk surveillance powers were incompatible with Articles 8 and 10 ECHR. Leading human rights organisations and privacy NGOs have already issued press releases stating that the judgment is an “important win for privacy and freedom for everyone in the UK and beyond”. Big Brother Watch itself tweeted that the judgment “vindicates Snowden’s whistleblowing”.
So, is this Snowden’s redemption, or are we getting ahead of ourselves? This blogpost will argue that Big Brother Watch is not an outright victory for privacy rights or campaigners, but at best a ‘Pyrrhic victory’. In my view, the judgment can be criticised (a) for normalising mass-surveillance rather than challenging it outright, and (b) for failing to require judicial supervision of the process and instead relying on the weaker constraint of ‘independent internal supervision’. This blogpost will also lament the increase in UK executive surveillance powers under the Coronavirus Act 2020, and argue that the ECtHR missed a golden opportunity to take a stand against ‘coronaveillance’.
The Grand Chamber also delivered a judgment in Centrum för rättvisa v. Sweden, which dealt with similar issues of mass surveillance under Swedish law. For the sake of brevity, and my own knowledge of English rather than Swedish law, my comment will be limited to Big Brother Watch and Others v UK.
Facts of the case
The judgment
The Grand Chamber ruled in favour of the claimants and held, to summarise the main findings, as follows:
Analysis: The Court did not go far enough
(a) The Normalisation of Bulk Surveillance
(b) The Need for Judicial Supervision
Secondly, this blogpost argues that the safeguards outlined by the Grand Chamber are insufficient to prevent arbitrary violations of the right to privacy. Instead of merely requiring the security services to be supervised by an ‘independent body’, the Grand Chamber should have gone further and required the process to be overseen by the judiciary. The fact is that this body would likely not be ‘independent’, as any individual possessing the requisite information to serve on it would likely be an ex-member of the security services. Following this, there is the risk of institutional biases preventing an individual’s human rights from being upheld. The joint opinion of Judges Lemmens, Vehabović and Bošnkjak emphasises this: they argue that “it is hard to imagine how a person having an organisational and, possibly, collegial connection with the requesting authority could properly assess a request in a fair and disinterested manner”. This is even more likely in oversight of intelligence services, where no tradition of oversight exists. As expressed by the partly concurring judges, “internal authorisation cannot provide for a level of protection against arbitrariness and abuse comparable to the protection offered by independent scrutiny”.
The counter-argument here is that judicial supervision would decrease the efficiency of the security services, as valuable resources which could be used in fighting crime and protecting national security, would instead be used in obtaining judicial warrants for bulk surveillance. Moreover, the security services are often acting without time on their side, and to require them to submit to judicial supervision could be characterised as needless bureaucracy and ‘red-tape’.
However, such a counter-argument mis-characterises the presumption of innocence, and the purpose of human rights. Although we live in an age of seemingly endless and arbitrary lockdowns, the presumption should still be that people are innately free, and must be free to behave how they wish – ‘innocent until proven guilty’. This is the argument behind the partly concurring opinion: “in a democratic society, communications and related communications data of an identified individual may not be singled out and examined without that individual’s consent unless very convincing reasons exist to do so”. The opinion finishes strongly stating that if a “system designed to properly protect human rights is perceived as an unnecessary hurdle, democratic society should be put on notice”. This blogpost is in agreement with this statement, and argues that there are no “very convincing reasons” for ‘bulk surveillance’ as outlined above. If there were to be a scenario where bulk surveillance were necessary, a judge would be better placed to make the call than a member of a commission, in terms of impartiality.
The Rise of ‘Coronaveillance’
Finally, this blogpost argues that the Grand Chamber has erred in the judgment by failing to consider the potential for rights violations in the current response to the coronavirus pandemic.
A relevant difference between the Grand Chamber judgment (2021) and the previous Chamber judgment (2018) is the emergence of the COVID-19 pandemic. This pandemic has resulted in a large increase in surveillance for reasons of ‘public health’. For example, the UK’s Coronavirus Act 2020 (s. 21) loosens a rule under the Investigatory Powers Act 2016, which allowed ‘urgent surveillance warrants’ without prior judicial authorisation, as long as they were approved ex-post-facto by a judicial commissioner within 3 days. Now, the period has been extended for up to 12 working days. Liberty, a leading UK-based human rights organisation, has given evidence to the UK Parliament that the Coronavirus Act 2020 marked the “secret expansion of covert surveillance under the guise of protecting public health”.
In view of similar developments worldwide, legal scholar and privacy specialist Matthew White has coined the term ‘coronaveillance’, arguing that we may be heading for an age characterised by such pandemic-justified surveillance measures. He claims that the Coronavirus Act 2020 amendments on the IPA 2016 could be in violation of EU law. There is historical precedent for the idea that ‘coronaveillance’ could become a mainstay. Historian Yuval Noah Harari has written in the Financial Times that “many short-term emergency measures will become a fixture of life”, citing Israel’s 1948 ‘state of emergency’ temporary measures, ranging from press censorship and land confiscation, which still persist today. It is foreseeable, as long as there is the potential of a coronavirus variants, that the expansion of these bulk powers could remain, and that an age of ‘coronaveillance’ could become a fixture of life. Furthermore, as Nóra Ni Loideain argues in a chapter of Law, Policy and the Internet, developments such as the ‘Internet of Things’ and the interconnectivity of Internet-enabled systems will only increase the scope of these powers, as more things will become ‘online’.
In a previous article on the Coronavirus Act 2020, I have argued that if such bulk surveillance measures are considered ‘necessary’ in a coronavirus response, they should use the strict time limit of 30 days of the United Kingdom's Civil Contingencies Act 2004 as a legislative framework – the current indefinite scope of the Coronavirus Act 2020 is too long to allow such.
Conclusion
In conclusion, Big Brother Watch must be seen as a missed opportunity, or at most a Pyrrhic victory. What has been won in terms of acknowledging the breaches of Articles 8 and 10 ECHR, has been lost in a judgment in which the Grand Chamber has effectively normalised mass surveillance. Additionally, the requirements imposed on the UK government are nowhere near stringent enough. Finally, the Coronavirus Act 2020, in my opinion, shows that the UK executive are keen to consolidate their ability to perform mass surveillance, and this should be condemned in the strongest terms. The Grand Chamber ruling was an opportunity to do this, which was sadly missed.