THIS WEEK’S ARTICLES
Issue 42 27 Nov 2020
Why lawyers must fight to retain encryption pages 1,2,4 & 5
Challenging wills: the unpredictability of litigation p3
Class actions just got a whole lot easier p7
LawNews adls.org.nz
TECHNOLOGY & LAW
Govt de-encryption move puts client data at risk By Diana Clement
The New Zealand government, along with its Five Eyes intelligence partners, has called for tech firms to open a ‘back door’ to encrypted communications to make it easier for law enforcement to access information.
Just five days before this year’s election, when the country’s attention was fixated on politics, Andrew Little – then Justice Minister and now the minister responsible for both the GCSB and NZSIS – signed a controversial statement asking technology companies such as Facebook, Google and Apple to allow access to encrypted communications and data passing through their services. Australia has already come to the party. The controversial Telecommunications and Other Legislation Amendment (Assistance and Access) Act 2018 enables Australian law enforcement and intelligence agencies to compel anyone providing a service or product that involves telecommunications or the internet to remove electronic protection, such as encryption. Not only is it an offence not to comply but those required to turn over information are not permitted to disclose that the compulsion order even exists. New Zealand organisations which store information on Australian servers have been warned that their data might be at risk. Read more. Tech companies encrypt – ie, scramble - their users’ messages, audio and video communications from ‘end to end’, meaning they can’t be accessed by others. This gives individuals, businesses and other organisations total privacy, but is a significant barrier to legal access to those messages by law enforcement. The Five Eyes countries, along with Japan and
Photo by Andriy Onnfriyenko/Getty Images
What are the implications for law firms and their clients’ data?
Encryption is vital for protecting confidential information
We really do need access to encryption for all kinds of privacy and security reasons but that’s not to say the policy and law enforcement concerns raised don’t matter
India which also signed the agreement, argue that unbreakable encryption technology creates severe risks to public safety, in particular to vulnerable groups such as sexually exploited children. But any back door will affect all internet users. And the statement Little signed is inconsistent with New Zealand’s cybersecurity strategy, which notes that secure data is fundamental to a robust and thriving society. It also warns that as more people use and do business on the internet, the payoffs from cyber and cyber-enabled crimes will increase, attracting greater numbers of cybercriminals Client files Lawyers whose eyes might glaze over at the mention of technology should pay attention. End-to-end encryption as a concept is simple to understand and among the data at risk are their Continued on page 2