News

France 'Suspends' Creation of Big-brother Database

By Peter Sayer, IDG News Service (Paris Bureau)

April 24, 2008

The French government will "suspend" the use of new software for recording the personal habits and affiliations of its citizens in a police database, following an outcry by civil rights groups.

Interior Minister Michèle Alliot-Marie took the decision Tuesday to suspend trials of the Ardoise software while officials consider how to reconcile privacy rights and operational needs, her spokesman confirmed Thursday.

Ardoise is the front end for a new police central database, Ariane, which is destined to replace those used by France's two law enforcement groups, the Police and the Gendarmerie.

Still in a test phase, Ardoise and Ariane are intended to help combat crime by encouraging the services to share information, and by allowing them to data-mine the pooled data. The existing Police computer, STIC, and that of the Gendarmerie, Judex, hold information about criminals, suspects, witnesses and victims of crime.

Campaigners say that Ardoise infringes civil liberties by allowing law enforcers to tag a person's file with annotations including "runaway child," "handicapped," "homeless," "trade unionist," "alcoholic," "narcotics user," "transvestite," "transgendered," "homosexual," "prostitute," "person who frequents prostitutes," "psychologically disturbed" or "member of a sect," simply by picking them from a list.

"Membership of trade union or one's sexual preferences have no place in a police file in a democracy," said online rights group Odebi, adding that it is not enough simply to suspend implementation of the database.

The database also holds information about religion, sexual orientation and race, according to the Interior Ministry.

It's not the first time that a French government has faced protests over the creation of a central database linking government computer systems. The government's plans to create the System for Administrative Files Automation and the Registration of Individuals (Safari) caused a scandal when they were uncovered in 1974, leading to the creation of the National Data Processing and Liberties Commission (CNIL). Safari also prompted a series of tough data protection laws obliging database owners to register their activities with the CNIL and giving citizens the right to correct data held about them.

The CNIL is among the organizations angered by Ardoise, because the government has not sought the necessary legal approval for combining the data held in the various police databases, its president Alex Türk wrote in an open letter to the Minister of the Interior on April 15. Such processing is supposed to be approved by the CNIL and by a statutory order of the Council of State.

The Ministry replied to that letter saying that the field for storing a person's sexual orientation, religion or race in Ardoise is only supposed to be completed if it is relevant to an investigation, and that the CNIL has in any case already approved storage of the same kinds of information in the Police database STIC.

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors
Sponsored Links

When Customer Relationship is Everything, Businesses Bank on SSL Solutions

Maximizing Site Visitor Trust Using Extended Validation SSL

Understanding Data Location is Imperative for Data Loss Prevention

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

How Are Open Source Development Communities Embracing Security Best Practices?

Digital Identity Protection and Data Security Get Personal

Simplify your data center with Juniper Networks. View the webcast

The Case for Business Software Assurance ~ Securing Your Applications

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Taking the Botnet Threat Seriously

Any company can promise identity protection. Only Debix can prove it

Welcome to the age of Service-Oriented Security (SOS)

Enabling Compliance with Converged Mainframe Security and Storage

5 Steps to Secure Outsourced Application Development

The Latest Advancements in SSL Technology

How to Offer the Strongest SSL Encryption

Get in Compliance With Government Data Regulations

Efficient - Flexible - Compliant

Envision Identity-Based Access Control for the Datacenter

Using Likewise to Comply with PCI Data Security Standard

Managing SSL Security in Multi-Server Environments

Solving Online Credit Fraud Using Device Reputation

Secure your virtual and physical environments with the same software

Manage your IT more effectively

IDC Defines an Identity and Access Management Submarket

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era