Lee A. Bygrave (red.) YULEX 2002 - Universitetet i Oslo

More documents

Recommendations

Info

............................................................................ 104 Stephen K Karanja used on stolen cars to commit robbery or other crimes. If they could be registered, it would be easier to track down stolen cars. This would involve expanding the list of information entered into SIS, and could only be carried out by amending the Convention. 7 Control and Safeguards 7.1 Introduction Data protection in the Schengen Convention is ensured through a series of rules and control systems. Although rules are important in the protection of data and individual rights, it is the practising of the rules that determines the effectiveness of protection. Control of the application of the rules is what determines the overall effectiveness of the practice. In order to determine how the rules of data protection in Austria are applied, I analyse in the following the control systems that are in use, applying the evidence collected from the interviews. As Cameron (2000) has noted: “systems have blends of internal and external controls and remedies”. 18 Below, I focus on this categorisation of internal and external control. 7.2 Internal Control Internal control refers to safeguards built into the system to ensure the quality and security of the data, as required under Article 118 of the Schengen Convention. They are a combination of technical, personnel and organisational controls. Technical controls take various forms and are undertaken to ensure that the system complies with data protection rules concerning collection, quality and security of data. The Schengen Information System is an open-loop online system. According to Gregory and Horn, an open-loop online system utilises people for gathering data or carrying out the control instructions, unlike a closed-loop system, which is fully automated at all stages, from data origination through processing back to the implementation of control. 19 People are therefore an important part of internal controls in SIS, especially at the origination of data (collection, conversion and verification) and entry stages. Organisational controls refer to the management structures 18 I Cameron, National Security and the European Convention on Human Rights (Uppsala: Iustus Förlag, (2000). 19 RH Gregory & RLV Horn, Automatic Data-Processing Systems – Principles and Procedures (London: Chatto and Windus, 1963), p16.
............................................................................ The Schengen Information System in Austria 105 and the responsibilities of both management and staff. For convenience and clarity, I discuss below internal controls through different stages of data processing, starting with the origination of data, entry of data and access to data. Technical controls and personnel involved in control will be discussed for each stage in data processing. Organisational control will be discussed at the end of this section, as it runs throughout all the data-processing phases. 7.2.1 Origination of Data Origination of data refers to three activities: collection, conversion and verification. According to the findings from interviews, police criminal officers of first level collect data for entry into SIS in Austria. They prepare the records for entry into EKIS and flag the data for entry into SIS. Prosecutors and courts collect and prepare data on extradition (Article 95 of the Schengen Convention) for entry into EKIS. Similarly, the immigration authorities collect and prepare data under Article 96, refusal of aliens to enter, for entry into EKIS. The collecting officers are responsible for checking that the data for inclusion in SIS comply with collection-of-data rules, especially the purpose principle, as stipulated in Articles 95–100 of the Convention. Once the data records are ready, the officers send them to a DASTA. At the origination stage, only human control is performed. 7.2.2 Entry of Data Both human and technical controls are carried out at the data entry stage for SIS data records. Entry of data into SIS is the responsibility of second-level criminal officers at the DASTAs. However, before the data is entered, the officers at the DASTA are required to carry out data verification. Data verification includes checks to determine that the records are in the approved format, convey the correct meaning to the reader, and will lead to the appropriate action. 20 The officers at the DASTA visually control the data record to confirm that it complies with registration rules and, if necessary, correct it. In Austria, this is referred to as the ’four-eyes –entry’ principle, where two officers visually control the record. When the officers are satisfied that the data record conforms to the stipulated conditions, they enter the record online into EKIS. In EKIS, special software filters data records marked for SIS and communicates them to a special file in NSIS. Special software in NSIS further controls and communicates the data record to CSIS. However, data records under Articles 95 and 99 of the Convention are first sent by the special software program in EKIS to SIRENE, and SIRENE later communicates the re- 20 Ibid, p 6.
Page 1 and 2:
...................................
Page 3:
FORORD Denne boken er den andre i Y
Page 7 and 8:
SELVREGULERING OLAV TORVUND Selvreg
Page 9 and 10:
...................................
Page 11 and 12:
...................................
Page 13 and 14:
...................................
Page 15 and 16:
DETERMINING APPLICABLE LAW AND JURI
Page 17 and 18:
...................................
Page 19 and 20:
...................................
Page 21 and 22:
...................................
Page 23 and 24:
...................................
Page 25 and 26:
...................................
Page 27:
...................................
Page 30 and 31:
...................................
Page 32 and 33:
...................................
Page 34 and 35:
...................................
Page 36 and 37:
...................................
Page 38 and 39:
...................................
Page 40 and 41:
...................................
Page 42 and 43:
...................................
Page 44 and 45:
...................................
Page 46 and 47:
...................................
Page 48 and 49:
...................................
Page 50 and 51:
...................................
Page 52 and 53:
...................................
Page 54 and 55: ...................................
Page 56 and 57: ...................................
Page 58 and 59: ...................................
Page 60 and 61: ...................................
Page 62 and 63: ...................................
Page 64 and 65: ...................................
Page 66 and 67: ...................................
Page 68 and 69: ...................................
Page 70 and 71: ...................................
Page 72 and 73: ...................................
Page 74 and 75: ...................................
Page 76 and 77: ...................................
Page 78 and 79: ...................................
Page 80 and 81: ...................................
Page 82 and 83: ...................................
Page 84 and 85: ...................................
Page 86 and 87: ...................................
Page 88 and 89: ...................................
Page 91 and 92: THE SCHENGEN INFORMATION SYSTEM IN
Page 93 and 94: ...................................
Page 95 and 96: ...................................
Page 97 and 98: ...................................
Page 99 and 100: ...................................
Page 101 and 102: ...................................
Page 103: ...................................
Page 107 and 108: ...................................
Page 109 and 110: ...................................
Page 111 and 112: ...................................
Page 113: ...................................
Page 116 and 117: ...................................
Page 119 and 120: FORFATTEROPPLYSNINGER Jens Petter B
Page 121 and 122: NOTES ON AUTHORS Jens Petter Berg (
show all

Lee A. Bygrave (red.) YULEX 2002 - Universitetet i Oslo

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?