Data retention legislation has been adopted to address concerns related to national security and serious criminal activity. The legislation provides access to communication data for law enforcement purposes. However, according to the Data Retention Directive personal data collected, stored or in any way processed in most European Union Member States needs to be securely protected, to meet the requirements of data protection legislation.
In a new report, published by ENISA, various recommendations are given as to how data retention can be implemented. The report was co-authored by a number of parties including Bristol academic Prof. Nigel Smart.
Nigel Smart said "This report is one a of number of outcomes of a fruitful engagement with the European Union Agency for Network and Information Security (ENISA). We hope that such reports will go a long way to ensuring good information security practices across the continent."