Norway Implements E.U. Data Retention Directive; Data Protection Authority Remains Critical
COPENHAGEN—Norway’s Parliament April 4 approved a bill that transposes the EU Data Retention Directive into national law.
The bill must go to a pro forma second vote the week of April 11. “It’s safe to say that the second vote is a formality, and that the chances of DRD [Data Retention Directive] being rejected is purely theoretical,” a Ministry of Justice spokesman, Stian Stang Christiansen, told BNA April 8.
While Norway is not an EU member it is obliged to adopt EU directives because of its membership in the European Economic Area (EEA) agreement.
The directive requires the retention of caller identification data, including internet protocol addresses—but not content information—for at least six months but for no longer than two years. The retained data is intended to be available to assist in investigations carried out by law enforcement and national security officials.
The new law in Norway implementing the directive amends the Electronic Communications Act (2003/83) and the Criminal Procedure Act (1981/25). The changes will take effect in April 2012.