Digital Investigations in the Cloud—Criminal Enforcement Cooperation
Chapter 6 examines jurisdiction in criminal investigations where the digital evidence is stored in another country, as is likely where data is stored in the cloud. The territoriality principle and sovereignty mean that states are not allowed to carry out acts of investigations outside their territory. Internet technologies and remote cloud storage in the twenty-first century mean that much forensic evidence is likely to be physically stored in another country. If law enforcement authorities seize a computer on their territory it is increasingly likely that some of the data is stored in the cloud. Therefore, traditional investigatory powers limited to territory (such as a warrant to seize physical items) are not sufficient. This raises difficult questions of whether powers in respect of extended computer searches or disclosure orders can be implemented extraterritorially without breaching international law. This chapter provides a detailed examination of the traditional mechanisms of international cooperation through mutual legal assistance, the difficulties inherent in the traditional approach and the mechanisms to overcome these difficulties, including unilateral acts by states and new forms of international cooperation, such as the US system of bilateral agreements envisaged in the Cloud Act and, for the EU, the EU E-Evidence Proposal. The chapter critically analyses the data protection and human rights issues implicated by cross-border digital investigations and the role of private service providers who may disclose data in response to foreign law enforcement requests.