The Constitutional Court of Romania (CCR) on Wednesday is set to debate on the challenge filed by the National Liberal Party (PNL) MPs referring to the cyber security law.
On December 23, PNL made an announcement about having notified the CCR to check on the constitutionality of the abovementioned law, which they claimed it broke the principle of legality, a fundamental right for the good functioning of the rule of law state.
The notification shows that the draft in cause violated some of the provisions of the Law 24/2000 regarding the legislative technique norms for drawing up regulatory acts.
According to the PNL, parts of the cyber security law were wrong from a conceptual perspective, especially referring to a series of limiting measures in what concerns the right to privacy in the digital zone, while it also breaks the existing European regulations concerned with the information security issue.
‘This law is stealthily restricting the rights and liberties of the citizens, by banning them access to cybernetic infrastructure, while the authorised institutions would extract the data inside such infrastructures based on a simple motivation written by them, with no other authorisation from the court being required, even if the Criminal Procedure Code dictates otherwise, the same as the CCR through its Decisions 440/2014 and 461/2014. In other words, the law is not harmonised as the CCR ruled that it should be. The Law breaks the article 148, paragraph (2), and the following ones from the Romanian Constitution, by incorrectly transposing community norms in the field,’ the abovementioned notification also said.
Moreover, the PNL MPs believe that it is not clear precisely what data need to be held by the authorised institutions, whereas the framework under which the request for the data is made doesn’t present enough procedural guarantees either.
The Senate on December 19 adopted, in its capacity as the decision-making chamber, the draft law on Romania’s cyber security, which provides for the creation of the National System of Cyber Security (SNSC) to reunite the authorities and public institutions having responsibilities in this field.
According to the abovementioned draft, the authorities and the public institutions, through the SNSC, cooperate with the cyber infrastructure owners, the academic environment, the business milieu, the professional associations and the nongovernmental organisations.
The SNSC activity will be coordinated at a strategic level by the Supreme Council for National Defence (CSAT), while for the seamless coordination of the system activities in charge will be the Operational Council of Cyber Security, made up of representatives of the National Defence Ministry, the Interior Ministry, the Ministry of Foreign Affairs, the Ministry for Information Society, the Romanian Intelligence Service, the Romanian Foreign Intelligence Service (SRI) , the Special Telecommunications Service (STS) , the Protection and Guard Service (SPP), the National Registry Office for Classified Information, (ORNISS) as well as the CSAT Secretary, Agerpres informs.