Statement 343 Views

GNI Statement of Concern on Proposed Cybersecurity Law in Myanmar

February 12th, 2021  •  Author:   Global Network Initiative  •  2 minute read
Featured image

The Global Network Initiative (GNI) is deeply troubled by the Myanmar military’s recently proposed Cybersecurity Law. In addition to surfacing during a state of emergency, the draft law, which has not been shared publicly and whose timeline for enactment remains uncertain, is very detailed and appears to significantly change existing laws and expectations with respect to telecommunications and digital services in Myanmar.

Given the severe social, economic, and human rights consequences that the draft law is likely to have on both users and companies inside the country, GNI calls on the Myanmar military to withdraw and reconsider the Cybersecurity Law. We remind all government officials that any efforts to reform existing law should be undertaken transparently and in broad consultation with affected stakeholders.

“It is clear from international law, as well as my experience looking at many different approaches to governing digital communication, that lawmaking in this space must be done openly, pursuant to democratic processes, and in consultation with all impacted stakeholders,” said David Kaye, GNI Independent Board Chair. “Imposing broad-ranging laws under a state of emergency do not meet that standard.”

The law’s stated objectives of protecting cyber security, critical information infrastructure, and personal information are commendable, but several aspects of the law appear to undermine these goals. Although we have not had adequate time to examine the draft in detail, it is clear from a preliminary review that it raises significant threats to freedom of expression and privacy. Particularly concerning are the combination of vaguely defined powers for the proposed State Administration Council and its subsidiary authorities to restrict access to broad, undefined categories of content and access company data, together with limited independent oversight and due process provisions. These concerns are heightened by requirements for companies to store personal data in places “designated by the ministry,” and threats of legal penalties or orders to disrupt or block services for failures to comply.

We also take this opportunity to reiterate our statement from earlier this week calling on all authorities in Myanmar “to immediately restore full network connectivity, reverse orders blocking social media sites, and refrain from issuing further orders or putting pressure on internet and telecommunications companies that contravene the country’s international human rights law commitments, including the freedom of opinion and expression and privacy.”

View the original.