Browse Definitions :
Definition

Regulation of Investigatory Powers Act (RIPA)

RIPA (Regulation of Investigatory Powers Act) is a law enacted in the United Kingdom in 2000 to govern the interception and use of electronic communications. It was designed specifically to take account of the growing importance and use of the Internet and the use of strong encryption in electronic communications. RIPA also impacts other legislation, in that it provides a statutory foundation for other techniques that might be used to monitor citizens and their electronic communications.

RIPA includes at least two highly controversial stipulations: first, that individuals or organizations may be compelled by the government (presumably through some writ or subpoena) to disclose keys necessary to decrypt encrypted communications whose content may be suspect or provide evidence of illegal activity; second, that Internet Service Providers should bear the cost of technical systems to assist law enforcement with interception of electronic communications. At present, neither of these stipulations has been put into practice, nor tested in the courts. Based on a 2003 extension to RIPA coverage, however, it may be invoked by a great many legal entities including not only governments at all levels, but also job centers, local councils, and the Chief Inspector of Schools.

This was last updated in February 2008

Continue Reading About Regulation of Investigatory Powers Act (RIPA)

SearchCompliance
  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

  • enterprise document management (EDM)

    Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

SearchSecurity
  • Extensible Authentication Protocol (EAP)

    The Extensible Authentication Protocol (EAP) is a protocol for wireless networks that expands the authentication methods used by ...

  • session key

    A session key is an encryption and decryption key that is randomly generated to ensure the security of a communications session ...

  • data breach

    A data breach is a cyber attack in which sensitive, confidential or otherwise protected data has been accessed and/or disclosed ...

SearchHealthIT
SearchDisasterRecovery
  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

SearchStorage
  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud testing

    Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

  • storage virtualization

    Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...

Close