Internet Policy Resources

E-READINESS GUIDES

"E-readiness" refers to a country's ability to take advantage of the Internet as an engine of economic growth and human development. E-readiness has several components, including telecommunications infrastructure, human resources, and legal and policy framework.

An e-readiness assessment can be used as an information-gathering mechanism for countries as they plan their strategies for ICT development. It can help a society better understand what impediments to Internet development exist and what initiatives are needed to overcome them.

There are several self-assessment guides available online. These somewhat complicated documents try to be non-prescriptive - that is, they do not purport to tell countries what to do. They pose a series of questions or indicators and ask users to rate their country to determine its stage of development. Recommendations for the legal and regulatory framework that might make a country's system more conducive to Internet development and e-commerce are implicit throughout the guides. Two of these guides are found at:

• Electronic Commerce Readiness Assessment Guide (APEC)
  Broad indicators of readiness for e-commerce are explored in a series of questions that provide direction as to desirable policies that will promote e-commerce and remove barriers to electronic trade. Section 6 specifically addresses legal policy, but government regulatory issues are implicit in all sections of the guide.

• Readiness Guide for Developing Countries (Harvard/CSPP-IBM)
  Available in English, Bangla, Russian, Romanian, Polish and Spanish. The guide asks participants to rate their country on a scale from one to four (lowest to highest) in nineteen categories, grouped in five general sections (Access, Learning, Society, Economy, Policy).

The NGO "bridges.org" has published a "Comparison of E-Readiness Assessment Models," which analyzes the two guides above and others. It describes what they measure, including the tools' underlying goals and assumptions. Use this report to better understand the various approaches to e-readiness assessment.

POLICY PRINCIPLES

Several prominent international bodies have developed principles for Internet policy. There is striking overlap among these recommendations. They provide the starting point for policy development:

• Okinawa Charter on Global International Society
  G-8 Summit, July 2000
  The heads of state of the Group of Eight major industrialized countries agreed on key principles to promote the development of the Internet and to maximize its social and economic benefits, producing a list of general recommendations such as: promote competition, protect intellectual property, etc. Policy recommendations Full text of Okinawa communique

• Global Business Dialogue on Electronic Commerce Principles and Recommendations
  Developed from a business perspective, these principles include development of mechanisms to create consumer confidence, treatment of freedom of expression, and adoption of copyright laws under WIPO.

• Open Internet Policy Principles
  Parliamentary Human Rights Foundation, November 1996
  Drafted from a human rights perspective, these principles cover access, market structure, rights and responsibilities of users, freedom of expression, criminal law enforcement, and communications privacy.

• World Economic Forum
  Statement of Principles, "From the Global Digital Divide to the Global Digital Opportunity"
  Proposes policy actions and initiatives submitted to the G-8, July 2000.

E-COMMERCE AND ELECTRONIC AND DIGITAL SIGNATURE LAWS

One issue that frequently arises as countries seek to promote e-commerce is the validity of electronic contracts and other electronic documents. This issue has two aspects:

1. Is an agreement valid and binding if it is made by email or at a Web site? In many countries, the law requires that contracts must be "in writing" or must be "signed." What do these words mean in the context of the Internet? Similar issues arise in connection with records or forms required by law to be filed with the government: how is it possible to have e-government if many laws require government forms or statements to be "signed" or filed "in writing?"

   To a limited extent, these questions can be resolved fairly simply by a law providing that "a signature, contract or other record may not be denied legal effect, validity or enforceability solely because it is in electronic form."

   The United Nations Commission on International Trade Law (UNCITRAL) adopted a model law on electronic commerce in 1996. We are preparing an analysis of its positive and negative aspects.

   Legislation based on the UNCITRAL Model has been adopted in 8 countries: Australia, Bermuda, Colombia, France, Hong Kong Special Administrative Region of China, Mexico, Ireland, Philippines.

   • US (2000) Electronic Signatures in Global and National Commerce Act ("E-SIGN") Public Law 106-229
     
   • EU Digital Signatures Directive (Dec 1999)

   There may, however, need to be exceptions to the general acceptability of electronic documents, in cases of particularly momentous matters. The US law, for example, does not apply to wills (documents for the distribution of property upon death) nor to divorce or child adoption matters. Also, the use of electronic means must be voluntary and mutually acceptable to the parties; for example, businesses cannot avoid consumer protection responsibilities by posting required information only online.

2. There is another set of more difficult questions not resolved by the minimalist approach described above - questions that have not been fully resolved in any country. How do you prevent someone from avoiding an electronic contract by claiming that he never sent the message, arguing, for example, that someone else was pretending to be him online? This is the problem of "non-repudiation" - making sure that a party cannot deny or repudiate an agreement. A related question is how do you ensure that a person you have never met face to face is the person he claim to be? This is the problem of "identification" or "authentication." How do you ensure that one party (or a hacker in the communications stream) has not tampered with the electronic record to change the terms of the deal? This is the question of "integrity."

   Online, these issues can be solved by the use of the modern cryptography, which can authenticate a person's identify, prove the integrity of a document and bind the identity of a person with the contents of a message or file, thus providing non-repudiation. In practice, however, this is very complicated. Among other things, it requires some root of trust: somewhere in the system there must be one or more trusted parties -- authorities that can then certify, using encryption, other, lesser entities. One very difficult question is, who should be the certifying authority - do we trust the government to play that role? Is there sufficient information for a reliable marketplace to develop? Should the governmentlicense certificate authorities? Does industry have a role in accrediting such authorities, pursuant to standards developed by private industry?

These issues and others are discussed in the following resources:

• Report from the American Bar Association

• An Analysis of International Electronic and Digital Signature Implementation Initiatives, Internet Law and Policy Forum (ILPF) Sept. 2000

• Links to over 30 examples of digital contract and digital signature laws

• A Working Group within UNCITRAL has been drafting a Model Law on Electronic Signatures. See http://www.uncitral.org/english/workinggroups/wg_ec/dig-sign-bckdocs/index.htm and http://www.uncitral.org/english/workinggroups/index.htm

Final note of caution: Some commentators have over-emphasized the importance of electronic and digital signature laws. For many countries seeking to promote e-commerce, there are many barriers that cannot be overcome merely by adopting an electronic or digital signature law. Conversely, countries can make great strides without an electronic or digital signature law. The United States, to take an extreme example, did not have a federal electronic signature law until June of 2000, and still does not have a digital signature law.

FREEDOM OF EXPRESSION

Freedom of expression is a human right protected under international law. Article 19 of the Universal Declaration of Human Rights provides that "Everyone has the right to freedom of opinion and expression; this right includes freedom to hold opinions without interference and to seek, receive and impart information and ideas through any media and regardless of frontiers." Similar language appears Article 19 of the International Covenant on Civil and Political Rights (CCPR), in Article 10 of the European Convention of Human Rights (ECHR), and in Article 13 of the American Convention on Human Rights.

In the age of the borderless Internet, the protection of a right to freedom of expression "regardless of frontiers" takes on new and more powerful meaning.

148 countries have ratified the CCPR http://www.unhchr.ch/pdf/report.pdf

41 countries have ratified the ECHR http://conventions.coe.int/treaty/EN/cadreprincipal.htm

For more information, see "Regardless of Frontiers: Protecting the Human Right to Freedom of Expression on the Global Internet" (1998) http://www.cdt.org/gilc/report.html

PRIVACY

Privacy protection is a critical element of consumer and user trust in the online environment and a necessary condition for the development of electronic commerce. Three international organizations have developed guidelines or rules that set forth basic consumer privacy protections:

Organisation for Economic Co-operation and Development (OECD) -- Guidelines on the Protection of Privacy and Transborder Flows of Personal Data (Privacy Guidelines) (1980) http://www.oecd.org/dsti/sti/it/secur/index.htm

Council of Europe -- Convention for the Protection of Individuals with Regard to Automatic Processing of Personal Data (1981). http://conventions.coe.int/treaty/EN/cadreprincipal.htm Articles 4 - 10 set out the basic principles for data protection.

European Union -- Data Protection Directive (1995) http://europa.eu.int/eur-lex/en/lif/dat/1995/en_395L0046.html Articles 5 - 17 spell out in somewhat more detail the basic privacy principles.

Internet Privacy Guidelines (23 February 1999) -- practical, non-binding advice for Internet users and service providers http://www.coe.fr/dataprotection/rec/elignes.htm

A good overview of the privacy rules and recommendations issued by the Council of Europe http://www.coe.fr/dataprotection/eintro.htm

TELECOMMUNICATIONS POLICY

An important step for countries seeking to promote the development of the Internet is to privatize their state telephone monopoly and introduce competition in telephone services, in order to attract investment, spur infrastructure improvements and drive down prices. The process of privatizations requires countries to set up a regulatory authority to address issues like competition, interconnection, and pricing.

There are lots of documents (free online, but usually in English) that either describe the process as a "case study" or are designed to give guidance to policymakers. Here are some pointers:

• A good place to start is a short paper published by the World Bank: "Telecommunications Reform: How To Succeed" (1997) by Bjorn Wellenius. http://www.worldbank.org/html/fpd/notes/130/130summary.html

• World Bank, Telecommunications Regulation Handbook - in PDF, six modules:
  • Overview of Telecommunications Regulation
  • Licensing Telecommunications Services
  • Interconnection
  • Price Regulation
  • Competition Policy
  • Universal Service http://www.infodev.org/projects/314regulationhandbook/

  • OECD, Telecommunications Regulations: Institutional Structures and Responsibilities http://www.olis.oecd.org/olis/1999doc.nsf/LinkTo/DSTI-ICCP-TISP(99)15-FINAL (25 May 2000)

  • The international trade agreement on services (the GATS) covers telecommunications and has been a major impetus for telecommunications reform. The basic principles are outline in theÊ WTO Annex on telecommunications: http://www.wto.org/english/tratop_e/serv_e/12-tel_e.htm (1997) and the WTO principles on the regulatory framework for basic telecommunications regulation http://www.wto.org/english/news_e/pres97_e/refpap-e.htm (1996)

  • A longer overview is "The WTO Agreement and Telecommunications Policy Reforms" by Peter Cowhey and Mikhail Klimenko (1999). http://www1.worldbank.org/wbiep/trade/papers_2000/bptelcom.pdf It's written for economists, but includes good descriptions of how telecom competition was successfully introduced in the Czech Republic, Hungary and Poland.

  • More specific papers can be found at the "World Regulatory Telecommunications Web Colloquium" sponsored by the World Bank's InfoDev project. http://www.regulate.org/ The "What's New" box on their homepage includes pointers to online papers for regulators in developing countries about unbundling network access, local loop costing, etc.

  • Much more specific guidance can be found at the European Commission's site, which gives national regulators detailed guidance on how to regulate access to the local loop. http://europa.eu.int/eur-lex/en/lif/dat/2000/en_300X0417.html Be warned - it's written in "legalese" - that is, the language is a bit difficult.

  • The Commission also has detailed guidance for national regulators on how to ensure universal service and interoperability through Open Network Provision http://europa.eu.int/eur-lex/en/lif/dat/1997/en_397L0033.html and on how to regulate leased lines http://europa.eu.int/eur-lex/en/lif/dat/1992/en_392L0044.html

  • An official directory of EC laws and regs dealing with infotech and telecoms. http://europa.eu.int/eur-lex/en/lif/reg/en_register_132060.html It's basically a link-page to the text of all the rules.

  
  

  JURISDICTION

  E-commerce and the Internet in general give new significance to an old problem in international law: when does a citizen of one country or a corporation with its place of business in one country fall under the jurisdiction of the courts of another country? For example, can a trademark holder in France sue a company using the same trademark in Germany for infringement because the German company has established a Web site that is available to French consumers? And which law of trademark applies -- the German law of the French law?

  These issues, with implications for privacy, freedom of expression and consumer protection, are being discussed in several forums.

  The Hague Conference on Private International Law has been drafting an international convention in an effort to set international rules for determining the court in which foreign parties can be sued and when countries must recognize the judgments of foreign courts. The latest draft of the Hague Convention can be found at http://www.hcch.net/e/workprog/jdgm.html

  Excellent compilations of background materials and commentary are available at http://www.cptech.org/ecom/jurisdiction/hague.html and http://www.ilpf.org/

  Some argue that crafting a convention to address jurisdictional issues will take too long and that alternative dispute resolution may provide an interim solution. The World Intellectual Property Organization helped craft a policy instituted in late 1999 by the Internet Corporation for Assigned Names and Numbers, the organization charged with managing the Internet's domain name system, for resolving trademark disputes involving domain names. Others complain, however, that the ICANN process is one-sided in favor of business interests.

  WIPO has launched other initiatives aimed at addressing some of the questions surrounding applicable law and jurisdiction raised by the Internet, including draft guidelines for how the same trademarks in different countries can coexist on the Internet.

  
  

  OTHER RESOURCES

  Here are links to course materials used by three of the leading law professors specializing in Internet law in the US. The first two are general overview courses, covering such topics as jurisdiction, content controls, privacy and intellectual property. The third focuses on intellectual property, but the online syllabus for the third course includes a very useful orientation program on the Internet that could well serve as an introduction to either of the two general courses.

  • Cyberlaw (2000) Prof. Pamela Samuelson, University of California, Berkeley Law School http://www.law.berkeley.edu/institutes/bclt/courses/fall00/cyberlaw/cybersyllabus.html

  • Internet Law (Fall 2000), Prof. Michael Froomkin, University of Miami http://www.law.miami.edu/~froomkin/inet00/syllabus.htm

  • Intellectual Property in Cyberspace (2000) Prof. William Fisher, Harvard Law School: http://eon.law.harvard.edu/property/ This course, while focused on intellectual property online, begins with a very useful "Orientation Program" covering "How the Internet Works" and other background topics, offers law students and others the basic technical background they need to understand the legal and policy issues.

  Status Report on EU Electronic Communications Policy
  The European Union has adopted requirements for telephone companies to open their networks to competition. This document summarizes EU policy and the status of implementation as of December 1999.

  OECD
  Policy Requirements for the Information Society
  An early overview of the policy framework. For other OECD documents on topics ranging from online consumer protection to digital divide to ecommerce, go to: http://www.oecd.org/dsti/sti/it/

  OECD
  Understanding the Digital Divide (2001) A very useful overview.

Overview of GIPI Policy Principles - A Legal and Regulatory Framework Promoting Internet Development