> I always thought that RIPA related to the powers the police, security > services and law enforcement agencies could use. Part of it applies to anyone who operates a telecommunications system. It even applies to you in relation to your home network. Fortunately, though, the requirements on private systems are rather less onerous than on public systems (ISPs and phone companies and the like). > Am I right or can my client include the above in the policy? Not only can they, they more or less have to. (The act itself does provide some restricted cases where the network operator can intercept without having to give prior notification, but they're really to do with network operation itself. Anything more requires to use the regulations, and those do need a statement like the one you describe.) Of course, the Data Protection Act will subsequently apply to any material they intercept... -- Dr George D M Ross, School of Informatics, University of Edinburgh Kings Buildings, Mayfield Road, Edinburgh, Scotland, EH9 3JZ Mail: [log in to unmask] Voice: +44 131 650 5147 Fax: +44 131 667 7209 PGP: 1024D/AD758CC5 B91E D430 1E0D 5883 EF6A 426C B676 5C2B AD75 8CC5 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at : - http://www.jiscmail.ac.uk/help/commandref.htm (all commands go to [log in to unmask] not the list please) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^