Abstract
Artificial Intelligence (AI) is rapidly transforming the criminal justice system. One of the promising applications of AI in this field is the gathering and processing of evidence to investigate and prosecute crime. Despite its great potential, AI evidence also generates novel challenges to the requirements in the European criminal law landscape. This study aims to contribute to the burgeoning body of work on AI in criminal justice, elaborating upon an issue that has not received sufficient attention: the challenges triggered by AI evidence in criminal proceedings. The analysis is based on the norms and standards for evidence and fair trial, which are fleshed out in a large amount of European case law. Through the lens of AI evidence, this contribution aims to reflect on these issues and offer new perspectives, providing recommendations that would help address the identified concerns and ensure that the fair trial standards are effectively respected in the criminal courtroom.
Keywords
Introduction
AI in law enforcement
In recent years, different fields have been experiencing the transformative power of Artificial Intelligence (AI) 1 exponentially, and the criminal justice system is not an exception. Notably, AI can support criminal justice practitioners in examining vast amounts of data, thus creating new opportunities to investigate and prosecute crimes. In fact, that is already the case for many Law Enforcement Agencies (LEAs) that rely on AI-driven tools to gather data (which eventually turn into evidence) or to scrutinise previously collected evidence – illustrated by many examples across Europe.
An evidence-recognising tool based on AI, for instance, is used by Spanish and German LEAs to search for clues of child sexual abuse within images, assisting them in the detection of faces, objects, sexual organs and other information which could be indicative of child sexual abuse material in digital devices. 2 Such a tool could also help process information of a crime scene by helping detect hints in pictures that may otherwise have been missed by investigating officers. Similarly, police forces in the United Kingdom use an AI forensic tool to examine mobile phones seized during criminal investigations to search for potential evidence. 3 That software can interpret images, analyse communication patterns, match faces and cross-reference data from different devices – functionalities that can help connect the dots when investigating and prosecuting organised crime, for example. A more concrete case in point is the use of an AI-driven system by Europol 4 to process tons of data, facilitating a joint LEA operation. The evidence gathered and processed through AI helped dismantle encrypted criminal networks, leading to hundreds of arrests across Europe. 5 Only a year later, a similar operation was performed in Belgium to dismantle an encrypted network. 6
The possibility of expeditiously processing an astonishing amount of data is an AI feature which brings many opportunities for criminal justice activities given the significant growth of evidentiary material in the ‘big data’ era. 7 AI also offers the possibility to uncover hidden insights that the human eye could hardly detect, correlating multiple data points and matching different pieces of evidence. Yet, the vast promise of AI also comes with significant risks and concerns for fair trial rights in criminal proceedings. This paper seeks to elucidate the issues at stake; mainly how AI evidence could entail potential threats to due process guarantees in Europe.
Scope and structure
This contribution concerns evidence generated by or processed through AI-driven systems, usually resulting from the deployment of technologies specifically designed for use in a law enforcement context. 8 Although at its core AI evidence is evidence in digital form, features of AI (particularly its inherent opaque and automated nature 9 ) add a layer of complexity to traditional digital forensics discussions. This complexity is precisely what this article attempts to address. 10
Currently, there is no concrete regulatory framework in the European acquis or ruling by the European Court of Human Rights (ECtHR) specifically on AI in law enforcement. 11 As Europe initiates AI regulation efforts, 12 it is important to reflect upon the specific challenges that AI poses in the context of European criminal law. The message conveyed by a growing body of legal literature is that AI brings forth novel questions regarding fair trial guarantees. 13 This article strives to reach beyond these supported claims by focussing on the introduction of AI evidence in court and by envisaging how existing case law on due process principles may apply to such evidence. The overall aim is to examine if and how AI evidence challenges (in a novel way – in comparison to digital evidence from less intrusive and complex systems, for example) the core tenets of the criminal procedure, in an attempt to demonstrate potential gaps in this framework.
In terms of applicable legal framework, the paper focuses on the European legal order. 14 While criminal procedure remains one of the least harmonised fields of law within Europe, rules and principles on the handling and production of evidence have been formulated, primarily on the basis of European human rights law. In this way, this paper primarily examines the applicability of the ECtHR case law on evidentiary considerations and the overall fairness of criminal proceedings upon AI systems for law enforcement. 15 On a secondary and complementary level, this paper also touches upon EU legal instruments relevant for the handling of evidence in the algorithmic realm. 16 The most crucial EU legal instrument in this context is the so-called Law Enforcement Directive (LED) on the processing of personal data within the context of criminal justice. 17 The latter lays down a framework of data protection principles, rights and obligations applicable to processing activities for law enforcement purposes, excluding national security-related tasks. 18
The analysis is structured in four sections that tackle the main categories of criminal procedure rules in the European criminal law landscape: admissibility, reliability, challenging by the defendant and evaluation by the judge. Then, the final section offers possible solutions to address these challenges, in an attempt to assist in the effective guarantee of fair trial rights in the criminal justice sector.
Admissibility
Principles
In most jurisdictions, evidence should in principle be lawfully obtained in order to be admissible before national courts. In this regard, it is important to highlight the role of AI when ensuring the lawful collection of evidence. This section first presents the general principles on evidence admissibility within the European legal order, to then focus on ECtHR case law on the admissibility of evidence collected through new technologies.
Evidence is considered unlawfully obtained when it is illegally or improperly collected, in violation of a wide range of legal frameworks applicable during the collection of evidence. Unlawfully obtained evidence may be excluded from criminal proceedings pursuant to the so-called ‘exclusionary’ or ‘fruit of the poisonous tree’ principle, which is similarly shared amongst continental and common law jurisdictions. 19 Exceptions to the exclusionary principle are often foreseen. 20 For example, several national legal orders accept the admissibility of unlawfully obtained evidence when there is no other evidence to support the conviction of the accused. 21 Depending on the legal regime of each state, judges enjoy a narrower or broader margin of discretion in deciding the admissibility of such ‘spoiled’ evidence. 22
When it comes to the collection of digital evidence, several criminal procedural and other legal rules must be abided by, while protection of human rights on the basis of domestic law and the ECHR must be ensured, as also established by the Budapest Cybercrime Convention. 23 Most notable examples include violations to fundamental rights – for instance, to life, prohibition of torture and inhuman or degrading treatments, to a fair trail and to privacy and data protection. This contribution focuses on the latter two.
Regarding fair trial, the ECtHR considers itself lacking the competence to rule on the admissibility of specific types of evidence based on Article 6 ECHR given the absence of rules focused on evidence therein. 24 Nevertheless, the ECtHR assessment of the proceedings’ fairness encompasses questions such as whether the fair trial conditions established in Article 6 ECHR are complied with, or whether any other ECHR right (for instance, the right to privacy or to effective remedy) has been violated during the process of evidence collection. 25 It is important to note, however, that a violation of other ECHR rights does not necessarily lead to a violation of the right to a fair trial. 26 The right to a fair trial can be violated if, for example, the defendant was not able to challenge the authenticity and use of the unlawfully obtained evidence, especially when that evidence comprised the sole or decisive element for conviction (see also the Evaluation by the Judge section). 27
Although the ECtHR scrutiny of evidence obtainment in relation to Article 6 ECHR is limited, violations of the right to privacy under Article 8 ECHR during the collection of evidence have been found in numerous cases due to a lack of lawfulness or proportionality, as detailed below. In this regard, compliance with data protection rules and principles for evidence to be considered as lawfully obtained is crucial. Pursuant to Convention 108+ and the LED, for instance, personal data processed by LEAs must be collected for ‘specified, explicit and legitimate purposes’ 28 and ‘to the extent that processing is necessary for the performance of a task’. 29
When investigating privacy violations in cases on the use of surveillance systems and deriving evidence, the ECtHR often starts by examining the purpose for which the technology is built. 30 In other words, the Court distinguishes between systems that are designed and deployed specifically for the purpose of security and surveillance, and other systems that may also be used for surveillance without that being their primary purpose. When a technological system, such as a CCTV camera, is built with a surveillance purpose and its deployment is regulated by law, focus should be put on the alignment with the security purpose and conditions of use established therein. According to the ECtHR, the use of cameras, listening or geolocation devices or audio/video files in a manner that was non-compliant with the procedures set out in the legal instrument regulating the installation and use of the surveillance system, or going beyond the regulated expected use and purpose which the technology ought to serve, violates the right to privacy. 31 In the absence of a legal instrument regulating the use of a specific technology or bundle of technologies for the purpose of obtaining evidence or clarifying the scope of police discretion in employing such technology, then such use alone may violate the right to privacy due to the lack of foreseeability. 32
When information is to be extracted from devices or environments that do not fall under the category of purpose-built surveillance, such as citizens’ private smartphones or electronic communications, the right to privacy under Article 8 ECHR and applicable data protection frameworks 33 should be respected to ensure that evidence is lawfully obtained. 34 In this regard, the ECtHR commonly examines whether appropriate and sufficient safeguards against possible abuses are in place. 35 Conditions may differ depending on whether the LEA extracts data directly from the citizens themselves or indirectly from a company providing citizens with services, in a targeted or untargeted manner, based on a tailored law, such as a data retention law or an individual warrant. If access relies on a legal framework providing for electronic surveillance, then, according to the ECtHR jurisprudence, it should be sufficiently clear to give citizens an adequate indication as to the circumstances in which and the conditions under which security agents are empowered to access their data, as well as provide for prior (often judicial) authorisation. 36 Evidence obtained in breach of, for example, EU law, should be disregarded by the courts where the defendants ‘are not in a position to comment effectively on that information and that evidence and they pertain to a field of which the judges have no knowledge and are likely to have a preponderant influence on the findings of fact’. 37
Unlawfully obtained evidence and AI
AI designed for law enforcement use should be considered as a purpose-built technology or bundle of technologies, since it is deployed specifically for crime prevention, detection, investigation and prosecution. Nevertheless, it may not always be the case that AI functionalities are specifically regulated. Currently, the development of AI regulation is in talks within Europe, 38 while calls for specific AI regulation have also been made – for instance, in relation to facial recognition and biometric surveillance. 39 In the absence of concrete legislation, determining whether the deployment of law enforcement AI systems remains respectful to their purpose and regulatory framework may not be as straightforward.
Identifying unlawfully obtained evidence and applying the exclusionary principle in the algorithmic context may prove equally challenging, as it requires an unambiguous application of relevant legal frameworks, and a clear definition of what it means to obtain evidence when AI functionalities are employed. Problems may occur already when determining whether AI evidence complies with or violates applicable laws. For example, assessing violations to non-discrimination or data protection rules by AI tools at large is a well-documented equivocal task. 40 Lawfulness may be affected during the design phase; for instance, the use of discriminatory or biased datasets to train the algorithms could guide officers towards the biased collection of data or the biased profiling and identification of new suspects. In that case, it is unclear how discrimination law applies in the first place, 41 and whether such an outcome could be considered as unlawfully obtained evidence. Lawfulness may further depend on the conditions of initial datasets’ collection, the process of datasets’ ingestion to the AI system and further use, and their adherence to the right to privacy and personal data protection principles like transparency and purpose limitation. 42 The lawfulness of data collection may be dubious when, for instance, police hacking is involved 43 or due to the opacity of the AI system generating evidence. Similarly, discerning the exact purpose of each AI system and whether any reusing of datasets for different criminal cases complies with the purpose limitation principle and its permissible restrictions may necessitate a case-by-case analysis, creating a degree of uncertainty. 44 Finally, given that unlawfully obtained evidence is not necessarily inadmissible, assessing the weight such violations hold on the overall fairness of the trial may be particularly difficult for judges, as further discussed under the Evaluation by the Judge section.
Reliability
Principles
Whereas it is primarily a task for the national judge to assess the reliability of the evidence, the ECtHR has set out some requirements in terms of reliability and accuracy of evidence. 45 For evidence to be considered reliable, there must be no doubt over its authenticity and integrity. Authenticity refers to the irrefutable provenance of the evidence. In other words, LEAs must be able to establish the source of the evidence. 46 The notion of integrity refers to the fact that evidence remains intact and that it is not tampered with during its collection or subsequent handling by LEAs. 47 The ECtHR also pays attention to whether the defendant had the opportunity to challenge both the authenticity and the use of the contested evidence (infra). 48 Finally, reliability strongly correlates with the weight of evidence in a criminal trial. 49
The ECtHR regularly applies the above-mentioned principles. In Khodorskovskiy and Lebedev v Russia, for instance, the defendants alleged that LEAs had planted evidence on the crime scene, as some of the seized materials had only been added to the criminal file after the closure of the investigation. Moreover, the Russian LEAs had copied information from a hard disk and presented it to the trial judge on paper. The defendants claimed that the authorities had presented more evidence to the court than had originally been seized, as the servers had not been properly locked up, and that the evidence was not reliable. In this case, the ECtHR decided that the use of the evidence did not breach Article 6 ECHR, as the defendants had had the opportunity to interrogate witnesses that were present at the time of the search and seizure operation. 50 In addition, the ECtHR could not detect any manifest flaw in the process of seizing and examining the hard drives, which would make the information obtained unreliable. 51 This case shows that the ECtHR only considers obtained evidence as unreliable if there are manifest flaws to be detected in its processing. National courts thus have a considerable margin of appreciation when assessing the reliability of evidence, which boils down to a case-by-case approach.
In addition to the general principles stemming from the case law of the ECtHR, both Article 5(4) Convention 108+ and Article 4(1)(d) LED contain a data quality requirement relating to the reliability of evidence as well. Those provisions state that the processing of personal data shall take place in an accurate manner, ensuring also that the personal data being processed are up to date. Consequently, LEAs that are considered as data controllers when using advanced data-driven analytics have to verify and maintain the quality of the personal data they process in the fulfilment of their duties.
Problems regarding and means towards reliable AI evidence
Prior to presenting it before a criminal court, it should be ensured that the obtained evidence is reliable. 52 The reliability of AI-generated evidence can be affected at three levels. First, the authenticity and integrity of the ‘raw’ digital data can be at stake. During a criminal investigation, information is obtained from different data sources, including persons such as witnesses or informants. When testifying, individuals might have various degrees of reliability or trustworthiness based on their motives. For example, ideological reasons may drive an informant to provide inaccurate information or even fabricate facts. Furthermore, information provided by a human being is more prone to be speculative and may be subject to memory faults. 53 The processing of such information can yield unreliable algorithmic predictions.
The authenticity and integrity of digital data becomes all the more important when it is introduced in data-driven tools (such as forensic tools underpinned by AI technology). Reliability could arguably be improved by automating the process of examining large datasets. Automation could enhance the accuracy of results that are not subject to the cognitive biases that humans tend to be prone to in decision-making processes. 54 However, the results of the data-driven analysis inevitably reproduce the quality of the input data. If the input data are not accurate, complete and up to date, the outcomes of the system will be flawed and inaccurate. 55 Poor quality of data can lead to false positive or false negative results and thus wrong, biased or erroneous evidence, potentially resulting in wrongful accusations or even convictions. For that reason, both Article 5(4) Convention 108+ and Article 4(1)(d) LED proclaim the principle of accuracy (supra). In other words, the higher the reliability of the input data, the more reliable the investigative outcomes of analytic tools.
Second, AI tools can contain miscodes that could remain hidden because of the opacity issue (also known as the ‘black box’ problem), which is one of the most significant hurdles discussed in AI literature. 56 It refers to the fact that the inner operations of most AI systems are not visible to humans, raising questions as to whether their processes can be understood at all. This problem might affect the reliability of the AI evidence in the processing of the ‘raw data’ by AI tools. 57 Third, human experts who are operating AI tools can jeopardise the reliability of AI evidence. A study showed low reliability between digital forensics experts examining the same evidence file with the same contextual information, in their observations, interpretations and conclusions. 58 There is a similar risk when it comes to human experts operating AI tools.
How can those risks affecting the reliability of AI evidence be prevented and/or addressed? An important notion in this regard is the chain of custody, which refers to the process of maintaining and documenting how the (digital) evidence has been handled throughout a criminal investigation. 59 The chain of custody can be defined as ‘the chronological documentation of evidence as it is processed during the investigation (i.e., seizure, custody, transfer, and analysis)’. 60 From the moment the chain of custody has been breached, evidence can no longer be considered reliable. Therefore, great attention should be paid to the chain of custody when collecting and processing AI evidence, despite the lack of enforceable European rules on this topic. Many guidelines, however, exist at the European level, some of them being only accessible for LEAs. 61 In the following analysis, we make a distinction between the collection of ‘raw’ digital data and the subsequent processing of this data by AI tools.
First, when it comes to ‘raw data’, respecting the chain of custody implies that the source of the material obtained is recorded, as well as all elements (both human and digital) that came into contact with the evidence, including all relevant dates and times. 62 This can be summarised in a few questions: who, when, how and why? 63 The chain of custody documentation starts at the crime scene, where forensics investigators conduct a careful study of the event or place and collect the pieces of evidence found on site. 64 Accordingly, the first stage of the chain of custody starts with the records kept by the end-users of law enforcement AI tools when collecting evidence. Those records should include a detailed account of issues such as location, time and date of evidence recovery, as well as a description of each evidence item. One of the methods that is frequently being used in order to establish the authenticity and integrity of digital files is ‘hashing’. A unique code (or calculation) is created at the moment of collection of the evidence. When the outcome of the calculation is not the same at the moment the evidence is presented to a court, this proves that it has been tampered with in the meantime. 65
Finally, as explained above, LEAs are not always responsible for the quality of data they collect. Therefore, the technical design of analytic tools should incorporate a distinction between facts and purely factual statements on the one hand and statements containing assumptions or personal opinions on the other. 66
Second, the chain of custody remains important when the collected evidence is subsequently subject to analysing tools. It should be possible for LEAs using those tools to obtain records that prove the irrefutable provenance and integrity of the large quantities of processed data, in case the results of the analytics are questioned in court. The party that presents the AI evidence before a court carries the burden of proof over its authenticity and integrity after all. For this reason, AI evidence must be based on precise and scientifically proven methods. The reliability has to be proven for the scientific methods as well as their correct use. As a result, evidence can be brought forward by describing the results of the analyses, the logic of the process, or through expert testimony. 67 Also, transparency on the contextual information that experts operating AI tools have received beforehand could improve the reliability of the AI evidence. 68 However, a combination of these approaches would generally increase the reliability of AI evidence in court.
Challenging by the defendant
Principles
The right to a fair trial under the ECHR comprises the right to have the time and facilities to prepare one’s defence, 69 meaning that defendants must have the opportunity to put forward relevant arguments (and evidence, where applicable) such that their views are considered in the trial court’s decision. The fair trial standards in the ECHR also contemplate the right to be presumed innocent until proven guilty 70 and the right to participate effectively in a criminal trial. 71
For the criminal proceedings as a whole to be considered fair, the defendant must be given the opportunity to challenge the admissibility and reliability of the evidence brought against him or her and to oppose its use. 72 Doing otherwise could entail a breach of the adversarial principle and render the entire proceedings unfair. 73 In this context, the defendant may petition the court to exclude the evidence that the prosecution obtained unlawfully, as discussed in the Principles subsection in the Admissibility section, or in the case where the chain of custody is broken for any reason, as discussed in the Principles subsection in the Reliability section. Whenever the lawfulness of the evidence adduced in court is challenged, it is for the party bringing that evidence to court to dispel any doubts about it. 74
The defendant must be given the opportunity to assess the relevance and weight of the (incriminating) material that may have been considered in the determination of the facts, as well as to formulate relevant comments in that respect. 75 In cases where complex questions are posed to the court, the defendant should be given written notice of the evidence to be presented in trial to be able to review the material, assess its authenticity and evaluate its probative value. 76
Fair trial guarantees also require that equality of arms between the parties is upheld. 77 In cases where expert evidence is adduced, this has at least three consequences. First, favourable expert evidence must be disclosed to the defence 78 and must be considered in the proceedings. 79 Second, the defendant must be allowed to bring counter-expertise to examine the material evidence 80 as otherwise it might be hard to challenge an expert opinion commissioned by the prosecution. Third, if the competent court appoints an expert witness, the designated person must be effectively neutral; otherwise, that expert opinion may lead to a breach of the equality of arms. 81
Another right underpinning fair trial guarantees is the right to an adversarial process. It implies that, in principle, both parties must have the opportunity to have knowledge of and comment on all evidence adduced or observations filed with a view to influencing the decision of the court. 82 This right closely relates to the principle of equality of arms, and thus the ECtHR often finds a violation of Article 6(1) ECHR looking at both concepts jointly. The importance of the adversarial principle in this context has also been highlighted by the CJEU, which stated that ‘[i]f a court takes the view that a party is not in a position to comment effectively on evidence pertaining to a field of which the judges have no knowledge and that is likely to have a preponderant influence on the findings of fact, it must find an infringement of the right to a fair trial and exclude that evidence in order to avoid such an infringement’. 83
Furthermore, the defendant must be granted access to its case file or other documents (such as computer files) 84 relevant for the accusations against him or her. Failure to afford such access has led to the finding that the principle of equality of arms had been breached. 85 In this regard, the ECtHR has found that, as a general rule, defendants must be given unrestricted access to their case file and unrestricted use of any notes, including copies of relevant documents (where necessary), as important guarantees of a fair trial. However, limitations may apply to the disclosure of evidence due to legitimate competing interests, insofar as the restrictive measures are strictly necessary and are counterbalanced by relevant procedures. 86 For instance, when assessing the right to an adversarial trial in cases involving bulk data collected by the prosecution, the ECtHR specified that the defendant does not have a right to access the entire (primary) dataset, but must have the possibility to access the data selected by the public prosecutor (the so-called secondary dataset). 87
Challenging AI evidence in court
When applying the above principles to criminal cases involving AI evidence, it is possible to identify many ways in which the introduction of AI may threaten the defendant’s ability to challenge, contest and appeal against decisions made based on automated outputs. Two major areas of concern in this context are (i) the contestability of decisions based on AI outputs; and (ii) the practical capacity of the defendant to challenge AI evidence.
First, opacity is a significant barrier for the exercise of the right to confrontation, given the inability to contest AI evidence put forward by the accusation. Contestability may be considered a crucial element of a rule of law framework, 88 which requires the conditions to challenge the actions by government actors to ensure that incorrect, insufficiently supported or arbitrary decisions can be corrected (e.g. the prosecution’s decision to bring someone to the stand based on potentially unreliable evidence). However, the inherent nature of AI compromises the possibilities for defendants and their lawyers to scrutinise and critically assess (incriminating) AI evidence, and to challenge the accuracy and lawfulness of decisions based on such evidence. Put simply, there is an ‘inverse relationship between algorithmic opacity and contestability’. 89
The second issue to discuss in this section is the barriers to challenge AI evidence given the defendant’s (lack of) practical capacity to do so. The technical complexity of AI inevitably requires expert assistance to challenge AI evidence. In the absence of specific AI expertise, it is difficult to conceive how the defendant could scrutinise AI-powered tools and challenge AI evidence. At the same time, it is important to consider whether the defendant can afford the required expertise in AI. Currently, not all suspects and accused persons can access the expert assistance (legal, technical or otherwise) necessary to challenge scientific knowledge relied upon in criminal proceedings, which raises questions about equality of arms. 90 This issue might be aggravated in the prosecution’s reliance on AI evidence since the expertise necessary to challenge it can be expected to be rather expensive considering all the training required in this field. Even in cases where the defendant can access the relevant expertise, concerns still remain given the inscrutability of AI systems by defendants and their lawyers. In this context, it is difficult to envisage how the defence can question the accuracy and legality of AI evidence without access to the technical information and knowledge about the processes that generated it. This has serious implications for the principle of equality of arms, the right to participate effectively in the trial and the right to an adversarial process.
In the light of these findings, some of the critical concerns and legal implications of AI evidence become apparent when attempting to apply due process principles in this context. These challenges combined with others, such as the risk of automation bias (infra), could aggravate the concerns. In that way, AI evidence may be given undue legitimacy due to the uncritical over-reliance on machine results, while the defendant is not even able to review (let alone challenge) the incriminatory evidence relied upon in court. Therefore, discovering and representing evidence through AI systems might turn such evidence into absolute truth, risking lowering or even reversing the burden of proof, 91 and thereby entailing breaches to fair trial rights.
Evaluation by the judge
Principles
An ultimate outcome of the criminal proceedings is the determination, beyond any reasonable doubt, of three core aspects: (i) whether and how an action was carried out; (ii) whether that action is of a criminal nature; and (iii) whether the defendant executed the said action and, in that case, how s/he should be punished. The criminal court has to reach a decision on those aspects, delivered through a judgment where the reasoning underpinning the ruling must be explained beyond reasonable doubt. This relates to the fundamental safeguards of transparency and accountability of public bodies in the administration of justice more broadly – conditions that constrain the arbitrary exercise of government power in a democratic society. In particular, according to established case law closely related to the proper administration of justice, such judgments should adequately state the reasons on which they are based. 92
Reasoned decisions help to demonstrate that both parties have been heard. They also require that courts indicate with sufficient clarity the grounds on which they based their decision 93 and uphold the defendants’ rights. As a result, the defendant would be able to exercise any right of appeal that is available. 94 Evidence, as evaluated during the fact-finding process, is one of the elements influencing the legal reasoning of the judicial decision. In particular, the evidence gathered during a criminal investigation should provide the judge (as the ultimate guardian of the proceedings) with the ability to digest the findings presented in trial and determine the defendant’s guilt. 95
In this context, when assessing the fairness of the proceedings as a whole, the ECtHR must review the domestic courts’ evaluation of evidence to determine whether the domestic courts’ assessment of the weight of the evidence could be considered unacceptable or arbitrary. Subsequently, the Court must make its own assessment of the weight of the evidence if the domestic courts did not indicate their position on that issue or if their position is unclear. 96 This is particularly the case in situations where the ‘sole or decisive rule’ (supra) is at stake.
Another determining factor of the fairness of the proceedings is the principle of the presumption of innocence, 97 which requires, inter alia, that (i) when carrying out their duties, triers of fact should not start with the preconceived idea that the accused has committed the alleged facts; (ii) the burden of proof is on the prosecution; and (iii) the principle of in dubio pro reo (i.e. doubts should benefit the accused). 98 Since the presumption of innocence is a procedural guarantee in the context of a criminal trial itself, this principle must not only be considered during the examination of the merits of a charge, but it has an impact on the criminal proceedings more broadly. 99 Therefore, the presumption of innocence applies to the reasons given in the operative provisions of a judgment, and may be violated if the reasoning in an acquittal reflects an opinion that the accused is actually guilty. 100
The principle of equality of arms is also relevant in the ECtHR’s evaluation of the weight of evidence by domestic courts, particularly regarding the appointment of experts in the proceedings. 101 While the ECHR does not provide specific rules on how expert evidence should be reported in court, 102 there are three factors in this respect that play a decisive role in the fairness of the proceedings: (i) the position occupied by the experts throughout the proceedings; (ii) how they performed their task; and (iii) the way the judges assessed the expert opinion. When assessing those factors, the ECtHR takes into account the fact that the opinion given by any court-appointed expert is likely to carry significant weight in the assessment of the issues within that expert’s competence. 103
Evaluation of AI evidence by the judge
Considering the principles outlined in the foregoing, it is critical to assess whether (and how) AI evidence could influence the evaluation by the judge and eventually put in jeopardy the fair trial guarantees. Of the issues discussed throughout this paper, transparency is a particularly relevant one when talking about AI-generated evidence. This public law principle can be challenged in the evaluation by the judge considering the inherent opaque and automated nature of AI systems, 104 giving rise to novel risks, such as the inability to explain decisions due to the black box effect and automation bias. In the context of this study, we focus on these two prominent algorithmic challenges given their potential to influence, and probably undermine, the fact-finding process.
Opacity in machine learning (ML), known as the black box problem (supra), 105 is one of the main impediments to transparency in AI. In a criminal justice setting, the black box effect may generate challenges in terms of providing a reasoned justification on how the defendant’s guilt was established when the employment of AI techniques is used as evidence. 106 The adequate administration of justice requires that the factors influencing the outcomes of a case are visible or transparent to the parties involved, including those who use, regulate and are impacted by automated systems. That transparency should involve access to and provision of relevant information (e.g. regarding the inner workings of the automated system that produced the evidence) and also relates to the interpretability of such information. When it comes to AI evidence, since the system could affect the correlations between certain facts and their specific consequences in a criminal case, judges must be able to question all steps of the process in their assessment of such evidence. However, interpretability may prove challenging in this context due to the complex interactions that AI technology, particularly ML systems, involve. 107 Typically, ML solutions operate in ways that the outcomes produced might not have been foreseen, or even explained, by experts, let alone people lacking extensive technical knowledge (likely to be generally the case for judges). 108
Automation bias is another algorithmic challenge that may influence the judge’s ability to evaluate AI evidence. Although generally introduced to guard against machine error, 109 human oversight might not always have the expected effects due to the automation bias issue, consisting of the human tendency to over-rely on machine outputs primarily due to the perception that they are generally trustworthy and reliable. 110 Machine processes are often considered objective and free from human biases based on the assumption that, as maths are involved, those processes must be naturally neutral. Automated devices can fundamentally change how people (e.g. judges) approach their role in a decision-making process, rendering human oversight ineffective as a result. Accordingly, criminal investigators and triers of facts may tend to place greater weight on automated assessments over other sources of advice or evidence, even though AI-powered tools replicate (and may even exacerbate) pre-existing human biases, as shown in growing literature. For instance, a study conducted by ProPublica showed that algorithmic systems used in the criminal justice sector generated ‘remarkably unreliable’ evidence when forecasting violent crime. 111 Another example is the research performed by researchers at the Massachusetts Institute of Technology, which provided evidence of discriminatory outcomes in ML systems based on protected attributes such as race and gender. 112
Therefore, while AI evidence can be used as supporting material during the criminal fact-finding process, the algorithmic challenges may play a particular role in this context, raising novel concerns. Specifically, the characteristics of AI seem to be at odds with the transparency and accountability principles in the adequate administration of justice. On the one hand, the black box problem results in an inability to explain certain AI-generated outcomes in human terms. This could lead to situations where it might be hard for judges to fully understand and adequately assess AI evidence, not even relying on expert testimony. 113 On the other hand, in the presence of automation bias, judges might not be able to remain critical when faced with AI outputs or may often not contradict those, irrespective of the accuracy of the technology. Thus, based on the technology’s appearance of objectivity and certainty, the fact-finder may give undue legitimacy to a flawed AI result, improperly affording the presumption of trustworthiness and reliability to certain (incriminating) evidence, which could in turn lead to miscarriages of justice. This is where the specific dangers of AI evidence inevitably arise. In particular, the black box effect and the risk of automation bias cast doubt as to whether the court would be able to make an informed decision on the defendant’s guilt when admitting AI outputs as evidence and when justifying court decisions through AI evidence. These two algorithmic challenges threaten to hamper the judges’ ability to provide sufficient reasoning for their decisions, posing challenges to the fulfilment of fair trial standards and undermining the quality of judicial decision-making based on AI evidence.
Possible solutions
Policy and regulation
The findings above call for the development of a specific legislative framework defining minimum standards on AI in law enforcement. With an adequate legal framework, the possibilities that the outcomes of AI technologies are compliant with fundamental rights and fair trial standards could be much higher. While Council of Europe and EU-wide initiatives to regulate AI more broadly, 114 and those on AI in the criminal law field more specifically, 115 are welcome, they might not address all of the concerns outlined in this contribution.
Regulating specific AI tools, especially on a national basis, ahead of any deployment, can more efficiently substantiate their lawfulness and clarify their treatment under criminal procedural law. 116 In particular, pursuant to the ECtHR guidelines on surveillance instruments, the use of law enforcement AI should be preceded by a concrete regulatory framework giving citizens sufficient information on the circumstances under which their personal information may be processed by such systems for the latter to meet the threshold of foreseeability and lawfulness and respect the right to privacy.
Guidance should be provided with respect to the application of traditional criminal procedural law on algorithmically processed or produced evidence. Assessing the lawful obtainment of evidence through data collection and processing may become more complex. Therefore, guidelines should be developed for judges and their discretion in accepting AI outcomes as sole incriminating evidence, especially in cases where the AI system is known to present high risks of errors or where establishing that the lawful obtainment of evidence may be equivocal. In that regard, establishing thresholds of acceptable error rates across law enforcement AI systems would also be helpful in levelling the playing field.
Further, provided the (technical) accessibility of AI systems, 117 public authorities in the criminal justice field should effectively make their AI systems open to public scrutiny before and after deployment, in line with their accountability obligations. In other words, law enforcement AI systems should meet the level of transparency required to protect fundamental rights and due process guarantees in their use by criminal justice practitioners. That would allow interested parties (such as research communities from relevant fields – including law, ethics, social science, criminology, public policy, but also statistics, computer science or data science) to assess AI systems. This could help determine whether public policy goals are adequately reflected in the tools and contribute to the progress made in multidisciplinary research literature on fairness, accountability and transparency of AI systems in the criminal justice field. 118 It is also encouraged that the investigation how independent experts for interpretation and explicability of AI-processed evidence be equally accessible to the prosecution and the defendant.
Architecture of law enforcement AI
Several of the challenges explained in this contribution may be mitigated by measures implemented during the design of the AI tools. For instance, transparency, widely identified as one of the core requirements for AI technology, 119 may be achieved through by-design measures that enable end-users to assess the validity of the evidence generated when deciding on a course of action, and eventually facilitate the challenging by defendants. Considering the important public policy decisions involved, and the fact that transparency is a necessary precondition to public accountability, 120 law enforcement AI tools need to be sufficiently transparent to enable effective independent scrutiny and oversight. Achieving transparency by design entails taking measures towards the traceability and explicability of the AI system, as well as open communication about the limitations of the technology. 121
Adequate architectural choices should also be made to ensure that the technology can result in evidence that is legally acceptable and reliable, and can contribute to the respect of the presumption of innocence. In order for the chain of custody to be respected, data provenance should be in place for all data. That means that a detailed account of the obtainment and handling processes as to the location and the reliability of each source of data being processed should be maintained from beginning to end (see supra 3.2). It needs to be clear what the original (form of the) data was and which adaptations were made and by whom. For instance, when a text document is translated through the automatic language translation service within law enforcement AI, both the original and translated text must be recorded. The law enforcement AI should enable the verification that the data has not been unlawfully altered during the analysis. In this regard, the use of timestamps in datasets as well as the logging within an AI tool of any collection, alteration, consultation, disclosure, transfers, combination, and erasure of data, recording the time such action took place, along with the identities of users involved is highly recommended. The logs kept by the law enforcement AI should be related to a specific case file, so that they will allow human operators to maintain an evidence log, thereby capturing the chain of custody of all data pertinent to the case at hand. In that regard compliance with ISO standard ISO/IEC 27037:2012, which provides guidelines for specific activities in the identification, collection, acquisition and preservation of potential digital evidence, might contribute to a meticulous respect for the chain of custody. 122
It is further necessary to refrain from designing systems that can pre-designate individuals as criminals before trial or that can assist end-users in carrying out unjustified or disproportionate actions against persons without observing the fair trial guarantees. Moreover, when law enforcement AI detects a degree of suspicion of individuals, it should alert only the authorised users of the tool. The human operator has to later on decide to whether the item resulting from the AI tools will be added as part of an existing investigation or instigate a new investigation. AI developers should continuously strive towards the highest degree of explicability and impartiality of the AI outcomes that inform decisions taken by criminal justice practitioners. Finally, a key feature of technological due process 123 is the requirement of audit trails that document correlations between rules and decisions of an algorithm. The records kept of the audit trail should include a map of the facts and rules that were applied to each decision made in an algorithm. Accordingly, the audit trail should not only allow the oversight of the system, but should also facilitate testing to detect problematic aspects in the decisions made – for instance, classifications based on protected characteristics such as race, nationality, gender and sexual orientation.
Training of professionals
Finally, legislative action and the development of law enforcement AI must be complemented by training and support for judicial staff (prosecutors, judges, clerical workers, etc.) and defence lawyers. Those training activities should be aimed at raising awareness of the available AI tools, their success or error rates, their adequate use and the correct interpretation of their outputs. The special training and support tools should ensure that all the persons concerned have at least some awareness of how AI works and how AI evidence is generated. That way, it can be ensured that all the parties in trial are able to formulate adequate questions and strategies when AI evidence is used in criminal proceedings.
When it comes to LEAs using AI systems, the training programmes should include detailed information on the technical functionalities of the technology, complemented by specific information on the legal and ethical aspects involved. Clarity should be provided on aspects such as why AI works the way it does and delivers a certain output. Emphasis should be placed on the role of algorithms in a decision-making process and the critical importance of the meaningful human intervention in AI-assisted processes. This can be expected to positively impact the ethical and lawful use of law enforcement technology and eventually reduce the potential detrimental effects that AI tools (and their outcomes) involve.
Conclusions
AI evidence is already a reality of criminal investigations in Europe. Yet, our study demonstrates that bringing AI evidence to the courtroom generates novel challenges to the European criminal law requirements and that those need to be tackled. Applying traditional criminal procedural law principles, such as the inadmissibility of unlawfully obtained evidence in the context of law enforcement AI, may prove a challenging task. It is after all currently unclear what obtainment in this sense entails and how unlawfulness may unambiguously manifest. Moreover, the opaque and complex nature of AI systems raises challenges in terms of proving or disproving the reliability of the technology and its outcomes. It also poses problems for AI evidence to be meaningfully challenged or evaluated in trial. Whereas in our contribution we highlighted these concerns and tried to formulate some specific recommendations to answer them, several questions remain. For instance, how should AI evidence be classified: as documentary evidence, or more as a sort of witness or expert testimony? Or, when are AI systems considered to obtain evidence themselves? And, how can the defendant prove encoded bias and the consequences for his or her trial? Further legal and technical research will have to be carried out in the future to address those urgent questions.
Footnotes
Declaration of conflicting interests
The author(s) declared no potential conflicts of interest with respect to the research, authorship, and/or publication of this article.
Funding
The author(s) disclosed receipt of the following financial support for the research, authorship, and/or publication of this article: This work was supported by the Vlaamse regering, grant number Cybersecurity Initiative Flanders and European Union’s Horizon 2020 Research and Innovation Programme, grant number 786629.
1.
For the purposes of this paper, we adopt the general definition of AI in the draft proposal for a regulation on AI presented by the European Commission in 2021, according to which AI means ‘software that is developed with one or more of the techniques and approaches listed in Annex I [i.e., machine learning, logic- and knowledge-based, and statistical approaches] and can, for a given set of human-defined objectives, generate outputs such as content, predictions, recommendations, or decisions influencing the environments they interact with’ (art 3(1)). European Commission, ‘COM(2021) 206 final – Proposal for a Regulation of the European Parliament and of the Council laying down harmonised rules on Artificial Intelligence (Artificial Intelligence Act) and amending certain Union legislative acts’ (European Commission 2021) <
> accessed 21 April 2021).
2.
See Spanish National Cybersecurity Institute (INCIBE), ‘4NSEEK Forensic Analysis Tool’ (2021)<https://www.incibe.es/en/european-projects/4nseek/tool> accessed 20 February 2021 and ‘German authorities turn to AI to combat child pornogr9aphy online’ (2019) <> accessed 20 September 2021.
3.
See Owen Bowcott and Hannah Devlin, ‘Police Trial AI Software to Help Process Mobile Phone Evidence’ The Guardian (12 May 2018) <https://www.theguardian.com/uk-news/2018/may/27/police-trial-ai-software-to-help-process-mobile-phone-evidence> accessed 22 February 2021; see more recent report: Siddharth Venkataramakrishnan, ‘UK Police and Other Investigators Spend £4m on Phone Hacking Software’ (9 November 2020) <> accessed 22 February 2021.
4.
The European Union’s law enforcement agency.
5.
Ryan Gallagher, ‘European Police Hacked Secret Phone Network, Used AI for Major Bust’ [2020] Bloomberg <https://www.bloomberg.com/news/articles/2020-07-16/european-police-hacked-secret-phone-network-used-ai-for-major-bust> accessed 19 January 2021; Adam Nossiter, ‘When Police Are Hackers: Hundreds Charged as Encrypted Network Is Broken’ The New York Times (2 July 2020) <https://www.nytimes.com/2020/07/02/world/europe/encrypted-network-arrests-europe.html> accessed 1 March 2021; The reliability of the collected evidence has been contested by Dutch lawyers. See Jan Meeus, ‘OM Ruziet Met Britten over Bewijsmateriaal Uit Hack: “Het Vertrouwen Is Geschaad”’ NRC (8 April 2021) <> accessed 15 April 2021.
6.
7.
Shams Zawoad and Ragib Hasan, ‘Digital Forensics in the Age of Big Data: Challenges, Approaches, and Opportunities’, 2015 IEEE 17th International Conference on High Performance Computing and Communications, 2015 IEEE 7th International Symposium on Cyberspace Safety and Security and 2015 IEEE 12th International Conference on Embedded Software and Systems.
8.
As opposed to any AI-driven systems producing data that could also be adduced as evidence in criminal trials (known as ‘machine data’ stemming from autonomous vehicles for example), which has been the focus of another study. See Sabine Gless, ‘AI in the Courtroom: A Comparative Analysis of Machine Evidence in Criminal Trials’ (2020) 51 Georgetown Journal of International Law 195.
9.
Tal Zarsky, ‘The Trouble with Algorithmic Decisions: An Analytic Road Map to Examine Efficiency and Fairness in Automated and Opaque Decision Making’ (2016) 41 Science, Technology, & Human Values 118.
10.
With no aim to offer an exhaustive scrutiny on digital evidence.
11.
See also Giuseppe Contissa and Giulia Lasagni, ‘When It Is (Also) Algorithms and AI That Decide on Criminal Matters: In Search of an Effective Remedy’ (2020) 28 European Journal of Crime, Criminal Law and Criminal Justice 280; Viltė Kristina Steponėnaitė and Peggy Valcke, ‘Legal Analytics in Judicial Systems: Its Qualification and Threats to the Right to a Fair Trial’ (2020) 27 Maastricht Journal of European and Comparative Law 759; Gless (n 8).
12.
A study released in 2020 by the Council of Europe’s Ad hoc Committee on Artificial Intelligence (CAHAI) could set in motion the development of a multilateral AI deal among the 47 members of the Council of Europe in the near future. Ad hoc Committee on Artificial Intelligence (CAHAI), ‘CAHAI(2020)23 – Feasibility Study’ (Council of Europe, Strasbourg, 17 December 2020) <> accessed 23 December 2020). Similarly, on 21 April 2021, the European Commission put forward the first-ever attempt to regulate AI (see EU AI Act proposal, n 1). It should be noted, however, that this proposal may be subject to changes during the legislative procedure.
13.
See, amongst others, Ugo Pagallo and Serena Quattrocolo, ‘The Impact of AI on Criminal Law, and Its Two Fold Procedures’ in Barfield Woodrow and Ugo Pagallo (eds), Research Handbook on the Law of Artificial Intelligence (Edward Elgar Publishing 2018); Gless (n 8); Serena Quattrocolo, Artificial Intelligence, Computational Modelling and Criminal Proceedings: A Framework for a European Legal Discussion, vol 4 (Springer Switzerland AG 2020); Francesca Palmiotto, ‘The Black Box on Trial: The Impact of Algorithmic Opacity on Fair Trial Rights in Criminal Proceedings’ in Martin Eber and Marta Cantero Gamito (eds), Algorithmic Governance and Governance of Algorithms (Springer 2021).
14.
Of course, legal questions on the use of AI within law enforcement are being raised on a world-wide scale. For instance, a controversial ruling has been issued from the Wisconsin Supreme Court in the United States which held that the use of an algorithmic risk assessment in sentencing did not violate the defendant’s due process rights even though the methodology used to produce the assessment was not disclosed and despite being allegedly biased [State v Loomis 881 NW2d 749 (Wis 2016) 754 (US)]. Nevertheless, a comparative analysis of case law on the use of law enforcement AI between Europe and the United States of America or other jurisdictions goes beyond the scope of this paper.
15.
Τhe European Court of Human Rights (ECtHR) examines the fairness of the trial as a whole and the potential infringement of Article 6 of the European Convention of Human Rights (ECHR) or other ECHR rights, such as the right to privacy under Article 8 ECHR or to an effective remedy under Article 13 ECHR. A minimum set of substantive and procedural rules on digital evidence derives from the Budapest Cybercrime Convention, which is the only binding international instrument for cybercrime and digital evidence. Equally, all the stages of evidence handling must abide by data protection rules, as established in the Convention 108+. Council of Europe, Convention on Cybercrime, European Treaty Series No 185 [2001] (Budapest Cybercrime Convention); Modernised Convention for the Protection of Individuals with Regard to the Processing of Personal Data, Amending protocol to the Convention for the Protection of Individuals with Regard to the Processing of Personal Data [2018] (Convention 108+).
16.
Given the limited EU competences to approximate criminal law, EU institutions have abstained from focussing specifically on evidential matters. See Consolidated Version of the Treaty on the Functioning of the European Union [2016] OJ C202/01 (TFEU), art 82. Relevant rules may be indirectly found within broader instruments such as the European Investigation Order, Directive 2014/41/EU of the European Parliament and of the Council of 3 April 2014 regarding the European Investigation Order in criminal matters [2014], OJ L 130, 1.5.2014, p. 1–36, art 9. See also the Convention established by the Council in accordance with art 34 of the Treaty on European Union, on Mutual Assistance in Criminal Matters between the Member States of the European Union [2000] OJ C197/3.
17.
Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA [2016] OJ L119/89 (LED).
18.
LED, arts 1-2.
19.
Elodie Sellier and Anne Weyembergh, ‘Criminal Procedural Laws across the European Union – A Comparative Analysis of Selected Main Differences and the Impact They Have over the Development of EU Legislation’ (European Parliament, Policy Department for Citizens’ Rights and Constitutional Affairs 2018) PE 604.977.
20.
For instance, in Germany, Spain and Italy, the most prominent exclusionary principles relate to interferences with fundamental rights. In Germany, evidence obtained in a manner which results in physical or psychological maltreatment, or interferes with privacy rights of the defendant would not be considered as admissible. Additionally, in Italy the use of hearsay evidence is excluded, unless one of the exhaustively enumerated exceptions applies. In Romania, a breach of the defendant’s right to participate at stages of criminal proceedings or to the presence of counsel results in absolute nullity of evidence. ibid.
21.
Fanny Coudert and others, ‘Pervasive Monitoring: Appreciating Citizen’s Surveillance as Digital Evidence in Legal Proceedings’, 4th International Conference on Imaging for Crime Detection and Prevention 2011 (ICDP 2011) (2011); Sellier and Weyembergh (n 19).
22.
Sellier and Weyembergh (n 19).
23.
Budapest Cybercrime Convention, arts 14(2)(c) and 15(1).
24.
Nuala Mole and Catharina Harby, ‘The Right to a Fair Trial: A Guide to the Implementation of Article 6 of the European Convention on Human Rights’ (2006) Human Rights Handbooks No. 3. See also Schenk v Switzerland App No 10862/84 (ECtHR, 12 July 1988), para 46; Khan v the United Kingdom App no 35394/97 (ECtHR, 4 October 2000 Final), para 34; Jalloh v Germany App no 54810/00 (ECtHR, 11 July 2006), paras 94-95; Bykov v Russia App no 4378/02 (ECtHR, 10 March 2009), paras 88-89; Gäfgen v Germany App no 22978/05 (ECtHR, 1 June 2010), paras 162-166; Prade v Germany App no 7215/10 (ECtHR, 3 March 2016 Final), paras 32-33.
25.
ibid.
26.
For example, the ECtHR found the use of covert listening devices to be in breach of Article 8 ECHR, because recourse to such devices lacked a legal basis in domestic law and the interferences with the applicants’ right to privacy were not ‘in accordance with the law’. Nonetheless, the admission in evidence of information unlawfully obtained thereby did not in the circumstances of the cases conflict with the requirements of fairness guaranteed by Article 6(1) ECHR. Khan (n 24), paras 25-28, 35; P.G. and J.H. v the United Kingdom App no 44787/98 (ECtHR, 25 December 2001 Final), paras 37-38; Bykov (n 24), paras 91, 104-105; Kalnéniené v Belgium App no 40233/07 (ECtHR, 30 April 2017 Final), paras 50-54; Dragoş Ioan Rusu v Romania App no 22767/08 (ECtHR, 31 January 2018 Final), para 50. See also Quattrocolo (n 13). Given the increasingly dominant use of personal data in criminal cases, it would be worth examining whether the ECtHR should reconsider the relation between Article 6 and Article 8 ECHR.
27.
By analogy, the ECtHR has found that the right to fair trial may not be claimed to be violated when the defendant was able to challenge the authenticity and use of the unlawfully obtained evidence, see Schenk (n 24), para 46; Khan (n 24), paras 34-37.
28.
Convention 108+, art 5(4)(b); LED, art 4(1)(b).
29.
LED, art 8(1).
30.
P.G. and J.H. (n 26); Perry v The United Kingdom App no 63737/00 (ECtHR, 17 July 2003); Vetter v France App no 44787/98 (ECtHR, 31 May 2005); Wisse v France App no 71611/01 (ECtHR, 22 December 2005); Antovic and Mirkovic v Montenegro App no 70838/13 (ECtHR, 28 November 2017).
31.
ibid.
32.
P.G. and J.H. (n 26); Vetter (n 30); Wisse (n 30).
33.
Such as Convention 108+, the LED and Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) [2002] OJ L201/37 (e-Privacy Directive).
34.
See also Coudert and others (n 21).
35.
See, for example, Klass and others v Germany App no 5029/71 (ECtHR, 6 September 1978); Bykov (n 24); Zakharov v Russia App no 47143/06 (ECtHR, 4 December 2015); Szabó and Vissy v Hungary App no 37138/14 (ECtHR, 12 January 2016); Big Brother Watch and others v the United Kingdom App nos 58170/13, 62322/14 and 24960/15 (ECtHR 13 September 2018, referred to the Grand Chamber 04 February 2019); P.N. v Germany App no 74440/17 (ECtHR, 11 June 2020). Similarly, the Court of Justice of the EU (CJEU) imposes strict conditions for laws on the retention of electronic communications traffic and location data for the fight against crime. See, for example, Joined Cases C-203/15 and C-698/15 Tele2 Sverige AB v Postoch telestyrelsen and Secretary of State for the Home Department v Tom Watson and Others [2016] ECLI:EU:C:2016:970, para 100; Opinion 1/15 [2017] ECLI:EU:C:2016:656; Case C-207/16 Ministerio Fiscal [2018] ECLI:EU:C:2018:788; Joined Cases C-511/18, C-512/18 and C-520/18 La Quadrature du Net and Others v Premier ministre and Others [2020] ECLI:EU:C:2020:791.
36.
ibid.
37.
C-746/18 H.K. v Prokuratuur, [2021] ECLI:EU:C:2021:152, para 44.
38.
See Council of Europe and EU initiatives (n 12).
39.
For example, French and German national data protection authorities call for facial recognition technologies regulation. Commission Nationale de l'Informatique et des Libertés (CNIL), ‘Reconnaissance faciale – pour un débat à la hauteur’, 15 November 2019; Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit (2018). Additionally, twelve human rights groups launched a campaign across Europe titled ‘Reclaim Your Face’ calling for a ban on biometric mass surveillance on November 2020, available at <> accessed 10 March 2021.
40.
See, for example, Rosaria Sicurella and Valeria Scalia, ‘Data Mining and Profiling in the Area of Freedom, Security and Justice: State of Play and New Challenges in the Balance between Security and Fundamental Rights Protection’ (2013) 4 New Journal of European Criminal Law 409; Lilian Edwards and Michael Veale, ‘Slave to the Algorithm? Why a “Right to an Explanation” Is Probably Not the Remedy You Are Looking For’ (2017) 16 Duke Law & Technology Review 18; Laurens Naudts, ‘Criminal Profiling and Non-Discrimination: On Firm Grounds for the Digital Era?’ in Anton Vedder and others (eds), Security and Law: Legal and Ethical Aspects of Public Security, Cyber Security and Critical Infrastructure Security (Intersentia 2019).
41.
See Naudts (n 40).
42.
Convention 108+, art 5; LED, art 4.
43.
Ivan Skorvanek and others, ‘“My Computer Is My Castle”: New Privacy Frameworks to Regulate Police Hacking’ (2019) 2019 Brigham Young University Law Review 997.
44.
See, for example, Ivo Emanuilov and others, ‘Purpose Limitation By Design as a Counter to Function Creep and System Insecurity in Police AI’ [2020] UNICRI Special Collection on AI 12.
45.
Dragoş Ioan Rusu (n 26), para 49; Haski v Belgium App no 649/08 (ECtHR 25 September 2012), para 83; Jalloh (n 24), para 99.
46.
Thomas Murphy, ‘The admissibility of CCTV evidence in criminal proceedings’ (1999) 13 International Review of Law, Computers & Technology, 3.
47.
Jan Kerkhofs and others, Cybercrime 3.0 (Politeia 2019) 237.
48.
Khan (n 24), para 38. See below under the Challenging by the Defendant section.
49.
50.
Khodorkovskiy and Lebedev v Russia App no 11082/06 and 13772/05 (ECtHR, 25 October 2013 Final), paras 72, 674-681, 700.
51.
Khodorkovskiy and Lebedev (n 50), paras 701-702.
52.
Olivier Leroux, ‘Legal Admissibility of Electronic Evidence’ (2004) 18 International Review of Law, Computers & Technology, 193.
53.
Iain Cameron, ‘Council of Europe Standards on Police Data Storage and Sharing’, in M. Bergström & A. J. Cornell (eds.) European Police and Criminal Law Co-operation (Hart Publishing Ltd, 2012), 163–176.
54.
UK Government Office for Science (n 49).
55.
Solon Barocas and Andrew D. Selbst ‘Big Data’s disparate impact’ (2016) 104 California Law Review 671.
56.
57.
Palmiotto (n 13) 53; Pagallo and Quattrocolo (n 13) 394–395.
58.
Nina Sunde and Itiel E. Dror, ‘A hierarchy of expert performance (HEP) applied to digital forensics: Reliability and biasability in digital forensics decision making’ (2021) 37 Forensic Science International: Digital Investigation.
59.
Maria Angela Biasiotti and others (eds), Handling and Exchanging Electronic Evidence Across Europe (Springer 2018).
60.
Thomas J. Holt, Adam M. Bossler and Kathryn C. Seigfried-Spellar, Cybercrime and Digital Forensics: An Introduction 2nd Edition (Routledge 2018) 498.
61.
For instance: Council of Europe, ‘Electronic Evidence Guide. A Basic Guide for Police Officers, Prosecutors and Judges’ (Council of Europe 2013); see also: European Union Agency for Cybersecurity (ENISA), ‘Electronic Evidence - a Basic Guide for First Responders’ (2015) <> accessed 19 February 2021.
62.
Biasiotti and others (n 59).
63.
Kerkhofs and others (n 47) 238.
64.
Biasiotti and others (n 59).
65.
Kerkhofs and others (n 47) 239.
66.
This observation is addressed in LED, art 7, according to which data controllers have to make a distinction between personal data based on facts and personal data based on personal assessments.
67.
Patrick W Nutter, ‘Machine Learning Evidence: Admissibility and Weight’ (2019) 21 University of Pennsylvania Journal of Constitutional Law 919, 29.
68.
See Joëlle Vuille, Luca Lupària and Franco Taroni, ‘Scientific Evidence and the Right to a Fair Trial under Article 6 ECHR’ (2017) 16 Law, Probability and Risk 55; Sunde and Dror (n 58).
69.
ECHR, art 6(3)(b).
70.
ECHR, art 2.
71.
Murtazaliyeva v Russia App no 36658/05 (ECtHR, 18 December 2018), para 91.
72.
See, amongst others, Jalloh (n 24), para 96; Allan v United Kingdom App no 48539/99 (ECtHR, 5 November 2002), para 43; Dusko Ivanovski v the former Yugoslav Republic of Macedonia App no 10718/05 (ECtHR, 24 July 2014 Final), para 43; Prade (n 24), para 34.
73.
This is also what the CJEU ruled in C-746/18 H.K. (n 37), as discussed later in this section. In addition, the ECtHR case law refers to the right to confrontation, which requires the possibility for the defendant to be in a position to challenge the probity and credibility of accusers, as well as to test the truthfulness and reliability of incriminating evidence (Al-Khawaja and Tahery v the United Kingdom [GC] Apps no 26766/05 and 22228/06 (ECtHR, 15 December 2011), para 127).
74.
Haski (n 45), para 86. In this context, it is worth highlighting the Latin brocard: ‘ei incumbit probatio qui dicit, non qui negat’, which translates into ‘the burden of proof rests on who asserts, not on who denies’.
75.
See Kuopila v Finland App no 27752/95 (ECtHR, 27 July 2000 Final), para 38, where the defence was not given an opportunity to comment on a supplementary police report, and this weighed in favour of the ECtHR’s finding that the principle of equality of arms had been breached.
76.
Krčmář (idem) and others v the Czech Republic App no 35376/97 (ECtHR, 3 June 2000 Final), para 42.
77.
The principle of equality of arms stems from the right to a fair trial and implies the right of each party to have a reasonable opportunity to present its case under conditions that do not entail a disadvantage vis-à-vis the opposing parties. See Foucher v France (idem, also in footnotes 77, 78 and 79) App no 22209/93 (ECtHR, 18 March 1997), para 34; Öcalan v. Turkey [GC] App no 46221/99 (ECtHR, 5 May 2005), para 140; Faig Mammadov v Azerbaijan App no 60802/09 (ECtHR, 26 April 2017 Final), para 19.
78.
However, certain exceptions may apply, particularly in cases involving national security, to prevent the risk of reprisal of witnesses or where secrecy of the investigatory methods used by the police is required. In situations where the right of the defence is restricted, counter-balancing measures must be taken towards ensuring the fairness of the proceedings as a whole. See Rowe and Davis v the United Kingdom App no 28901/95 (ECtHR, 16 February 2000), para 61; Edwards and Lewis v the United Kingdom App nos 39647/98 and 40461/98 (ECtHR, 27 October 2004), paras 46 ff.
79.
See Matytsina v Russia App no 58428/10 (ECtHR, 27 April 2014 Final), para 201, where an expert report that had been sought by an investigator during pre-trial investigation and contained conclusions favourable to the defence was never referenced in later proceedings.
80.
Stoimenov v the former Yugoslav Republic of Macedonia App no 17995/02 (ECtHR, 05 July 2007 Final), para 38; Matytsina (n 79), para 169.
81.
Bönisch v Austria App no 8658/79 (ECtHR, 6 May 1985), para 33; Sara Lind Eggertsdöttir v Iceland App no 31930/04 (ECtHR, 5 October 2007). See also Vuille, Lupària and Taroni (n 68) 57.
82.
Brandstetter v Austria App nos 11170/84, 12876/87 and 13468/87 (ECtHR, 28 August 1991), para 67.
83.
C-746/18 H.K. (n 37), para 44.
84.
Georgios Papageorgiou v Greece App no 59506/00 (ECtHR, 9 August 2003 Final), para 37.
85.
Beraru v Romania App no 40107/04 (ECtHR, 08 September 2014 Final), para 70.
86.
Van Wesenbeeck v Belgium App nos 67496/10 and 52936/12 (ECtHR, 18 September 2017 Final), para 68.
87.
Rook v Germany App no 1586/15 (ECtHR, 25 October 2019 Final), para 70; Sigurður Einarssonand others v Iceland App no 39757/15 (ECtHR, 04 November 2019 Final), para 91-92.
88.
Emily Berman, ‘A Government of Laws and Not of Machines’ (2018) 98 BUL Rev. 1277, 1283.
89.
Palmiotto (n 13) 51.
90.
Quattrocolo (n 13) 91–92.
91.
Gary Edmond, ‘Just Truth? Carefully Applying History, Philosophy and Sociology of Science to the Forensic Use of CCTV Images’ (2013) 44 Studies in history and philosophy of biological and biomedical sciences 80.
92.
Moreira Ferreira v Portugal (no. 2) [GC] App no. 19867/12 (ECtHR, 11 July 2017), para 84; Papon v France App no 54210/00 (Commission Decision, 15 November 2001). Yet, domestic courts are not obliged to provide a detailed answer to every argument raised by the parties (see Van de Hurk v the Netherlands App no 16034/90 (ECtHR, 19 April 1994), para 61).
93.
Although the extent of the duty to give reasons may vary according to the nature of the decision and must be determined in view of the circumstances of the case (Ruiz Torija v Spain App no 18390/91 (ECtHR, 09 December 1994), para 29).
94.
Hadjianastassiou v Greece App no 12945/87 (ECtHR, 16 December 1992), para 33.
95.
See Daniel B Garrie and J David Morrissy, ‘Digital Forensic Evidence in the Courtroom: Understanding Content and Quality’ (2014) 12 Northwestern Journal of Technology and Intellectual Property 121.
96.
Schatschaschwili v Germany [GC] App no 9154/10 (ECtHR, 15 December 2015), para 124.
97.
Embodied in ECHR, art 6(2) (see the Challenging by the Defendant section above).
98.
Barberà, Messegué and Jabardo v Spain App no 10590/83 (ECtHR, 6 December 1988), para 77.
99.
Minelli v Switzerland App no 8660/79 (ECtHR, 25 March 1983), para 30); Garycki v Poland App no 14348/02 (ECtHR, 6 May 2007 Final), para 68; Poncelet v Belgium App no 44418/07 (ECtHR, 4 October 2010 Final), para 50.
100.
Cleve v Germany App no 48144/09 (ECtHR, 15 April 2015 Final), para 41.
101.
See Khodorkovskiy and Lebedev v Russia (no.2) App nos 51111/07 and 42757/07 (ECtHR, 14 May 2020 Final), para 499.
102.
See Vuille, Lupària and Taroni (n 68) 55.
103.
Shulepova v Russia App no 34449/03 (ECtHR, 11 March 2009 Final), para 62; Poletan and Azirovik v the former Yugoslav Republic of Macedonia App nos 26711/07, 32786/10 and 34278/10 (ECtHR, 17 October 2016 Final), para 94).
104.
Zarsky (n 9).
105.
See the Challenging by the Defendant section above.
106.
Berman (n 88) 1283; for a broad discussion on the impact of algorithmic opacity on fair trial rights, see Palmiotto (n 13).
107.
See Pasquale (n 56).
108.
Nutter (n 67) 922; Steponėnaitė and Valcke (n 11) 766.
109.
See, amongst others, LED, art 11, and EU AI Act proposal, art 14.
110.
Danielle Keats Citron, ‘Technological Due Process’ (2008) 85 Washington University Law Review 1249, 1271–1272.
111.
112.
Joy Buolamwini and Timnit Gebru, ‘Gender Shades: Intersectional Accuracy Disparities in Commercial Gender Classification’, Proceedings of Machine Learning Research (2018) <> accessed 7 July 2020. And this illustrates yet another primary risk relating to AI systems (i.e. encoded bias and algorithmic discrimination), which the defence could hardly prove in trial.
113.
See Nutter (n 67) s VI.
114.
See CAHAI (n 12) and European Commission (n 12).
115.
See European Committee on Crime Problems (CDPC), ‘Feasibility Study on a Future Council of Europe Instrument on Artificial Intelligence and Criminal Law’ (2020) CDPC(2020)3Rev <https://rm.coe.int/cdpc-2020-3-feasibility-study-of-a-future-instrument-on-ai-and-crimina/16809f9b60> accessed 7 April 2021.
116.
See also LED, art 10(a) stating the processing of special categories of data by LEAs should be based on Union or Member State law.
117.
See the Architecture of Law Enforcement AI section below.
118.
It should be noted, however, that access to law enforcement AI systems might be subject to restrictions in certain situations due to the necessary balance with other legitimate interests at stake (such as confidentiality issues). See to that effect Van Wesenbeeck (n 86), para 68.
119.
See Council of Europe and EU AI initiatives (n 12).
120.
121.
ibid 18.
122.
ISO/IEC 27037:2012 Information technology – Security techniques – Guidelines for identification, collection, acquisition and preservation of digital evidence.
123.
See Citron (n 110).