Module 61 - Visualisation

The Data Request Map

Every legal pathway through which government or law enforcement can access your personal data. Tap each pathway to expand it.

1.1M
UK govt data requests to telecoms in 2023
0%
of routine requests require you to be notified
~70%
compliance rate from major US platforms
⚖️
Court Order / Production Order
Criminal Procedure Act / PACE / equivalent

A court compels a platform or service to hand over your messages, files, account data, or login records. Used in criminal investigations. No warrant needed in some jurisdictions for metadata.

You are notified
Rarely - often gagged
Data covered
Messages, files, account records
Ordinary person likelihood
Low - requires active investigation
Can you challenge it
Theoretically yes - rarely practical
📡
Telecom Metadata Retention
IPA 2016 (UK) / Data Retention Directive (EU)

Your telecom retains records of every call made, SMS sent, and IP address used - who, when, and for how long. In the UK, this data is held for 12 months and accessible to 600+ public bodies without a warrant.

You are notified
Never
Data covered
Call records, SMS metadata, IP logs
Ordinary person likelihood
High - routine, mass collection
Content included
Metadata only (who/when, not what)
📷
CCTV & Facial Recognition
Various police powers / no specific UK warrant required

The UK has an estimated 7 million CCTV cameras - one per 9 people. Metropolitan Police and South Wales Police have deployed live facial recognition at public events. No specific law governs its use.

You are notified
Never
Data covered
Physical movement, attendance at locations
Ordinary person likelihood
High in urban areas
Legal challenge
Active - ruled unlawful in some UK courts
🌐
Social Media Monitoring
No warrant required for public content

Police and intelligence agencies monitor public posts, comments, and group activity without any legal authorisation. Private content requires a court order, but public content has no protection.

You are notified
Never
Data covered
Posts, likes, group membership, location tags
Ordinary person likelihood
Moderate - keywords and events trigger
Protection
Private accounts reduce exposure
🏦
Financial Transaction Access
POCA 2002 / AML / HMRC powers

HMRC, NCA, and police can access bank transaction records under multiple legal powers. Banks are legally required to file Suspicious Activity Reports (SARs) without alerting the account holder.

You are notified
Never - tipping off is illegal
Data covered
All transactions, account history, beneficiaries
Ordinary person likelihood
Low unless flagged by algorithm
Trigger
Bank's own AI flags patterns
Sources: Investigatory Powers Act 2016, Home Office Surveillance Camera Code, ICO transparency data, Liberty human rights reports, Meta/Google government transparency reports 2024.