The Budapest Convention and Its 2022 Protocol: Building Stronger Global Cooperation Against Cybercrime

Cybercrime has become one of the world’s most significant security challenges. Criminals can launch attacks from anywhere, target victims across multiple countries, and store digital evidence in different jurisdictions. Because cybercrime crosses borders, international cooperation is essential for effective investigations and prosecutions.

To address this challenge, the Council of Europe developed the Budapest Convention on Cybercrime, which opened for signature in 2001. Recognized as the world’s first international treaty dedicated to combating cybercrime, it provides a common legal framework that helps countries harmonize cybercrime laws, strengthen investigations, and cooperate across borders.

Before the Convention, differences in national laws often delayed or prevented international investigations. The Convention established common legal standards and is open to countries worldwide. Today, more than 80 countries across Europe, North America, Asia-Pacific, Africa, and Latin America have joined or ratified it, making it the leading international legal framework for combating cybercrime.

The Convention encourages countries to adopt compatible legislation covering offences such as:

  • Unauthorized access to computer systems.
  • Illegal interception of communications.
  • Data and system interference.
  • Misuse of devices used to commit cybercrime.
  • Computer-related fraud and forgery.
  • Online child sexual exploitation.
  • Copyright-related offences.

It also establishes legal procedures for collecting, preserving, and sharing electronic evidence through international cooperation, including:

  • Preserving digital evidence before it is altered or deleted.
  • Identifying suspects.
  • Sharing electronic evidence and investigative information.
  • Coordinating cross-border investigations.
  • Supporting extradition requests where applicable.

A key operational feature is the 24/7 Network of Contact Points, which enables participating countries to request urgent assistance to preserve electronic evidence and support time-sensitive investigations. The Convention also promotes capacity building through training, technical assistance, best-practice sharing, stronger legislation, and improved investigative capabilities.

As technology has evolved, cloud computing, encrypted messaging, social media, cryptocurrencies, artificial intelligence, and globally distributed digital services have made cybercrime investigations more complex. Critical evidence is often stored by foreign service providers or located in other countries.

To address these challenges, the Second Additional Protocol to the Budapest Convention was adopted in 2022. Rather than replacing the Convention, it modernizes international cooperation by enabling authorities to obtain electronic evidence more quickly across borders while maintaining strong legal safeguards.

The Protocol allows authorities to:

  • Request subscriber information more efficiently.
  • Obtain certain electronic evidence across borders.
  • Cooperate directly with foreign service providers.
  • Improve emergency procedures.
  • Establish joint investigation teams.
  • Securely exchange digital evidence.

These measures reduce delays that could allow valuable electronic evidence to be altered, deleted, or become inaccessible.

Electronic evidence may include subscriber information, IP addresses, account details, cloud-stored files, emails, server logs, online communications, and other digital records used to identify suspects and reconstruct cyber incidents.

The Protocol also strengthens safeguards by protecting privacy and personal data, respecting human rights and fundamental freedoms, applying the principles of necessity and proportionality, requiring judicial oversight where applicable, and ensuring legal accountability.

Together, the Budapest Convention and its Second Additional Protocol form one of the world’s most comprehensive legal frameworks for combating cybercrime. They support investigations involving ransomware, phishing, online fraud, child sexual exploitation, cryptocurrency-enabled crime, attacks on critical infrastructure, and other cross-border cyber threats. As cybercrime continues to evolve, these legal instruments help countries investigate offences more effectively, preserve electronic evidence, strengthen international law enforcement cooperation, and protect fundamental rights in the digital age.

for more details please visit https://www.coe.int/en/web/cybercrime/convention-on-cybercrime?utm_source=chatgpt.com