Encrypted Chat App 'Session' Leaves Australia After Visit From Police

Session, a small but increasingly popular encrypted messaging app, is moving its operations outside of Australia after the country's federal law enforcement agency visited an employee's residence and asked them questions about the app and a particular user. 404 Media reports: Now Session will be maintained by an entity in Switzerland. The move signals the increasing pressure on maintainers of encrypted messaging apps, both when it comes to governments seeking more data on app users, as well as targeting messaging app companies themselves, like the arrest of Telegram's CEO in August. "Ultimately, we were given the choice between remaining in Australia or relocating to a more privacy-friendly jurisdiction, such as Switzerland. For the project to continue, it could not be centred in Australia," Alex Linton, president of the newly formed Session Technology Foundation (STF) which will publish the Session app, told 404 Media in a statement. The app will still function in Australia, Linton added. Linton said that last year the Australian Federal Police (AFP) visited a Session employee at their home in the country. "There was no warrant used or meeting organised, they just went into their apartment complex and knocked on their front door," Linton said.

The AFP asked about the Session app and company, and the employee's history on the project, Linton added. The officers also asked about an ongoing investigation related to a specific Session user, he added. Linton showed 404 Media an email sent by Session's legal representatives to the AFP which reflected that series of events. Part of Session's frustration around the incident came from the AFP deciding to "visit an employee at home rather than arranging a meeting through our proper (publicly available) channels," Linton said.

Switzerland?

[Anonymous Coward]

Are they really any better? I mean, American jurisdiction extends around the world (since World War 2). I see no way out of this without anonymous development and a "swarm" of servers, VPNs, etc. to make them play whack-a-mole indefinitely. We need our bulletproof internet.

Re:

[Luckyo]

If you're that soft-skinned, browse at +0 or higher comment score.

Re:

[Matheus]

"Australia" is not the same as "America"... TFA has nothing to do with the US.

It always starts like this...

[Dr_Ken]

"We" (cops, spies, regulators, tax collectors etc) need to eliminate your privacy bc [ fill reason here]. And in the end it's used against regular folks not sex traffickers, smugglers or spies. Look at America's FBI.

Re:

[Archangel Michael]

If you want to know if someone sides with tyranny and not liberty, start asking them how much power in government is too much. They most likely do not have a definitive answer, but their "There Ought to be a Law" tendencies will come out.

Re:

[kwelch007]

There is a law. The 10th Amendment comes to mind.

Re:

[Chris Mattern]

"There is a law. The 10th Amendment comes to mind."

Not in Australia, it doesn't.

Re:

[GoTeam]

"There is a law. The 10th Amendment comes to mind."

Not in Australia, it doesn't.

unless...

Australia + US 10th Amendment = $$$$$$$$

Re:

[Iamthecheese]

It's a stupid question, defying any clear answer for anyone who is not an absolutist. You say "It's never too much", you say "it's always too much" or you have to address an infinite number of hypothetical governments and situations. some percentage of people higher than 99% would agree that the government should have some power. Anyone with an elementary grasp of civics understands why a government needs a monopoly on violence. The rest is a very convoluted scale based on personal values and experience.

Re:

[doc1623]

You forgot "for the children". That's seems to be a common refrain to justify any/all curtailing of individual rights/freedoms

Re: fuck 404 media

[haxor.dk]

Rubbish.

Re:

[Chris Mattern]

I know. They never find my files!

Wait

[Luckyo]

Regardless of Australia's horrific record on free speech, if I'm reading the story correctly all police did was knock on the door and engage in a voluntary communication with an employee on the subject of how the app works?

That doesn't sound like anything even in the ballpark of what happened to Durov.

Considering reputation of Australian police and legal system on matters of personal freedom, that was actually refreshingly nice of them.

Re:

[JaredOfEuropa]

Go to some employee's house and ask questions about the app? That sounds like intimidation tactics... They did the same here when some people sent out tweets critical of a new refugee center. Some of those people got a visit from the cops even though they didn't do anything remotely illegal: "We just want to have a chat about those tweets, maybe think twice before sending stuff like that?". People experienced those visits as rather intimidating.

If they really wanted information about the workings of

Re:

[UnknowingFool]

I'm reading the story correctly all police did was knock on the door and engage in a voluntary communication with an employee on the subject of how the app works?

Did you miss the part where they asked about a specific Session user? It is right there in the summary. That was an investigation and the police should have asked the company directly and maybe with a warrant.

Re:

[ShanghaiBill]

all police did was knock on the door and engage in a voluntary communication

Sending armed police to someone's home is not the way to have a friendly conversation.

If they had no intention of intimidating, why not just make a phone call?

Re:Wait

[SvnLyrBrto]

And they were entirely out of line to do so.

If the cops had any real and legitimate need for the company's data, they could and SHOULD have told their story to a judge to have a proper subpoena issued to the company. That subpeona could then have been reviewed by Session's lawyers. And, when shown to be hinky, said subpoena could be contested and squashed when it turned out to be an illegitimate case of overreach... which we know it would have been, because the police decided to bypass due process and skip the subpoena in the first place.

To target, accost, intimidate, and accuse an individual employee who did not commit whatever "crime" they're claiming to "investigate" is beyond-the-pale intolerable. Or at least it would be (a career-ender for the perfidious police who tried to bypass proper processes) if the "justice" system were actually just.

Re:

[mspohr]

In the US, some local cop took down the addresses of people who had Harris/Walz campaign signs at their houses and then paid them a polite visit.
Clear intimidation.
Even a polite visit from the police sends a strong message.

Re:

[Iamthecheese]

Suppose a gang sends a couple thugs over to your house toting weapons to "have a friendly chat". Feeling safe yet?

Re:

[mrbester]

They turned up at a private residence to demand information about a company product and a user of that product. This is information that is deemed Commercial in Confidence in the first instance,, as well as subject to data protection laws on the part of the user. If they want the information, they can go through the proper channels to try and get it. Otherwise, they can go fuck themselves.

Perhaps a Feint

[bill_mcgonigle]

If Session were broken they wouldn't need to get a warrant, they could just steal the data.

Yet this "visit" sure seems like a way to maximize attention.

"Oh, they totally needed to intimidate an employee to get info on a user!"

Moving the company to Switzerland might be a smart move regardless but this whole scenario seems a little too on the nose.

Be careful out there. There's more than one way to lull people into a false sense of security.