Compliance with laws and regulations
Tele2 operates in a highly regulated and competitive market, where one must comply with various laws and regulations, both at national and international level.
These laws and regulations cover aspects such as data protection, anti-corruption, information security, electronic communication and protective security. In addition to laws and regulations Tele2 complies with relevant standards issued by e.g. ISO, GSMA, Enisa, ETSI and the Payment Card Industry.
Examples of measures that Tele2 implements to achieve this focus area are:
- Monitoring and analyzing the legal and regulatory environment, and keeping abreast of any changes or developments that may affect its business.
- Ensuring that the security governance documents are compliant with the applicable laws and regulations, and updating them as necessary.
- Providing employees with the relevant information and training on the legal and regulatory obligations and expectations that apply to their roles and functions.
- Cooperating and communicating with the relevant authorities and regulators, and fulfilling its reporting and disclosure requirements.
- Implementing and enforcing a zero-tolerance policy for any breaches or violations of the laws and regulations, and imposing appropriate sanctions and remedies.
Legal disclosure of historical traffic and subscriber data, as well as lawful interception
- As telecom operator, Tele2 is required by law to disclose historical traffic and subscriber data, as well as lawful interception.
- The process for lawful disclosure of historical traffic and subscriber data, as well as lawful interception, is set out in the respective country's national regulations and monitored by the competent national authorities.
- Tele2 has the right to refuse a request if the applicable processes are not followed.
- In urgent cases, disclosure may be initiated before a court order is issued.
- The arrangements for lawful disclosure of historical traffic and subscriber data, as well as lawful interception, differ between countries in Europe. In Sweden, the relevant law enforcement entity sends its request to Tele2, which in turn executes the request, while in other countries the relevant law enforcement entity has direct access to Tele2's system for lawful interception and partly for lawful disclosure of historical traffic and subscriber data.
See statistics below.
| Sweden | 2024 | 2023 | 2022 |
|---|---|---|---|
| Lawful Interceptions | 7088 | 6597 | 5795 |
| Historical traffic data | 16151 | 20783 | 22944 |
| Subscription data | 40596 | 30471 | 32540 |
| Latvia | 2024 | 2023 | 2022 |
|---|---|---|---|
| Lawful Interceptions | No data available | No data available | No data available |
| Historical traffic data and subscription data* | 18207 | 19465 | 16405 |
| Lithuania | 2024 | 2023 | 2022 |
|---|---|---|---|
| Lawful Interceptions | 3891 | 3723 | 3546 |
| Historical traffic data | 221263 | 185706 | 224951 |
| Subscription data | 39047 | 32772 | 39697 |
| Estonia | 2024 | 2023 | 2022 |
|---|---|---|---|
| Lawful Interceptions | No data available | No data available | No data available |
| Historical traffic data and subscription data* | 129 | 90 | No data available |
*Not possible to separate statistics regarding historical traffic data from subscription data
Key progress areas the last 12 months
Updated security management system in accordance with EU regulation NIS2 and CER.
Focused internal audit to ensure 5G security compliance.
Extended the scope of Tele2-s ISO 27001 certification.
