Skip Navigation

Lessons from the Pegasus Project: Reforming Surveillance Through Open Gov

Tonusree Basu|

On July 18, a global investigation uncovered how mobile phones of journalists, activists, and opposition leaders across the world were targets of illegal surveillance by at least eleven governments. This was done using the software “Pegasus,” sold by the NSO Group, an Israeli firm known for cybersurveillance. This scandal throws into sharp relief the dangers of unaccountable use of technologies, and how this is a fundamental threat to open government.


The Pegasus leak shows how technology can be systematically used to undermine press freedom and democracy.

Tonu Basu

The Pegasus leak shows how technology can be systematically used to undermine press freedom and democracy. Governments targeted journalists who were critical of their policies and were investigating systemic corruption. For instance, among those targeted were those who uncovered the 1Malaysia Development Berhad scandal (1MDB) and the fiancee of murdered Saudi journalist Jamal Khashoggi. Governments also used this alleged security system for political ends, including against opposition leaders during elections. This will have a chilling effect on civil society, journalists, and reformers beyond those immediately tracked – contributing to further fear and self-censorship, attempting to silence those who hold their governments to account.  

The countries identified in the Pegasus investigation are known to rank low on the Press Freedom Index, including three countries that are members of the Open Government Partnership (OGP): Azerbaijan (currently suspended), Morocco and Mexico. That said, given the prevalent use of surveillance by law enforcement and security agencies across borders, and not just by a few countries, some democratic controls and open government principles need to be in place to check abuse and promote accountability. 

In 2017, the former Mexican government was first found to be targeting activists and journalists using the Pegasus software. This included journalists such as Juan Pardinas, who was part of the group of governments and civil society leaders who founded OGP, and activists part of the OGP national process at the time. This led to a breakdown in dialogue between government and civil society, resulting in civil society organizations leaving the OGP table. Once a new government was elected, Mexican civil society groups such as Article 19, Social TIC and others advocated for greater accountability and oversight on government regulation, procurement and use of surveillance technologies. 

This OGP brief highlights innovations in democratic oversight of surveillance technologies by OGP members in detail. Relevant to the unfolding Pegasus case, here are five key open government ideas for governments and activists navigating the policy vacuum in this space:

  • Ensure transparency, accountability and oversight: There is very little oversight on the procurement and deployment of surveillance technologies across the jurisdictions emerging from the Pegasus leak. This needs to be tackled as an urgent priority. A few years ago, the UN Special Rapporteur on Freedom of Expression called on Member States to “publish, at minimum, aggregate information on the number of requests approved and rejected, a disaggregation of the requests by service provider and by investigation and purpose.” Under OGP, the Supreme Court of Georgia committed to maintaining statistics on motions for phone tapping. Following a request by civil society involved in the OGP process, the Supreme Court began publishing them on an annual basis. In 2019, as part of their OGP action plan, civil society in Mexico prompted the government to commit to increase transparency and accountability in the use of surveillance technology. Mapping the experiences of other countries to inform the commitment’s implementation showed that there are very few examples of similar reforms elsewhere. 
  • Integrate into broader data protection reform:  As countries consider their policy infrastructure around data protection and data sharing, it is essential to include provisions on surveillance reform. The European Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data has some strong provisions on this, some of which are reflected in the EU’s General Data Protection Regulation (GDPR). 
  • Consider the role of civil society and independent oversight bodies: Transparency and supervision are essential for public agencies as they tackle organized crime and promote trust among citizens. Involving civil society in monitoring and oversight therefore becomes important. Where surveillance technologies are used to tackle organized crime, they need to be implemented in compliance with international human rights and data protection frameworks. In this regard, mechanisms such as independent task forces or ethics committees set up to work with law enforcement agencies are important. Emerging examples to consider include, the data ethics committee created by the West Midlands Police & Crime Commissioner and West Midlands Police in the UK, New Zealand Police independent advisory panel on emergent technologies, and a local surveillance technology ordinance in Oakland which mandates public consultations.
  • Couple global principles and declarations with concrete country reforms: There have been many calls for developing a set of global principles and frameworks to regulate surveillance technology recently – including to ban export and transfer. In addition to proposed global trading regulations, countries (like Israel in this case) must regulate its domestic spyware industry. While global standards are valuable, concrete policy actions at the country level are key. There needs to be a multi-stakeholder push to strengthen national-level policies and enhance accountability for implementation to bridge the gap between global principles and country action. On this, Mexico’s commitment from its OGP action plan has the opportunity to set a precedent in what a multi-stakeholder, transparency-led framework for the use of surveillance technology could look like.
  • Strengthen whistleblower protection frameworks: While data and digital governance policy frameworks need to be prioritized, they should not be seen as divorced from the wider legal frameworks around fundamental freedoms and human rights. Reforms related to surveillance should also take into account intersections with strong whistleblower protection frameworks. There are several countries in OGP that are now advancing this – from Latvia to Ireland. Employees from private companies or public agencies must be given the enabling environment to report abuse without retaliation. This is a critical safeguard to guarantee transparency in the use of technologies.

The courageous and critical work on the Pegasus Project by the consortium of journalists and activists behind Forbidden Stories, Amnesty International, Citizen Lab and their partners has demonstrated the continued importance to protect civic space and the space for independent journalism – something that governments, foundations, business should unequivocally support across borders.

Tonu Basu

The courageous and critical work on the Pegasus Project by the consortium of journalists and activists behind Forbidden Stories, Amnesty International, Citizen Lab and their partners has demonstrated the continued importance to protect civic space and the space for independent journalism – something that governments, foundations, business should unequivocally support across borders. Equally critical, the Pegasus Project has shown how personal data protection is inextricably linked to protecting democracy and media freedom. As reformers in the open government community, we should direct collective, multi-stakeholder action towards global principles for regulation of surveillance along with concrete country actions. 2021 is an important opportunity to advance this agenda through the 100+ action plans expected from OGP members tackling some of the most pressing challenges in their jurisdictions. Additionally, the upcoming OGP Global Summit and the forthcoming U.S.-hosted Summit for Democracy will be important fora to advance the global agenda on this.


This blogpost draws on insights from the OGP civil society community in Mexico, as well as an OGP-hosted roundtable on surveillance including experts from Article 19, Amnesty Tech, CyberPeace Institute, Human Rights Watch, ICNL, Northumbria University, Privacy International, Rutgers University, and University of California, Irvine, School of Law.  

Comments (4)

Delia Matilde Ferreira Rubio Reply

Excellent piece. Congrats Tonu!!

Martin Moreci Gomes Doninelli Reply

Creo que la Transparencia Pública es un deber de todos los que se colocan dentro de la causa Pública, y esta Transparencia no solo se relaciona con las instituciones públicas del Estado, sino también con el interés de estas personas que están dentro de esta causa pública; La anticipación de situaciones que puedan entorpecer los caminos civilizadores basados ​​en los ciclos de la evolución humana según la expansión del Universo son de suma importancia cuando se utilizan como proactividad y, por lo tanto, protegiendo los Derechos y deberes del Estado frente a toda la humanidad en la Globalización. La transparencia y la La búsqueda de los intereses de quienes son como Líderes y Autoridades, así como de los manipuladores de opinión y su activismo debe hacerse como una protección al Estado ya toda la humanidad.

Martin Moreci Gomes Doninelli Reply

La causa de una República y la representatividad de esta República en una civilización no puede ser comandada por el crimen organizado internacional, es necesario que este crimen sea visto, cómo actúa, cómo se interconecta y por quién es comandado de manera organizada y planificada. , así, se muestra claramente a toda la humanidad como obligación de quienes desean un Planeta seguro y libre de las garras de la Tiranía que hoy se encuentra dentro de un totalitarismo entre los 3 poderes de muchas Naciones, el Planeta sucumbiendo a situaciones extrasensoriales que esos que están ahí como líderes y autoridades que no entienden, como en Brasil, amparados por grandes medios de comunicación, hacen teatros y no actúan como representantes y líderes de una Nación, por eso nos llaman públicos. No generalizo, pero son menos los que están por la integridad de la causa pública de una República cuando la decisión debe ser colegiada dentro de la institución; En este sentido, el totalitarismo de Brasil y de muchos otros países entorpece el Gobierno Abierto, entorpece la participación y el compromiso de la sociedad del Estado cuando la decisión es hacia la civilización, en fin, no respeta el pacto de 1948 y la Declaración Universal de Derechos Humanos, esto está empujando a este planeta a un desequilibrio generalizado. Es necesario que haya un equilibrio en la “existencia” de este Planeta y, para eso, solo los líderes y autoridades que comprenden las direcciones de la civilización y lo que representa la vida en su conjunto mostrarán y mediarán en esta evolución. Para ello se debe priorizar al Estado como generador de Vida, un Estado integrado, es necesario que la ONU esté del lado de las naciones, es necesario que la ONU no permita el desmantelamiento del Estado como los 3 poderes. que están haciendo en Brasil utilizando privatizaciones, concesiones y otros medios de privatizar lo que mantiene el orden económico de un Estado. No comprenden que la importancia del capitalismo en una civilización es tener al Estado como generador de Vida.

Martin Moreci Gomes Doninelli Reply

La tecnología y la transparencia van de la mano en los ojos y oídos de quienes necesitan esta información y esta tecnología para actuar, sin embargo, no se puede combatir la tecnología con discriminación, porque se necesitarán de 3 a 4 generaciones si comenzamos ahora a estructurar una civilización humanizada teniendo Open Compromiso del gobierno y la ciudadanía con los ejes de las políticas de Estado y para que podamos equilibrar la energía de este planeta de forma saludable. En este sentido, es necesario que este comienzo ya se hubiera dado, sin embargo, todos los días ese continuismo está en la pluma y en las decisiones de los usuarios del crimen organizado en las celdas de cada Nación que permitieron a estos criminales estar a cargo, todas las Naciones ya. atravesarán dificultades, no solo de la capital, sino de un desequilibrio en el propio entorno. Por lo tanto, debe revisar si Pegasus está siendo un problema o si Pegasus debería alertarlo sobre los problemas. Cada decisión que tomen los gobiernos sucios impactará muchas décadas, así que mire lo que estos gobiernos totalitarios están creando trampas, estos individuos están bien preparados, pasan por buenos, pero están haciendo que el planeta sucumbiera.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Content

Thumbnail for Defending Civic Space: How OGP Can Step Up Challenges and Solutions

Defending Civic Space: How OGP Can Step Up

There is a major opportunity in 2021 to advance civic space reforms in OGP that go to the heart of some of the democratic backsliding the world has seen in…

Thumbnail for Faces of Open Government: Juan Manuel Casanueva Challenges and Solutions

Faces of Open Government: Juan Manuel Casanueva

Juan Manuel Casanueva shares how reformers in Mexico are addressing the lack of regulation and supervision of government digital surveillance through their OGP action plan.

Thumbnail for A Guide to Open Government and the Coronavirus: Privacy Protections

A Guide to Open Government and the Coronavirus: Privacy Protections

Governments are collecting unprecedented amounts of personal data to support vital public health efforts, such as tracking COVID-19 transmission and enforcing quarantine. In particular, governments and corporations are collecting and…

Open Government Partnership