Privacy on ARPOKRAT

The Shouting Silence: What is a Warrant Canary and Why Its Disappearance Should Worry You

Mon, 01 Jun 2026 00:00:00 +0000

Deep in the coal mines of the 19th century, miners carried caged canaries with them. These small birds, extremely sensitive to toxic gases like carbon monoxide, succumbed long before the miners perceived the danger. They served as a silent, but highly effective early warning system.

In our modern digital world, this bird has come back to life in the form of the “Warrant Canary”.

What is a Warrant Canary?

It is a public statement, published and updated regularly by a service provider (messaging app, VPN, host), stating that, up to that exact date, it has not received any secret legal request forcing it to compromise its users’ data — such as an American National Security Letter (NSL) or an order issued by a FISA court.

The subtlety — and the gravity — of the canary lies in what happens when it disappears.

If a service that displayed the statement “We have received no secret orders” every month suddenly stops updating it, the informed user deduces the obvious: the canary is dead.

The company has been targeted by a surveillance measure accompanied by a gag order, legally forbidding it from revealing the existence of this request. Unable to say that they have been compromised, they simply stop saying that they haven’t been.

The Era of Invisible Surveillance and Bypassing Silence

At a time when extraterritorial legislations like the CLOUD Act and FISA (Foreign Intelligence Surveillance Act) allow the U.S. government to access data hosted by companies without ever informing the targets, the Warrant Canary constitutes one of the few mechanisms to bypass this forced silence.

With the CLOUD Act, the geographical barrier no longer exists: if data is under the “control” of an American company, the United States government claims the right to access it, even if these servers are physically located in Europe. The canary then becomes the last warning signal before a user’s digital sovereignty is silently sacrificed.

This is why major actors in the Privacy sphere have adopted this tool as a standard of transparency:

Proton: The Swiss messaging and email service publishes a transparency report including a strict Warrant Canary.
Riseup: The secure communication collective for activists maintains one of the most famous and monitored canaries on the web.
Arpokrat: Our own ecosystem maintains a public Warrant Canary, cryptographically updated, to guarantee absolute transparency to our community.

Legal Analysis: The Right Not to Lie

The very existence of the Warrant Canary rests on one of the most fascinating pillars of constitutional law: the doctrine of compelled speech and its collision with judicial secrecy.

The legal basis rests on a simple principle: if the State has the power to impose silence on you (via a gag order), it does not have the constitutional power to force you to lie.

Under the First Amendment of the United States Constitution (and analogous principles in Europe), the government cannot force a company to produce a factually false statement. Thus, when a company removes its canary, it does not violate the silence order — since it does not explicitly announce having received a warrant. It simply exercises its fundamental right to stop making a statement that is no longer true.

The Conflict with European Law

The relevance of the canary is today reinforced by Article 32 of the Data Act (EU Regulation 2023/2854). This provision requires providers to implement technical and legal measures to prevent data access by authorities of third countries when this contradicts European law. The death of a canary immediately signals this conflict of laws: the provider is likely being forced to bypass European guarantees to satisfy a foreign mandate.

The Arpokrat Approach: Sovereignty by Design

In the Arpokrat ecosystem, operating under the jurisdiction of the Swiss FADP (Federal Act on Data Protection - RS 235.1), the canary takes on an even more powerful dimension. It is part of a holistic approach to digital sovereignty: Zero-Knowledge.

The architecture is designed in such a way that the company creates a technical and mathematical impossibility to obey a mandate. The State or an intelligence agency can issue all the orders it wants, the answer will remain the same: there are no private keys, no identities (Zero-ID), and no centralized metadata to hand over.

In this context, the canary is no longer just a warning of compromise; it is the continuous public proof that the infrastructure has remained technically inviolable and faithful to its principles.

Conclusion

Ultimately, the Warrant Canary is the piece of legal agility that complements the cryptographic agility necessary to face the horizon of modern threats (such as post-quantum computing). In an infrastructure where data is sovereign by design, the canary is not just a simple bird in a mine: it is the silent guardian of your digital fortress.

Utiq: The new telecom 'Super-Cookie' threatening your privacy

Mon, 01 Jun 2026 00:00:00 +0000

The scheduled end of third-party cookies on web browsers has triggered a true arms race in the targeted advertising industry. While Google is trying to impose its own standards (like the Privacy Sandbox), another unexpected player has decided to grab a piece of the pie: your Internet Service Provider (ISP).

Thus was born Utiq (formerly known as project TrustPid), a joint venture founded by European telecommunications giants. Sold to the general public as a “transparent and respectful” solution, Utiq is actually what cybersecurity experts fear most: a “supercookie” operating at the network level.

What is Utiq and how does it work?

Traditionally, advertising tracking (cookies) is managed by your web browser (Chrome, Firefox, Safari). You could block it using extensions (like uBlock Origin) or a privacy-oriented browser (like Brave).

Utiq shifts the problem one step back: to the level of your network connection.

Here is how the trap springs:

Network interception: When you browse the internet via your mobile connection (4G/5G) or your fiber box, Utiq uses your IP address and your telecom subscription data to identify you.
Consent (the false choice): Upon arriving at a partner site, a pop-up window asks you to accept Utiq. Due to the fatigue associated with cookie banners (Consent Fatigue), millions of users click “Accept” without reading.
The “Network Signal”: Once consent is given, Utiq directly contacts your telecom operator. The latter generates a unique, pseudonymized identification token (the network signal) which it transmits to advertisers.

You are now trackable from site to site, not by a file stored on your computer, but by the very infrastructure that provides you with the internet.

Why Utiq is a privacy nightmare (OPSEC)

The initiative raises serious problems for digital sovereignty and the confidentiality of your data:

Tracking at the source: Unlike classic cookies, you cannot simply “clear your history” or “empty your cache” to get rid of Utiq. The identification token is generated by your ISP.
The centralization of profiles: Telecom operators already know your name, physical address, banking details, and location in real-time. By linking your web browsing history via Utiq to this, they create behavioral profiling of daunting precision.
The flaw of pseudonymization: Utiq defends itself by not sharing your name in plain text, claiming to use “encrypted” tokens. However, in the cybersecurity world, it is proven that pseudonymization is reversible. Cross-referencing these tokens with other databases allows individuals to be easily re-identified.

Which operators use Utiq?

Utiq was founded by an alliance of the four largest European operators. If you are a customer of one of them (or one of their low-cost subsidiaries), your connection is potentially already “compatible” with this tracking.

Here are the founders and links to their respective privacy policies:

Orange (France, Spain, Poland, etc.)
Vodafone (Germany, Spain, UK, etc.)
Telefónica / O2 / Movistar (Spain, Germany, etc.)
Deutsche Telekom (Germany, Central Europe)

The OPSEC tip: Although Utiq offers a centralized consent management portal (consenthub.utiq.com) to revoke access, the best defense remains technological.

The Zero-Trust approach to counter Utiq

The philosophy of digital sovereignty, driven by ecosystems like Arpokrat, relies on a simple principle: never trust the network infrastructure.

To technically neutralize systems like Utiq, the solution is to hide your traffic from your own internet service provider:

Using a sovereign VPN: By encrypting your traffic as soon as it leaves your device, your ISP only sees an unreadable stream of data directed towards a VPN server. It can no longer inject or read Utiq tokens.
The Tor network (Orbot): Onion routing prevents any end-to-end identification.
DNS Encryption (DoH/DoT): Prevents your operator from knowing which websites you request to visit.

In summary, Utiq is proof that internet service providers are no longer content with being mere “pipes”; they want to become data brokers. More than ever, encrypting your traffic is no longer a security option, but an absolute necessity to preserve your digital silence.