GOVERNANCE & ACCOUNTABILITY

PrintPDF

Like any EU agency, Europol functions according to a system of controls, checks and
balances

Europol is democratically managed on the basis of a

system of controls, checks and supervision of
governance.
EU justice and interior ministers, MEPs, other EU
bodies, a management board drawn from all EU
Member States, and its directorate all play important
roles in managing Europol and ensuring that it is
accountable.
Europol has been an EU agency since 2010. It is
ultimately accountable to the Council of Ministers for
Justice and Home Affairs, which comprises the
relevant ministers from all EU Member States. The
Council is responsible for the main control and
guidance of Europol, and appoints the agency’s
Executive Director and Deputy Directors.
Together with the European Parliament (EP), the
Council approves Europol’s budget (which is part of
the EU’s general budget) as well as adopts
regulations related to Europol’s work.
The EP plays an important role in overseeing
Europol. In addition to adopting the agency’s annual
budget, the EP issues thedischarge — the decision
by which it releases the European Commission (EC)
from its responsibility for managing a given budget,
by indicating the end of the period in which that
budget has been executed. The discharge is granted
by Parliament on a recommendation from the
Council. The EP is also consulted in the adoption of
new Council regulations concerning Europol.
EUROPOL MANAGEMENT BOARD

History of the Europol Management Board (PDF)

An integral part of Europol’s administrative and
management structure, the Management Board is
the Agency’s main governance body and primary
stakeholder environment. It provides a unique forum
to ensure Europol’s continued development as a
trusted partner that successfully meets the needs
and expectations of the European Union law
enforcement community and, in doing so,
contributes to a safer Europe.
Its main responsibilities are to provide strategic
guidance to the Agency and oversee the
implementation of its tasks, to adopt its annual and
multi-annual work programmes and annual budget,
and to exercise governance responsibilities foreseen
in the Europol Regulation.
It is composed of one representative from each EU
Member State taking part in the Europol Regulation
and one representative from the European
Commission (Management Board members).
Denmark has an observer status.
The Management Board meets on average four
times per year, while its two working groups on
corporate matters (WGCM) and on information
management (WGIM) meet regularly throughout the
year. The Management Board Secretariat provides
support to the Chairperson, the Board and its
working groups and committees.
EUROPOL DIRECTORATE

In its day-to-day operations, Europol is headed by a

Executive Director, who is appointed by a
unanimous decision of the Council of Ministers for
Justice and Home Affairs, after the Council has
obtained the opinion of the Management Board.
The Executive Director, who is appointed for a four-
year term, with the possibility of a second, is
responsible for:
 overseeing the administration of Europol
 seeing to the performance of tasks assigned to
Europol
 overseeing the management of personnel
  any other tasks consigned to him by
the regulation or by the Management Board.
Europol’s current Executive Director is Catherine De
Bolle, who assumed the post in May 2018.
The Executive Director is assisted in her position by
three Deputy Directors, who are also appointed by
the Council for a four-year term, with the possibility
of a second. The current Deputy Directors are:
 Wil van Gemert, Operations Directorate
 Oldrich Martinu, Governance Directorate
 Luis de Eusebio Ramos, Capabilities
Directorate.
Information concerning occupational activities of
senior staff members after leaving the
service (article 16 of the staff regulations).
FINANCIAL ACCOUNTABILITY

Europol abides by the same principles as other EU

agencies and institutions in terms
of transparency and financial accountability. A
number of institutions and bodies are involved in
enforcing financial accountability at the agency,
including the:
 European Court of Auditors
 Internal Audit Service
  Internal Audit Capability.
External financial oversight

The monitoring of the commitment and disbursement

of expenditures, as well as the establishment and
collection of Europol’s income, follows the general
rules of the EU, such as budgetary discipline and
sound financial management.
Europol’s annual accounts are subject to an external
audit carried out by the European Court of
Auditors (ECA). The ECA is an EU institution
independent of Europol, as provided for in Articles
285-287 of the Treaty on the Functioning of the
European Union (TFEU).
The ECA provides the budgetary authority with a
statement of assurance as to the reliability of the
accounts and the legality and regularity of the
underlying transactions. The ECA draws up an
annual report after the close of each financial year.
This report, together with the replies from the bodies
concerned, including Europol, is published by the
ECA in the Official Journal of the EU. It is the basis
for the European Parliament, following a
recommendation from the Council, to take the
aforementioned discharge decision on Europol’s
implementation of the budget. The ECA may also, at
any time, submit observations, particularly in the
form of special reports, on specific questions, and
deliver opinions at the request of another EU
institution (referred to in Art. 13 of the TFEU).
Internal oversight

Oversight of Europol is also included in the remit of

the Internal Audit Service (IAS), the internal auditor
of the European Commission’s departments and
agencies. As Europol’s internal auditor — it doesn’t
audit the agency for the Commission, but for the
agency — the IAS provides a wider, independent
view of the accountability procedures within the
agency, offering solutions to problems that may
arise.
Another level of internal supervision is provided by
the Internal Audit Capability (IAC), which operates
within Europol and is appointed by and solely
accountable to the Management Board. The
mission of the IAC is to enhance and protect
Europol’s organisational value, by providing risk-
based and objective assurance, advice and insight.
The IAC helps Europol in accomplishing its
objectives by bringing a systematic and disciplined
approach to evaluate the effectiveness of risk
management, control, and governance processes,
and by issuing recommendations for their
improvement, thereby promoting a culture of efficient
and effective management within Europol.
EUROPEAN PARLIAMENT & EUROPEAN COUNCIL

The Joint Parliamentary Scrutiny Group (JPSG) is

tasked with the political monitoring and examination
of Europol’s activity. The JSPG is composed of
members of both national parliaments (up to 4
members each) and Members of the European
Parliament (up to 16). The Group holds meetings
twice a year, prior to which Europol must submit
documents related to its actions to be discussed by
the JPSG. In these documents, Europol transmits
information such as threat assessments, strategic
analyses, multiannual programming and annual
work programme of Europol and the Consolidated
Europol Consolidated Annual Activity
Reports (CAAR). The JPSG carries out its activities
pursuant to Article 88 of the TFEU.
As part of the JHA, Europol is subject to oversight
from Standing Committee on Operational
Cooperation on Internal Security (COSI), which
ensures that operational cooperation and internal
security is promoted and strengthened in the
European Union. The role of COSI is to identify
possible shortcomings or failures and to adopt
concrete recommendations to address them.
EUROPEAN DATA PROTECTION SUPERVISOR

The European Data Protection Supervisor

(EDPS) provides assurance that the rights of the
individual are protected by the storage, processing
and use of data held by Europol. The Europol
Regulation reinforces Europol’s capabilities. It
strengthens procedural safeguards and data
protection rights and brings them in line with the
changes outlined in the Treaty, ensuring, in
particular, that each individual has the right to submit
complaints to an independent data protection
authority, whose decisions are subject to judicial
review.
EUROPEAN OMBUDSMAN

The European Ombudsman provides a further layer

of accountability at Europol. The Ombudsman’s
mission is to serve democracy by working with EU
institutions, including Europol, to create a more
effective, accountable, transparent and ethical
administration. It investigates complaints against EU
institutions and bodies.
Any member of the public that has concerns about
maladministration in the activities of these
institutions and bodies has the right to register a
complaint on the matter with the Ombudsman.
Europol adheres to the key principles of good
governance promoted by the
Ombudsman’s European Code of Good
Administrative Behaviour:
 fairness
 proportionality
 objectivity
 lawfulness
 impartiality.

DATA PROTECTION & TRANSPARENCY

PrintPDF

Balancing Europol’s operational needs and the individual’s right to data protection
More information on data protection and the Data
Protection Function at Europol is available in our
dedicated DPF e-brochure.
DPF e-brochure
Europol provides for an innovative technology-enabled inter-connected platform that
connects over 500 law enforcement agencies from Europe and beyond. That platform
operates through its ability to connect and collect across a large community and by
applying the power of data analytics at the hub of this information at Europol
Headquarters.

Evidently, the collection and processing of data, foremost personal data, are at the
centre of Europol’s activities. That on its part calls for the application of the highest
standards of data protection and data security. Therefore, the agency has emplaced
one the most robust data protection frameworks in the world of law enforcement.
This is an asset, but at the same time a responsibility as the tailor-made set of rules has
to be duly applied to both the operational needs of Europol and the individual’s
fundamental right to effective data protection.

In this context, the main challenge is the application of the data protection framework to
the day-to-day operations of the agency. The Data Protection Function (DPF) within
Europol is in the ideal position to ensure the lawfulness and compliance of data
processing operations with the applicable legal framework. In addition to the assurance
activities of the Data Protection Officer (DPO), there is also the supervision exercised by
the European Data Protection Supervisor (EDPS).

DATA PROTECTION FUNCTION

The Data Protection Function is an integral part of Europol and the initial point of
contact for all data protection issues. The unit is headed by the Data Protection Officer
(DPO), who is appointed by Europol’s Management Board.

The DPF, which acts with functional independence, works closely with Europol staff,
offering advice and guidance in line with best practices on the processing of personal
data. With respect to the processing and exchange of data among Europol and EU
Member States, the Data Protection Officer ensures that the applicable data protection
rules are applied to all forms of personal data exchange.

The DPF has access to all data processed by Europol as well as all Europol premises.
Its main activity is to ensure compliance with the mandate-setting legal instrument of
Europol. Up until 1 May 2017, the Europol Council Decision (ECD) of 6 April 2009
defined Europol’s mandate as regards the processing of personal data, including also
Europol staff data. As of 1 May 2017, the Europol Regulation (ER) repeals the ECD and
subsequently reinforces the robust data protection regime applicable to Europol’s
activities with respect to the processing of both operational and administrative data.

The need to reflect upon present day challenges, technological developments, and
globalisation, and in ideal synchronisation with the overall EU data protection reform,
has led to the modification of the legal regime at Europol. Under the Europol Regulation,
the agency not only steps up its efforts to fight terrorism, cybercrime and other forms of
serious and organised crime, but also increases data protection safeguards, democratic
control, parliamentary scrutiny, as well as its role as the central hub for criminal
intelligence and information exchange.

Additionally, in the context of its activities, Europol’s DPF has also established an online
collaboration platform – the Europol Data Protection Experts Network (EDEN). EDEN’s
main aim is the exchange of expertise and best practices among a community of
various stakeholders, ranging from law enforcement experts to representatives of
relevant private parties, academia, NGOs, etc.

If you are interested in contributing to the discussions on effective data protection

safeguards applicable in law enforcement context, please apply to become a member of
our expert community via eden@europol.europa.eu

Accessing personal data at Europol

Any individual can obtain information on whether personal data related to them are
processed by Europol. The agency has a legal obligation to provide the data subject
with information on whether personal data relating to him/her are processed at Europol.
In order to exercise the right of access, the individual can submit a request to Europol
via the competent authority of a Member State. At Europol, the DPF undertakes the
necessary checks.

EUROPEAN DATA PROTECTION SUPERVISOR (EDPS)

While the Data Protection Officer, though independent in the performance of his tasks,
is an integral part of the organisation, theEuropean Data Protection Supervisor (EDPS)
is responsible for external supervision. The EDPS respectively provides advice on data
protection matters to Europol, carries out inspections and investigates complaints from
individuals.

The EDPS is the European Union’s independent data protection authority that serves as
an impartial centre of excellence for enforcing and reinforcing EU data protection and
privacy standards, both in practice and in law. The EDPS is headed by a Supervisor
and Assistant Supervisor and supported by lawyers, IT specialists and administrators.
These experts are highly experienced in data processing and they supervise Europol’s
activities from a data protection perspective.
To this end, the EDPS has the power to inspect all Europol files at any time. The
inspection visits of Europol’s premises are carried out in close cooperation with the DPF
at Europol. The EDPS inspections cover all of Europol’s data processing operations. On
the basis of these inspections, the EDPS delivers extensive and detailed reports on the
supervisory activities of Europol, which include findings and recommendations.

In addition to the aforementioned checks by the DPF and the EDPS, each Member
State has its own national supervisory body. In accordance with its national law, each
Member State checks the transmission of personal data to and from Europol. Members
of each of these national supervisory bodies also have access to the documents and
premises of their Liaison Officers at Europol.

Furthermore, the Europol Regulation established a Cooperation Board with an advisory

function. It acts independently and is composed of a representative of a national
supervisory authority of each Member State and of the EDPS.

OUR THINKING
PrintPDF

A strategy for security

Europol Strategy 2020+
As the EU’s law enforcement agency, Europol has a mission to support its Member
States in preventing and combating all forms of serious international and organised
crime, cybercrime and terrorism.

Europol’s vision is to ensure an effective EU response to the threats of serious

international and organised crime, cybercrime and terrorism in the EU, by acting as the
principal information hub, delivering agile operational support and providing European
policing solutions in conjunction with our network of partners.

Europol's Strategy is the frame of reference for its daily operations and for supporting
EU law enforcement cooperation.

In pursuit of this ambitious strategy, Europol addresses the most important challenges
facing it, and is exploiting all opportunities to make further progress and deliver tangible
benefits.

VALUES
Based on the mission and vision, Europol has six values that shape the culture of the
organisation:
 1. Service - we treat our colleagues and our cooperation partners in Member
States and beyond with diligence, aiming to deliver the best service possible, in
order to address their needs effectively and efficiently.
2. Integrity - we uphold strong moral principles and do the right thing in a reliable
way. Our Code of Conduct sets out the framework for our ethics.
3. Accountability - we accept responsibility for our proposals, actions and
decisions, and we are willing to align our behaviour with the needs, priorities and
goals of the organisation.
4. Initiative - we continuously strive to improve performance by doing or promoting
new things relevant to our specific area and for the organisation and our
partners.
5. Partnership - we build sustainable relations across the law enforcement
community and beyond, increasing innovation and knowledge, to provide agile
operational support to Member States and cooperation partners.
6. Diversity - we foster diversity in the workplace and uphold an inclusive corporate
culture and conditions where all staff members have equal opportunities to
develop and contribute to the success of the organisation.

These values underline the agency’s commitment to the EU public service principles.

Europol’s Values provide the basis for Europol’s Ethics which are founded on
the Europol Code of Conduct and specific internal guidance to all Europol staff on
avoiding conflict of interest, complemented by whistle-blowing arrangements to uphold
Europol’s high governance standards.

STRATEGY AND PRIORITIES

Europol’s Strategy guides the organisation in implementing its main goals and vision,
and in delivering a unique set of operational services to the EU.

Europol’s strategic priorities are to:

1. be the EU criminal information hub;

2. deliver agile operational support;
3. be a platform for European policing solutions;
4. be at the forefront of law enforcement innovation and research;
5. be the model EU law enforcement organisation.

Strategic priority 1. Be the EU criminal information hub

Europol has established itself as the EU criminal information hub and will continue to
enhance the value of its network by providing Member States with access to a growing
number of partners and sources of information. Europol will further evolve from
collecting to connecting information; in the coming years, the focus will be on reinforcing
this position by advancing Europol’s information management architecture and rapidly
embracing new methods and technologies as they become available. Europol will also
work with the relevant EU agencies, the European Commission and the Member States
to implement its roadmaps related to travel intelligence and to EU systems
interoperability.

Strategic priority 2. Deliver agile operational support

To increase operational impact by dismantling terrorist networks and increasingly poly-

criminal organised crime groups, Europol will develop an agile operational support
model, building on its existing experience of the Joint Cybercrime Action Taskforce (J-
CAT), Joint Operational Team (JOT) Mare, Counter Terrorism Joint Liaison Team (CT-
JLT), High-Value Targets (HVTs), Operational Taskforces (OTFs) and guest officer
deployments.

Enhanced analytical capabilities will be at the core of Europol’s operational support. In

addition, Europol will develop a complete operational support model to identify,
organise, coordinate and deploy multi-disciplinary teams to work with Member States
and support priority investigations against high-value targets. Europol will also further
enhance its rapid response to terrorist attacks and other major crime incidents.

The most dangerous organised crime groups corrupt and infiltrate the public sector and
carry out complex money laundering schemes to conceal their illegal profits. To tackle
these top criminals successfully, Europol will put more focus on investigating high-value
targets, financial investigations and asset recovery.

Strategic priority 3. Be a platform for European policing solutions

Europol will act as the broker of law enforcement knowledge, providing a hub through
which Member States can connect and benefit from each other’s and Europol’s
expertise and training capabilities. Europol’s evolution from a systems-based
organisation to a specialised law enforcement service provider by progressively
advancing from processing to producing knowledge will be pursued.

Europol will bring together Member States to drive the development of EU analysis
standards and strengthen analysis for law enforcement in the EU. The aim will be to
deliver, in close cooperation with Member States, analytical products and services with
actionable intelligence, which are recognised and can be used by Member States’
jurisdictions.

Strategic priority 4. Be at the forefront of law enforcement innovation

and research

The advent of new technologies and the increasing sophistication of crime, the
exponential growth of data types and volume are major challenges for today’s law
enforcement community. Making incremental changes to existing solutions is not
enough; to remain relevant and effective, it is necessary to invest in and actively pursue
new solutions. Europol will become a central contact point for law enforcement
innovation, bringing together the most suitable partners to build a network of innovation,
tailored to the needs of Member States’ law enforcement agencies. New methods to
leverage the full value of available data and the application of innovative business
models in law enforcement will be co-developed, tested and hosted by Europol for the
benefit of the Member States.

Strategic priority 5. Be the model EU law enforcement organisation

Europol will work closely with all its partners to develop synergies ensuring the most
efficient and effective use of its resources. The agency will maintain the highest
governance standards while remaining accountable to its EU law enforcement partners
and EU institutional stakeholders, ensuring that our work is visible to EU citizens at
large.

Europol will create the conditions for a culture of innovation by nurturing an environment
of transparency, communication, creativity and diversity, where staff engagement,
motivation and well-being are key.

As a public organisation, Europol adheres to the highest accountability and governance

standards.

WORK PROGRAMMES AND CONSOLIDATED ANNUAL

ACTIVITY REPORTS (CAAR)
The strategic objectives will be fully reflected and further detailed in Europol’s multi-
annual Programming Document, the current issue of which covers 2019-2021.

Implementation of the Strategy will be monitored via the performance-management and

reporting mechanisms established in the multi-annual Programming Document and,
through the progress reports that are submitted to the Management Board twice per
year.

 Programming Document
 Consolidated Annual Activity Reports

LOOKING AHEAD
The Lisbon Treaty, the Europol Council Decision governing the agency, and the
agency’s own strategy and improved capabilities have helped to enhance Europol’s
position on the EU stage.

Europol has developed into a unique partner for EU law enforcement agencies, and is
an important contributor to the EU decision-making process.
Europol is always looking out for opportunities to make the fight against organised crime
and terrorism more effective.

In recent years, Europol has launched dedicated centres that focus on specific threats
facing the EU:

 European Cybercrime Centre

 European Migrant Smuggling Centre
 European Counter Terrorism Centre
 Intellectual Property Crime Coordination Coalition

EC3 was set up in 2013; EMSC, ECTC and IPC3, in 2016.In the same year, FIU.net, a
decentralised and sophisticated computer network supporting the financial intelligence
units (FIUs) in the EU in their fight against money laundering and the financing of
terrorism — became part of Europol’s operations, a move that has contributed to further
closing the financial intelligence gap and creating more synergy among all the
communities that handle financial intelligence in the Member States.

On 1 May 2017, a new Europol regulation entered into force that enabled the agency to
step up efforts to fight terrorism, cybercrime and other serious and organised forms of
crime. Europol’s new powers were accompanied with increased data protection
safeguards, democratic control and parliamentary scrutiny.

The regulation makes it easier for Europol to set up specialised units to respond swiftly
to emerging terrorist threats and other forms of serious and organised crime.

FINANCE & BUDGET

PrintPDF

Ensuring financial accountability and transparency

The Financial Regulation and its implementing rules for Europol form the basis for the
agency’s budget implementation and financial management.

The initial and amended budgets provide information on the approved budget for one
financial year, while the final accounts provide information on the financial performance
of the agency in the financial year concerned.

BUDGET
Europol is financed from the EU community budget. The Council of the European Union
and the European Parliament decide Europol’s budget, based on proposals from the
European Commission and the Europol Management Board.

Recent budgets: 2019 (Amended 1) | 2019 | 2018 (Amended 2) | 2018

(Amended) | 2018
Previous budgets

ANNUAL ACCOUNTS
Europol’s final accounts include the financial statements and the budget-implementation
reports. They are drawn up under theresponsibility of the Executive Director in
accordance with Article 93 of the Financial Regulation applicable to Europol.

FINANCIAL STATEMENTS

The objective of financial statements is to provide

information about Europol’s financial position,
performance and cash flows, thus demonstrating
its accountability for the resources entrusted to it.
The notes to the financial statements supplement
and comment on the information presented in the
statements.
The financial statements comprise the following:

 the balance sheet

 the economic-outturn account
 the cash-flow table
 the statement of changes in capital.

The financial statements are prepared in accordance with the Financial Regulation for
Europol and with the European Commission accounting rules and methods that have
been adopted by the European Commission’s Accounting Officer and that follow the
principles of accrual-based accounting. The budget-implementation reports are
prepared on the basis of the modified cash-based accounting principle.

Recent annual accounts: year 2018 (published 2019)

Previous Annual Accounts

EUROPEAN COURT OF AUDITORS (ECA) REPORTS
ON EUROPOL
Europol’s annual accounts are subject to an external audit carried out by the European
Court of Auditors (ECA). The ECA is an EU institution independent of Europol, as
provided for in Articles 285-287 of the Treaty on the Functioning of the European Union
(TFEU).

The ECA provides the budgetary authority with a statement of assurance as to the
reliability of the accounts and the legality and regularity of the underlying transactions.
The ECA draws up an annual report after the close of each financial year, based on the
results of the respective audit of Europol’s financial activities. This report, together with
the reply from Europol, is published by the ECA in the Official Journal of the EU, in the
year following the financial year concerned. It is a key basis for the European
Parliament, following a recommendation from the Council, to take a discharge decision
on Europol’s implementation of the budget.

Recent annual accounts: year 2018 (published 2019)

STATISTICS & DATA

PrintPDF

EUROPOL STAFF NUMBERS

Europol staff numbers including staff with employment contracts with Europol, Liaison
officers from Member States and third states and organisations, Seconded National
Experts, trainees and contractors. (December 2018 data)

Personnel working at Europol representing Third parties (non EU States and

organisations)

Including Liaison officers from third states and organisations, and contractors.

COUNTRY

Albania

Australia

Canada
 COUNTRY

Colombia

former Yugoslav Republic of Macedonia

Georgia

Iceland

Israel

Moldova

Montenegro

Norway

Serbia

Switzerland

Turkey

Ukraine

United States

AGENCY / ORGANISATION NUMBER OF EMPLO

Eurojust 3

EUIPO 1

EUNAVFOR MED 6

INTERPOL 1

US ATF (Bureau of Alcohol, Tobacco, Firearms and Explosives) 1

US CBP (Customs and Border Protection) 4

US DEA (Drug Enforcement Administration) 3

 COUNTRY

USDSS (US Defense Security Service) 1

US FBI (Federal Bureau of Investigation) 5

US FDA (Food and Drug Administration) 1

US ICE (Immigration and Customs Enforcement) 7

US IRS (Internal Revenue Service) 1

US TSA (Transportation Security Administration) 2

US SS (Secret Service) 3

US NYPD (New York Police Department) 1

GENDER BALANCE
33% female and 67% male staff
(average value in 2018)

The development and

implementation of the Gender
Balance project is based on the
recognition that having a more
diverse and balanced
workforce would have a
positive impact on Europol’s
performance.

EUROPEAN CYBERCRIME CENTRE -

EC3
Combating crime in a digital age
PrintPDF

 ABOUT
  EC3 UPDATES

Europol set up the European Cybercrime Centre (EC3) in 2013 to strengthen the law
enforcement response to cybercrime in the EU and thus to help protect European
citizens, businesses and governments from online crime. Since its establishment, EC3
has made a significant contribution to the fight against cybercrime: it has been involved
in tens of high-profile operations and hundreds on-the-spot operational-support
deployments resulting in hundreds of arrests, and has analysed hundreds of thousands
of files , the vast majority of which have proven to be malicious.

While it is difficult to provide reliable estimates, some industry reports suggest that the
global cybercrime costs are in the hundreds of billions of euros per year.

Each year, EC3 publishes the Internet Organised Crime Threat Assessment
(IOCTA), its flagship strategic report on key findings and emerging threats and
developments in cybercrime.

The IOCTA demonstrates how wide and varied cybercrime is and how EC3 is a key part
of Europol’s, and the EU’s, response. EC3 takes a three-pronged approach to the fight
against cybercrime: forensics, strategy and operations.
The EC3 Programme Board provides EC3 with direction as to how to achieve its goals
and fulfil its officially assigned tasks, building on partnerships, shared responsibility and
cooperation with all board members.

EC3 has two forensics teams, digital forensics and document forensics, each of which
focuses on operational support, and research and development.

There are two strategy teams:

1. outreach and support, which establishes partnerships and coordinates prevention

and awareness measures;
 2. strategy and development, which is responsible for:
o strategic analysis;
o the formulation of policy and legislative measures;
o the development of standardised training.

At the level of operations, EC3 focuses on the following types of cybercrimes:

 Cyber-dependent crime;
 Online child sexual exploitation;
 Payment fraud.

These activities are also supported by the Cyber Intelligence Team (CIT), whose
analysts collect and process cybercrime-related information from public, private and
open sources and identify emerging threats and patterns.

Working alongside EC3 is the Joint Cybercrime Action Taskforce (J-CAT), which works
on the most important international cybercrime cases that affect EU Member States and
their citizens.

EC3 draws on Europol’s existing law-enforcement capacity—but it also expands

significantly on other capabilities, in particular by offering operational and analytical
support to Member States’ investigations.

For each of the three categories of cybercrime, EC3:

 serves as the central hub for criminal information and intelligence;

 supports operations and investigations by Member States by offering operational
analysis, coordination and its considerable expertise;
 provides a variety of strategic-analysis products that enable informed decision-
making at the tactical and strategic levels on combating and preventing
cybercrime;
 provides a comprehensive outreach function connecting law-enforcement
authorities tackling cybercrime with the private sector, academia and other non-
law enforcement partners;
 supports training and capacity-building, in particular for the relevant authorities in
Member States;
 provides highly specialised technical and digital forensic support capabilities to
investigations and operations;
 represents the EU law-enforcement community in areas of common interest
(research-and-development requirements, internet governance and policy
development).

The EC3 Programme Board provides EC3 with direction as to how to achieve its goals
and fulfil its officially assigned tasks, building on partnerships, shared responsibility and
cooperation with all board members.
EUROPEAN MIGRANT SMUGGLING
CENTRE - EMSC
Tackling the organised criminal groups profiting from migrant smuggling
PrintPDF

 ABOUT
 EMSC UPDATES

The EMSC was established in early 2016 following a period of highly dynamic irregular
migration, with vulnerable migrants travelling largely unrestricted in sizeable groups
across the Mediterranean Sea, external land borders and further on, into Europe
towards their desired destination countries.

Europol established that many migrants had their journey facilitated by a criminal
organisation, at least for the initial sea-journey into Europe. These facilitation services
often took the shape of a risky sea crossing in a completely unsuitable and overcrowded
vessel. Migrant smuggling quickly evolved into a very lucrative form of criminal
enterprise, which circumvents and abuses sea border countermeasures deployed in
solidarity by EU Member States and Agencies.

Tackling this multi-billion-euro trade thus became an essential part of the EU’s response
to the migrant crisis. Indeed, the EU’sAgenda on Migration (2015) identifies the fight
against migrant smuggling is a key priority.

Supporting police and border authorities to coordinate highly complex cross-border anti-
smuggling operations therefore became the primary objective of the EMSC, which
brought together some of the best investigators in Europe. The EMSC closely
cooperates with its partner EU Agencies dealing with judicial cooperation (Eurojust) and
border management (Frontex).

SCORING SUCCESSES
Building on the experience and expertise that Europol has gained over the last decade
or so in supporting cross-border investigations in related crime areas, the EMSC
achieved considerable progress in its first year of operation.

In 2016, it received almost 12 000 messages via Europol’s SIENA secure

communication network – a 34 % increase when compared to 2015. The operational
messages contained data on over 17 400 migrant smuggling suspects and helped
launch over 2000 bi- and multilateral cases, including over 490 investigations into
identity fraud, an area that received special attention in 2016 and which is expected to
further shape the future work of the EMSC.

In their first year, the 45 EMSC specialists and analysts also worked extensively on

 document and identity fraud

 e-smuggling (migrant smuggling content in social media)
 financial investigations and recovery of criminal assets.

The centre incorporates the Joint Operational Team (JOT) Mare, which is made up of
specialists seconded from seven Member States. These Member States exchange vital
information in real time to disrupt smuggling networks operating from Turkey, as well as
from Libya and other North African countries.

Expanding on the activities of JOT Mare, the EMSC provides:

 tailored analytical products;

 leads on the activities of organised crime groups;
 facilities for cross-checking the data in various Europol databases;
 forensic and technical support;
 other expertise.

Among the key products that EMSC can offer its law enforcement partners are:

 a list of vessels of interest

 investigation initiation documents
 intelligence notifications on new trends and on links with other crime areas
 early warning notifications.

Acting as an information hub, the EMSC supports the EU Regional Task Force offices in
Italy and Greece, which assist national authorities in the following areas:

 identification
 asylum support
 intelligence sharing
 criminal investigations
 the prosecution of criminal people-smuggling networks.
The EMSC also provides enhanced operational and strategic support to EU Member
States, including through the deployment of investigation support teams and analytical
support teams.

The goal of the European Migrant Smuggling

Centre (EMSC) is to support EU Member States
in targeting and dismantling the complex and
sophisticated criminal networks involved in
migrant smuggling.
CRIME AREAS
Facilitation of Illegal Immigration
GENERAL TERMS
Law Enforcement

EUROPEAN COUNTER TERRORISM

CENTRE - ECTC
A central hub of expertise working to provide an effective response to terrorism
PrintPDF

 ABOUT
 ECTC UPDATES

Europe is currently facing a vicious, new form of international terrorism. The clear shift
in Islamic State’s strategy of carrying out special forces-style attacks in the international
environment, with a particular focus on Europe, as well as the growing number of
foreign terrorist fighters, demonstrates the new challenges facing the EU and its
Member States.

To ensure an effective response to these challenges, in January 2016 Europol created

the European Counter Terrorism Centre (ECTC), an operations centre and hub of
expertise that reflects the growing need for the EU to strengthen its response to terror.

Designed as a central hub in the EU in the fight against terrorism, the ECTC focuses on:

 providing operational support upon a request from a EU Member State for

investigations;
 tackling foreign fighters;
 sharing intelligence and expertise on terrorism financing (through the Terrorist
Finance Tracking Programme and theFinancial Intelligence Unit);
  online terrorist propaganda and extremism (through the EU Internet Referral
Unit);
 illegal arms trafficking;
 international cooperation among counter terrorism authorities.

OPERATIONAL SUPPORT
The ECTC’s principal task is to provide operational support to Member States in
investigations following terrorist attacks. It cross-checks live operational data against the
data Europol already has, quickly bringing financial leads to light, and analyses all
available investigative details to assist in compiling a structured picture of the terrorist
network.

The ECTC builds on Europol’s established tools and counter terrorism networks, which
have already played an important part in the European response to terrorist threats, but
includes a number of new features.

In the event of a major terrorist event, the ECTC can contribute to a coordinated
response. Different teams are available for this purpose, often combined with counter
terrorism experts temporarily seconded from Member States, depending on the nature
of the event.

SPECIALIST TEAMS
The ECTC’s specialist teams of analysts and experts collate operational information
from law enforcement from all Member States as well as from third parties. The teams
work on this information to establish the wider EU perspective on counter terrorism for
both operational and strategic goals.

A constituent part of Europol’s Operations Department, the ECTC works closely with
other operational centres at Europol, such as the European Cybercrime Centre (EC3)
and the European Migrant Smuggling Centre (EMSC).

The ECTC’s information-sharing operations strengthens Europol overall counter-

terrorism capabilities. It equipped to assist Member States, and key partners such as
Interpol and Eurojust, in the effective management of counter terrorism intelligence.

STAFF
 The ECTC has 81 staff members and 14
seconded national experts (January 2018).
CRIME AREAS
Terrorism
GENERAL TERMS
Law Enforcement
Taskforce
RelatedCONTENT

12Apr2017

Europol hosts Conference on Online Terrorist Propaganda

NEWS/PRESS RELEASE

INTELLECTUAL PROPERTY CRIME

COORDINATED COALITION - IPC3
Stemming the tide of intellectual property crime within and outside the EU
PrintPDF

 ABOUT
 IPC3 UPDATES

2017 Situation Report on Counterfeiting and

Piracy in the EU
Counterfeit goods are a significant problem that hits
the EU particularly hard, accounting for about 5 % of
imports. Organised criminal groups are often
behind intellectual property crime and thus benefit
financially from it.
Fighting intellectual property crime is key to
sustaining jobs and growth in the European
economy, and to safeguarding consumers against
dangerous and substandard products.
The IPC3, located at Europol and funded by
the European Union Intellectual Property Office
(EUIPO), is central to the EU’s response to this
crime area.

IPC3 OPERATIONAL SUPPORT

The IPC3 provides operational and technical support

to law-enforcement agencies and other partners in
the EU and beyond, by:
 facilitating and coordinating cross-border
investigations;
 monitoring and reporting online crime trends and
emerging modi operandi;
 raising public awareness of this crime;
  providing training to law enforcement in how to
combat it.
The IPC3 soon produced significant results. At the
end of its first year of operation, it was supporting
more than 50 high-priority cases of intellectual
property infringement.
Europol has used it to help take down websites used
to sell counterfeit merchandise, to target pirated TV
decoders, and to shut down illegal operations using
the bitcoin digital currency.

FINANCIAL INTELLIGENCE UNITS –

FIU.NET
Coordinated crimes need a coordinated response
PrintPDF

 ABOUT
 FIU.NET UPDATES

FIU.net is a decentralised and sophisticated computer network supporting the Financial

Intelligence Units (FIUs) in the European Union in their fight against money laundering
and the financing of terrorism.

The need for FIUs is clear: the European single market has fostered free trade, robust
competition, a full range of consumer choice, and employment and prosperity. But that
has also helped create the conditions for the free movement of other things and people,
such as:

 criminals
 terrorists
 the proceeds of crime
 funds for terrorism.

FIU.net gives Europol and individual FIUs all the tools they need to detect and combat
money laundering and the financing of terrorism at the level required to ensure success.
HAMPERED NO MORE
In the past, individual FIUs in the Member States were tasked with fighting these
aforementioned crimes. They were not only nationally organised but nationally
focussed, and that hampered their work. To internationalise this fight, the FIUs in
France, Italy, Luxembourg and the United Kingdom joined the Dutch FIU, which had a
new vision of a decentralised network that would allow the FIUs in all Member States to
exchange information more effectively. This was the genesis of FIU.net, which became
operational in 2002 (under Council Decision 2000/642/JHA).

In January 2016, FIU.net was incorporated into Europol. This development will enhance
the exchange of financial intelligence available via this network by combining it with the
products and services of Europol. By creating more synergy between financial and
criminal intelligence, FIU.net ultimately boosts efforts to fighting organised crime and
terrorism in the EU.

HOW IT WORKS
Any party involved in handling cash or value commodities is required to disclose
unusual or suspicious transactions to the FIU in its Member State. The FIU analyses the
material it receives. If there is a suspicion of money laundering or the financing of
terrorism, it forwards the intelligence it has gathered to the national authority
responsible for prosecution. As it gathers intelligence, an FIU may have occasion to
request information from its counterparts in other Member States. Article 5.4 of the
aforementioned Decision stipulates that FIUs “shall undertake all necessary measures,
including security measures, to ensure that information submitted under this Decision is
not accessible by any other authorities, agencies or departments” than those it is
intended for.

The benefits

FIU.net is designed to facilitate the highly secure connections required for these
exchanges of information. Among other things, it allows the individual FIUs to identify
connections between the financial intelligence they collect and criminal intelligence
stored at Europol. It also brings a host of other benefits, including the following:

 The financing of FIU.net no longer depends on EU Commission grants. Rather, it

is integrated into Europol’s budget, thus ensuring continuity of operations and
allowing for continual improvement of the network.
 Europol can offer its partners both centralised and decentralised options for
exchanging information, so information can pass either through Europol or
directly from one FIU to another.
 Europol can serve as an information hub within FIU.net.
 Both Europol and individual FIUs can respond rapidly to any situations requiring
urgent action.
EU INTERNET REFERRAL UNIT - EU IRU
Monitoring terrorism online
PrintPDF

 ABOUT
 EU IRU UPDATES

The EU Internet Referral Unit (EU IRU) detects and investigates malicious content on
the internet and in social media.

The work of the EU IRU, which is based at Europol’s European Counter Terrorism
Centre (ECTC), not only produces strategic insights into jihadist terrorism, but also
provides information for use in criminal investigations.

Terrorists’ use of the internet and social media has increased enormously over the
course of recent years. Jihadist groups, in particular, have demonstrated a sophisticated
understanding of how social networks operate and have launched well-organised,
concerted social media campaigns to recruit followers and to promote or glorify acts of
terrorism and violent extremism.

As this is a problem that spans multiple linguistic audiences and jurisdictions, a common
EU response was necessary, hence the establishment of the EU IRU in 2015.

The EU IRU has the following core tasks:

 Supporting the competent EU authorities by providing strategic and operational

analysis;
 Flagging terrorist and violent extremist online content and sharing it with relevant
partners;
 Detecting and requesting removal of internet content used by smuggling
networks to attract migrants and refugees;
 Swiftly carrying out and supporting the referral process, in close cooperation with
the industry.

RESOURCES
The EU IRU comprises of a team of experts with multiple and diverse knowledge and
skills, ranging from experts in religiously inspired terrorism, translators, information and
communications technology developers and law enforcement experts in counter
terrorism.

Since it was set up, the EU IRU has assessed in total 42 066 pieces of content, which
triggered 40 714 decisions for referral across over 80 platforms in more than 10
languages*. On average, the content flagged for referrals has been removed in 86% of
the cases (* figures of December 2017).
EUROPOL’S 20 MOST NOTEWORTHY
OPERATIONS
PrintPDF

2002

THE EUROPEAN JOINT UNIT ON PRECURSORS (EJUP)

First ever ‘Joint Investigation Team’ in Europe

Crime field:

Drug trafficking

Participating countries: Belgium, France, Netherlands, Germany and United Kingdom

The EJUP was a multi-national operational unit based at Europol, part funded by the
European Commission. Its focus was on combatting the flow of precursor chemicals
used in the illicit production of drugs (all drugs). EJUP collected, developed and
provided tactical intelligence to directly assist in the ID of suspects active in this field
and this led to numerous arrest and disruptions of criminal operations. Its initiation and
development was overseen by Rob Wainwright, former Director at Europol, in his then
position as Head of the International Division at the NCIS.
2005

OPERATION PACHTOU
First international operation on such a scale supported by Europol

Crime field:

Facilitation of illegal immigration

Participating countries: France, Italy, United Kingdom, Greece and Turkey

More than 30 addresses of a wide range of people, suspected of being involved in the
clandestine smuggling of thousands of illegal immigrants into the EU, were searched
yesterday morning. In total, 53 main suspects were arrested in France (22), Italy (18)
the United Kingdom (7), Greece (3) and Turkey (3). Subsequently, 56 illegal immigrants
were arrested in France, mainly in the region of Calais but also in Paris. The United
Kingdom was the main destination country, although immigrants were also smuggled to
the Scandinavian countries, Belgium, the Netherlands and Germany. Europol supported
the exchange of information, provided intelligence analysis and assisted with
operational support in Paris, France during this day of action.

2007

OPERATION KOALA
First press conference organised in The Hague

Crime field:

Child sexual exploitation

Participating countries: Australia, Austria, Belgium, Denmark, France, Greece,

Iceland, Ireland, Italy, Luxembourg, Malta, Netherlands, Norway, Poland, Spain,
Sweden, United Kingdom.
The case began in 2006 when a child sexual abuse video was discovered in Australia.
This particular video had been produced in Belgium. A Belgian perpetrator and two
victims were identified. Consequently, the sole producer of the material – a 42-year-old
Italian national, was arrested by the Italian national police in Bologna. After his arrest,
the Italian authorities forwarded all digitalised material, including customer details to
Europol. The material was analysed and disseminated to the 19 countries in which
some 2 500 ‘customers’ were identified.

2010

OPERATION SHOVEL
First ever mobile office deployment

Crime field:

Money laundering

Participating countries: Ireland, United Kingdom, Spain and Belgium

Operation SHOVEL focused on the activities of the extremely violent Irish-based

Kinahan organised crime group involved in drugs and weapons trafficking across
Europe. Europol assisted Ireland, the UK, Spain and Belgium to detect the criminal
proceeds related to the group’s criminal activities and to help the affected Member
States in disrupting their money-laundering network. The operation took place in May
2010. Besides several analysis reports produced by Europol, which focused on the
different roles within the criminal group as well as the assets at their disposal in the EU,
the USA and Asia, Europol effectively supported the day of action by simultaneously
deploying three mobile offices in Ireland, Spain and the UK. Over 700 investigators
were involved and 38 arrests were executed in the three countries, in addition to
numerous house searches.

2010

OPERATION WATANI
First ever operational meeting funded by Europol (November 2010)
 Crime field:

Drug trafficking

Participating countries: Germany, Czechia, Slovakia, Hungary, Austria, Slovenia,

Romania, Bulgaria and United States

This was a far reaching investigation into the diversion and trafficking of a critical
precursor chemical (acetic anhydride) necessary in the illicit production of heroin in
Afghanistan). Vast quantities (over 80 tonnes) were diverted from the EU and shipped
toward Afghanistan. Significant results accrued also arrests and there was much media
attention.

2011

OPERATION RESCUE
Crime field:

Child sexual exploitation

Participating countries: Australia, Belgium, Canada, Germany, Greece, Iceland, Italy,

Netherlands, New Zealand, Poland, Romania, Spain, United Kingdom and United
States

250 suspects were arrested and 252 children safeguarded following a sting against
child sexual offenders member of the online forum – boylover.net – that promoted
sexual relationships between adults and young boys. The website operated from a
server based in the Netherlands and at its heights, boasted up to 70 000 members
worldwide. Instrumental to the success was the unique role played by Europol in
identifying the members of the child sex abuse network. In particular, it was the work of
Europol analysts in cracking the security features of a key computer server at the centre
of the network which uncovered the identity and activity of the suspected child sex
offenders. Europol subsequently issued over 4 000 intelligence reports to police
authorities in over 30 countries in Europe and elsewhere, which has led to the arrests of
suspects and the safeguarding of children.

2011

OPERATION OPSON
First operation of its kind

Crime field:

Intellectual property crime / Counterfeiting and Product Piracy / Food fraud

Participating countries: Bulgaria, Denmark, France, Hungary, Italy, Netherlands,

Romania, Spain, Turkey and United Kingdom.

Hundreds of tonnes of fake and substandard food and drink including champagne,
cheese, olive oil and tea have been seized in this first joint INTERPOL-Europol
coordinated operation across 10 countries, effectively disrupting the organised criminal
gangs behind this activity. This was the first operation of its kind which has been
running every year ever since, with a record number of 67 participating countries in
2018?. To this day,, over 38 million litres of counterfeit drinks and 27 000 tonnes of
potentially harmful food have been removed in total from the consumer market in
Europe and beyond as a result of Operation OPSON.

2012

OPERATION OAKLEAF
First ever operation to crash our secure communication network due to the
high volume of contributions received

Crime field:

Organised property crime

Participating countries: Austria, Belgium, Czechia, Denmark, Finland, France,
Germany, Ireland, Italy, Netherlands, Norway, Portugal, Spain, Sweden, Switzerland,
United Kingdom and United States

Operation OAKLEAF started in November 2010 on the initiative of Ireland, to target the
activities of the Rathkeale Rovers, a mobile organised crime group of Irish origin
specialised in the theft and illegal trade of rhino horn. As part of their criminal
enterprise, this highly organised group is establishing companies all over Europe in an
attempt to legitimise and cover their illegal activities. After EU and non-EU law
enforcement authorities agreed that a coordinated approach was vital to tackle this
group, several operational meetings were organised at Europol. The meetings
highlighted how dozens of ‘minor’ cases that have occurred all over the EU are
ascribable to this group. 31 members of this organised crime group were arrested, and
69 cases of thefts identified, including 58 related to rhino horn (95 horns stolen)..

2013

OPERATION VETO
Highest international media attention

Crime field:

Sports corruption

Participating countries: Austria, Bulgaria, Croatia, Czechia, Estonia, Finland,

Germany, Greece, Hungary, Italy, Moldova, Netherlands, Slovakia, Slovenia, and
United Kingdom

An international criminal network was involved in widespread football match-fixing. The

network’s activities took the form of a sophisticated organised crime operation, which
generated huge illicit profits estimated in the hundreds of millions by gambling on fixed
matches in the Asian betting markets. Illegal operations were run out of Singapore with
bribes up to EUR 100 000 paid per match. 14 persons were convicted and sentenced to
a total of 39 years of prison in Germany, 425 match officials, club officials and players
investigated and 380 suspicious matches identified.

2014
OPERATION ONYMOUS
First cyber takedown of that scale

Crime field:

Cybercrime

Participating countries: Bulgaria, Czechiai, Finland, France, Germany, Hungary,

Ireland, Latvia, Lithuania, Luxembourg, Netherlands, Romania, Spain, Sweden,
Switzerland and United Kingdom.

On 6 November, law enforcement and judicial agencies around the globe undertook a
joint action against dark markets running as hidden services on Tor network. The action
aimed to stop the sale, distribution and promotion of illegal and harmful items, including
weapons and drugs, which were being sold on online ‘dark’ marketplaces. Operation
ONYMOUS , coordinated by Europol’s European Cybercrime Centre (EC3), the FBI, the
U.S. Immigration and Customs Enforcement’s (ICE), Homeland Security Investigations
(HSI) and Eurojust, resulted in 17 arrests of vendors and administrators running these
online marketplaces and more than 410 hidden services being taken down. In addition,
bitcoins worth approximately USD 1 million, EUR 180 000 euro in cash, drugs, gold and
silver were seized. The dark market Silk Road 2.0 was taken down by the FBI and the
U.S. ICE HIS, and the operator was arrested.

2014

OPERATION ARCHIMEDES
Biggest ever coordination centre set up at Europol

Crime field:

Serious and organised crime

Participating countries: All 28 EU Member States + Australia, Colombia, Norway,

United States, Serbia and Switzerland.
Between 15 and 23 September, law enforcement authorities from 34 countries, joined
forces in Operation ARCHIMEDES. The operation targeted organised crime groups and
their infrastructures across the EU in a series of actions in hundreds of locations.
Europol played a central role in coordinating and directing the overall operation from a
24/7 operational coordination centre in The Hague, manned by Europol officials, liaison
officers from all involved countries and colleagues from international law enforcement
partners.

2015

OPERATION VERTIGO
Scale and complexity of this €300 million carousel fraud

Crime field:

Economic Crime,MTIC (Missing Trader Intra Community) fraud

Participating countries: Czechia, Germany, Netherlands and Poland

In this carousel fraud case, the organised crime group behind the criminal activity used
a sophisticated infrastructure (buffer companies, missing traders, companies functioning
as ‘alternative payment platforms’ to facilitate money laundering and crime-related
money transfers) spread over various Member States and a number of third States,
defrauding EU citizens of approximately EUR 320 million in tax revenues. Several
coordination between November 2013 and October 2015. Czechia, Germany, Poland
and the Netherlands established a JIT. Europol provided extensive analytical support
and intelligence sharing.

2016

OPERATION AUSTRIAN LORRY

EMSC operation with highest media impact
 Crime field:

Facilitation of illegal immigration

Participating countries: Austria and Hungary.

On 27 August 2015, 71 irregular migrants were found dead in a lorry that had been
abandoned close the Hungarian-Austrian border. Fearing they might be spotted by law
enforcement authorities along their journey, the smugglers did not allow the migrants to
open the back doors of the vehicle. Also no ventilation alternatives whatsoever were
provided. This eventually led to the asphyxiation and death of all migrants. The lorry
crossed the border into Austria, where it was abandoned on the motorway. Police
officers who arrived later on to tow away the abandoned vehicle, discovered the dead
bodies. In a very short period of time, Europol was able to identify four suspects by
cross-checking the information received against its databases. Austrian authorities
issued European arrest warrants under the names of the suspects, which eventually led
to the immediate arrest of the key facilitators in Hungary.

2016

JOINT OPERATIONAL TEAM ROSE OF THE WINDS

Biggest operation in this crime field

Crime field:

Drug trafficking

Participating countries: France, Greece, Italy and Spain.

Several international investigations against organised crime networks active in large

scale drug trafficking were launched as early as 2013 between Italy, France, Greece,
Spain and France in the framework of the Joint Operational Team (JOT) ROSE OF THE
WINDS. In 2015, four cargo ships carrying over 61 tonnes of cannabis resin were
interdicted in Palermo, Malaga, Cagliari and again Palermo, and 46 crew members
arrested. In the framework of this same JOT, a major Moroccan drug kingpin, who had
acted at the peak of the hashish supply chain was arrested in Italy in December 2016.

2017

OPERATION ALPHABAY/HANSA
Most sophisticated cyber takedown

Crime field:

Cybercrime

Participating countries: United States, Canada, Thailand, the Netherlands, Germany

and Lithuania.

In summer 2017, two joint operations led by the US FBI and the Dutch National Police,
with the support of Europol and other law enforcement partners, shut down Alphabay
and Hansa, two of the largest marketplaces responsible for the trading of over 350 000
illicit goods like drugs, firearms and cybercrime tools, such as malware. AlphaBay’s
servers were seized with the help of authorities in Thailand, Lithuania, Canada, Britain
and France. The operation included the arrest of suspected AlphaBay founder, a
Canadian citizen detained on behalf of the US in Thailand. The Dutch National Police
took control of Hansa on 20 June, seizing servers in Lithuania, the Netherlands and
Germany. The action permitted surveillance of criminal activities on the marketplace
before it was shut down in July.

2017

OPERATION GAZEL
Crime field:

Intellectual property crime / Counterfeiting and Product Piracy / Food fraud

Participating countries: Spain, Belgium, France, Italy, Portugal, Romania, Switzerland
and United Kingdom.

The Spanish Guardia Civil, in coordination with Europol, dismantled an organised crime
group that was trading horsemeat in Europe that was unfit for human consumption. In
2013, Irish authorities detected beefburgers containing horsemeat. Meat companies,
frozen food companies and fast-food companies were affected by the investigation,
which led to the identification of a Dutch citizen known in the horsemeat world, although
his whereabouts were then unknown. In 2016, the Spanish Guardia Civil was able to
locate the Dutch suspect in Calpe, Alicante. From there he led the activities of the
organisation, putting his most trusted men in charge in every country affected by the
scam. The arrest of the leader of the criminal group was subsequently carried out in
Belgium. 65 other members of the organisation were arrested in Spain. Different police
actions were simultaneously carried out in France, Portugal, Italy, Romania, Switzerland
and the United Kingdom.

2018

OPERATION CARBANAK
Highest performing press release of last year

Crime field:

Cybercrime

Participating countries: United States, Romania, Moldova, Belorussia and Taiwan.

The leader of the crime gang behind the Carbanak and Cobalt malware attacks
targeting over a 100 financial institutions worldwide was arrested in Alicante, Spain,
after a complex investigation. The criminal operation has struck banks in more than 40
countries and has resulted in cumulative losses of over EUR 1 billion for the financial
industry. The magnitude of the losses is significant: the Cobalt malware alone allowed
criminals to steal up to EUR 10 million per heist.

2018

OPERATION AMAQ
 Crime field:

Terrorism

Participating countries: Belgium, Bulgaria, Canada, France, Netherlands, Romania,

United Kingdom and United States.

On 25 April 2018 law enforcement authorities of the European Union Member States,
Canada and the USA launched a joint action against the so-called Islamic State
propaganda machine in order to severely disrupt their propaganda flow. The takedown
operation was coordinated by the European Union Internet Referral Unit (EU IRU) within
the European Counter Terrorism Centre at Europol’s headquarters. With this takedown
action, targeting major IS-branded media outlets like Amaq, but also al-Bayan radio,
Halumu and Nashir news, IS's capability to broadcast and publicise terrorist material
has been compromised.

2018

OPERATION POLLINO
Largest coordinated action against Italian organised crime

Crime field:

Mafia-Structured Organised Crime Groups

Participating countries: Netherlands, Italy, Germany, Belgium and Luxemburg.

During a joint action day on 5 December 2018, judicial and law enforcement authorities
in the Netherlands, Italy, Germany, Belgium and Luxemburg have taken coordinated
and decisive action against the ‘Ndrangheta. The operation, code-named ‘Pollino’, is the
biggest of its kind to date in Europe. Several hundred police, including special
intervention units, were engaged in today’s action, together with prosecutors and
investigative officers. As a result of close cooperation, almost than 4,000 kg of cocaine
and hundreds of kilos of other drugs have been detected across Europe during the
course of the investigation. By 12.00 on the action day, 84 suspects have been reported
arrested, including high-ranking members of the mafia network.
2019

OPERATION EAST RIVER

Second largest darknet market taken down by law enforcement

Crime field:

Cybercrime

Participating countries: Germany, Netherlands and United States.

This Europol-coordinated police operation resulted in the arrest of 3 individuals

suspected of running the Wall Street Market, the world’s second-largest dark web
marketplace. Close to its takedown, a total of 63 000 sales offers were placed on the
online illegal marketplace, and more than 1 115 000 customer accounts and 5 400
sellers registered. Authorities also seized the site’s servers and more than €550 000 in
cash. The arrests were coordinated by Europol’s Dark Web Team which works together
with EU partners and law enforcement across the globe to reduce the size of this
underground illegal economy.