Innovative solutions for enhanced BORDER SECURITY

SERVICE MODEL FOR AIRLINES

October 2015

� A ‘service blueprint’ which includes: I-Checkit operational requirements and processes,

standard operating procedures, and the roles and responsibilities of impacted participants.

� A comprehensive legal compliance framework specifying the rules with which I-Checkit must

comply.

� A financial model detailing costs estimates and describing the modalities by which costs are

recovered through a service subscription fee.

I-Checkit provides a valuable opportunity to integrate trusted industry partners in

creating a border security infrastructure.

I-Checkit puts in place a system that assists countries without fully integrated border

solutions to increase their use of INTERPOL databases, in particular the Stolen and

Lost Travel Documents (SLTD) database.

I-Checkit presents a unique ability to detect in advance identity fraud, illicit cross-

border movement and associated criminal threats, maximizing INTERPOL’s capacity

to support its member countries in combating all forms of crime, including the travel

of foreign terrorist fighters.

A robust business model

Phase 1 - Enrolment

The enrolment process was designed to assist the Organization in enrolling interested airlines

into the I-Checkit service, whilst respecting internal rules and regulations as well as national and

international laws. It includes steps to:

� Ensure endorsement and authorization for data use from INTERPOL National Central Bureaus

(NCBs);

� Select and prioritize interested airlines;

� Perform a thorough due diligence;

� Implement a strong contractual framework, including a non-disclosure agreement and a

general terms and conditions agreement;

� Provide comprehensive training to the airline security team and impacted law enforcement

services.

A ‘service blueprint’, in four major phases

Phase 2 - Deploying / operating the technical solution

� Managing the access of airline users to the I-Checkit screening solution, which is hosted in

INTERPOL’s secure cloud, whilst respecting hit notification restrictions.

� Providing integration support to the airline (pre- and post-connection), ensuring a highly

available and secure communication channel between INTERPOL and the airline.

� Including a continuous improvement process to ensure the long-term maintenance,

enhancement and support of the I-Checkit screening solution.

Phase 3 - Coordinating hit notifications

The I-Checkit service for airlines offers member countries two alternative models regarding the

way hit notifications are coordinated 24/7: the visibility model and the non-visibility (or ‘blind’)

model.

Under the visibility model

� The airline’s security representative will receive an e-mail notification in the case of a positive

search query, or ‘hit’. If an individual whose travel document recorded a hit passes through

immigration, the airline security team can conduct additional verification of the document at

the boarding gate.

� Despite the notification to the security representative, any required law enforcement action

will be undertaken by the NCBs.

Under the non-visibility (blind) schema

� The airline does NOT receive any notification of a “hit”.

� The follow up of any hits will be coordinated by the NCBs.

Under both schemas

� The NCB where the airline is registered and the NCB in the country which issued the travel

document will both receive an alert via regular INTERPOL I-24/7 channels.

� The NCBs of flight departure, transit and arrival will be also informed by the I-Checkit

operational support unit with information related to the travel itinerary.

Phase 4 - Business intelligence reporting

The service will include two levels of reporting:

� Monthly operational reports for participating airlines, with non-personalized data including

the number of checks made by the airline, number of hits generated, queries per day, queries

per day of week, queries per hour, operational cases, success stories.

� Ad-hoc criminal intelligence reports for law enforcement, analysing trends identified through

regular operational checks, and annual strategic reports on changing risk.

The I-Checkit Service is subject to a comprehensive legal framework which includes:

� INTERPOL’s Constitution;

� INTERPOL’s Rules on the Processing of Data (RPD);

� INTERPOL’s Financial Regulations;

� National and international law;

� Specific agreements with private companies;

� International standards for data protection.

A comprehensive legal compliance framework

The I-Checkit service is financed by a contribution from airlines using the service. INTERPOL is

operating the service based on cost recovery via a subscription fee for the airlines. Costs include

provisions for the evolution of the service through continuous improvements, where funding will

be directed towards:

� Enhancements of INTERPOL’s secure databases;

� Augmented data quality and alert response;

� Capacity building and professional network development;

� Intelligence reporting to police, government and industry;

� Support target hardening, risk mitigation, policy development and legislative change.

A sustainable financial model

General SecretariatI-Checkit Service

200 Quai Charles de Gaulle69006 Lyon, France

Tel : +33 4 72 44 70 00Email : I-Checkit@interpol.int

www.interpol.int