ECC WorkProgram Database

NaN2_05

Last update: 25-02-2026

ECC Report

ECC Report on international voice traceback

The WG NaN has already done a lot of work in combatting fraudulent electronic communications. With this work item another recommendation from Report 275 will be executed.

The objective of voice traceback is to find the source of illegal voice calls. It is important to identify the operators which are the source of illegal voice calls. These operators can then be held accountable for originating or being too passive allowing fraudulent traffic. Collaboration between operators/carriers is needed across international borders in the CEPT-area.

The aim of the report is

to develop an operational framework which enables international voice traceback;
identify regulatory and legal obstacles for such a international voice traceback as e.g. privacy concerns (GDPR and e- privacy laws impose strict regulations on the collection, processing, and storage of personal data, including voice communications) and contractual issues in interconnect agreements such as non-disclosure agreements;
Explore ideas to deploy voice traceback with other regions in the world.

If needed recommendations can be made for provisions enabling voice traceback in future European and national legislation.

In order to develop the report the approach in the US to trace the origin of the fraudulent traffic including the work of the Industry Traceback Group (ITG) will be studied.

S: 26-11-2024
T: 26-11-2026

Work item approved at WG NaN#29, Bonn, 26-28 November 2024.

In Progress

NaN2_06

Last update: 19-06-2026

ECC Report

ECC Report on prepaid SIM-card registration and related KYC requirements.

The work item will examine the regulatory approaches applied in European countries to prepaid SIM-card registration and related Know Your Customer (KYC) requirements, with particular attention to the growing risk of fraud, misuse of anonymously or weakly registered SIM cards, and the resulting challenges for numbering related fraud case investigation. The work will map the current situation across Europe, recognising that not all countries have mandatory prepaid SIM-card registration and that, in many cases, KYC obligations for prepaid SIM cards in the electronic communications sector are relatively recent, still evolving, or implemented with differing levels of strictness.

The work item will compare national frameworks, implementation models and verification practices, including the extent to which identity checks are required at the point of sale or activation, whether remote or digital onboarding is permitted, and how regulatory obligations are supported by operators' operational procedures. It will also identify common gaps, practical enforcement issues and emerging good practices that may help CEPT administrations assess whether existing national measures are sufficient to address fraud risks linked to prepaid SIM use.

The objective is not to harmonise national laws, but to provide a structured overview of the current European landscape and a basis for informed policy discussion on proportionate, effective and enforceable prepaid SIM-card registration and related KYC approaches.

S: 09-06-2026
T: 07-11-2028

Work item approved at WG NaN #32 (9-11 June 2026).

In Progress

NPS_07

Last update: 25-05-2021

ECC Report

CEPT cooperation process for withholding payments and/or blocking access to numbers or services in cases of cross-border fraud or misuse

One of the most effective long-term approaches to tackling fraud and misuse is greater cooperation and information sharing between regulators. This can help us to better understand the changing nature of fraud mechanisms and to develop ex-ante and ex-post measures to protect the interests of citizens and consumers. With this aim, it is proposed to define a process for cooperation in the investigation of cross-border cases of fraud and misuse. The process would assist any regulatory intervention in the withholding of payments and/or blocking of access to numbers or services where fraud or misuse has occurred.

As a starting point, we plan to review the BEREC cooperation process, as set out in report BoR (13)37. The BEREC cooperation process was developed to assist regulatory authorities in the effective application of powers provided by Article 28(2) of the Universal Service Directive (USD) to require the withholding of payments and/or blocking of access to numbers or services in cases of fraud or misuse. It is a cooperation and information sharing tool used to complement national processes in combating fraud and misuse. We would consider the strengths and weaknesses of the BEREC cooperation process in developing the CEPT process.

References:
ECC Report 275 (2018) The role of E.164 numbers in international fraud and misuse of electronic communications services
BEREC Report BoR (13)37 Article 28(2) USD Universal Service Directive: A harmonised BEREC cooperation process, March 2013

S: 31-05-2018
T:

On Hold

NaN2_05 Last update: 25-02-2026	ECC Report	ECC Report on international voice traceback	The WG NaN has already done a lot of work in combatting fraudulent electronic communications. With this work item another recommendation from Report 275 will be executed. The objective of voice traceback is to find the source of illegal voice calls. It is important to identify the operators which are the source of illegal voice calls. These operators can then be held accountable for originating or being too passive allowing fraudulent traffic. Collaboration between operators/carriers is needed across international borders in the CEPT-area. The aim of the report is to develop an operational framework which enables international voice traceback; identify regulatory and legal obstacles for such a international voice traceback as e.g. privacy concerns (GDPR and e- privacy laws impose strict regulations on the collection, processing, and storage of personal data, including voice communications) and contractual issues in interconnect agreements such as non-disclosure agreements; Explore ideas to deploy voice traceback with other regions in the world. If needed recommendations can be made for provisions enabling voice traceback in future European and national legislation. In order to develop the report the approach in the US to trace the origin of the fraudulent traffic including the work of the Industry Traceback Group (ITG) will be studied.	S: 26-11-2024 T: 26-11-2026	Work item approved at WG NaN#29, Bonn, 26-28 November 2024.	In Progress
NaN2_06 Last update: 19-06-2026	ECC Report	ECC Report on prepaid SIM-card registration and related KYC requirements.	The work item will examine the regulatory approaches applied in European countries to prepaid SIM-card registration and related Know Your Customer (KYC) requirements, with particular attention to the growing risk of fraud, misuse of anonymously or weakly registered SIM cards, and the resulting challenges for numbering related fraud case investigation. The work will map the current situation across Europe, recognising that not all countries have mandatory prepaid SIM-card registration and that, in many cases, KYC obligations for prepaid SIM cards in the electronic communications sector are relatively recent, still evolving, or implemented with differing levels of strictness. The work item will compare national frameworks, implementation models and verification practices, including the extent to which identity checks are required at the point of sale or activation, whether remote or digital onboarding is permitted, and how regulatory obligations are supported by operators' operational procedures. It will also identify common gaps, practical enforcement issues and emerging good practices that may help CEPT administrations assess whether existing national measures are sufficient to address fraud risks linked to prepaid SIM use. The objective is not to harmonise national laws, but to provide a structured overview of the current European landscape and a basis for informed policy discussion on proportionate, effective and enforceable prepaid SIM-card registration and related KYC approaches.	S: 09-06-2026 T: 07-11-2028	Work item approved at WG NaN #32 (9-11 June 2026).	In Progress
NPS_07 Last update: 25-05-2021	ECC Report	CEPT cooperation process for withholding payments and/or blocking access to numbers or services in cases of cross-border fraud or misuse	One of the most effective long-term approaches to tackling fraud and misuse is greater cooperation and information sharing between regulators. This can help us to better understand the changing nature of fraud mechanisms and to develop ex-ante and ex-post measures to protect the interests of citizens and consumers. With this aim, it is proposed to define a process for cooperation in the investigation of cross-border cases of fraud and misuse. The process would assist any regulatory intervention in the withholding of payments and/or blocking of access to numbers or services where fraud or misuse has occurred. As a starting point, we plan to review the BEREC cooperation process, as set out in report BoR (13)37. The BEREC cooperation process was developed to assist regulatory authorities in the effective application of powers provided by Article 28(2) of the Universal Service Directive (USD) to require the withholding of payments and/or blocking of access to numbers or services in cases of fraud or misuse. It is a cooperation and information sharing tool used to complement national processes in combating fraud and misuse. We would consider the strengths and weaknesses of the BEREC cooperation process in developing the CEPT process. References: ECC Report 275 (2018) The role of E.164 numbers in international fraud and misuse of electronic communications services BEREC Report BoR (13)37 Article 28(2) USD Universal Service Directive: A harmonised BEREC cooperation process, March 2013	S: 31-05-2018 T:		On Hold