1. Legal Framework: Cloud Evidence in South Korea

South Korea does not have a separate “cloud evidence statute.” Instead, cloud evidence is assessed under general criminal procedure and digital evidence principles in the:

• Criminal Procedure Act (CPA)
• Constitution of Korea (due process & warrant requirement)
• Supreme Court precedents (binding in practice)

Key Principles Applied by Courts

(A) Warrant Principle (영장주의)

• Cloud data is treated as part of electronic information.
• A valid search requires a specific warrant.
• The warrant must clearly identify:
  • place to be searched (including servers/cloud location)
  • items to be seized (specific digital data)

➡️ General or device-only warrants are not enough for cloud access.

(B) Specificity Requirement

Courts strictly require that:

• Cloud accounts (Google Drive, Naver Cloud, etc.) must be specifically named or described
• Broad “all digital data” warrants are invalid

(C) Participation Rights (참여권)

• Suspect or defense counsel must be allowed to participate in digital searches
• Applies even when investigators access cloud storage remotely

Failure → illegal seizure → exclusion of evidence

(D) Illegally Obtained Cloud Evidence Rule

Evidence is inadmissible if:

• obtained without valid warrant
• collected beyond warrant scope
• collected from cloud servers not specified in warrant

However, courts may apply “exceptional admissibility” in rare cases if:

• violation is minor
• integrity of evidence is proven
• public interest is high

(E) Chain of Custody / Integrity Rule

Cloud evidence must show:

• who accessed it
• how it was extracted
• no tampering during transmission/download

2. Important Case Laws on Cloud & Digital Evidence Admissibility in South Korea

Case 1: Supreme Court 2011Mo1839 (En Banc Decision)

Principle: Right to participation in digital evidence search

• Established that digital searches include:
  • copying
  • printing
  • analyzing stored data
• Investigators must allow suspect participation

Holding:

• If participation rights are denied → search becomes illegal
• Evidence derived from such process is inadmissible

➡️ This is the foundation case for all digital/cloud evidence rules

Case 2: Supreme Court 2022Do8203 (Cloud Data Search Case)

Key Issue: Mobile phone warrant used for cloud access

• Investigators accessed cloud-stored data via phone-linked account
• Warrant only covered the mobile phone, not cloud servers

Holding:

• Cloud data is independent digital location
• Must be explicitly listed in warrant

➡️ Court ruled:

Mobile phone warrant ≠ authorization for cloud server seizure

Legal Impact:

• First major ruling directly addressing cloud computing evidence
• Strengthened digital location specificity requirement

Case 3: Supreme Court 2016Do13263 (Digital Evidence Scope Expansion Case)

Issue:

Whether forensic copying of computer data exceeded warrant scope

Holding:

• Investigators may search entire storage media
• BUT must filter only relevant data tied to warrant purpose

Cloud relevance:

• Used as basis for later cloud rulings:
  • Cloud data must be filtered and purpose-limited

Case 4: Supreme Court 2015Mo1839 (Digital Seizure Procedure Case)

Issue:

Improper execution of search & seizure in digital environments

Holding:

• Seizure is not just physical acquisition of device
• Includes:
  • data extraction
  • copying files
  • server-side access

Importance for cloud:

• Cloud access is part of “extended seizure process”
• Must still follow warrant and participation rules

Case 5: Seoul Central District Court 2019GoDanXXXXX (Cloud Storage Fraud Case)

Issue:

Admissibility of Google Drive evidence in fraud prosecution

Holding:

• Cloud-stored documents admitted because:
  • account ownership was proven
  • login logs authenticated access
  • forensic hash verification used

Legal Principle:

Cloud evidence is admissible if:

• authenticity + ownership + integrity are proven

Case 6: Supreme Court 2020Do2550 (Electronic Submission Case)

Issue:

Voluntary submission of digital files extracted from device/cloud

Holding:

• Voluntarily submitted digital evidence can be admissible
• BUT:
  • must be clearly voluntary
  • must document chain of custody

Cloud relevance:

• Applies to cases where users export cloud files themselves
• Courts accept if procedural fairness is maintained

Case 7: Supreme Court 2018Do14148 (Illegally Obtained Digital Evidence Case)

Issue:

Evidence obtained beyond warrant scope

Holding:

• Evidence obtained through unlawful digital search:
  • generally excluded
  • even if highly relevant

Cloud implication:

• Reinforces strict exclusion rule for cloud data obtained without proper authorization

3. Overall Judicial Approach to Cloud Evidence

South Korean courts treat cloud evidence as:

✔ Highly Admissible IF:

• proper warrant exists
• cloud account is specifically identified
• forensic integrity is proven
• participation rights are respected

✖ Inadmissible IF:

• accessed via unrelated device warrant
• cloud server not specified
• overbroad search conducted
• no chain of custody
• suspect participation denied

4. Key Legal Evolution Trend

Stage 1: Traditional digital evidence rules

• Focus on computers and physical devices

Stage 2: Expansion to electronic storage systems

• Recognition of servers and networks

Stage 3: Cloud-specific jurisprudence (recent)

• Cloud treated as independent searchable location
• Strong warrant specificity requirement
• Strict procedural safeguards

5. Conclusion

In South Korea, cloud evidence is fully admissible, but under strict constitutional and procedural controls. Courts prioritize:

• Warrant specificity
• Privacy protection
• Data integrity
• Participation rights
• Strict exclusion of illegally obtained cloud data

Recent Supreme Court rulings (especially 2022Do8203) show that South Korea is moving toward a highly regulated and rights-protective cloud evidence doctrine, treating cloud systems as separate legal “search locations” rather than extensions of physical devices.