Justice for James Harding

In June 2025, James Harding was sentenced to life imprisonment with a minimum term of 32 years. The case against James was based entirely on unreliable EncroChat evidence, the admissibility of which was heavily disputed. It was James' case that this evidence had been misattributed to him and the person responsible for these offences remains at large.

If you knew James and spent time with him during 2019 and 2020, please get in touch as you may have information which could assist his case.

About James Harding

James was convicted at the Old Bailey after a seven-week trial. The case against James rested solely on the attribution of thetopsking EncroChat handle to him, something that he has consistently denied.

thetopsking was running large-scale drug importations and involved in a plot to murder rival dealers. The only evidence linking James to those offences was a spreadsheet of messages, a handful of which were said to attribute thetopsking handle to him.

James lived in Dubai between 2019 and 2021. He worked in the luxury services industry which meant he was active on Dubai’s social scene. He also has a memorable appearance, he has a deformity to his left ear and has distinctive tattoos on his right arm, leg and shoulders.

What We're Seeking

Evidence from friends and associates of James Harding who can speak to his movements and lifestyle in 2020 and 2021. This can include messages, photographs, screenshots and travel records from this period 2020-2021.

Evidence from anybody who met or worked with James during 2020-2021 who can provide evidence of what he was doing during this time.

Independent evidence to show that James Harding was not operating thetopsking EncroChat handle, including evidence which can show he was not present at key locations and dates relied on by the prosecution to attribute thetopsking handle.

New evidence from the public to show James’s innocence.

Case Timeline

27 Dec 2021

Arrested at Geneva Airport, Switzerland.

May 2022

Extradited to the UK.

June 2024

Co-accused extradited from Turkey.

24 Jun 2025

Convicted at the Old Bailey based on EncroChat data.

26 Jun 2025

Sentenced to life imprisonment, minimum 32 years.

See also the official sentencing remarks (link in Sources).

About EncroChat

EncroChat was an encrypted messaging service which was hacked by the French authorities in 2020. While the hack was publicised as targeting organised crime, it affected other users of the EncroChat network, including lawyers, journalists and political dissidents.

Thousands of people have been prosecuted in the UK on the basis of messages obtained from the hack. In most cases, the only evidence linking them to these messages was their attribution to a pseudonymous EncroChat ‘handle’.

The French authorities have refused to reveal how the hack was performed, how the evidence obtained was processed and what, if any, safeguards were put in place to ensure that the data was not modified or otherwise contaminated. Defendants have been convicted on evidence of unknown provenance, accuracy and reliability – in many cases, the prosecution have relied on nothing more than an Excel spreadsheet of messages, without any independent evidence to corroborate the allegations.

This has caused grave concerns amongst lawyers, journalists and privacy campaigners. Core principles of fair trial rights, open justice and accountability have been bypassed, with chilling implications for the rights of citizens in the digital age.

The legality of the hack and the reliability of the evidence obtained are subject to ongoing challenge in the domestic and European courts. This litigation has led to some deeply troubling revelations, including the following:

the hack may have been illegal under UK law, meaning that no prosecutions should have been brought

a sorting error may have affected the entire dataset, meaning that defendants have been convicted on the basis of messages sent by others

up to 90% of the data is missing, meaning that the attribution evidence relied on in courts has been decontextualised and evidence which could prove that a defendant was not the sender of the messages has been lost forever.

Admissible ≠ infallible — datasets still need to be proven accurate, complete, and correctly attributed.

Why the Evidence is Contested

How much is missing?

According to contemporaneous reporting from the Old Bailey (3 June 2025), defence counsel said former NCA technical officer Luke Shrimpton had told the jury that about 80–90% of overall EncroChat messages were missing from the datasets. Earlier reporting (7 May 2025) quotes Mr Shrimpton acknowledging that Venetic data was often “incomplete.”

These figures come from court reporting, not an official transcript. See Sources below.

Technical failures & data loss

Independent reporting on earlier EncroChat trials recorded joint expert evidence that the French implant and processing system were “not reliable,” frequently failing and requiring restarts; data was “frequently lost or missing for significant periods.”

Verification & standards (ACPO/FSR)

Defence experts argue the datasets cannot be fully verified against UK digital evidence principles (e.g., ACPO/FSR) because the capture process is secret and hashing/continuity artefacts were not provided by the French. Contemporary analysis also raised that key reliability guidelines were not followed.

Foreign secrecy & disclosure gaps

French national security laws block disclosure of how the implant captured and sorted data. UK courts therefore rely on another country’s undisclosed process—limiting the defence’s ability to test reliability.

Sources

Old Bailey reporting that defence said Luke Shrimpton told the jury ~80–90% of messages were missing (3 Jun 2025): Essex News & Investigations

Old Bailey reporting quoting Shrimpton that Venetic datasets were often “incomplete” (7 May 2025): Essex News & Investigations

Technical failures & missing data periods reported from earlier trial: Computer Weekly (11 Mar 2022)

Admissibility & lawful warrants ruling: IPT Judgment (11 May 2023)

Reliability guidance concerns (FSR/ETSI not followed): Computer Weekly (29 Mar 2021)

Links above are to public reporting and court documents; this site summarises those materials.