"Needed in the wake of those domestic terror attacks.."
Except that AFAIK Australia has had no domestic terror attacks.
The European Data Retntion Directive (6-24 months) was bought in by the UK when it had the chair of the EU following the Madrid rail bombings. Note that Spain did not draft it or request it. The did not see the need for it (and Spain knows a lot about domestic terrorists).
"significant extension of the power of the state over the citizen"
Correct.
The principles of the UK Data Protection Act are below. Note item 3. This behavior is grossly disproportionate to the threat (what threat?) and basically says "you're all going to be criminals, we might as well start the paperwork now."
1. Processed fairly and lawfully.
2. Obtained for specified and lawful purposes.
3. Adequate, relevant and not excessive.. Read 1000 000 peoples data to (amybe) find 10 genuine bad guys. How many would only be caught by this and no other methods?
4. Accurate and up to date. Well I don't think that will be a problem as it'll be snooping 24/7/365
5. Not kept any longer than necessary.
6. Processed in accordance with the “data subject’s” (the individual’s) rights.
7. Securely kept. (99.99% of the data has no need to looked at. All storage should be strongly encrypted)
8. Not transferred to any other country without adequate protection in situ.
The Australian desert being used as a Taliban training ground is a very bad straight-to-video film script (I've seen it). IRL it's simply BS.