Friday

15th Feb 2019

Focus

EU proposes tougher privacy rules for online messaging

  • Messaging services are facing tougher privacy rules (Photo: Nicolas Nova)

The EU commission is tightening privacy rules on messaging services like WhatsApp, Skype and web-based email.

On Tuesday (10 January), it proposed to overhaul the e-privacy directive to bridge the gap between traditional telephone operators and the broadly US-based instant messaging services.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... or join as a group

The current directive, last reformed in 2009, only covers telecom operators. The reform expands the rules to online services, gives people more control over intrusive cookies, and evolves the directive into a much more powerful regulation.

The EU commission says the reforms are also needed because over 90 percent of people in an EU survey want their emails and online messaging to remain confidential.

The proposal involves giving people the choice to opt in or out of services provided by so-called Over-The-Top (OTT) applications such as WhatsApp or Facebook Messenger. But it also claims to open up new business opportunities for more traditional telecom operators by allowing them to commercialise data that was previously off limits.

"Consent of the user is paramount," EU digital economy commissioner Andrus Ansip told reporters.

Ansip said the new rules would not only apply to traditional services like voice calls or SMS, but also to internet based communication services "or future based services that allow any type of communication".

Consent will be required for anything from so-called metadata - the details of when and where a call was placed - to the content of communications.

Email providers like Gmail regularly scan people's emails to help target adverts. Cookies are also required to provide Google's translation services of those emails.

The Commission says the same services will now have to provide "effective consent", giving people a more readily available option of saying no instead of having to read through the small print in the terms and conditions.

Gmail will also only be able to process the bare minimum of data needed to provide the email service for free.

It means today's email scanning will be banned unless the user agrees. But saying no to email scans only prevents adverts from being personalised or relevant to the user. It does not stop adverts.

Consent won't be needed for everything. Things like remembering shopping histories and filling in online forms will be exempted.

One Finnish web developer recently discovered a "phishing" attack that specifically targets auto-fill, reported the Guardian.

The developer found that some browsers like Google Chrome's auto-fill can be tricked into giving away personal information like email addresses through an auto-fill function that is not disabled by default.

Brussels-based consumer lobby group Beuc argues that the Commission's proposal should have blocked cookies by default.

“Consumers must have an alternative to being under 24/7 commercial surveillance when using digital services," said Beuc director Monique Goyens.

Some are not happy, fearing it will cut into their advertising revenues.

"The approach to extend historic telephony rules to new services does not reflect today’s market realities," said the Brussels-based American Chamber of Commerce to the EU.

Firms that break the rules could end up paying fines of up to 4 percent of their global turnover.

The Brussels-executive is hoping to have the new rules up and running by the time the EU's data protection regulation, agreed last year, is fully operational by May 2018.

Data protection regulation and e-privacy

EU commission officials say their is no overlap between e-privacy and the general data protection regulation.

They note that the regulation deals with processing of personal data, while e-privacy covers communication between people.

OTTs under the old data protection rules were also able use a "legitimate interest" clause to process data without people's consent. The new rules remove that clause.

The EU's digital economy in 2015 was worth €272 billion.

EU trying to salvage US deal on data privacy

Privacy safeguards for EU citizens' personal data that is sent to the United States remains exposed to abuse, due to the lack of oversight and the shift towards increased surveillance under president Trump.

Some EU states face delays in 5G preparation

National governments secured a one-year extension for publishing plans to make radio frequencies available for mobile communications - but some were nevertheless unable to meet the deadline.

News in Brief

  1. Spain's Sanchez calls snap election on 28 April
  2. 15,000 Belgian school kids march against climate change
  3. May suffers fresh Brexit defeat in parliament
  4. Warning for British banks over Brexit staff relocation
  5. Former Italian PM wants Merkel for top EU post
  6. Antisemitic incidents up 10% in Germany
  7. Italy's asylum rejection rate at record high
  8. Hungary will not claim EU funds for fraudulent project

Are EU data watchdogs staffed for GDPR?

The success of the new general data protection regulation (GDPR) will depend on whether data protection authorities enforce the new rules - which, in turn, will be at least partly determined by how many people they employ.

Eight countries to miss EU data protection deadline

The EU starts enforcing its general data protection regulation on 25 May - but Belgium, Bulgaria, Cyprus, Czech Republic, Greece, Hungary, Lithuania and Slovenia won't be ready. The delay will cause legal uncertainty.

Stakeholders' Highlights

  1. Counter BalanceEU bank urged to free itself from fossil fuels and take climate leadership
  2. Intercultural Dialogue PlatformRoundtable: Muslim Heresy and the Politics of Human Rights, Dr. Matthew J. Nelson
  3. Platform for Peace and JusticeTurkey suffering from the lack of the rule of law
  4. UNESDASoft Drinks Europe welcomes Tim Brett as its new president
  5. Nordic Council of MinistersNordic ministers take the lead in combatting climate change
  6. Counter BalanceEuropean Parliament takes incoherent steps on climate in future EU investments
  7. International Partnership For Human RightsKyrgyz authorities have to immediately release human rights defender Azimjon Askarov
  8. Nordic Council of MinistersSeminar on disability and user involvement
  9. Nordic Council of MinistersInternational appetite for Nordic food policies
  10. Nordic Council of MinistersNew Nordic Innovation House in Hong Kong
  11. Nordic Council of MinistersNordic Region has chance to become world leader when it comes to start-ups
  12. Nordic Council of MinistersTheresa May: “We will not be turning our backs on the Nordic region”

Latest News

  1. Sluggish procedure against Hungary back on table
  2. Could Finnish presidency fix labour-chain abuse?
  3. Brexit and trip to Egypt for Arab League This WEEK
  4. Belgian spy scandal puts EU and Nato at risk
  5. EU Parliament demands Saudi lobby transparency
  6. Saudi Arabia, but not Russia, on EU 'dirty money' list
  7. EU agrees draft copyright reform, riling tech giants
  8. Rutte warns EU to embrace 'Realpolitik' foreign policy

Stakeholders' Highlights

  1. International Partnership for Human RightsOpen letter to Emmanuel Macron ahead of Uzbek president's visit
  2. International Partnership for Human RightsRaising key human rights concerns during visit of Turkmenistan's foreign minister
  3. Nordic Council of MinistersState of the Nordic Region presented in Brussels
  4. Nordic Council of MinistersThe vital bioeconomy. New issue of “Sustainable Growth the Nordic Way” out now
  5. Nordic Council of MinistersThe Nordic gender effect goes international
  6. Nordic Council of MinistersPaula Lehtomaki from Finland elected as the Council's first female Secretary General
  7. Nordic Council of MinistersNordic design sets the stage at COP24, running a competition for sustainable chairs
  8. Counter BalanceIn Kenya, a motorway funded by the European Investment Bank runs over roadside dwellers
  9. ACCACompany Law Package: Making the Best of Digital and Cross Border Mobility,
  10. International Partnership for Human RightsCivil Society Worried About Shortcomings in EU-Kyrgyzstan Human Rights Dialogue
  11. UNESDAThe European Soft Drinks Industry Supports over 1.7 Million Jobs
  12. Mission of China to the EUJointly Building Belt and Road Initiative Leads to a Better Future for All

Join EUobserver

Support quality EU news

Join us