Thursday

23rd Mar 2017

Euro-deputies weaken data protection law

  • The industry committee's opinion on data protection was adopted by 33 votes in favour, 24 against and one abstention (Photo: Bombardier)

A handful of euro-deputies in the industry committee (Itre) have introduced industry-backed amendments that weaken a draft EU regulation on protecting people's private data on the Internet.

The amendments reworded a number of definitions that would exempt the content industry from having to obtain the consent of people they want to profile for marketing purposes.

Dear EUobserver reader

Subscribe now for unrestricted access to EUobserver.

Sign up for 30 days' free trial, no obligation. Full subscription only 15 € / month or 150 € / year.

  1. Unlimited access on desktop and mobile
  2. All premium articles, analysis, commentary and investigations
  3. EUobserver archives

EUobserver is the only independent news media covering EU affairs in Brussels and all 28 member states.

♡ We value your support.

If you already have an account click here to login.

“The effect of the adopted text would be to effectively rip up decades of privacy legislation in Europe, undermining trust and confidence - to the detriment of both citizens and business,” said the Brussels-based NGO, European Digital Rights (EDRi), in a statement following the vote earlier this week.

Swedish Pirate party MEP, Amelia Andersdotter, told this website on Thursday (21 February) that the committee has effectively exempted the data of “all people who are acting in a professional capacity" from the regulation on privacy of personal data.

Business contacts would not be included in the definition of personal data either, she noted.

The problem is manifold as other amendments also exempt pseudonymous data and anonymous data from the EU law.

True anonymous data is less useful to industry because it undermines the value of information for marketing purposes, says Fredrik Soderblom, co-founder of the Swedish-based company Storesafe.com.

“If you have properly anonymised data it wouldn’t be commercially interesting to buy it because you want it to be able to pinpoint the individual so you can direct the advertising [at them],” Soderblom told EUobserver.

But to work around the problem, social media outlets like Facebook could make a person’s profile anonymous while giving out data on his or her online "friends." The information could then be defined as pseudonymous data.

Pseudonymous data is information that cannot immediately place the identity of the individual. Device identification numbers, such as IP address, Mac address and Bluetooth numbers as well as mobile phone location details are types of that data that could become "pseudonymous."

Industry uses pseudonymous data in targeted advertising campaigns. But mishaps sometimes occur.

In 2006, America Online released a document that contained the search queries of its users. While the queries themselves were "pseudonymous," the move sparked protest from some users who feared the search results could still be traced back to them.

To prevent mishaps and misuse, privacy advocates want industry to first ask for users' consent.

But Itre’s amendment on pseudonymous data would free industry from the obligation.

The one-sentence amendment describes pseudonymous data as any personal data that has been “collected, altered or otherwise processed so that it of itself cannot be attributed to a data subject without the use of additional data.”

Joe McNamee, EDRi executive director, told this website on Thursday that the “definition is absurd”.

He says it is too broad and too widely open to interpretation.

“If you get the definitions wrong in a piece of legislation then the whole edifice has no foundation,” said McNamee.

The definition means that a person’s name could be pseudonymous but not necessarily their mobile phone number, he added.

Pro-privacy advocates argue that all the data, pseudonymous or not, should come under the data protection regulation.

Meanwhile, Itre’s compromise amendment is broadly in line with a five-page-long position paper circulated to MEPs by online firm Yahoo!, which was obtained by this website.

The Yahoo! paper says that if the data does not contain a person’s name, address or other information that can identify an individual, then it should not have to seek consent for profiling use.

Euro-deputies from the centre-right EPP, the liberal Alde and the eurosceptic ECR group tabled the compromise amendments.

The committee voted them through, along with many others, late on Wednesday afternoon.

The move comes after a London-based NGO, Privacy International, earlier this month exposed a series of MEPs for copy-pasting industry lobbyists' ideas into EU law.

The civil liberties committee will also get to table amendments and to vote on them in April before the bill is adopted in a plenary vote later this year.

'No zero terror risk', EU security commissioner warns

Julian King said it was not an accident that the London attacks happened on the anniversary of the Brussels bombings, while other politicians in Europe advocated for tougher immigration laws and border controls in the wake of the attack.

Analysis

More hype than substance in EU counter-terror plans

The 22 March anniversary of the Brussels bombing will trigger a lot of soul searching. But EU counter-terrorism strategies over the past 10 years have been crisis-driven with little follow through or oversight.

LuxLeaks whistleblowers sentenced again

PwC employees Antoine Deltour and Raphael Halet, who revealed how multinational companies dodged taxes through deals in Luxembourg, were given reduced sentences.

News in Brief

  1. Man arrested in Antwerp after trying to mow people down
  2. Marine Le Pen goes to Russia
  3. Dutch post-election talks prioritise green-right coalition
  4. EU summons Turkish envoy over threats to Europeans
  5. British police make first arrests in London terror probe
  6. EU commission has received Facebook reply on WhatsApp
  7. Rome expects thousands of protesters at summit
  8. Dijsselbloem says his comments had 'Dutch directness'

Stakeholders' Highlights

  1. Malta EU 2017New EU Rules to Prevent Terrorism and Give More Rights to Victims Approved
  2. European Jewish Congress"Extremists Still Have Ability and Motivation to Murder in Europe" Says EJC President
  3. European Gaming & Betting AssociationAudiovisual Media Services Directive to Exclude Minors from Gambling Ads
  4. ILGA-EuropeTime for a Reality Check on International Day for the Elimination of Racial Discrimination
  5. UNICEFHuman Cost to Refugee and Migrant Children Mounts Up One Year After EU-Turkey Deal
  6. Malta EU 2017Council Adopts New Rules to Improve Safety of Medical Devices
  7. Nordic Council of MinistersNordic Energy Research: How to Reach 100 Percent Renewable Energy
  8. Party of European SocialistsWe Must Renew Europe for All Europeans
  9. MEP Tomáš ZdechovskýThe European Commission Has Failed in Its Fight Against Food Waste
  10. ILGA-EuropeEP Recognises Discrimination Faced by Trans & Intersex People
  11. Nordic Council of Ministers25 Nordic Bioeconomy Cases for Sustainable Change
  12. European Free AllianceSupporting Artur Mas: Democracy and Freedom Cannot Be Convicted

Latest News

  1. Hohe Cyber-Bedrohung für Frankreichs Wahlen
  2. 'No zero terror risk', EU security commissioner warns
  3. UN could step in where EU fails in child migrant protection
  4. May: London attacker was known to the police
  5. Ending the migrant deal with Turkey may save the EU
  6. Poland unlikely to face EU discipline on rule of law
  7. Rutte courted Wilders' voters, now he must deliver
  8. Barnier to UK: trade talks will come after settling accounts