News
EU Policy Update - January 2020
In a nutshell: Croatia took over the presidency in the Council of the EU from 1 January 2020. The European Commission's 2020 Work Programme identifies which legislative and policy initiatives the Commission plans to put forward in the course of 2020, including the new consumer agenda and the review of the NIS Directive. Commissioner Reynders urges the European Parliament to advance on e-Evidence. Three European Parliament committees received competence for own-initiative reports on the Digital Services Act. Europol released the EU Digital Evidence Situation Report. The European Court of Justice ruled on Airbnb being an "information society service". The ECJ Advocate-General stated that the ePrivacy Directive excludes the general and indiscriminate retention of personal data obligation.
EU Policy Update - Wrapping up 2019
In a nutshell: At the end of 2019, the EU has a new European Commission, including a Commissioner for the Internal Market with an ambitious portfolio overseeing digital files, defence and space. One of the hot topics under discussion for the current legislative term, with intensified debates expected in 2020, is the Digital Services Act. The European Commission is looking into whether the new legislation that will revise the online intermediary landscape should encompass the DNS level. The e-Evidence package is advancing through the European Parliament, with the rapporteur issuing a long-awaited Draft Report on the file. More than 800 amendments were issued by the responsible Parliamentary committee on the legislative proposal, indicating that discussions on the role and responsibilities of service providers when issuing and preserving electronic evidence to foreign law enforcement authorities are far from over. On the seemingly less controversial topic of cybersecurity, the Commission is looking for ideas of potential cybersecurity certification areas under the EU Cybersecurity Act and the envisaged schemes within. One potential contender for future coordinated EU standardisation work in the area of security is 5G, as assessed by the EU cybersecurity agency, ENISA. Meanwhile, Member States are no less occupied with the topic of security, especially in the context of so-called hybrid threats when it comes to the critical infrastructure. The Council of the EU asks the Commission to evaluate the need for a possible legislative revision of the existing legal framework on critical infrastructures (but not NIS).
EU Policy Update - October 2019
In a nutshell: The European Parliament is still working on its position on the e-Evidence package, while the upcoming Commissioner for Justice promises to prioritise EU internal discussions over the Transatlantic deal on the same matter. Europol issued its annual Internet Organised Crime Threat Assessment report. The European Commission found inconsistencies with identifying the “operators of essential services” under the NIS Directive, including the diverging methodology within the TLD sector. The European Parliament adopted a resolution on electoral interference and disinformation. Member States submitted their comments on the challenges with the GDPR implementation. The European Data Protection Board issued guidelines on Article 6 of the GDPR in the context of online services. The European Court of Justice issued its rulings in the case of Google and its obligation to respect the ‘right to be forgotten’, and in the case of Facebook which can be ordered to monitor and remove identical and ‘equivalent’ illegal content worldwide in order to comply with the national court order.
EU Policy Update - September 2019
In a nutshell: The EU and the US began formal negotiations on an EU-US agreement on e-evidence. The European Parliament's Committee on Civil Liberties, Justice and Home Affairs voted for starting negotiations with the EU Council on the proposal for a Regulation on the prevention of terrorist content online. The new Executive Director of ENISA spoke about the future course of the EU cybersecurity agency, while Security Commissioner Julian King outlined plans for the future EU (cyber)security policy during the hearings with the European Parliament. President-elect of the European Commission Ursula von der Leyen presented her team in the European Commission that starts its work on 1 November.
EU Policy Update – Summer 2019
In a nutshell: On 2 July, the 9th legislature of the European Parliament was officially constituted, with the new MEPs taking their seats. The European Parliament elected the President of the European Commission, who will lead the work of the Commission for the next five years starting from 1 November 2019. The European Data Protection Board, together with the European Data Protection Supervisor issued their joint assessment on the US CLOUD Act and its impact on the EU. The European Commission outlined its future plans for cybersecurity certification under the EU Cybersecurity Act that entered into force on 27 June 2019. The European Commission published its study on the legal framework of notice-and-action procedures within Member States that was conducted last year. A new study for the European Parliament on challenges between blockchain technologies and GDPR was published. The European Court of Justice delivered a judgment on the notion of joint controllership under EU data protection legislation.
EU Policy Update - June 2019
In a nutshell: From 1 July, Finland took over the presidency in the EU Council. The strategic agenda for 2019-2024 was adopted at the EU Summit, while telecom ministers in the EU Council put forward their conclusions regarding the future of digital Europe. The European Court of Justice delivered rulings on the nature of services offered by Skype and Gmail, while the Advocate General issued their opinion in the case of Facebook and whether the removal of content online should apply globally.
EU Policy Update - May 2019
In a nutshell: the EU has elected a new European Parliament. The EU Council has approved the European Commission's mandate to start negotiations for a transatlantic deal on e-Evidence and adopted a framework concerning restrictive measures against cyber-attacks threatening the EU. The European Commission has made policy recommendations regarding the Strategic Agenda for the following 5 years. ePrivacy negotiations revealed possible EU plans for data retention legislation.
EU Policy Update - April 2019
In a nutshell: The European Parliament concluded the last plenary session of its 8th term on 18th April. The Parliament will resume in its new composition after the European elections (23-26 May). Before concluding its term, the LIBE committee issued two Working Documents on e-Evidence and finalised its position on TERREG. EU ministers have signed off the Copyright Directive. The European Commissioner for Competition Margrethe Vestager's special advisers identified challenges for future policy-making for competition in digital economy. The European Data Protection Supervisor issued its opinion on the possible EU-US deal on e-Evidence. European Court of Justice Advocate General released its opinion on the nature of Airbnb service.
EU Policy Update - March 2019
In a nutshell: The European Parliament formally adopts the EU Cybersecurity Act and the Copyright Directive. The E-Evidence package receives further criticism in the series of Working Documents issued by LIBE. TERREG progresses speedily through the European Parliament’s committees. The European Data Protection Board gives guidance on the correlation of the GDPR and the e-Privacy Directive.
EU Policy Update - February 2019
In a nutshell: LIBE issued the 3rd Working Document identifying further issues with e-Evidence. ITRE approved its position on establishing an EU-wide Cybersecurity Competence Centre. The Romanian Presidency keeps pushing the ePrivacy file through the hurdles in the EU Council. CULT and LIBE propose more than 1000 amendments on the proposal for preventing the dissemination of terrorist content online. New rules for copyright in the EU got approved by the EU Council and JURI.