23 Amendments of Stefan BERGER related to 2023/0212(COD)
Amendment 272 #
Proposal for a regulation
Article 2 – paragraph 1 – point 31
Article 2 – paragraph 1 – point 31
31. ‘mobile device’ means a payment terminal or a device that enables digital euro users to securely authorise digital euro payment transactions online or offline including in particular but not limited to smart phones, tablets, smart watches and wearables of all kind, as well as cards and USB sticks containing a local storage device.
Amendment 285 #
Proposal for a regulation
Article 5 – paragraph 1
Article 5 – paragraph 1
1. The digital euro shall be governed by the provisions of this Regulation, supplemented by the delegated acts that the Commission is empowered to adopt pursuant to Articles 11, 33, 34, 35 and 38, and by the implementing acts that the Commission is empowered to adopt pursuant to Article 37. When drafting delegated and implementing acts pursuant to Articles mentioned in this paragraph, the Commission shall fully implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679.
Amendment 287 #
Proposal for a regulation
Article 5 – paragraph 2
Article 5 – paragraph 2
2. Within the framework of this Regulation, the digital euro shall also be governed by the detailed mdesign feastures, rules and standards that may be adopted by the European Central Bank pursuant to its own competences. Where these detailed mdesign feastures, rules and standards have an impact on the protection of individuals’ rights and freedom with regard to the processing of personal data, the European Central Bank shall consult the European Data Protection Supervisor prior to their adoption. Such detailed measures, rules and standards shall implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679, and shall implement privacy-enhancing technologies, where technically possible.
Amendment 316 #
Proposal for a regulation
Article 13 – paragraph 1 – subparagraph 2
Article 13 – paragraph 1 – subparagraph 2
The European Central Bank may, with the aim to safeguard the objectives of its monetary policy, restrict the access to and use in time of the digital euro for the digital euro users referred to in points (b) and (c) subject to the conditions laid down in Article 16 (2). Those timeframes shall be determined in relation to the residence or visiting status of the digital euro users.
Amendment 465 #
Proposal for a regulation
Article 17 – paragraph 4
Article 17 – paragraph 4
4. The European Central Bank may require payment service providers to provide all information necessary for the application of this Article and to verify compliance with it. Where this information concerns personal data, the European Central Bank shall require only the data that is strictly necessary for the purposes of the processing, and with full implementation of the principle of data minimisation. Any information requested shall be sent by payment service providers within the time limit set by the European Central Bank. The European Central Bank may require that such information is certified by an independent auditor.
Amendment 496 #
Proposal for a regulation
Article 18 – paragraph 1
Article 18 – paragraph 1
1. Payment service providers may only distribute the digital euro to natural and legal persons residing or established in a Member State whose currency is not the euro if the European Central Bank and the national central bank of that Member State have signed an arrangement to that effect. Under such arrangement, natural and legal persons residing or established in that Member State wishing to become digital euro users shall receive the same conditions and opportunities for the use of the digital euro as digital euro users in Member States whose currency is the euro, without prejudice to European Central Bank’s prerogative to safeguard the objectives of its monetary policy.
Amendment 504 #
Proposal for a regulation
Article 18 – paragraph 3
Article 18 – paragraph 3
3. The agrerrangement referred to in paragraph 1shall specify the necessary implementing measures and procedures, and the cases under which the agrerrangement may be restricted, suspended, or terminated.
Amendment 508 #
Proposal for a regulation
Article 19 – paragraph 3
Article 19 – paragraph 3
3. The agreement between the Union and the third country shall specify the necessary implementing measures and procedures, and the cases under which the agreement may be restricted, suspended, or terminated, in particular where the third country has been identified as a third country with significant strategic deficiencies in its national anti-money laundering and combating the financing of terrorism regime as referred to in Article 23 of Regulation [please insert reference – proposal for Anti-Money Laundering Regulation - COM/2021/420 final] or as a third country with compliance weaknesses in its national anti-money laundering and combating the financing of terrorism regime as referred to in Article 24 of Regulation [please insert reference – proposal for Anti-Money Laundering Regulation - COM/2021/420 final] or as a third country posing a specific and serious threat to the Union’s financial system as referred to in Article 25 of Regulation [insert reference – proposal for Anti-Money Laundering Regulation - COM/2021/420 final]. That agreement shall be complemented by an arrangement between the European Central Bank and the national central bank and, where appropriate, the national competent authority of the third country.
Amendment 572 #
Proposal for a regulation
Article 30 – paragraph 3 a (new)
Article 30 – paragraph 3 a (new)
3a. The settlement infrastructure shall be developed in compliance with the principles of data protection by design and by default, as defined in Regulation (EU) 2016/679, and designed in such a way that neither the European Central Bank nor national central banks can attribute data to an identified or identifiable Digital Euro user.
Amendment 580 #
Proposal for a regulation
Article 32 – paragraph 1
Article 32 – paragraph 1
1. The European Central Bank may facilitate the fraud detection and prevention tasks that payment service providers shall perform under Directive 2015/2366 by establishing a general fraud detection and prevention mechanism for online dDigital eEuro transactions to ensure the smooth and efficient functioning of the dDigital euroEuro, while at the same time provide necessary safeguards to make the processing compliant with the principles of necessity and proportionality and in respect of appropriate storage limitation. That general fraud detection and prevention mechanism may be operated directly by the European Central Bank or by the providers of support services designated by the European Central Bank.
Amendment 583 #
Proposal for a regulation
Article 32 – paragraph 2
Article 32 – paragraph 2
2. The European Central Bank shall consult the European Data Protection Supervisor and the Anti-Money Laundering Authority prior to developing the details on the operational elements of the fraud detection and prevention mechanism.
Amendment 587 #
Proposal for a regulation
Article 32 – paragraph 4
Article 32 – paragraph 4
4. For the purpose of this Article, payment service providers shall provide the fraud detection and prevention mechanism with information referred to in Annex 5V. Payment service providers shall implement appropriate technical and organisational measures including state-of-the-art security and privacy-preserving measures to ensure that the support service shall not be able to directly identify the digital euro users on the basis of the information provided to the fraud detection and prevention mechanism. When implementing these technical and organisational measures, payment service providers and the European Central Bank shall take into account the principles of data protection by design and by default, as defined in Regulation (EU) 2016/679, ensuring that the processing of personal data is carried out in such a manner that the personal data can no longer be attributed to an individual digital euro user without the use of additional information.
Amendment 594 #
Proposal for a regulation
Article 34 – paragraph 1 – subparagraph 1 – introductory part
Article 34 – paragraph 1 – subparagraph 1 – introductory part
Payment service providers perform a task in the public interest where theyshall process personal data only for the following purposes:
Amendment 606 #
Proposal for a regulation
Article 34 – paragraph 4
Article 34 – paragraph 4
4. Payment service providers shall implement appropriate technical and organisational measures including state-of- the-art security and privacy-preserving measures to ensure that any data communicated to the European Central Bank and the national central banks or to providers of support services do not directly identify individual digital euro usersDigital Euro users. In particular, such measures shall ensure that personal data are pseudonymised in such a manner that these data can no longer be attributed by the European Central Bank or the national central banks to an individual Digital Euro user without the use of additional information. When implementing these technical and organisational measures, payment service providers shall implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679.
Amendment 614 #
Proposal for a regulation
Article 35 – paragraph 4
Article 35 – paragraph 4
4. Personal data processed for tasks referred to in paragraph 1 shall be supported by appropriate technical and organisational measures including state-of- the-art security and privacy-preserving measures. This shall include the clear segregation of personal data to ensure that the European Central Bank and the national central banks cannot directly and indirectly identify individual digital euro users. In particular, such measures shall ensure that personal data are pseudonymised in such a manner that these data can no longer be attributed by the European Central Bank or the national central banks to an individual digital euro user without the use of additional information. When implementing these technical and organisational measures, the ECB and national central banks shall implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679.
Amendment 619 #
Proposal for a regulation
Article 35 – paragraph 8
Article 35 – paragraph 8
8. For purpose of supporting the task of payment service providers to enforce the holding limits in accordance to Article 16(1) and ensuring the emergency switching upon the request of the user in accordance with Article 31(2), the ECB may alone or jointly with national central banks establish a single access point of digital euro user identifiers and the related digital euro holding limits as referred to in point (4) of Annex 4. The European Central Bank shall implement appropriate technical and organisational measures including state-of-the-art security and privacy-preserving measures to ensure that the identity of individual digital euro users cannot be inferred from the information accessed via the single access point by entities other than payment service providers whose customer or potential customer is the digital euro user. When implementing these technical and organisational measures, the European Central Bank shall implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679.
Amendment 622 #
Proposal for a regulation
Article 36 – paragraph 1 – introductory part
Article 36 – paragraph 1 – introductory part
1. Where the European Central Bank decides to confer tasks referred to in Article 27 and 32 upon providers of support services, providers of support services shall provide payment-related services across PSPs. In such a situation, payment service providers perform a task in the public interest, where they process personal data forshall solely process personal data where they perform a task in the public interest, in accordance with Article 6(1)(e) of Regulation 2016/679, limited to the following purposes:
Amendment 625 #
Proposal for a regulation
Article 36 – paragraph 4
Article 36 – paragraph 4
4. The processing of personal data for the purposes referred to in paragraph 1 shall only take place when appropriate technical and organisational measures including state-of-the-art security and privacy-preserving measures are implemented to ensure that the providers of support services cannot directly identify individual digital euro users. In particular, such measures shall ensure that personal data are pseudonymised in such a manner that these data can no longer be attributed by the European Central Bank or the national central banks to an individual digital euro user without the use of additional information. When implementing these technical and organisational measures, payment service providers shall implement principles of data protection by design and by default, as defined in Regulation (EU) 2016/679.
Amendment 634 #
Proposal for a regulation
Article 37 – paragraph 2
Article 37 – paragraph 2
2. Transaction data, as generated by a payment transaction within the processing limits laid down in Annex III, IV and V, shall not be retainprocessed by payment service providers, providers of support services or by the European central bBanks and the national central banks.
Amendment 641 #
Proposal for a regulation
Article 37 – paragraph 5
Article 37 – paragraph 5
5. The Commission is empowered to adopt implementingdelegated acts setting offline digital euro payment transaction limits and holding limits. Those implementingdelegated acts shall be adopted in accordance with the examination procedure referred to in Article 398.
Amendment 646 #
Proposal for a regulation
Article 37 – paragraph 6 – subparagraph 1 – introductory part
Article 37 – paragraph 6 – subparagraph 1 – introductory part
Transaction and holding limits shall take into account the need to prevent money laundering and terrorist financing while not unduly restricting the use of the offline digital euro as a means of payment. The Commission, when drawing up the implementingdelegated acts referred to in paragraph 5, shall take into account in particular the following:
Amendment 648 #
Proposal for a regulation
Article 37 – paragraph 6 – subparagraph 1 – point c
Article 37 – paragraph 6 – subparagraph 1 – point c
(c) the objective of ensuring the usability and acceptance of the digital euro as a legal tender instrument.;
Amendment 649 #
Proposal for a regulation
Article 37 – paragraph 6 – subparagraph 1 – point c a (new)
Article 37 – paragraph 6 – subparagraph 1 – point c a (new)
(ca) the objective of introducing a payment instrument similar to cash and in relation to that preserving the right to the protection of personal data and privacy.