42 Amendments of Sabine VERHEYEN related to 2017/0003(COD)
Amendment 73 #
Proposal for a regulation
Recital 12
Recital 12
Amendment 92 #
Proposal for a regulation
Recital 16
Recital 16
(16) The prohibition of storage of communications during conveyance is not intended to prohibit any automatic, intermediate and transient storage of this information insofar as this takes place for the sole purpose of carrying out the transmission in the electronic communications network. It should not prohibit either the processing of electronic communications data to ensure the security and continuity of the electronic communications services, including checking security threats such as the presence of malware or the processing of metadata to ensure the necessary quality of service requirements, such as latency, jitter etc.
Amendment 98 #
Proposal for a regulation
Recital 17
Recital 17
(17) The processing of electronic communications data can be useful for businesses, consumers and society as a whole. Vis-à-vis Directive 2002/58/EC, this Regulation broadens the possibilities for providers of electronic communications services to process electronic communications metadata, based on end- users consent in accordance with Regulation (EU) 2016/679. However, end-users attach great importance to the confidentiality of their communications, including their online activities, and that they want to control the use of electronic communications data for purposes other than conveying the communication. Therefore, this Regulation should require providers of electronic communications services to obtain end-users' consent tocomply with Regulation (EU) 2016/679 when processing electronic communications metadata, which should include data on the location of the device generated for the purposes of granting and maintaining access and connection to the service. Location data that is generated other than in the context of providing electronic communications services should not be considered as metadata. Examples of commercial usages of electronic communications metadata by providers of electronic communications services may include the provision of heatmaps; a graphical representation of data using colours to indicate the presence of individuals. To display the traffic movements in certain directions during a certain period of time, an identifier is necessary to link the positions of individuals at certain time intervals. This identifier would be missing if anonymous data were to be used and such movement could not be displayed. Such usage of electronic communications metadata could, for example, benefit public authorities and public transport operators to define where to develop new infrastructure, based on the usage of and pressure on the existing structure. Where a type of processing of electronic communications metadata, in particular using new technologies, and taking into account the nature, scope, context and purposes of the processing, is likely to result in a high risk to the rights and freedoms of natural persons, a data protection impact assessment and, as the case may be, a consultation of the supervisory authority should take place prior to the processing, in accordance with Articles 35 and 36 of Regulation (EU) 2016/679.
Amendment 110 #
Proposal for a regulation
Recital 20
Recital 20
(20) Terminal equipment of end-users of electronic communications networks and any information relating to the usage of such terminal equipment, whether in particular is stored in or emitted by such equipment, requested from or processed in order to enable it to connect to another device and or network equipment, are part of the private sphere of the end-users requiring protection under the Charter of Fundamental Rights of the European Union and the European Convention for the Protection of Human Rights and Fundamental Freedoms. Given that such equipment contains or processes information that may reveal details of an individual's emotional, political, social complexities, including the content of communications, pictures, the location of individuals by accessing the device’s GPS capabilities, contact lists, and other information already stored in the device, the information related to such equipment requires enhanced privacy protection. Furthermore, the so-called spyware, web bugs, and hidden identifiers, tracking cookies and other similar unwanted tracking tools can enter end- user's terminal equipment without their knowledge in order to gain access to information, to store hidden information and to trace the activities. Information related to the end-user’s device may also be collected remotely for the purpose of identification and tracking, using techniques such as the so-called ‘device fingerprinting’, often without the knowledge of the end-user, and may seriously intrude upon the privacy of these end-users. Techniques that surreptitiously monitor the actions of end-users, for example by tracking their activities online or the location of their terminal equipment, or subvert the operation of the end-users’ terminal equipment pose a serious threat to the privacy of end-users. Therefore, any such interference with the end-user's terminal equipment should be allowed only with the end-user's consent and for specific and transparent purposes.
Amendment 187 #
Proposal for a regulation
Article 1 – paragraph 2
Article 1 – paragraph 2
(2) This Regulation ensures, in accordance with Regulation (EU) No 2016/679, free movement of electronic communications data and electronic communications services within the Union, which shall be neither restricted nor prohibited for reasons related to the respect for the private life and communications of natural and legal persons and the protection of natural persons with regard to the processing of personal data.
Amendment 189 #
Proposal for a regulation
Article 1 – paragraph 3
Article 1 – paragraph 3
Amendment 193 #
Proposal for a regulation
Article 2 – paragraph 1
Article 2 – paragraph 1
(1) This Regulation applies to the processing of electronic communications data carried out in connection with the provision and the use of electronic communications services and to information related to the terminal equipment of end-users.
Amendment 204 #
Proposal for a regulation
Article 2 – paragraph 2 – point c
Article 2 – paragraph 2 – point c
(c) electronic communications services which are not publicly available pursuant to Article 2(2)(c) of Regulation (EU) No 2016/679;
Amendment 214 #
Proposal for a regulation
Article 3 – paragraph 2
Article 3 – paragraph 2
(2) Where the provider of an electronic communications service is not established in the Union it shall designate in writing a representative in the Union, Article 27 of Regulation (EU) No 2016/679 shall apply.
Amendment 242 #
Proposal for a regulation
Article 5 – title
Article 5 – title
Confidentiality of electronic communications datacontent
Amendment 249 #
Proposal for a regulation
Article 5 – paragraph 1
Article 5 – paragraph 1
Electronic communications data shall be confidential. Any interference with electronic communications data during conveyance, such as by listening, tapping, storing, monitoring, scanning or other kinds of interception, surveillance or processing of electronic communications datacontent, by persons other than the end- users, shall be prohibited, except when permitted by this Regulation.
Amendment 266 #
Proposal for a regulation
Article 6 – paragraph 1 – point b
Article 6 – paragraph 1 – point b
(b) it is necessary to maintain or restore the security or availability of electronic communications networks and services, or detect technical faults and/or errors in the transmission of electronic communications, for the duration necessary for that purpose.
Amendment 272 #
Proposal for a regulation
Article 6 – paragraph 2
Article 6 – paragraph 2
Amendment 286 #
Proposal for a regulation
Article 6 – paragraph 2 a (new)
Article 6 – paragraph 2 a (new)
2a. Article 6 of Regulation (EU) No 2016/679 shall apply.
Amendment 307 #
Proposal for a regulation
Article 7 – paragraph 2
Article 7 – paragraph 2
(2) Without prejudice to point (b) of Article 6(1) and points (a) and (c) of Article 6(2), the provider of the electronic communications service shall erase electronic communications metadata or make that data anonymous when it is no longer needed for the purpose of the transmission of a communication.
Amendment 310 #
Proposal for a regulation
Article 7 – paragraph 3
Article 7 – paragraph 3
Amendment 327 #
Proposal for a regulation
Article 8 – paragraph 1 – point c
Article 8 – paragraph 1 – point c
(c) it is necessary for providing an information society service requested by the end-user, particularly in order to preserve the integrity or security of the information society service or access to it, to improve what is offered or for measures to protect against unauthorised use of the service in accordance with the terms and conditions of use relating to the provision of services to the end-user; or
Amendment 333 #
Proposal for a regulation
Article 8 – paragraph 1 – point c a (new)
Article 8 – paragraph 1 – point c a (new)
(ca) it occurs for purposes of the settlement of payments under contracts concerning the sale of products or services, provided that the contract pertaining thereto has been concluded on- line; or
Amendment 336 #
Proposal for a regulation
Article 8 – paragraph 1 – point d
Article 8 – paragraph 1 – point d
(d) if it is necessary for web audiencin order to measure the mreasuring, provided that such measurement is carried out by the provider of the information society service requested by the end-userch of an information society service desired by the end-user, including measurement of indicators for the use of information society services in order to calculate a payment due.
Amendment 349 #
Proposal for a regulation
Article 8 – paragraph 1 – point d a (new)
Article 8 – paragraph 1 – point d a (new)
Amendment 355 #
Proposal for a regulation
Article 8 – paragraph 1 – point d b (new)
Article 8 – paragraph 1 – point d b (new)
(db) in order to mark terminal equipment for advertising purposes, on condition that the person responsible has clearly informed the end-user of this at the beginning of the data processing and has provided an opportunity for objection that is easy to exercise.
Amendment 373 #
Proposal for a regulation
Article 8 – paragraph 2 – subparagraph 2
Article 8 – paragraph 2 – subparagraph 2
The collection of such information shall be conditional on the application of appropriate technical and organisational measures to limit the collection and processing of information to the purposes required therefor and ensure a level of security appropriate to the risks, as set out in Article 32 of Regulation (EU) 2016/679, have been applied, for example by means of pseudonymisation of information collected pursuant to Article 4(5) of Regulation (EU) No 2016/679.
Amendment 388 #
Proposal for a regulation
Article 9 – paragraph 1
Article 9 – paragraph 1
(1) The definition of and conditions for consent provided for under Articles 4(11) and 7(1), (2) and (3) of Regulation (EU) 2016/679/EU shall apply.
Amendment 389 #
Proposal for a regulation
Article 9 – paragraph 2
Article 9 – paragraph 2
Amendment 397 #
Proposal for a regulation
Article 9 – paragraph 3
Article 9 – paragraph 3
Amendment 406 #
Proposal for a regulation
Article 10
Article 10
Amendment 431 #
Proposal for a regulation
Article 10 a (new)
Article 10 a (new)
Article 10a Article 25 of Regulation (EU) No 2016/679 shall apply.
Amendment 448 #
Proposal for a regulation
Article 15 – paragraph 1
Article 15 – paragraph 1
(1) The providers of publicly available directories shall obtain the consentelectronic information, communications and telecommunications services shall collect the data of end-users who are natural persons in order to include their personal data in the directory and, consequently, shall obtain consent from these end-users for inclusion of data per category of personal data, to the extent that such data are relevant for the purpose of the directory as determined by the provider of thepublicly accessible directories. They shall give end-users that are natural persons the right to object to data related to them being included in directoryies. Providers shall give end-users who are natural persons the means to verify, correct, update, supplement and delete such data.
Amendment 451 #
Proposal for a regulation
Article 15 – paragraph 2
Article 15 – paragraph 2
(2) The providers of a publicly available directory shall inform end-users who are natural persons whose personal data are in the directory of the available search functions of the directory and obtain end-users’ consent before enabling such, which they shall do there. The providers of electronic information, communications and telecommunications services shall inform end-users when new search functions arelated to their own data made available.
Amendment 455 #
Proposal for a regulation
Article 15 – paragraph 3
Article 15 – paragraph 3
(3) The providers of publicly available directorielectronic information, communications and telecommunications services shall provide end-users that are legal persons with the possibility to object to data related to them being included in the directory. Providers shall give such end-users that are legal persons the means to verify, correct, update, supplement and delete such data. Natural persons acting for an economic purpose, such as independent professionals, operators of small businesses or freelancers, shall be equated with legal persons.
Amendment 458 #
Proposal for a regulation
Article 15 – paragraph 4
Article 15 – paragraph 4
(4) The possibility for end-users not to be included in a publicly available directory, or to verify, correct, update, supplement and delete any data related to them shall be provided free of charge.
Amendment 460 #
Proposal for a regulation
Article 15 – paragraph 4 a (new)
Article 15 – paragraph 4 a (new)
4a. The provisions of paragraphs 1 to 4 shall not apply to data and information published in other publicly accessible sources and data provided by end-users themselves.
Amendment 463 #
Proposal for a regulation
Article 15 – paragraph 4 b (new)
Article 15 – paragraph 4 b (new)
4b. Any undertaking which provides publicly accessible information, communications or telecommunications services and which issues or uses telephone numbers, user names or other means of user identification shall be required, upon request and with due regard for provisions relating to data protection, to make subscriber data available to any undertaking which provides or operates directory or information services, in order to provide publicly accessible directory or information services. The data shall be communicated immediately and in a non- discriminatory manner.
Amendment 464 #
Proposal for a regulation
Article 16
Article 16
Amendment 487 #
Proposal for a regulation
Article 17
Article 17
Amendment 507 #
Proposal for a regulation
Article 21 – paragraph 2
Article 21 – paragraph 2
Amendment 509 #
Proposal for a regulation
Article 22 – paragraph 1
Article 22 – paragraph 1
Amendment 510 #
Proposal for a regulation
Article 23
Article 23
Amendment 519 #
Proposal for a regulation
Article 23 a (new)
Article 23 a (new)
Article 23a Article 83 of Regulation (EU) No 2016/679 shall apply.
Amendment 520 #
Proposal for a regulation
Article 24
Article 24
Amendment 521 #
Proposal for a regulation
Article 24 a (new)
Article 24 a (new)
Article 24a Article 84 of Regulation (EU) No 2016/679 shall apply.
Amendment 529 #
Proposal for a regulation
Article 29 – paragraph 2 – subparagraph 1
Article 29 – paragraph 2 – subparagraph 1
It shall apply from 25 May 20189.