Next event: MELCHIOR Karen (Renew) appointed as rapporteur in JURI 2021/05/10
Progress: Awaiting committee decision
Role | Committee | Rapporteur | Shadows |
---|---|---|---|
Lead | ITRE | NIEBLER Angelika ( EPP) | KUMPULA-NATRI Miapetra ( S&D), DANTI Nicola ( Renew), BOESELAGER Damian ( Verts/ALE), LIZZI Elena ( ID), MELBĀRDE Dace ( ECR), MATIAS Marisa ( GUE/NGL) |
Committee Opinion | IMCO | GOZI Sandro ( Renew) | Maria GRAPINI ( S&D), Andrey KOVATCHEV ( PPE), Kosma ZŁOTOWSKI ( ECR), Anne-Sophie PELLETIER ( GUE/NGL), Virginie JORON ( ID), David CORMAND ( Verts/ALE) |
Committee Opinion | LIBE | LAGODINSKY Sergey ( Verts/ALE) | Jadwiga WIŚNIEWSKA ( ECR), Konstantinos ARVANITIS ( GUE/NGL), Andrzej HALICKI ( PPE), Marina KALJURAND ( S&D), Dragoş TUDORACHE ( RE), Tom VANDENDRIESSCHE ( ID) |
Committee Opinion | JURI | MELCHIOR Karen ( Renew) | Pascal ARIMONT ( PPE), Emmanuel MAUREL ( GUE/NGL), Sergey LAGODINSKY ( Verts/ALE), Raffaele STANCANELLI ( ECR), Ibán GARCÍA DEL BLANCO ( S&D) |
Lead committee dossier:
Legal Basis:
TFEU 114-p1
Legal Basis:
TFEU 114-p1Subjects
- 1.20.05 Public access to information and documents, administrative practice
- 1.20.09 Protection of privacy and data protection
- 2.40 Free movement of services, freedom to provide
- 2.80 Cooperation between administrations
- 3.30.06 Information and communication technologies, digital technologies
- 3.30.25 International information networks and society, internet
- 3.50.04 Innovation
Events
PURPOSE: to promote the availability of data for use, by proposing measures to stimulate data sharing and to support the European Data Spaces.
PROPOSED ACT: Regulation of the European Parliament and of the Council.
ROLE OF THE EUROPEAN PARLIAMENT: the European Parliament decides in accordance with the ordinary legislative procedure and on an equal footing with the Council.
BACKGROUND: this proposal for a Regulation on European Data Governance (Data Governance Act) is the first concrete action in the framework of the European Data Strategy .
In its Data Strategy, the Commission described the vision of a common European data space, a Single Market for data in which data could be used irrespective of its physical location of storage in the EU in compliance with applicable law. It also called for the free and safe flow of data with third countries, subject to exceptions and restrictions for public security, public order and other legitimate public policy objectives of the European Union.
The Commission proposed to establish domain specific common European data spaces, as the concrete arrangements in which data sharing and data pooling can happen. Such common European data spaces can cover areas such as health, mobility, manufacturing, financial services, energy, or agriculture or thematic areas, such as the European green deal or European data spaces for public administration or skills.
In this context, it is necessary to improve the conditions for data sharing in the internal market, by creating a harmonised framework for data exchanges.
A single market for data should ensure that data from the public sector, businesses and citizens can be accessed and used in the most effective and responsible manner possible, while businesses and citizens keep control of the data they generate and the investments made into their collection are safeguarded.
IMPACT ASSESSMENT: according to the impact assessment support study, while in the baseline scenario the data economy and the economic value of data sharing is expected to increase to an estimated EUR 510-533 billion (3.87% of GDP), this would rise to EUR 540.7-544.4 billion (3.92%-3.95% of GDP) depending on the preferred option.
CONTENT: the proposed Regulation aims to promote the availability of data for use, by increasing trust in data intermediaries and strengthening data sharing mechanisms across the EU.
Re-use of certain data held by the public sector
The proposal creates a mechanism to enhance the use of certain public sector data, conditional on the respect of the rights of others (notably on grounds of protection of personal data, but also protection of intellectual property rights and commercial confidentiality).
Public sector bodies authorising such re-use should be technically equipped to ensure that data protection, privacy and confidentiality are fully preserved.
The proposal:
- defines a set of harmonised basic conditions, the respect of which would allow the re-use of data (e.g. the non-exclusivity requirement);
- obliges Member States to set up (i) a single contact point to help researchers and innovative companies select identify suitable data, and (ii) structures that will support public sector bodies with technical means and legal assistance.
Creation of a notification regime for data sharing service providers
In order to increase trust in the sharing of personal and non-personal data and lower transaction costs to B2B and C2B data sharing by creating a notification regime for data sharing providers, providers of data-sharing services would have to comply with a number of requirements, including the obligation to remain neutral with regard to the data exchanged and not to use such data for other purposes.
A competent authority designated by the Member States would be responsible for monitoring compliance with the requirements relating to the provision of data sharing services.
Data Altruism
In order to facilitate altruistic data (data voluntarily made available by individuals or companies for the common good), the proposal gives data altruistic organisations the possibility to register as a ‘Data Altruism Organisation recognised in the EU’ in order to increase trust in their operations.
Governance
The proposal:
- sets out the requirements for the functioning of the competent authorities designated to monitor and implement the notification framework for data-sharing service providers and entities engaged in data altruism. It also contains provisions on the right to lodge complaints against the decisions of such bodies and on the means of judicial redress;
- creates a formal expert group (the ‘European Data Innovation Board’), which will facilitate the emergence of best practice by Member State authorities and advise the Commission on the governance of cross-sectoral standardisation.
Documents
- Amendments tabled in committee: PE691.449
- Amendments tabled in committee: PE691.468
- Amendments tabled in committee: PE692.584
- Committee draft report: PE691.139
- Contribution: COM(2020)0767
- Contribution: COM(2020)0767
- Contribution: COM(2020)0767
- Document attached to the procedure: SEC(2020)0405
- Document attached to the procedure: EUR-Lex
- Document attached to the procedure: SWD(2020)0295
- Document attached to the procedure: EUR-Lex
- Document attached to the procedure: SWD(2020)0296
- Legislative proposal published: COM(2020)0767
- Legislative proposal published: EUR-Lex
- Document attached to the procedure: SEC(2020)0405
- Document attached to the procedure: EUR-Lex SWD(2020)0295
- Document attached to the procedure: EUR-Lex SWD(2020)0296
- Committee draft report: PE691.139
- Amendments tabled in committee: PE691.449
- Amendments tabled in committee: PE691.468
- Amendments tabled in committee: PE692.584
- Contribution: COM(2020)0767
- Contribution: COM(2020)0767
- Contribution: COM(2020)0767
Activities
- Adam BIELAN
Plenary Speeches (0)
- Cristian-Silviu BUŞOI
Plenary Speeches (0)
- Maria da Graça CARVALHO
Plenary Speeches (0)
- Deirdre CLUNE
Plenary Speeches (0)
- Nicola DANTI
Plenary Speeches (0)
- Eva KAILI
Plenary Speeches (0)
- Seán KELLY
Plenary Speeches (0)
- Miapetra KUMPULA-NATRI
Plenary Speeches (0)
- Marisa MATIAS
Plenary Speeches (0)
- Eva MAYDELL
Plenary Speeches (0)
- Joëlle MÉLIN
Plenary Speeches (0)
- Angelika NIEBLER
Plenary Speeches (0)
- Waldemar TOMASZEWSKI
Plenary Speeches (0)
- Kosma ZŁOTOWSKI
Plenary Speeches (0)
- Josianne CUTAJAR
Plenary Speeches (0)
- Sergey LAGODINSKY
Plenary Speeches (0)
- Sandra PEREIRA
Plenary Speeches (0)
- Alexandra GEESE
Plenary Speeches (0)
- Mislav KOLAKUŠIĆ
Plenary Speeches (0)
- Damian BOESELAGER
Plenary Speeches (0)
- Dace MELBĀRDE
Plenary Speeches (0)
- Katarina BARLEY
Plenary Speeches (0)
- Geert BOURGEOIS
Plenary Speeches (0)
- Eugen TOMAC
Plenary Speeches (0)
- Elena LIZZI
Plenary Speeches (0)
- Adrián VÁZQUEZ LÁZARA
Plenary Speeches (0)
- Sandro GOZI
Plenary Speeches (0)
- Romana JERKOVIĆ
Plenary Speeches (0)
- Ernő SCHALLER-BAROSS
Plenary Speeches (0)
Amendments | Dossier |
631 |
2020/0340(COD)
2021/04/28
ITRE
631 amendments...
Amendment 109 #
Proposal for a regulation Recital 1 (1) The Treaty on the functioning of the European Union (‘TFEU’) provides for the establishment of an internal market and the institution of a system ensuring that competition in the internal market is not distorted. The establishment of common rules and practices in the Member States relating to the development of a framework for data governance should contribute to the achievement of those objectives. It should also guarantee security, geopolitical resilience, and strategic autonomy of the Union.
Amendment 110 #
Proposal for a regulation Recital 1 (1) The Treaty on the functioning of the European Union (‘TFEU’) provides for the establishment of an internal market and the institution of a system ensuring that competition in the internal market is not distorted. The establishment of common rules and practices in the Member States relating to the development of a framework for data governance embedded fundamental rights-based European values should contribute to the achievement of those objectives.
Amendment 111 #
Proposal for a regulation Recital 1 a (new) (1 a) Both Article 6(2) of the Treaty on European Union and Article 51 of the EU Charter of Fundamental Rights require the Union to respect fundamental rights, observe the principles and promote the application thereof.
Amendment 112 #
Proposal for a regulation Recital 2 (2) Over the last few years, digital technologies have transformed the economy and society, affecting all sectors of activity and daily life, and the COVID19 crisis is likely to result in permanent changes to life in Europe, in which digitalisation will have a major role. Data is at the centre of this transformation: data-driven innovation will bring enormous benefits both for citizens and the economy, for example through improved personalised medicine, new mobility, and its contribution to the European Green Deal23 . In its Data Strategy24 , the Commission described the vision of a common European data space, a Single Market for data in which data could be used irrespective of its physical location of storage in the Union in compliance with applicable law. It also called for the free and safe flow of data with third countries, subject to exceptions and restrictions for public security, public order and other
Amendment 113 #
Proposal for a regulation Recital 2 (2) Over the last few years, digital technologies have transformed the economy and society, affecting all sectors of activity and daily life. Data is at the centre of this transformation: data-driven innovation will bring enormous benefits for citizens, for example through improved personalised medicine, new mobility, and its contribution to the European Green Deal23 . The data economy has to be built in a way to enable companies, especially micro, small and medium sized enterprises (SMEs) to thrive, ensuring data access neutrality, portability and interoperability. In its Data Strategy24 , the Commission described the vision of a common European data space, a Single Market for data in which data could be used irrespective of its physical location of storage in the Union in compliance with applicable law, which can be pivotal for the rapid development of Artificial Intelligence technologies. It also called for the free and safe flow of data with third countries, subject to exceptions and restrictions for public security, public order and other legitimate public policy objectives of the European Union, in line with international obligations. In order to turn that vision into reality, it proposes to establish domain-
Amendment 114 #
Proposal for a regulation Recital 2 (2) Over the last few years, digital technologies have transformed the economy and society, affecting all sectors of activity and daily life. Data is at the centre of this transformation: data-driven innovation will bring enormous benefits for citizens, for example through improved personalised medicine, new mobility, and its contribution to the European Green Deal23 . In its Data Strategy24 , the Commission described the vision of a common European data space, a Single Market for data in which data could be used irrespective of its physical location of storage in the Union in compliance with applicable law. It also called for the free and safe flow of data with third countries, subject to exceptions and restrictions for fundamental rights, public security, public order and other legitimate public policy objectives of the European Union,
Amendment 115 #
Proposal for a regulation Recital 2 (2)
Amendment 116 #
Proposal for a regulation Recital 2 a (new) (2 a) The Union’s growth potential depends on the skills of its population and workforce. Bearing in mind that 42% of EU citizens lack basic digital skills, a key element to increase trust from citizens in intensifying data sharing will be to actively promote digital literacy, to reinforce education and training in that area and to ensure lifelong data literacy. This is necessary for a critical analysis to decide how to use and share data, for combating disinformation and building an active digital citizenship as well as to be protected from cybersecurity threats.
Amendment 117 #
Proposal for a regulation Recital 2 a (new) (2 a) The outbreak of COVID 19 pandemic has clearly exacerbated existing inequalities in respect of digital access and literacy, in particular in terms of gender, age and social backgrounds. Accordingly, data literacy should be part of the strategic actions to reduce social inequalities and to promote a socially balanced digital environment.
Amendment 118 #
Proposal for a regulation Recital 2 b (new) (2 b) The Union has to devote attention to the needs of building of data spaces and data economy, while particular attention should be given to software engineering and attracting talent to ICT sector in order to build European know- how focusing on next-generation and cutting-edge technologies.
Amendment 119 #
Proposal for a regulation Recital 2 c (new) (2 c) Action at Union level is necessary to address the fact that women are under- represented at all levels in the digital sector in Europe; from students (32% at Bachelor, Master or equivalent level) up to top academic positions (15%) and that the gender gap is largest in ICT specialist skills and employment, where only 18% are women1a. _________________ 1a https://ec.europa.eu/digital-single- market/en/news/digital-economy- scoreboard-shows-women-europe-are- less-likely-work-or-be-skilled-ictgender gap in digital
Amendment 120 #
Proposal for a regulation Recital 2 d (new) (2 d) Another crucial element to increase trust, part of the broad learning aspect, is establishing a public dialogue to raise awareness of the importance of data, facilitating correct data, protecting data rights holders and providing tools for critical assessment to benefit from data, while protecting the rights of data holders.
Amendment 121 #
Proposal for a regulation Recital 2 e (new) (2 e) Digital Europe Programme, among other EU and national programmes, should support the cooperation towards achieving a European ecosystem for trusted data sharing (via common European data spaces) and digital infrastructures, as well as to support the interoperability and standardisation. Fostering the common data spaces must be done in respect with consumer and data protection legislation. It is also important to strengthen the European Digital Innovation Hubs and their network to help companies, especially SMEs, to achieve an advantage of European data economy.
Amendment 122 #
Proposal for a regulation Recital 3 (3) It is necessary to improve the conditions for data sharing in the internal market, by creating a harmonised framework for data exchanges and by improving trust among industrial stakeholders, namely digital service providers and business users. It is important to ensure data access neutrality and greater interoperability between different data intermediary, avoiding lock- in effects. Sector-
Amendment 123 #
Proposal for a regulation Recital 3 (3) It is necessary to improve the conditions for data sharing in the internal market, by creating a harmonised framework for data exchanges and laying down requirements for data governance. The regulation should aim to build a borderless digital single market and human-centric, trustworthy and secure data society and economy. Sector-
Amendment 124 #
Proposal for a regulation Recital 3 (3) It is necessary to improve the conditions for data sharing in the European internal market, by creating a harmonised framework for data exchanges and by giving specific attention to data intermediaries and data holder in order to create a fruitful cooperation among them. Sector-
Amendment 125 #
Proposal for a regulation Recital 3 (3) It is necessary to improve the conditions for data sharing in the internal market, by creating a harmonised framework for data exchanges and developing relocation of data in the Union. Sector-
Amendment 126 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary to increase trust in data sharing by establishing proper mechanisms for control over data and in order to address other barriers to a well-
Amendment 127 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to address the barriers to a well- functioning data-driven economy and to create a Union-wide governance framework for data access and use, in particular regarding the re-use of certain types of data held by the public sector, the provision of services by data sharing providers to business users and to data subjects, as well as the collection and processing of data made available for altruistic purposes by natural and legal persons. It is necessary to establish favourable conditions for the constitutions of new independent companies (data providers) able to make data assets accessible to everyone in a neutral way.
Amendment 128 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to help address the barriers to a well-
Amendment 129 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to help address the barriers to a well-
Amendment 130 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to address the barriers to a well- functioning data-driven economy
Amendment 131 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to address the barriers to a well- functioning data-driven economy and to create a Union-wide governance framework for data access and use, in particular regarding the re-use of
Amendment 132 #
Proposal for a regulation Recital 4 (4) Action at Union level is necessary in order to address the barriers to a well- functioning and competitive data-driven economy and to create a Union-wide governance framework for data access and use, in particular regarding the re-use of certain types of data held by the public sector, the provision of services by data sharing providers to business users and to data subjects, as well as the collection and processing of data made available for altruistic purposes by natural and legal persons.
Amendment 133 #
Proposal for a regulation Recital 5 (5) The idea that data that has been generated at the expense of public budgets should benefit society has been part of Union policy for a long time. Directive (EU) 2019/1024 as well as sector-specific legislation ensure that the public sector makes more of the data it produces easily available for use and re-use. However, certain categories of data (commercially confidential data, data subject to statistical confidentiality, data protected by intellectual property rights of third parties, including trade secrets and personal data not accessible on the basis of specific national or Union legislation, such as Regulation (EU) 2016/679 and Directive
Amendment 134 #
Proposal for a regulation Recital 5 (5) The idea that data that has been generated at the expense of public budgets should benefit society has been part of Union policy for a long time. Directive (EU) 2019/1024 as well as sector-specific legislation ensure that the public sector
Amendment 135 #
Proposal for a regulation Recital 5 (5) The idea that data that has been generated at the expense of public budgets should benefit society has been part of Union policy for a long time. Directive (EU) 2019/1024 as well as sector-specific legislation ensure that the public sector makes more of the data it produces easily
Amendment 136 #
Proposal for a regulation Recital 5 a (new) (5 a) Particular attention must be given to micro and small and medium enterprises whose access to data is limited. Structures adopted by Member States must focus on overcoming barriers to access as well as use of data.
Amendment 137 #
Proposal for a regulation Recital 6 (6) There are techniques enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation, or suppression and randomisation. Application of these privacy-enhancing technologies, together with comprehensive data protection approaches should ensure the safe re-use of personal data and commercially confidential business data for research, innovation and statistical purposes. In many cases this implies that the data use and re-use in this context can only be done in a secure processing environment set in place and supervised by the public sector. While increased safeguards and requirements apply to the use of personal data, the same level of protection should be given to personal data which has been anonymised or pseudonymised as it will always be vulnerable to re-identification. There is experience at Union level with such secure processing environments that are used for research on statistical microdata on the basis of Commission Regulation (EU) 557/2013 (39 ). In general, insofar as personal data are concerned, the processing of personal data should rely upon one or more of the grounds for processing provided in Article 6 of Regulation (EU) 2016/679. _________________ 39Commission Regulation (EU) 557/2013 of 17 June 2013 implementing Regulation (EC) No 223/2009 of the European Parliament and of the Council on European Statistics as regards access to confidential data for scientific purposes and repealing Commission Regulation (EC) No 831/2002 (OJ L 164, 18.6.2013, p. 16).
Amendment 138 #
Proposal for a regulation Recital 6 (6) There are techniques enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation, or suppression and randomisation. Application of these privacy-enhancing technologies, together with comprehensive data protection approaches
Amendment 139 #
Proposal for a regulation Recital 6 (6) There are techniques enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation,
Amendment 140 #
Proposal for a regulation Recital 6 (6) There are techniques yet to be fully trustable, enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation, or suppression and randomisation. Application of these privacy-enhancing technologies, together with comprehensive data protection approaches should ensure the safe re-use of personal data and commercially confidential business data for research, innovation and statistical purposes. In many cases this implies that the data use and re-use in this context can only be done in a secure processing environment set in place within the internal market and supervised by the public sector. There is experience at Union level with such secure processing environments that are used for research on statistical microdata on the basis of Commission Regulation (EU) 557/2013 (39 ). In general, insofar as personal data are concerned, the processing of personal data should rely upon one or more of the grounds for processing provided in Article 6 of Regulation (EU) 2016/679.
Amendment 141 #
Proposal for a regulation Recital 6 (6) There are techniques enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation, or suppression and randomisation. Application of these privacy-enhancing technologies, together with comprehensive data protection approaches should ensure the safe re-use of personal anonymous data and commercially confidential business data
Amendment 142 #
Proposal for a regulation Recital 6 (6) There are techniques enabling privacy-friendly analyses on databases that contain personal data, such as anonymisation, pseudonymisation, differential privacy, generalisation, or suppression and randomisation. Application of these privacy-enhancing technologies, together with comprehensive data protection approaches should ensure the safe re-use of personal data and commercially confidential business data for research
Amendment 143 #
Proposal for a regulation Recital 7 (7) The categories of data held by public sector bodies which should be subject to re-use under this Regulation fall outside the scope of Directive (EU) 2019/1024 that excludes data which is not accessible due to commercial and statistical confidentiality and data for which third parties have intellectual property rights. Commercially confidential data includes data protected by trade secrets, highly- sensitive data, confidentiality obligations and agreements and any other unauthorised information that could harm commercial interest of the business. Personal data fall outside the scope of Directive (EU) 2019/1024 insofar as the access regime excludes or restricts access to such data for reasons of data protection, privacy and the integrity of the individual, in particular in accordance with data protection rules. The re-use of data, which may contain trade secrets,
Amendment 144 #
Proposal for a regulation Recital 8 Amendment 145 #
Proposal for a regulation Recital 9 (9) Public sector bodies should comply with competition law when establishing the principles for re-use of data they hold, avoiding as far as possible the conclusion of agreements, which might have as their objective or effect the creation of exclusive rights for the re-use of certain data. Such agreement should be only possible when justified and necessary for the provision of a service of
Amendment 146 #
Proposal for a regulation Recital 9 (9) Public sector bodies should comply with competition law when establishing the principles for re-use of data they hold, avoiding
Amendment 147 #
Proposal for a regulation Recital 10 (10) Prohibited exclusive agreements and other practices or arrangements
Amendment 148 #
Proposal for a regulation Recital 10 (10) Prohibited exclusive agreements and other practices or arrangements between data holders and data re-users which do not expressly grant exclusive rights but which can reasonably be expected to restrict the availability of data for re-use that have been concluded or have been already in place before the entry into force of this Regulation should not be renewed after the expiration of their term. In the case of indefinite or longer-term agreements, they should be terminated within
Amendment 149 #
Proposal for a regulation Recital 11 (11) Conditions for re-use of protected data that apply to public sector bodies competent under national law to allow re- use, and which should be without prejudice to rights or obligations concerning access to such data, should be laid down. Those conditions should be non-discriminatory, proportionate and objectively justified, while not restricting competition.
Amendment 150 #
Proposal for a regulation Recital 11 (11) C
Amendment 151 #
Proposal for a regulation Recital 11 (11) Conditions for re-use of protected data that apply to public sector bodies competent under national law to allow re- use, and which should be without prejudice to rights or obligations concerning access to such data, should be laid down. Those conditions should be non-discriminatory, proportionate and objectively justified, while not restricting competition. In particular, public sector bodies allowing re- use should have in place the technical means necessary to ensure the protection of
Amendment 152 #
Proposal for a regulation Recital 11 (11) Conditions for re-use of protected data that apply to public sector bodies competent under national law to allow re- use, and which should be without prejudice to rights or obligations concerning access to such data, should be laid down. Those conditions should be non-discriminatory, proportionate and objectively justified, while not restricting competition. In particular, public sector bodies allowing re- use should have in place the technical means necessary to ensure the protection of rights and interests of third parties. Conditions attached to the re-use of data should be limited to what is necessary to preserve the rights and interests of others in the data and the integrity of the information technology and communication systems of the public sector bodies. Public sector bodies should apply conditions which best serve the interests of the re-user without leading to a disproportionate effort for the public sector. Depending on the case at hand, before its transmission, personal data should be fully anonymised, so as to definitively not allow the identification of the data subjects, or data containing commercially confidential information modified in such a way that no confidential information is disclosed. Where provision of anonymised or modified data would not respond to the needs of the re-user, on- premise or remote re-use of the data within
Amendment 153 #
Proposal for a regulation Recital 11 (11) Conditions for re-use of protected data that apply to public sector bodies competent under national law to allow re-
Amendment 154 #
Proposal for a regulation Recital 11 (11) Conditions for re-use of protected data that apply to public sector bodies competent under national law to allow re- use, and which should be without prejudice to rights or obligations concerning access to such data, should be laid down. Those conditions should be non-discriminatory, proportionate and objectively justified, while not restricting competition. In particular, public sector bodies allowing re- use should have in place the technical means necessary to ensure the protection of rights and interests of third parties. Conditions attached to the re-use of data should be limited to what is necessary to preserve the rights and interests of others in the data and the integrity of the information technology and communication systems of the public sector bodies. Public sector bodies should apply conditions which best serve the interests of the re-user without leading to a disproportionate
Amendment 155 #
Proposal for a regulation Recital 12 (12) The intellectual property rights of third parties should not be affected by this Regulation. This Regulation should neither affect the existence or ownership of intellectual property rights of public sector bodies, nor should it limit the exercise of these rights in any way beyond the boundaries set by this Regulation. The obligations imposed in accordance with this Regulation should apply only insofar as they are compatible with international agreements on the protection of intellectual property rights, in particular the Berne Convention for the Protection of Literary and Artistic Works (Berne Convention), the Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS Agreement) and the WIPO Copyright Treaty (WCT). Public sector bodies should, however, exercise their copyright in a way that facilitates re-use and encourages a transparent and cooperative approach to data, including by using a Creative Commons approach to licensing to data that is not already open data.
Amendment 156 #
Proposal for a regulation Recital 13 (13) Data subject to intellectual property rights as well as trade secrets should only be transmitted to a third party where such transmission is lawful by virtue of Union or national law or with the agreement of the rightholder. Where public sector bodies or beneficiaries of data provided by the public sector bodies are holders of the right provided for in Article 7(1) of Directive 96/9/EC of the European Parliament and of the Council (41
Amendment 157 #
Proposal for a regulation Recital 13 a (new) (13 a) In case of sharing the data related to the employment with a third party, companies must transmit that data in full respect of the principles and provisions of GDPR, in particular in respect of Article 88 which provides the conditions for processing data in the context of employment. Additional safeguards should be put in place to avoid misuse of sensitive data. Workers should be able to exercise an unambiguous and informed consent in the processing of their data, for which a strong trade unions' involvement in the new governance of data and AI at company and sectoral level should be implemented. Workers or their representatives must, at the appropriate levels, be guaranteed quality information and consultation in good time on those processes, to guarantee a meaningful exchange with management.
Amendment 158 #
Proposal for a regulation Recital 14 (14) Companies and data subjects should be able to trust that the re-use of certain categories of protected data, which are held by the public sector, will take place in a manner that respects their rights and interests. Additional safeguards should thus be put in place for situations in which the re-use of such public sector data is taking place on the basis of a processing of the data outside the public sector.
Amendment 159 #
Proposal for a regulation Recital 14 (14) Companies and data subjects should be able to trust that the re-use of certain categories of protected data, which are held by the public sector, will take place in a manner that respects their rights and interests. Additional safeguards should thus be put in place for situations in which the re-use of such public sector data is taking place on the basis of a processing of
Amendment 160 #
Proposal for a regulation Recital 14 (14) Companies and data subjects should be able to trust that the re-use of certain categories of protected data, which are held by the public sector, will take place in a manner that respects their rights and interests. Additional safeguards should thus be put in place for situations in which the re-use of such public sector data is taking place on the basis of a processing of the data outside the public sector. Such an additional safeguard could be found in the requirement that public sector bodies should
Amendment 161 #
Proposal for a regulation Recital 15 (15) Furthermore, it is important to protect commercially sensitive data of non- personal nature, notably trade secrets, but also non-personal data representing content protected by intellectual property rights from unlawful access that may lead to IP theft or industrial espionage. In order to ensure the protection of fundamental rights or interests of data holders, non-personal data which is to be protected from unlawful or unauthorised access under Union or national law, and which is held by public sector bodies
Amendment 162 #
Proposal for a regulation Recital 15 (15) Furthermore, i
Amendment 163 #
Proposal for a regulation Recital 16 Amendment 164 #
Proposal for a regulation Recital 16 (16) In cases where there is no implementing act adopted by the Commission in relation to a third country declaring that it provides a level of protection, in particular as regards the protection of commercially sensitive data and the protection of intellectual property rights, which is essentially equivalent to that provided by Union or national law, the public sector body should
Amendment 165 #
Proposal for a regulation Recital 16 (16) In cases where there is no implementing act adopted by the Commission in relation to a third country declaring that it provides a level of protection, in particular as regards the protection of commercially sensitive data and the protection of intellectual property rights, which is essentially equivalent to that provided by Union or national law, the public sector body should o
Amendment 166 #
Proposal for a regulation Recital 16 (16) In cases where there is no implementing act adopted by the Commission in relation to a third country declaring that it provides a level of protection, in particular as regards the protection of commercially sensitive data and the protection of intellectual property rights, which is essentially equivalent to that provided by Union or national law, the public sector body should only after consent from the competent body transmit protected data to a re-user, if the re-user undertakes obligations to the competent body in the interest of the protection of the data. The re-user that intends to transfer the data to such third country should commit to comply with the obligations laid out in this Regulation even after the data has been transferred to the third country. To ensure the proper enforcement of such obligations, the re-
Amendment 167 #
Proposal for a regulation Recital 16 (16) In cases where there is no
Amendment 168 #
Proposal for a regulation Recital 17 Amendment 169 #
Proposal for a regulation Recital 17 (17) Some third countries adopt laws, regulations and other legal acts which aim at directly transferring or providing access to non-personal data in the Union under the control of natural and legal persons under the jurisdiction of the Member States. Judgments of courts or tribunals or decisions of administrative authorities in third countries requiring such transfer or access to non-personal data should be enforceable when based on an international agreement, such as a mutual legal assistance treaty, in force between the requesting third country and the Union or a Member State.
Amendment 170 #
Proposal for a regulation Recital 17 (17) Some third countries adopt laws, regulations and other legal acts which aim at directly transferring or providing access to non-personal data in the Union under the control of natural and legal persons under the jurisdiction of the Member States. Judgments of courts or tribunals or decisions of administrative authorities in third countries requiring such transfer or access to non-personal data should be enforceable when based on an international agreement, such as a mutual legal assistance treaty, in force between the requesting third country and the Union or a Member State. In some cases, situations may arise where the obligation to transfer or provide access to non-personal data arising from a third country law conflicts with a competing obligation to protect such data under Union or national law, in particular as regards the protection of commercially sensitive data and the protection of intellectual property rights, and including its contractual undertakings regarding confidentiality in accordance with such law.
Amendment 171 #
Proposal for a regulation Recital 18 (18) In order to prevent unlawful access to non-personal data, public sector bodies, natural or legal persons to which the right to re-use data was granted, data sharing providers and entities entered in the register of
Amendment 172 #
Proposal for a regulation Recital 18 (18) In order to prevent unlawful access to non-personal data, public sector bodies, natural or legal persons to which the right to re-use data was granted, data sharing providers and entities entered in the register of recognised data altruism organisations should take all reasonable measures to prevent access to the systems where non-personal data is stored,
Amendment 173 #
Proposal for a regulation Recital 18 (18) In order to prevent unlawful access to non-personal data, public sector bodies, natural or legal persons to which the right to re-use data was granted, data sharing providers and entities entered in the register of recognised data altruism organisations should take all reasonable and legal measures to prevent access to the systems where non-personal data is stored, including encryption of data or corporate policies.
Amendment 174 #
Proposal for a regulation Recital 19 Amendment 175 #
Amendment 176 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive
Amendment 177 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive, as regards the transfer to third countries, if such transfer could jeopardise public policy objectives, in line with international commitments. For example, in the health domain, certain datasets held by actors in the public health system, such as public hospitals, could be identified as highly sensitive health data, including real world data, such as electronic health records, insurance claims data and data from patient registries. In order to ensure harmonised practices across the Union, such types of highly sensitive non-personal public data should be defined by Union law, for example in the context of the European Health Data Space or other sectoral legislation. Regarding the processing of data for health research purposes, the provisions of GDPR under Article 9 on the processing of special categories of data should apply. The conditions attached to the transfer of such data to third countries should be laid down in delegated acts. Conditions should be proportionate, non-discriminatory and necessary to protect legitimate public policy objectives
Amendment 178 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive, as regards the transfer to
Amendment 179 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive, as regards the transfer to third countries, if such transfer could jeopardise public policy objectives, in line with international commitments. For example, in the health domain, certain datasets held by actors in the public health system, such as public hospitals, could be identified as highly sensitive health data. In order to ensure harmonised practices across the Union, such types of highly sensitive non-personal public data should be defined by Union law, for example in the context of the European Health Data Space or other sectoral legislation. The conditions attached to the transfer of such data to third countries should be laid down in delegated acts. Conditions should be proportionate, non-discriminatory and necessary to protect legitimate public policy objectives identified, such as the protection of public health, public order, safety,
Amendment 180 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive by a specific Union act, as regards the transfer to third countries, if such transfer could jeopardise public policy objectives, in line with international commitments. For example, in the health domain, certain datasets held by actors in the public health system, such as public hospitals, could be identified as highly sensitive health data. In order to ensure harmonised practices across the Union, such types of highly sensitive non-personal public data should be defined by Union law, for example in the context of the European Health Data Space or other sectoral legislation. The conditions attached to the transfer of such data to third countries should be laid down in delegated acts. Conditions should be proportionate, non-discriminatory and necessary to protect legitimate public policy objectives identified, such as the protection of public health, public order, safety, the environment, public morals, consumer protection, privacy and personal data protection. The conditions should correspond to the risks identified in relation to the sensitivity of such data, including in terms of the risk of the re- identification of individuals. These conditions could include terms applicable for the transfer or technical arrangements, such as the requirement of using a secure processing environment, limitations as
Amendment 181 #
Proposal for a regulation Recital 19 (19) In order to build trust in re-use mechanisms, it may be necessary to attach stricter conditions for certain types of non- personal data that have been identified as highly sensitive, as regards the transfer to third countries, if such transfer could jeopardise public policy objectives, in line with international commitments. For example, in the health domain, certain datasets held by actors in the public health system, such as public hospitals, could be identified as highly sensitive health data. In order to ensure harmonised practices across the Union, such types of highly sensitive non-personal public data should be defined by Union law, for example in the context of the European Health Data Space or other sectoral legislation. The conditions attached to the transfer of such data to third countries should be laid down in
Amendment 182 #
Proposal for a regulation Recital 20 (20) Public sector bodies should be able to charge fees for the re-use of data but should also be able to decide to make the data available at lower or no cost, for example for certain categories of re-uses such as non-commercial re-use for research, or re-use by small and medium- sized enterprises, so as to incentivise such re-use in order to stimulate research and innovation and support
Amendment 183 #
Proposal for a regulation Recital 20 (20) Public sector bodies should be able to charge fees for the re-use of data to cover the costs of providing for such data re-use, but should also be able to decide to make the data available at lower or no cost, for example for certain categories of re- uses such as non-commercial re-use, or re- use by small and medium-sized enterprises, so as to incentivise such re-use in order to stimulate research and innovation and support companies that are an important source of innovation and typically find it more difficult to collect relevant data themselves, in line with State aid rules. Such fees should be
Amendment 184 #
Proposal for a regulation Recital 20 (20) Public sector bodies should be able to charge fees for the re-use
Amendment 185 #
Proposal for a regulation Recital 20 (20) Public sector bodies should be able to charge fees for the re-use of data but should also be able to decide to make the data available at lower or no cost, for example for certain categories of re-uses such as non-commercial re-use, or re-use by small and medium-sized enterprises, including social economy enterprises, so as to incentivise such re-use in order to stimulate research and innovation and support companies that are an important source of innovation and typically find it more difficult to collect relevant data themselves, in line with State aid rules. Such fees should be reasonable, transparent, published online and non-
Amendment 186 #
Proposal for a regulation Recital 20 (20) Public sector bodies should be able to set and charge fees for the re-use of data
Amendment 187 #
Proposal for a regulation Recital 21 (21) In order to incentivise the re-use of these categories of data, Member States should establish a single information point
Amendment 188 #
Proposal for a regulation Recital 21 (21) In order to incentivise the re-use of these categories of data, Member States should establish a single information point to act as the primary interface for re-users that seek to re-use such data held by the public sector bodies. It should have a cross-sector remit, and should complement, if necessary, arrangements at the sectoral level. In addition, Member States should designate, establish or facilitate the establishment of competent bodies to support the activities of public sector bodies allowing re-use of certain categories of protected data. Their tasks may include granting access to data, where mandated in sectoral Union or Member States legislation and developing a harmonised approach and processes for public sector bodies to make scientific data available for purposes of research. Those competent bodies should provide support to public sector bodies with state-of-the-art techniques, including secure data processing environments, which allow data analysis in a manner that preserves the privacy of the information. Such support structure could support the data holders with management of the consent, including consent to certain areas of scientific research when in keeping with recognised ethical standards for scientific research. Data processing should be performed under the responsibility of the public sector body responsible for the register containing the data, who remains a data controller in the sense of Regulation (EU) 2016/679 insofar as personal data are concerned. Member States may have in place one or several competent bodies, which could act in different sectors.
Amendment 189 #
Proposal for a regulation Recital 21 (21) In order to incentivise and promote the re-use of these categories of data, Member States should establish a single information point to act as the primary interface for re-users that seek to re-use such data held by the public sector bodies. It should have a cross-sector remit, and should complement, if necessary, arrangements at the sectoral level. In addition, Member States should designate, establish or facilitate the establishment of competent bodies to support the activities of public sector bodies allowing re-use of certain categories of protected data. Their tasks may include granting access to data, where mandated in sectoral Union or Member States legislation. Those competent bodies should provide support to public sector bodies with state-of-the-art techniques, including secure data processing environments, which allow data analysis in a manner that preserves the privacy of the information. Such support structure could support the data holders with management of the consent to re-use, including consent to certain areas of scientific research when in keeping with recognised ethical standards for scientific research. Data processing should be performed under the responsibility of the public sector body responsible for the register containing the data, who remains a data controller in the sense of Regulation (EU) 2016/679 insofar as personal data are concerned. Member States may have in place one or several competent bodies, which could act in different sectors.
Amendment 190 #
Proposal for a regulation Recital 21 (21) In order to incentivise the re-use of these categories of data, Member States should establish a single information point to act as the primary interface for re-users that seek to re-use such data held by the public sector bodies. It should have a cross-sector remit, and should complement, if necessary, arrangements at the sectoral level. In addition, Member States should designate, establish or facilitate the establishment of competent bodies to support the activities of public sector bodies allowing re-use of certain categories of protected data. Their tasks may include granting access to data, where mandated in sectoral Union or Member States legislation. Those competent bodies should provide support to public sector bodies with state-of-the-art techniques, including secure data processing environments in the Union, which allow data analysis in a manner that preserves the privacy of the information. Such support structure could support the data holders with management of the consent, including consent to certain areas of scientific research when in keeping with recognised ethical standards for scientific research. Data processing should be performed under the responsibility of the public sector body responsible for the register containing the data, who remains a data controller in the sense of Regulation (EU) 2016/679 insofar as personal data are concerned. Member States may have in place one or several competent bodies, which could act in different sectors.
Amendment 191 #
Proposal for a regulation Recital 22 (22) Providers of data sharing services (data intermediaries) are expected to play a key role in the data economy, as a tool to facilitate the aggregation and exchange of substantial amounts of relevant data. Data intermediaries offering services that connect the different actors have the potential to
Amendment 192 #
Proposal for a regulation Recital 22 (22) Providers of data sharing services (data intermediaries) are expected to play a key role in the data economy, as a tool to facilitate the aggregation and exchange of substantial amounts of relevant data. Data intermediaries should be controlled and authorised only by public bodies within the Member States. Data intermediaries offering services that connect the different actors have the potential to contribute to the efficient pooling of data as well as to the facilitation of bilateral data sharing. Specialised data intermediaries that are independent from both data holders and data users can have a facilitating role in the emergence of new data-driven ecosystems independent from any player with a significant degree of market power. This Regulation should only cover providers of data sharing services that have as a main objective the establishment of a business, a legal and potentially also technical relation between data holders, including data subjects, on the one hand, and potential users on the other hand, and assist both parties in a transaction of data assets between the two. It should only cover services aiming at intermediating between an indefinite number of data holders and data users, excluding data sharing services that are meant to be used by a closed group of data
Amendment 193 #
Proposal for a regulation Recital 22 (22)
Amendment 194 #
Proposal for a regulation Recital 22 (22) Providers of data sharing services (data intermediaries) are expected to play a key role in the data economy
Amendment 195 #
Proposal for a regulation Recital 22 (22) Providers of data sharing services (data intermediaries) are expected to play a key role in the data economy, as a tool to facilitate the aggregation and exchange of substantial amounts of relevant data. Data intermediaries offering services that connect the different actors have the potential to contribute to the efficient pooling of data as well as to the facilitation of bilateral data sharing. Specialised data intermediaries that are independent from both data holders and data users can have a facilitating role in the emergence of new data-driven ecosystems independent from any player with a significant degree of market power. This Regulation should only cover providers of data sharing services that have as a main objective the establishment of a business, a legal and potentially also technical relation between data holders, including data subjects, on the one hand, and potential users on the other hand, and assist both parties in a transaction of data assets between the two. It should only cover services aiming at intermediating between an indefinite number of data holders and data users, excluding data sharing services that are meant to be used by a closed group of data holders and users. Providers of cloud services should be
Amendment 196 #
Proposal for a regulation Recital 22 a (new) (22 a) Data intermediary services could also be set up by public entities such as cities and municipalities fully complying with the rules of this Regulation. Cities gather vast amounts of data of their citizens and the users of their services. Better utilising this data could bring benefits both to the cities and the users of their services through better interoperability of data and improved personal data management for individuals through implementing MyData principles. These services could facilitate the transfer of both public sector data and data provided by the individuals themselves or by third parties. These services should function by fully complying with existing legislation and especially with Regulation EU 2016/679 (GDPR).
Amendment 197 #
Proposal for a regulation Recital 23 (23) A specific category of data intermediaries includes providers of data sharing services that offer their services to data subjects in the sense of Regulation (EU) 2016/679. Such providers focus exclusively on personal data and seek to
Amendment 198 #
Proposal for a regulation Recital 23 (23) A specific category of data intermediaries includes providers of data sharing services that offer their services to
Amendment 199 #
Proposal for a regulation Recital 24 (24) Data cooperatives seek to strengthen the position of individuals in making informed choices before
Amendment 200 #
Proposal for a regulation Recital 24 (24) Data cooperatives seek to strengthen the position of individuals in making informed choices before consenting to data use, influencing the terms and conditions of data user organisations attached to data use or potentially solving disputes between members of a group on how data can be used when such data pertain to several data subjects within that group. In this context it
Amendment 201 #
Proposal for a regulation Recital 24 (24) Data cooperatives seek to strengthen the position of individuals in making explicit and informed choices before consenting to data use, influencing the terms and conditions of data user organisations attached to data use or potentially solving disputes between members of a group on how data can be used when such data pertain to several data subjects within that group.
Amendment 202 #
Proposal for a regulation Recital 24 (24) Data cooperatives seek to strengthen the position of individuals in making informed choices before consenting to data use, influencing the terms and conditions of data user organisations attached to data use or potentially solving disputes between members of a group on how data can be used when such data pertain to several data subjects within that group. In this context it is important to acknowledge that the rights under Regulation (EU) 2016/679 can only be exercised by each individual and cannot be conferred or delegated to a data cooperative. Data cooperatives could also provide a useful means for one-person companies, micro, small and medium-sized enterprises, especially in the agrifood sector, that in terms of knowledge of data sharing, are often comparable to individuals.
Amendment 203 #
Proposal for a regulation Recital 24 (24) Data cooperatives seek to strengthen the position of individuals in making informed choices before consenting to data use, influencing the pricing terms and conditions of data user organisations attached to data use or potentially solving disputes between members of a group on how data can be used when such data pertain to several data subjects within that group. In this context it is important to acknowledge that the rights under Regulation (EU) 2016/679 can only be exercised by each individual and cannot be conferred or delegated to a data cooperative. Data cooperatives could also provide a useful means for one-person companies, micro, small and medium-sized enterprises that in terms of knowledge of data sharing, are often comparable to individuals.
Amendment 204 #
Proposal for a regulation Recital 25 (25) In order to increase trust in such data sharing services, in particular related to the use of data and the compliance with the conditions imposed by data holders, it is necessary to create a Union-level regulatory framework, which would set out highly harmonised requirements related to the trustworthy provision of such data sharing services. This will contribute to ensuring that data holders and data users have better control over the access to and use of their data, in accordance with Union law. Both in situations where data sharing occurs in a business-to-business context and where it occurs in a business-to-
Amendment 205 #
Proposal for a regulation Recital 25 (25) In order to increase trust in such data sharing services, in particular related to the use of data and the compliance with the conditions imposed by data holders, it is necessary to create a Union-level regulatory framework, which would set out highly harmonised requirements related to the trustworthy provision of such data sharing services. This will contribute to ensuring that data holders and data users have better control over the access to and use of their data, in accordance with Union law. Both in situations where data sharing occurs in a business-to-business context and where it occurs in a business-to- consumer context, data sharing providers should offer a novel, ‘European’ way of data governance, by providing a separation in the data economy between data provision, intermediation and use, which is at the core of increasing such trust among data holders, be they individuals or companies. Providers of data sharing services may also
Amendment 206 #
Proposal for a regulation Recital 25 (25) In order to increase trust in such data sharing services,
Amendment 207 #
Proposal for a regulation Recital 26 (26) A key element to bring trust and more control for data holder and data users in data sharing services is the neutrality of data sharing service providers as regards the data exchanged between data holders and data users. It is therefore necessary that data sharing service providers act only as intermediaries in the transactions, and do not use the data exchanged for any other purpose. This will also require structural separation between the data sharing service and any other services provided, so as to avoid issues of conflict of interest. This means that the data sharing service should be provided through a legal entity that is separate from the other activities of that data sharing provider. Where an actor provides other data-related services, in addition to data sharing services, the pricing and terms of services for the data sharing service should not be dependent on whether and to what degree a data holder or data user uses other data- related services from the same actor. Data sharing providers that intermediate the exchange of data between individuals as data holders and legal persons should, in addition, bear fiduciary duty towards the individuals, to ensure that they act in the best interest of the data holders.
Amendment 208 #
Proposal for a regulation Recital 26 (26)
Amendment 209 #
Proposal for a regulation Recital 26 a (new) (26 a) Data intermediaries should take reasonable measures to ensure interoperability with other data intermediation services to ensure the proper functioning of the market. Reasonable measures could include following the existing, commonly-used standards. The European Data Innovation Board should facilitate the emergence of additional industry standards, where necessary. Data sharing service providers should implement in due time the measures for interoperability between the data sharing services set out by the European Data Innovation Board.
Amendment 210 #
Proposal for a regulation Recital 26 a (new) (26 a) The gradual shift from physical centres of data storage to data architectures on the cloud and closer to the user reinforces the need for a strengthened cybersecurity framework to meet the evolving levels of trust by both data rights holders and data users in the context of data exchanges.
Amendment 211 #
Proposal for a regulation Recital 26 a (new) (26 a) To help promote proper functioning of the market, data intermediaries should take reasonable measures to ensure interoperability.
Amendment 212 #
Proposal for a regulation Recital 26 b (new) (26 b) COVID-19 crisis has clearly shown just how important digital technologies have become in our daily lives. Telemedicine, teleworking, videoconference and online educational platforms are all great examples of how the digital tools can have a transformative impact on our societies. The digital transformation of our societies and economies is creating new opportunities for innovation and efficiency, while also providing new opportunities in addressing societal challenges. However, as our dependency on digital technologies continues to grow and with it the volume of generated data, individuals, governments and businesses are facing an increased risk of data loss, theft, abuse and misuse. These challenges highlight the need to strengthen Union’s resilience and digital autonomy by investing further into digital skills, technological and industrial capacities necessary to respond to these challenges. A future-proof data governance framework needs to use state- of-the-art cybersecurity standards and utilize cybersecurity solutions that will ensure high levels of protection of personal and non-personal data.
Amendment 213 #
Proposal for a regulation Recital 26 b (new) (26 b) The successful uptake and widespread use of products and services fuelled by data depend on cybersecurity standards, which will inspire trust and allow for safer data sharing mechanisms and better protocols to guarantee data protection and the prevention, detection and handling of evolving cyberthreats.
Amendment 214 #
Proposal for a regulation Recital 26 c (new) (26 c) Technological advancement based on data processing and the interconnectedness of digital products and services call for legally binding cybersecurity and privacy standards to mitigate threats to privacy and the rights and freedoms of individual data rights holders in the context of a harmonised framework for data exchanges through trusted data intermediation.
Amendment 215 #
Proposal for a regulation Recital 26 d (new) Amendment 216 #
Proposal for a regulation Recital 27 (27) In order to ensure the compliance of the providers of data sharing services with the conditions set out in this Regulation, such providers should have a place of establishment in the Union.
Amendment 217 #
Proposal for a regulation Recital 27 (27) In order to ensure the compliance of the providers of data sharing services with the conditions set out in this Regulation, such providers should have a place of establishment in the Union. Alternatively, where a provider of data sharing services not established in the Union offers services within the Union, it should designate a representative. Designation of a representative is necessary, given that such providers of data sharing services handle personal data as well as commercially confidential data, which necessitates the close monitoring of
Amendment 218 #
Proposal for a regulation Recital 27 (27) In order to ensure the compliance of the providers of data sharing services with the conditions set out in this Regulation, such providers should have a place of establishment in the Union
Amendment 219 #
Proposal for a regulation Recital 27 (27) In order to ensure the compliance of the providers of data
Amendment 220 #
Proposal for a regulation Recital 28 (28) This Regulation should be without prejudice to the obligation of providers of data sharing services to comply with Regulation (EU) 2016/679 and the responsibility of supervisory authorities to ensure compliance with that Regulation. When providers of data intermediaries process personal data, this Regulation does not affect the protection of personal data. Where the data sharing service providers are data controllers or processors in the sense of Regulation (EU) 2016/679 they are bound by the rules of that Regulation. This Regulation should be also without prejudice to the application of competition law.
Amendment 221 #
Proposal for a regulation Recital 28 a (new) (28 a) As laid down in Article 11 of this Regulation, the data intermediaries shall have procedures and sanctions in place to prevent fraudulent or abusive practices in relation to access to data from parties seeking access through their services. These rules could be defined for example in a rulebook that lays out the code of conduct and rules for the data network in question. In practice, sanctions could mean e.g. excluding the data user that does not comply with the rules and procedures that have been agreed within the network or with existing legislation. The data intermediaries are subject to compliance monitoring as laid in the Article 13 of this Regulation. Therefore, it is necessary to set up tools for the data intermediaries surveillance the compliance within the users of their services.
Amendment 222 #
Proposal for a regulation Recital 29 (29) Providers of data sharing services should also take measures to ensure compliance with competition law. Data sharing may generate various types of efficiencies but may also lead to restrictions of competition, in particular where it includes the sharing of competitively sensitive information. This applies in particular in situations where data sharing enables businesses to become
Amendment 223 #
Proposal for a regulation Recital 29 (29) Providers of data sharing services should also take effective measures to ensure compliance with competition law. Data sharing may generate various types of efficiencies but may also lead to restrictions of competition, in particular where it includes the sharing of competitively sensitive information. This applies in particular in situations where data sharing enables businesses to become aware of market strategies of their actual or potential competitors. Competitively sensitive information typically includes information on future prices, production costs, quantities, turnovers, sales or capacities.
Amendment 224 #
Proposal for a regulation Recital 29 a (new) (29 a) In that regard, it is of particular importance to create a data economic environment that enables equal access to data to both SMEs and big companies. This Regulation should avoid monopolistic implementations and structures that could disadvantage micro companies and SMEs.
Amendment 225 #
Proposal for a regulation Recital 29 b (new) (29 b) Competitively sensitive information should also take into account the possibility of issuing fake data to destabilise the market, which could be due to third parties having an interest in these unfair competition practices. For this purpose, processes to verify the authenticity of the data must be activated.
Amendment 226 #
Proposal for a regulation Recital 31 (31) In order to support effective cross- border provision of services, the data
Amendment 227 #
Proposal for a regulation Recital 31 (31) In order to support effective cross- border provision of services, the data sharing provider should be requested to send a notification only to the designated competent authority from the Member State where its main establishment is located or where its legal representative is located. Such a notification should not entail more than a mere declaration of the intention to provide such services and should be completed only by the providing information set out in this Regulation. After the relevant notification the data sharing provider should be able to start operating in other Member States without further notification obligations.
Amendment 228 #
Proposal for a regulation Recital 31 (31) In order to support effective cross- border provision of services, the data sharing provider should be requested to send a notification only to the designated competent authority from the Member State where its main establishment is located
Amendment 229 #
Proposal for a regulation Recital 33 (33) The competent authorities under Regulation 2018/679 designated to monitor compliance of data sharing services with the requirements in this Regulation should be chosen on the basis of their capacity and expertise regarding horizontal or sectoral data sharing, and they should be independent as well as transparent and impartial in the exercise of their tasks. Member States should notify the Commission of the identity of the designated competent authorities.
Amendment 230 #
Proposal for a regulation Recital 35 Amendment 231 #
Proposal for a regulation Recital 35 (35) There is a strong potential in the use of data made available freely and voluntarily by data subjects
Amendment 232 #
Proposal for a regulation Recital 35 (35) There is a strong potential in the use of data made available voluntarily by data subjects based on their consent or, where it concerns non-personal data, made available by legal persons, for purposes of general interest. Such purposes would include healthcare, combating climate change, improving mobility, facilitating the establishment of official statistics or improving the provision of public services.
Amendment 233 #
Proposal for a regulation Recital 35 a (new) (35 a) The creation of a secure European federated digital identity system is of crucial importance. The Data Governance Act should ensure coherence with the EU Digital identity through which users shall access online services, have control over their data, be able to swiftly manage the consent they provide and properly enforce their rights, such as portability and their right to be forgotten.
Amendment 234 #
(36) Legal entities that seek to support purposes of
Amendment 235 #
Proposal for a regulation Recital 36 (36) Legal entities that seek to support purposes of general interest by making available relevant data based on data altruism at scale and meet certain requirements, should be able to register as ‘Data Altruism Organisations recognised in the Union’. This could lead to the establishment of data repositories. As registration in a Member State would be valid across the Union,
Amendment 236 #
Proposal for a regulation Recital 36 (36) Legal entities that seek to support purposes of general interest by making available relevant data based on data altruism at scale and meet certain requirements, should be able to register as ‘Data Altruism Organisations recognised in the Union’. This could lead to the establishment of data repositories. As registration in a Member State would be valid across the Union, and this should facilitate cross-border data use within the Union and the emergence of data pools covering several Member States. Data subjects in this respect would consent to specific purposes of data processing, but could also consent to data processing in
Amendment 237 #
Proposal for a regulation Recital 36 (36) Legal entities that seek to support
Amendment 238 #
Proposal for a regulation Recital 37 (37) This Regulation is without prejudice to the establishment, organisation and functioning of entities that seek to engage in data altruism pursuant to national law. It builds on national law requirements to operate lawfully in a Member State as a not-for-profit organisation. Entities which meet the requirements in this Regulation should be able to use the title of ‘Data Altruism Organisations recognised in the Union’. The entity should use a EU dedicated logo or QR code linking to the European register of recognised data altruism organisations, both online and offline. The logo shall have the objective of providing a coherent visual identity to European Union data altruism organisations and contribute to increase trust for data subjects and legal entities. The logo must be created and displayed with rules established in a separate implementing act.
Amendment 239 #
Proposal for a regulation Recital 37 (37) This Regulation is without prejudice to the establishment, organisation and functioning of entities that seek to engage in
Amendment 240 #
Proposal for a regulation Recital 37 a (new) (37 a) This Regulation is without prejudice to the establishment, organisation and functioning of entities other than Public Sector bodies that engage in the sharing of data and content on the basis of open licenses, thereby contributing to the creation of commons resources available to all. This includes open collaborative knowledge sharing platforms like Wikipedia and Wikidata, open access scientific and academic repositories, open source software development platforms and Open Access content aggregation platforms like European. Organisations building such open Access commons knowledge repositories play an important role in the online infrastructure. Nothing in this Regulation should therefore be interpreted to limit the ability of non- profit organizations to make data and content available to the public under open licenses.
Amendment 241 #
Proposal for a regulation Recital 37 a (new) (37 a) This Regulation is without prejudice to the establishment, organisation and functioning of entities other than Public Sector bodies that engage in the sharing of data and content on the basis of open licenses, thereby contributing to the creation of commons resources available to all. This includes open collaborative knowledge sharing platforms, open access scientific and academic repositories, open source software development platforms and Open Access content aggregation platforms. Organisations building such open Access commons knowledge repositories play an important role in the online infrastructure. Nothing in this Regulation should therefore be interpreted to limit the ability of non-profit organisations to make data and content available to the public under open licenses.
Amendment 242 #
Proposal for a regulation Recital 38 (38) Data Altruism Organisations
Amendment 243 #
Proposal for a regulation Recital 38 (38) Data Altruism Organisations recognised in the Union should be able to collect relevant data directly from natural and legal persons established in the Union or to process data collected by others. Typically, data altruism would rely on consent of data subjects in the sense of Article 6(1)(a) and 9(2)(a) and in compliance with requirements for lawful consent in accordance with Article 7 of Regulation (EU) 2016/679. In accordance with
Amendment 244 #
Proposal for a regulation Recital 39 (39) To promote trust and bring additional legal certainty to granting and withdrawing of consent, in particular in the context of scientific research and statistical use of data made available on an altruistic basis, a European data altruism consent form should be developed and used in the context of altruistic data sharing. Such a form should contribute to additional transparency for data subjects that their data will be accessed and used in accordance with their consent and also in full compliance with the data protection rules. It could also be used to streamline data altruism performed by companies and provide a mechanism allowing such companies to withdraw their permission to use the data. In order to take into account the specificities of individual sectors, including from a data protection perspective, there should be a possibility for sectoral adjustments of the European
Amendment 245 #
Proposal for a regulation Recital 39 (39) To bring additional legal certainty to granting and withdrawing of consent, in particular in the context of scientific research and statistical use of data made available on
Amendment 246 #
Proposal for a regulation Recital 39 a (new) (39 a) As highlighted in Recitals, the European data strategy is building upon the emergence of interoperable data spaces that will enable the use and sharing of data, irrespective of its physical location of storage being in the Union or not, in compliance with applicable law. For these data spaces to be able to emerge in a coordinated manner respecting the common aim of data strategy, it is important to define common design principles. Common building blocks and soft infrastructure make cross-sectorial data sharing easier, while there should always be a room for domain specific solutions. The aim of the data space would be to make data findable, accessible, interoperable and reusable (FAIR). The dataspaces should follow at least the three following principles: 1) “data sovereignty”, 2) data level playing field, 3) decentralised soft infrastructure and public-private governance. Data sovereignty for natural person or organisation is the innovative and transformative concept underlying the data space. When the data level playing field exists, players compete on quality of services, and not on the amount of data they control. A data level playing field is a pivotal condition to create a fair data sharing economy. For the design, creation and maintenance of the data level playing field, a sound governance is needed in which all the all the stakeholders of a data space need to feel represented and engaged. The dataspaces should also include sufficient rules on cybersecurity according to union law.
Amendment 247 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established
Amendment 248 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission and representatives of relevant data spaces and specific sectors (such as health, agriculture, transport and statistics), as well as representatives of academia, research and standard setting organisations. The European Data Protection Board should be invited to appoint a representative to the European Data Innovation Board. The Board shall establish a Data Innovation Advisory Council (the “Advisory Council”). The Advisory Council shall be proportionally composed of a number between 15 to 30 representatives from industry including SMEs, research, civils society, standardisation organisations and other relevant stakeholders or third parties appointed by the Board. The Advisory Council shall nominate a representative to attend meetings of the Board and to participate in its work.
Amendment 249 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission and representatives of
Amendment 250 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission
Amendment 251 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established
Amendment 252 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission and representatives of relevant data spaces and specific sectors (such as health, agriculture, transport and statistics) as well as representatives of academia, research and standard setting organisations, where relevant. The European Data Protection Board should be invited to appoint a representative to the European Data Innovation Board.
Amendment 253 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission and representatives of relevant data spaces and specific sectors (such as health, agriculture,
Amendment 254 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board
Amendment 255 #
Proposal for a regulation Recital 40 (40) In order to successfully implement the data governance framework, a European Data Innovation Board should be established, in the form of an expert group. The Board should consist of representatives of the Member States, the Commission and representatives of relevant data spaces and specific sectors (such as health, energy, industrial manufacturing, agriculture, transport and statistics). The European Data Protection Board should be invited to appoint a
Amendment 256 #
Proposal for a regulation Recital 40 a (new) (40 a) The Commission must ensure that small and medium-sized entities, as well as start-ups, are adequately represented in the Board, to ensure that these critical members of our economic community benefit directly from expert knowledge, whilst contributing towards the expansion of the European data economy and a more efficient dissemination of data.
Amendment 257 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of standards and specifications (such as the Core Vocabularies44 and the CEF Building Blocks45 ), without prejudice to standardisation work taking place in specific sectors or domains. Work on
Amendment 258 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of standards and specifications (such as the Core Vocabularies44 and the CEF Building Blocks45 ),
Amendment 259 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of standards and specifications (such as the
Amendment 260 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of standards and specifications (such as the Core Vocabularies44 and the CEF Building Blocks45 ), without prejudice to standardisation work taking place in specific sectors or domains. Work on technical standardisation may include the identification of priorities for the development of standards and establishing and maintaining a set of technical and legal standards for transmitting data between two processing environments that allows data spaces to be organised without making recourse to an intermediary. The Board should cooperate with sectoral bodies, networks or expert groups, or other cross- sectoral organisations dealing with re-use of data. Regarding data altruism, the Board should assist the Commission in the development of the data altruism consent form, in consultation with the European Data Protection Board.
Amendment 261 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of open standards and specifications (such as the Core Vocabularies44 and the CEF Building Blocks45 ), without prejudice to standardisation work taking place in specific sectors or domains. Work on technical standardisation may include the identification of priorities for the development of standards and establishing and maintaining a set of technical and legal standards for transmitting data between two processing environments that allows data spaces to be organised without making recourse to an intermediary. The Board should cooperate with sectoral bodies, networks or expert groups, or other cross- sectoral organisations dealing with re-use of data. Regarding data altruism, the
Amendment 262 #
Proposal for a regulation Recital 41 (41) The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross- sector data use by adhering to the European Interoperability Framework (EIF) principles and through the utilisation of European and international standards and specifications (
Amendment 263 #
Proposal for a regulation Recital 41 (41) The main task of the Board should be assisting to form the interoperability between emerging data spaces. The Board should support the Commission in coordinating national practices and policies on the topics covered by this Regulation, and in supporting cross-
Amendment 264 #
Proposal for a regulation Recital 41 a (new) (41 a) Data innovation board should address not only strategic level, but also the tactical and operational level across the different actors in data economy acting in the Union. This means, for example, the coordination of activities that need to follow the strategic directives regarding aspects such as data space interoperability/federation, interoperability of data intermediaries and data sovereignty. To meet the requirements of scale and the market demands, it is imperative that the industry is involved so that it is turned into a true public/private endeavour. To achieve this, the data innovation board shall establish a permanent subgroup called the Data Exchange Board (“the DEB”) in the form of an expert group. It will consist of actors that have a direct interest in the establishment, governance and adoption of a standardised approach to data sharing and exchange with the help of European data spaces. Those actors should be researchers, practitioners, representatives of consumer associations and public and private initiatives for data sharing and exchange. The DEB will be responsible for detailing, maintaining and adopting the agreements that will ultimately define the soft infrastructure. In practical terms, the DEB will execute at a tactical and operational level the goals set by the DIB at the strategic level. These actors should be researchers, practitioners, and public and private initiatives for data sharing and exchange. In a later phase, the DEP should focus on maintaining the soft infrastructure and keeping it up to date (change management).
Amendment 265 #
Proposal for a regulation Recital 41 a (new) (41 a) With reference to 'false data', the Board could evaluate the possibility of creating a "data passport" containing certified or certifiable data, in order to exclude any attempt to falsify the data.
Amendment 266 #
Proposal for a regulation Recital 42 Amendment 267 #
Proposal for a regulation Recital 43 Amendment 268 #
Proposal for a regulation Recital 43 Amendment 269 #
Proposal for a regulation Recital 43 (43) In order to take account of the
Amendment 270 #
Proposal for a regulation Recital 44 (44) This Regulation should not affect the application of the rules on competition, and in particular Articles 101 and 102 of the Treaty on the Functioning of the European Union.
Amendment 271 #
Proposal for a regulation Recital 44 a (new) (44 a) This Regulation shall be enacted in full coherence and consistency with other existing EU legislation, such as the General Data Protection Regulation, as well as ongoing proposals which contain provision on data processing, such as the Digital Service Act (DSA), the Digital Market Act (DMA) or the e-Privacy Regulation.
Amendment 272 #
Proposal for a regulation Recital 45 a (new) (45 a) The European Data Protection Supervisor and the European Data Protection Board have expressed serious concerns in their Joint opinion from 10th March 2021, underlying that the proposal “does not duly take into account the need to ensure and guarantee the level of protection of personal data provided under EU law” and “raises serious concerns from a fundamental rights viewpoint”. Following this opinion, the institutions committed to reinforce disposition in the Regulation to protect GDPR enforcement.
Amendment 273 #
Proposal for a regulation Recital 46 (46) This Regulation respects the fundamental rights and observes the principles recognised in particular by the Charter, including the right to privacy, the protection of personal data, the freedom to conduct a business, the right to property and the integration of persons with disabilities
Amendment 274 #
Proposal for a regulation Recital 46 (46) This Regulation respects the fundamental rights and observes the principles recognised in particular by the
Amendment 275 #
Proposal for a regulation Recital 46 a (new) (46 a) In the event of any doubt over the interpretation of the provisions of this Regulation or any contradiction or conflict relating to personal data protection, the provisions of the General Data Protection Regulation shall take precedence.
Amendment 276 #
Proposal for a regulation Article 1 – paragraph 1 – point a a (new) (a a) rules regarding the right of natural persons and organisations to deal with data they generate in a data.
Amendment 277 #
Proposal for a regulation Article 1 – paragraph 1 – point a b (new) (a b) the governance structure for a soft infrastructure that will evolve over time, enabling data sovereign data sharing.
Amendment 278 #
Proposal for a regulation Article 1 – paragraph 1 – point c (c) a framework for
Amendment 279 #
Proposal for a regulation Article 1 – paragraph 1 – point c a (new) (c a) a framework for the establishment of a European Data Innovation Board.
Amendment 280 #
Proposal for a regulation Article 1 – paragraph 2 (2) This Regulation is without prejudice to specific provisions in other Union legal acts regarding access to or re- use of certain categories of data, or requirements related to processing of personal or non-personal data. Where a sector-specific Union legal act requires public sector bodies, providers of data sharing services or registered entities providing data altruism services to comply
Amendment 281 #
Proposal for a regulation Article 1 – paragraph 2 (2) This Regulation is without prejudice to specific provisions in other Union legal acts regarding access to or re- use of certain categories of data, or requirements related to processing of personal or non-personal data. Where a sector-specific Union legal act requires public sector bodies, providers of data sharing services or registered entities providing data altruism services to comply with specific additional technical, administrative or organisational requirements, including through an authorisation or certification regime, those provisions of that sector-specific Union legal act shall also apply. Any additional requirements shall be non-discriminatory, proportionate and objectively justified.
Amendment 282 #
Proposal for a regulation Article 1 – paragraph 2 (2) This Regulation is without prejudice to specific provisions in other Union legal acts regarding access to or re- use of certain categories of data, or requirements related to processing of personal or non-personal data. Where a sector-specific Union legal act requires public sector bodies, providers of data sharing services or registered entities providing data altruism services to comply with specific additional technical, administrative or organisational requirements, including through an authorisation or certification regime, or where there is a concern regarding the strategic autonomy of the Union, those provisions of that sector-specific Union legal act shall also apply.
Amendment 283 #
Proposal for a regulation Article 1 – paragraph 2 (2) This Regulation is without prejudice to specific provisions in other Union legal acts or national laws regarding access to or re-
Amendment 284 #
Proposal for a regulation Article 1 – paragraph 2 a (new) (2 a) This Regulation is without prejudice to Regulation (EU) 2016/679 of the European Parliament and of the Council, to Directive 2002/58/EC of the European Parliament and of the Council and Directive (EU) 2016/680 of the European Parliament and of the Council1a. This Regulation should in particular not be read as creating a new legal basis for the processing of personal data for any of the regulated activities. Its implementation should not prevent cross- border transfers of data in accordance with Chapter V of Regulation (EU) 2016/679 from taking place. _________________ 1aDirective (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA. (OJ L 119, 4.5.2016, p. 89)
Amendment 285 #
Proposal for a regulation Article 1 – paragraph 2 a (new) (2 a) Provisions regarding the protection, processing, use and free movement of personal data, are subject to Regulation (EU) 2016/679 and Directive 2002/58/EC. Where personal and non- personal data in a data set are inextricably linked, this Regulation shall not prejudice the application of Regulation (EU) 2016/679.[1] This Regulation does not create legal basis for the processing of personal data outside of the provisions already laid in Regulation(EU) 2016/679 and Directive 2002/58/EC.
Amendment 286 #
Proposal for a regulation Article 1 – paragraph 2 a (new) (2 a) Union law on the protection of personal data shall apply to any personal data processed in connection with this Regulation. In particular, this Regulation shall be without prejudice to Regulation (EU) 2016/679 and Directive 2002/58/EC. In the event of conflict between the provisions of this Regulation and Union law on the protection of personal data, the latter prevails. This Regulation does not create a legal basis for the processing of personal data.
Amendment 287 #
Proposal for a regulation Article 1 – paragraph 2 a (new) (2 a) This Regulation should not affect the level of protection of individual with regard to the processing of personal data under the provisions of Union and national law and does not alter any obligations and rights set out in the data protection legislation.
Amendment 288 #
Proposal for a regulation Article 1 – paragraph 2 a (new) (2 a) The re-use of employee data shall be prohibited. To this end, it must be ensured that public service data do not contain employee data, such as in the area of mobility. The full respect of Article 88 of GDPR must be upheld.
Amendment 289 #
Proposal for a regulation Article 1 a (new) Article 1 a This Regulation leaves intact and in no way affects the level of protection of individuals with regard to the processing of personal data under the provisions of Union and national law. The Regulation does not alter any obligations and rights set out in the data protection legislation.
Amendment 290 #
Proposal for a regulation Article 2 – paragraph 1 – point 1 (1) ‘data’ means any digital and non- digital representation of acts, facts or information and any compilation of such acts, facts or information, including in the form of sound, visual or audiovisual recording;
Amendment 291 #
Proposal for a regulation Article 2 – paragraph 1 – point 1 a (new) (1 a) ’Data Sovereignty’ means the capability of an individual or an organisation to have control over their personal and business data. This entails that they should be able to know which party holds which data, under what conditions (purpose, duration, reward) and where data is kept. They should also be able to re-use the data at other places.
Amendment 292 #
Proposal for a regulation Article 2 – paragraph 1 – point 1 a (new) (1 a) 'highly sensitive data' means data protected by IP, trade secret, and non- personal data whose disclosure to third country authorities may pose threats to national and public security;
Amendment 293 #
Proposal for a regulation Article 2 – paragraph 1 – point 1 b (new) (1 b) ’Soft Infrastructure’ means the set of functional, legal, technical and operational agreements which will support decentralised data sharing. A soft infrastructure is invisible, made up of technology neutral agreements and standards, on how to participate in an ecosystem. As all participants implement the same minimal set of functional, legal, technical and operational agreements and standards, they can interact in the same manner independent of the sector or domain.
Amendment 294 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 (2) ‘re-use’ means the use by natural or legal persons of data held by public sector bodies established in the Union, for commercial or non-commercial purposes other than the initial purpose within the public task for which the data were produced, except for the exchange of data between public sector bodies purely in pursuit of their public tasks;
Amendment 295 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 (2) ‘re-use’ means the use by natural persons or legal
Amendment 296 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 a (new) (2 a) ‘data sharing service provider’ means a provider of a commercial service, which, through the provision of technical, legal and other services establishes relationships between an undefined number of data subjects and data holders, on the one hand and data users on the other hand, for the exchange, pooling or trade of data;
Amendment 297 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 a (new) (2 a) 'data intermediary' means a provider of a service which through the provision of technical, legal and other means establishes relation with data holders, including data subjects and an indefinite number of potential data users, and which assists both parties in a transaction of data assets between the two.
Amendment 298 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 a (new) (2 a) ‘personal data’ means any information relating to a data subject as defined in point (1) of Article 4 of Regulation (EU) 2016/679;
Amendment 299 #
Proposal for a regulation Article 2 – paragraph 1 – point 2 b (new) (2 b) 'data subject' means an identified or identifiable natural person as referred to in point (1) of Article 4 of Regulation (EU) 2016/679;
Amendment 300 #
Proposal for a regulation Article 2 – paragraph 1 – point 3 a (new) (3 a) ‘consent’ of the data subject means any freely given, specific, informed, clear and unambiguous indication of the data subject's wishes by which data holders, by a legal statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to them;
Amendment 301 #
Proposal for a regulation Article 2 – paragraph 1 – point 3 b (new) (3 b) 'data subject' means an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
Amendment 302 #
Proposal for a regulation Article 2 – paragraph 1 – point 4 (4)
Amendment 303 #
Proposal for a regulation Article 2 – paragraph 1 – point 4 (4) ‘metadata’ means non personal or anonymised data collected on any activity of a natural or legal person for the purposes of the provision of a data sharing service, including the date , time and geolocation data, duration of activity, connections to other natural or legal persons established by the person who uses the service;
Amendment 304 #
Proposal for a regulation Article 2 – paragraph 1 – point 5 (5) ‘data rights holder’ [this to be valid in whole text] means; a
Amendment 305 #
Proposal for a regulation Article 2 – paragraph 1 – point 5 (5) ‘data holder’ means a legal entity, natural person
Amendment 306 #
Proposal for a regulation Article 2 – paragraph 1 – point 5 (5) ‘data holder’ means a
Amendment 307 #
Proposal for a regulation Article 2 – paragraph 1 – point 5 a (new) (5 a) ‘Data source’ means: a) in the context of personal data, a processor b) in the context of non-personal data, a natural or legal person who processes the non-personal data on behalf of the data holder.
Amendment 308 #
Proposal for a regulation Article 2 – paragraph 1 – point 6 (6) ‘data user’ means a natural
Amendment 309 #
Proposal for a regulation Article 2 – paragraph 1 – point 6 (6) ‘data user’ means: a
Amendment 310 #
Proposal for a regulation Article 2 – paragraph 1 – point 6 a (new) (6 a) ‘consent’ of the data subject, as defined in Article 4(11) of Regulation (EU) 216/679, means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
Amendment 311 #
Proposal for a regulation Article 2 – paragraph 1 – point 6 a (new) (6 a) 'data re-user' is a natural or legal person who re-uses data as defined in point (2) of this Article;
Amendment 312 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 (7) ‘data sharing’ means the provision by a data holder of data to a data user for the purpose of joint or individual use of the shared data, based on voluntary agreements, directly or through an intermediary
Amendment 313 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 (7) ‘data sharing’ means the provision by a data holder of data to a data user for the purpose of joint or individual use of the shared data, based on voluntary agreements, directly or through an intermediary
Amendment 314 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 (7) ‘data sharing
Amendment 315 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 (7) ‘data
Amendment 316 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 a (new) Amendment 317 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 a (new) (7 a) ‘data intermediary’ means an undertaking, or related commercial entity, which provides data sharing services to intermediate between an indefinite number of potential data holders and potential data users by making available technical, legal, or other means to enable or facilitate the exchange, pooling or licensing of data between data holders and data users;
Amendment 318 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 a (new) (7 a) ‘data exchange’ means and encompasses all the activities performed by the data holder, the data user and the data sharing service provider, for the purpose of exchanging data, under open data or commercial licenses, for free or against remuneration.
Amendment 319 #
Proposal for a regulation Article 2 – paragraph 1 – point 7 b (new) (7 b) 'data cooperative' means an organisation or service, which: (a) supports members, who are data subjects, to exercise the rights provided in Regulation (EU) 2016/679, by offering services including, but not limited to, collectively negotiating terms and conditions for data processing, in making informed choices before consenting to data processing, and allowing for mechanisms to exchange views on data processing purposes and conditions that would represent their interest, or; (b) enables small and medium-sized enterprises, not-for-profit or academic institutions to collectively negotiate terms for sharing non-personal data.
Amendment 320 #
Proposal for a regulation Article 2 – paragraph 1 – point 8 (8) ‘access’ means processing by a data
Amendment 321 #
Proposal for a regulation Article 2 – paragraph 1 – point 8 a (new) (8 a) ‘processing’ means any operation or set of operations which is performed on data or on sets of data in electronic format, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
Amendment 322 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 Amendment 323 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 (10) ‘data altruism’ means
Amendment 324 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 (10) ‘data altruism’ means the consent by data subjects to process personal data pertaining to them, or permissions of other data holders to allow the use of their non- personal data without seeking a reward, for purposes of general interest
Amendment 325 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 (10) ‘data altruism’ means the consent by data subjects to process personal data pertaining to them, or permissions of other data holders to allow the use of their non- personal data without seeking a
Amendment 326 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 (10) ‘data altruism’ means
Amendment 327 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 (10) ‘data altruism’ means the consent by data subjects to process personal data pertaining to them, or permissions of other data holders to allow the use of their non- personal data without seeking a
Amendment 328 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 a (new) (10 a) ‘Consent’ means, as provided by the GDPR, consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her. A data subject has the right to withdraw consent at any time. The processing of personal data shall be lawful only if and to the extent that at least one of the legal basis under Article 6(1) of the GDPR applies.
Amendment 329 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 a (new) (10 a) 'data cooperative' means an organisation supporting its members, who are data subjects or one-person companies, micro, small and medium- sized enterprises, in making informed choices before consenting to data processing, or in negotiating terms and conditions for data processing and data sharing;
Amendment 330 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 b (new) (10 b) ‘General interest’ means the best interest of the community as a whole in the pursuit of common good and core objectives and values of the Union, supported and limited by citizens' rights and guarantees enshrined in the Treaties and other European or international legislation such as the Green Deal or Paris Agreement;
Amendment 331 #
Proposal for a regulation Article 2 – paragraph 1 – point 10 b (new) (10 b) 'purposes of general interest' means purposes established by national law and national competent authorities including and not limited to healthcare, official statistics, improving the provision of public services, supporting research;
Amendment 332 #
Proposal for a regulation Article 2 – paragraph 1 – point 12 – point a (a) they are established for the specific purpose of meeting needs in the
Amendment 333 #
Proposal for a regulation Article 2 – paragraph 1 – point 14 (14) ‘secure processing environment’ means the physical or virtual environment and organisational means to provide the opportunity to re-use data in a manner that allows for the operator of the secure processing environment to determine and supervise all data processing actions, including to display, storage, download, export of the data and calculation of derivative data through computational algorithms. A ‘secure processing environment’ should also be understood as protection against threats.
Amendment 334 #
Proposal for a regulation Article 2 – paragraph 1 – point 14 (14) ‘secure processing environment’ means the physical or virtual environment and organisational means to uphold data confidentiality, integrity and availability and to provide the opportunity to re-use data in a manner that allows for the operator of the secure processing environment to determine and supervise all data processing actions, including to display, storage, download, export of the data and calculation of derivative data through computational algorithms.
Amendment 335 #
Proposal for a regulation Article 2 – paragraph 1 – point 14 (14) ‘secure processing environment’ means the physical or virtual environment and organisational means to provide the opportunity to re-use data in a manner that allows for the operator of the secure processing environment to determine and supervise all data processing actions within the Union, including to display, storage, download, export of the data and calculation of derivative data through computational algorithms as well as protection against cyber-attacks.
Amendment 336 #
Proposal for a regulation Article 2 – paragraph 1 – point 14 (14) ‘secure processing environment’ means the physical or virtual environment and organisational means to provide the opportunity to re-use data in a manner ensuring compliance with applicable legislation that allows for the operator of the secure processing environment to determine and supervise all data processing actions,
Amendment 337 #
Proposal for a regulation Article 2 – paragraph 1 – point 15 (15) ‘representative’ means any natural or legal person established in the Union explicitly designated to act on behalf of a provider of data sharing services or an entity that collects data for objectives of
Amendment 338 #
Proposal for a regulation Article 2 – paragraph 1 – point 15 a (new) (15 a) 'data sovereignty' means a form of management of the cyber space that provides for the possession by the Member State of the networks and data transmitted through them.
Amendment 339 #
Proposal for a regulation Article 2 – paragraph 1 a (new) ‘Data space’ means a logically defined entity, in which all the participants follow jointly agreed principles and framework of sharing of data. Data space refers to the integration of and interaction between different actors including data rights holders, data sources, data intermediaries and data users, that are involved in, or affected by, related data access and sharing arrangements, according to their different roles, responsibilities and rights, technologies and business models. The aim of a data space is to create interoperability and trust for a data transfer and a seamless digital area with the scale that will enable the development of new products and services based on data.
Amendment 340 #
Proposal for a regulation Article 3 – paragraph 1 – introductory part (1) This Chapter applies, without prejudice to the legal regime of open data set by the Directive on open data and the re-use of public sector information (Directive (EU) 2019/1024), to other categories of data held by public sector bodies and public undertakings to data held by public sector bodies which are protected on grounds of:
Amendment 341 #
Proposal for a regulation Article 3 – paragraph 1 – point d Amendment 342 #
Proposal for a regulation Article 3 – paragraph 2 – point a Amendment 343 #
Proposal for a regulation Article 3 – paragraph 2 – point c (c) data held by cultural establishments and educational establishments when protected by fundamental rights provisions or third party intellectual property rights;
Amendment 344 #
Proposal for a regulation Article 3 – paragraph 2 – point c (c) data held by cultural establishments protected by intellectual property rights of third and educational establishments;
Amendment 345 #
Proposal for a regulation Article 3 – paragraph 2 – point e a (new) (e a) (f) data processed in the context of employment.
Amendment 347 #
Proposal for a regulation Article 3 – paragraph 3 (3) The provisions of this Chapter do not create any obligation on public sector bodies to allow re-use of data beyond the Open Data Directive nor do they release public sector bodies from their confidentiality obligations, but sets a framework for such reuse when data is made available. This Chapter is without prejudice to Union and national law or international agreements to which the Union or Member States are parties on the protection of categories of data provided in paragraph 1. This Chapter is without prejudice to Union and national law on access to documents and to obligations of public sector bodies under Union and national law to allow the re-use of data.
Amendment 348 #
Proposal for a regulation Article 3 – paragraph 3 (3) The provisions of this Chapter do not create any obligation on public sector bodies to allow re-use of data nor do they release public sector bodies from their confidentiality obligations. This Chapter is without prejudice to Union and national law or international agreements to which the Union or Member States are parties on the protection of categories of data provided in paragraph 1. This Chapter is without prejudice to Union and national law on access to documents, in particular with regard to register data, and to obligations of public sector bodies under Union and national law to allow the re-use of data.
Amendment 349 #
Proposal for a regulation Article 4 – paragraph 2 (2) By way of derogation from paragraph 1, an exclusive right to re-use data referred to in that paragraph may be granted for a limited duration and to the extent necessary for the provision of a service or a product in the
Amendment 350 #
Proposal for a regulation Article 4 – paragraph 2 (2) By way of derogation from paragraph 1, an exclusive right to re-use data referred to in that paragraph may be granted to the extent necessary for the provision of a service or a product in the
Amendment 351 #
Proposal for a regulation Article 4 – paragraph 3 (3) Such exclusive right shall be granted
Amendment 352 #
Amendment 353 #
Proposal for a regulation Article 4 – paragraph 4 (4) In all cases not covered by paragraph 3 and where the
Amendment 354 #
Proposal for a regulation Article 4 – paragraph 5 (5) The period of exclusivity of the right to re-use data shall not exceed
Amendment 355 #
Proposal for a regulation Article 4 – paragraph 5 (5) The period of exclusivity of the right to re-use data shall not exceed
Amendment 356 #
Proposal for a regulation Article 4 – paragraph 5 (5) The period of exclusivity of the right to re-use data shall not exceed t
Amendment 357 #
Proposal for a regulation Article 4 – paragraph 6 (6) The award of an exclusive right pursuant to paragraphs (2) to (5), including the reasons why it is necessary to grant such a right, shall be transparent and be made publicly available online two months before entry into force, regardless of a possible publication of an award of a public procurement and concessions contract.
Amendment 358 #
Proposal for a regulation Article 4 – paragraph 6 (6) The decision to award
Amendment 359 #
Proposal for a regulation Article 4 – paragraph 7 a (new) (7 a) (7a) Where an exclusive right to re-use data does not meet the conditions set out in paragraphs 2, 3 and 4, the exclusive right shall be void.
Amendment 360 #
Proposal for a regulation Article 4 – paragraph 7 a (new) (7 a) Where an exclusive right to re-use data does not meet the conditions set out in paragraphs 2, 3 and 4, the exclusive right shall be void.
Amendment 361 #
Proposal for a regulation Article 5 – paragraph 1 Amendment 362 #
Proposal for a regulation Article 5 – paragraph 1 (1) Public sector bodies which are competent under national law to grant or refuse access for the re-use and the process to request such re-use of one or more of the categories of data referred to in Article 3 (1) shall make publicly available the conditions for allowing such re-use. In that task, they may be assisted by the competent bodies referred to in Article 7 (1).
Amendment 363 #
Proposal for a regulation Article 5 – paragraph 2 (2) Conditions for re-use shall be non- discriminatory, proportionate and objectively justified with regard to
Amendment 364 #
Proposal for a regulation Article 5 – paragraph 2 (2) Conditions for re-use shall be non- discriminatory, lawful, transparent, proportionate and objectively justified with regard to categories of data and purposes of re-use and the nature of the data for which re-use is allowed. These conditions shall not be used to restrict competition.
Amendment 365 #
Proposal for a regulation Article 5 – paragraph 2 (2) Conditions for re-use shall be lawful, transparent, non-
Amendment 366 #
Proposal for a regulation Article 5 – paragraph 2 (2) Conditions for re-use shall be non- discriminatory, proportionate and objectively justified with regard to categories of data and purposes of re-use and the nature of the data for which re-use is allowed. These conditions shall
Amendment 367 #
Proposal for a regulation Article 5 – paragraph 3 (3) Public sector bodies
Amendment 368 #
Proposal for a regulation Article 5 – paragraph 3 (3) Public sector bodies may impose an obligation to re-use only pre-processed data where such pre-processing aims to anonymize or pseudonymise personal data or delete commercially confidential information, including trade secrets. In the area of research, it must be ensured that the results of data processing remain traceable and reproducible even after anonymisation has taken place.
Amendment 369 #
Proposal for a regulation Article 5 – paragraph 3 (3) Public sector bodies
Amendment 370 #
Proposal for a regulation Article 5 – paragraph 3 (3) Public sector bodies may impose an obligation to re-use only pre
Amendment 371 #
Proposal for a regulation Article 5 – paragraph 3 (3) Public sector bodies may impose an obligation to re-use only pre-processed data where such pre-processing aims to anonymize
Amendment 372 #
Proposal for a regulation Article 5 – paragraph 4 – introductory part (4) Public sector bodies
Amendment 373 #
Proposal for a regulation Article 5 – paragraph 4 – introductory part (4) Public sector bodies may also impose
Amendment 374 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a secure processing environment, including techniques for pseudonymisation, anonymisation, generalisation, suppression and randomisation of personal data, provided and controlled by the public sector ;
Amendment 375 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a secure processing environment provided and controlled by the public sector within the Union ;
Amendment 376 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a remote secure processing environment provided and controlled by the public sector ;
Amendment 377 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a remote secure processing environment provided and controlled by the public sector ;
Amendment 378 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a remote secure processing environment provided and controlled by the public sector ;
Amendment 379 #
Proposal for a regulation Article 5 – paragraph 4 – point a (a) to access and re-use the data within a secure processing environment provided
Amendment 380 #
Proposal for a regulation Article 5 – paragraph 4 – point b (b) to access and re-use the data within the physical premises in which the secure processing environment is located
Amendment 381 #
Proposal for a regulation Article 5 – paragraph 4 – point b a (new) (b a) (c) to consult DPAs and/or the European Data Protection Board (EDPB) to guarantee anonymisation or pseudonymise personal data.
Amendment 382 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall impose conditions that preserve the integrity of the functioning of the technical systems of the secure processing environment used. The public sector body shall
Amendment 383 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall impose conditions that preserve the integrity of the functioning of the technical systems of the secure processing environment used. The public sector body shall be able to verify any results of processing of data undertaken by the re- user and reserve the right to prohibit the use of results that contain information jeopardising the rights and interests of third parties. To this end, the public sector bodies shall be equipped with the necessary human and financial resources for monitoring and law enforcement.
Amendment 384 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall impose conditions that preserve the integrity of the functioning of the technical systems of the secure processing environment used. The public sector body shall be able to verify any results of processing of data undertaken by the re- user and reserve the right to prohibit the
Amendment 385 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall impose conditions that preserve the integrity of the functioning of the technical systems of the secure processing environment used. The public sector body shall be able to verify any results of processing of data undertaken by the re- user and reserve the right, after giving the re-user the possibility to provide further information, to prohibit the use of results that contain information jeopardising the rights and interests of third parties.
Amendment 386 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall
Amendment 387 #
Proposal for a regulation Article 5 – paragraph 5 (5) The public sector bodies shall impose conditions that preserve the integrity of the functioning of the technical systems of the secure processing environment used. The public sector body shall be able to verify the means and any results of processing of data undertaken by the re-
Amendment 388 #
Proposal for a regulation Article 5 – paragraph 5 a (new) (5 a) A public sector body shall only make commercially confidential data available for re-use if it is able to do so in a manner which protects the legitimate commercial interests of third parties in the commercially confidential data.
Amendment 389 #
Proposal for a regulation Article 5 – paragraph 6 Amendment 390 #
Proposal for a regulation Article 5 – paragraph 6 (6) Where the re-use of data cannot be granted in accordance with the obligations laid down in paragraphs 3 to 5 and there is no other legal basis for transmitting the data under Regulation (EU) 2016/679, the public sector body shall support re-users in seeking consent of the data subjects and/or permission from the legal entities whose rights and interests may be affected by such re-use, where it is feasible without disproportionate cost for the public sector. In that task they may be assisted by the competent bodies referred to in Article 7 (1). All processing of personal data shall occur in full compliance with the GDPR and be accompanied by appropriate data protection safeguards. Re-use of data must be conditional on the signature by the re-user of a confidentiality agreement as set out in Recital 11.
Amendment 391 #
Proposal for a regulation Article 5 – paragraph 6 (6) Where the re-use of data cannot be granted in accordance with the obligations laid down in paragraphs 3 to 5 and there is no other legal basis for transmitting the data under Regulation (EU) 2016/679, the public sector body shall s
Amendment 392 #
Proposal for a regulation Article 5 – paragraph 6 a (new) (6 a) In order to provide such support as described in paragraph (6), the public sector body may establish a data intermediation service as defined in Art 2. This service shall be considered in the scope of data intermediation services described in Art 9, subject to the notification procedure described in Art 10, and subject to the conditions set out in Art 11 with the exception of paragraph (1), which requires the placement of intermediation services into a separate legal entity. It will be subject to monitoring by the competent authorities described in Art 12-13.
Amendment 393 #
Proposal for a regulation Article 5 – paragraph 7 (7) Re-use of data shall only be allowed in compliance with intellectual property rights. The right of the maker of a database as provided for in Article 7(1) of Directive 96/9/EC shall not be exercised by public sector bodies or those who benefit from the data available for reuse in order to prevent the re-use of data or to restrict re-use beyond the limits set by this Regulation.
Amendment 394 #
Proposal for a regulation Article 5 – paragraph 8 (8) When data requested is considered confidential, in accordance with Union or national law
Amendment 395 #
Proposal for a regulation Article 5 – paragraph 9 Amendment 396 #
Proposal for a regulation Article 5 – paragraph 9 Amendment 397 #
Proposal for a regulation Article 5 – paragraph 9 – introductory part (9) The Commission may adopt implementing acts declaring that the legal, supervisory and enforcement arrangements of a third country, without prejudice to the adequacy requirements defined in Article 45 of Regulation (EU) 2016/679:
Amendment 398 #
Proposal for a regulation Article 5 – paragraph 9 – introductory part (9)
Amendment 399 #
Proposal for a regulation Article 5 – paragraph 9 – introductory part (9) The Commission may adopt
Amendment 400 #
Proposal for a regulation Article 5 – paragraph 9 – point a a (new) (a a) ensure that a natural or legal person located in a third country seeking the right to re-use has a legal representative in one of the Member States;
Amendment 401 #
Proposal for a regulation Article 5 – paragraph 9 – subparagraph 1 Those implementing acts shall be adopted in accordance with the advisory procedure referred to in Article 29 (2) and will permit transfers to the concerned third country.
Amendment 402 #
Proposal for a regulation Article 5 – paragraph 9 – subparagraph 1 Those
Amendment 403 #
Proposal for a regulation Article 5 – paragraph 10 Amendment 404 #
Proposal for a regulation Article 5 – paragraph 10 – introductory part (10) Public sector bodies shall only after consent from the competent body transmit confidential data or data protected by intellectual property rights to a re-user which intends to transfer the data to a third country other than a country designated in accordance with paragraph 9 if the re-user undertakes:
Amendment 405 #
Proposal for a regulation Article 5 – paragraph 10 – introductory part (10) Public sector bodies shall o
Amendment 406 #
Proposal for a regulation Article 5 – paragraph 10 a (new) (10 a) Public sector bodies or the competent bodies referred to in Article 7(1) shall provide guidance and legal and administrative support to re-users, where relevant, for the purpose of supporting them in complying with the obligations referred to in paragraph 10(a).
Amendment 407 #
Proposal for a regulation Article 5 – paragraph 11 Amendment 408 #
Proposal for a regulation Article 5 – paragraph 11 Amendment 409 #
Proposal for a regulation Article 5 – paragraph 11 Amendment 410 #
Proposal for a regulation Article 5 – paragraph 11 (11) Where specific Union acts adopted in accordance with a legislative procedure establish that certain non-personal data categories held by public sector bodies shall be deemed to be highly sensitive for the purposes of this Article, the Commission shall be empowered to adopt delegated acts in accordance with Article 28 supplementing this Regulation by laying down special conditions applicable for transfers to third-countries. The conditions
Amendment 411 #
Proposal for a regulation Article 5 – paragraph 11 (11) Where specific Union acts adopted in accordance with a legislative procedure establish that certain non-personal data categories held by public sector bodies shall be deemed to be highly sensitive for the purposes of this Article such as where their transfer to third countries may put at risk Union policy objectives (for instance safety and public health) or may lead to the risk of re-identification of anonymised data, the Commission shall be empowered to adopt delegated acts in accordance with Article 28 supplementing this Regulation by laying down special conditions applicable for transfers to third-countries. The conditions for the transfer to third- countries shall be based on the nature of data categories identified in the Union act and on the grounds for deeming them highly sensitive,
Amendment 412 #
Proposal for a regulation Article 5 – paragraph 11 (11) Where specific Union acts adopted in accordance with a legislative procedure establish that certain non-personal data categories held by public sector bodies shall be deemed to be highly sensitive for the purposes of this Article,
Amendment 413 #
Proposal for a regulation Article 5 – paragraph 11 (11)
Amendment 414 #
Proposal for a regulation Article 5 – paragraph 12 Amendment 415 #
Proposal for a regulation Article 5 – paragraph 13 Amendment 416 #
Proposal for a regulation Article 5 – paragraph 13 (13) Where the re-user intends to transfer non-personal data to a third country, it shall inform the public sector body
Amendment 417 #
Proposal for a regulation Article 5 – paragraph 13 (13) Where the re-user intends to transfer non-personal data to a third country, the public sector body shall inform the data holder about the transfer of data to that third country and the purpose of such transfer.
Amendment 418 #
Proposal for a regulation Article 6 – paragraph 1 (1) Public sector bodies which allow re-use of the categories of data referred to in Article 3 (1) may charge fees for allowing the re-use of such data, to the exception of personal data that belongs solely to data subjects.
Amendment 419 #
Proposal for a regulation Article 6 – paragraph 2 (2) Any fees shall be non- discriminatory, proportionate and objectively justified and shall not restrict competition. They shall be limited to the necessary costs incurred for the reproduction, provision and dissemination of data, costs for anonymisation of personal data, costs for the maintenance of the secure processing environment, as well as any costs in relation to supporting re-users in seeking consent of data subjects.
Amendment 420 #
Proposal for a regulation Article 6 – paragraph 2 (2) Any fees shall be non- discriminatory, proportionate and objectively justified and shall
Amendment 421 #
Proposal for a regulation Article 6 – paragraph 2 (2) Any fees shall be non- discriminatory, proportionate
Amendment 422 #
Proposal for a regulation Article 6 – paragraph 2 (2) Any fees shall be non- discriminatory, proportionate and objectively justified and shall
Amendment 423 #
Proposal for a regulation Article 6 – paragraph 3 (3) Public sector bodies shall ensure that any fees can be paid online through widely available cross-border payment services, without discrimination based on the place of establishment of the payment service provider within the internal market, the place of issue of the payment instrument or the location of the payment account within the Union.
Amendment 424 #
Proposal for a regulation Article 6 – paragraph 3 (3) Public sector bodies shall ensure that any fees can also be paid online through widely available cross-border payment services, without discrimination based on the place of establishment of the payment service provider, the place of issue of the payment instrument or the location of the payment account
Amendment 425 #
Proposal for a regulation Article 6 – paragraph 4 (4) Where they apply fees, public sector bodies shall take measures to incentivise the re-use of the categories of data referred to in Article 3 (1) for non- commercial purposes and by small and medium-sized enterprises in line with State aid rules. In that regard, public sector bodies may also make the data available at a discounted fee or free of charge, in particular when used for public services for SMEs and civil society, and educational establishments.
Amendment 426 #
Proposal for a regulation Article 6 – paragraph 4 (4) Where they apply fees, public sector bodies shall take measures to incentivise the re-use of the categories of data referred to in Article 3 (1) for non- commercial purposes and by small and medium-sized enterprises in line with State aid rules. In that regard, public sector bodies are encourage to make the data available at a discounted fee or free of charge for all actors, in particular cooperatives.
Amendment 427 #
Proposal for a regulation Article 6 – paragraph 4 (4) Where they apply fees, public sector bodies shall take measures to incentivise the re-use of the categories of data referred to in Article 3 (1) for non- commercial purposes and by small and medium-sized enterprises in line with State aid rules. This may include allowing re- use at lower or no cost.
Amendment 428 #
Proposal for a regulation Article 6 – paragraph 4 (4) Where they apply fees, public sector bodies shall take measures to incentivise the re-use of the categories of data referred to in Article 3 (1) for non- commercial purposes
Amendment 429 #
Proposal for a regulation Article 6 – paragraph 4 (4) Where they apply fees, public sector bodies shall take measures to incentivise the re-use of the categories of data referred to in Article 3 (1) for non- commercial purposes and
Amendment 430 #
Proposal for a regulation Article 6 – paragraph 4 a (new) (4 a) Public sector bodies may set up a list of categories of re-users for which data is made available at reduced or no cost, which shall be published together with the criteria used to establish such list and which shall have the objective to foster a wider re-use of the categories of data referred to in Article 3(1) and accessibility by a wider range of re-users, in line with State aid rules and competition law;
Amendment 431 #
Proposal for a regulation Article 6 – paragraph 5 (5) Fees shall be derived from the costs related to the processing of requests for re- use of the categories of data referred to in Article 3 (1).
Amendment 432 #
Proposal for a regulation Article 7 – paragraph 1 (1) Member States shall designate one or more competent bodies, which may be sectoral, to support the public sector bodies which grant access to the re-use of the categories of data referred to in Article 3 (1) in the exercise of that task. In order to fulfil the conditions set out by this Regulation, Member States may delegate the tasks to already existing one or more competent bodies, without being required to set up new ones.
Amendment 433 #
Proposal for a regulation Article 7 – paragraph 1 (1) Member States shall designate one or more competent bodies, which may be sectoral, to support the public sector bodies which grant access to the re-use of the categories of data referred to in Article 3 (1) in the exercise of that task and in verifying the characteristics of portability and interoperability of data.
Amendment 434 #
Proposal for a regulation Article 7 – paragraph 1 (1) Member States shall designate one or more competent bodies under Regulation 2018/679, which may be sectoral, to support the public sector bodies which grant access to the re-use of the categories of data referred to in Article 3 (1) in the exercise of that task.
Amendment 435 #
Proposal for a regulation Article 7 – paragraph 1 (1) Member States shall designate
Amendment 436 #
Proposal for a regulation Article 7 – paragraph 2 – point a (a) providing technical support by making available a secure processing environment
Amendment 437 #
Proposal for a regulation Article 7 – paragraph 2 – point b (b) providing technical support in the application of tested techniques ensuring data processing in a manner that preserves privacy of the information contained in the data for which re-use is allowed, including techniques for pseudonymisation, anonymisation, generalisation, suppression and randomisation of personal data and the deletion of commercially confidential information, including trade secrets or content protected by Intellectual Property Rights;
Amendment 438 #
Proposal for a regulation Article 7 – paragraph 2 – point b (b) providing technical support in the application of tested techniques ensuring data processing in a manner that preserves privacy, integrity and availability of the information contained in the data for which re-use is allowed, including techniques for pseudonymisation, anonymisation, generalisation, suppression and randomisation of personal data;
Amendment 439 #
Proposal for a regulation Article 7 – paragraph 2 – point b (b) providing technical support in the application of tested techniques ensuring data processing in a manner that effectively preserves privacy of the information contained in the data for which re-use is allowed, including techniques for pseudonymisation, anonymisation, generalisation, suppression and randomisation of personal data;
Amendment 440 #
Proposal for a regulation Article 7 – paragraph 2 – point b (b) providing technical support
Amendment 441 #
Proposal for a regulation Article 7 – paragraph 2 – point c (c) assisting the public sector bodies, where relevant, in obtaining consent or permission by re-users for re-use for altruistic and other purposes in line with
Amendment 442 #
Proposal for a regulation Article 7 – paragraph 2 – point c (c) assisting the public sector bodies
Amendment 443 #
Proposal for a regulation Article 7 – paragraph 2 – point d a (new) (d a) a harmonised approach for public sector bodies to make scientific data available for purposes of research in order to support rapid innovation in the EU small and medium-sized enterprises in line with State aid rules.
Amendment 444 #
Proposal for a regulation Article 7 – paragraph 4 (4) The competent body or bodies shall have adequate human resources as well as legal and technical capacities and expertise to be able to comply with relevant Union or national law concerning the access regimes for the categories of data referred to in Article 3 (1), so that data protection, privacy and confidentiality are fully respected. The competences and resources of the competent body or bodies shall prohibit unjustifiable outsourcing.
Amendment 445 #
Proposal for a regulation Article 7 – paragraph 4 (4) The competent body or bodies shall have adequate legal, financial and technical
Amendment 446 #
Proposal for a regulation Article 7 – paragraph 5 (5) The Member States shall make public and communicate to the Commission the identity of the competent bodies designated pursuant to paragraph 1 by [date of application of this Regulation]. They shall also make public and communicate to the Commission any subsequent modification of the identity of those bodies.
Amendment 447 #
Proposal for a regulation Article 8 – paragraph 1 (1) Member States shall ensure that all relevant information concerning the application of Articles 5 and 6 is available through a single information point, unless the information concerns one sector only in which case the information can be made available through a sectoral competent body referred to in Article 7 (1). Functions of a single information point may be automatically provided if adequate support by a public sector body is ensured. Member States shall be allowed either to establish a new information point o rto rely on an existing structure.
Amendment 448 #
Proposal for a regulation Article 8 – paragraph 1 (1) Member States shall ensure that all relevant information concerning the application of Articles 5 and 6 is available through a single information point. It must be accessible to all relevant stakeholders, so as to ensure efficient operation and promote good collaboration with civil society organizations, social partners and professional organisations.
Amendment 449 #
Proposal for a regulation Article 8 – paragraph 2 (2) The single information point shall receive requests for the re-use of the categories of data referred to in Article 3 (1) and shall transmit them to the competent public sector bodies, or the
Amendment 450 #
Proposal for a regulation Article 8 – paragraph 2 (2) The single information point shall receive requests for the re-use of the categories of data referred to in Article 3 (1) and shall transmit them to the competent public sector bodies, or the competent bodies referred to in Article 7 (1), where relevant. The single information point shall make publicly available by electronic means a register of available data resources containing relevant information describing the nature of available data. At least the format, size, conditions for reuse such as characteristics of interoperability and portability and the data holder shall be made public.
Amendment 451 #
Proposal for a regulation Article 8 – paragraph 2 a (new) (2 a) The single information point may establish a separate, simplified and well- documented information channel for small and medium-sized enterprises (SMEs), addressing their needs and capabilities in requesting the re-use of the categories of data referred to in Article 3 (1).
Amendment 452 #
Proposal for a regulation Article 8 – paragraph 2 a (new) (2 a) The Commission shall establish a European single information point, network offering information on the data available in national single information points and on how to request and access data via those single information points.
Amendment 453 #
Proposal for a regulation Article 8 – paragraph 2 a (new) Amendment 454 #
Proposal for a regulation Article 8 – paragraph 3 (3) Requests for the re-use of the categories of data referred to in Article 3 (1) shall be granted or refused by the competent public sector bodies or the competent bodies referred to in Article 7 (1) within a reasonable time, and in any case within two months from the date of the request. In order to contribute to a consistent application of this Regulation the competent public sector bodies shall cooperate with each other, and where relevant with the Commission, when refusing requests for re-use of the categories of data referred to in Article 3 (1).
Amendment 455 #
Proposal for a regulation Article 8 – paragraph 3 (3) Requests for the re-use of the categories of data referred to in Article 3 (1) shall be granted or refused by the competent public sector bodies or the competent bodies referred to in Article 7 (1) with
Amendment 456 #
Proposal for a regulation Article 8 – paragraph 3 (3) Requests for the re-use of the categories of data referred to in Article 3 (1) shall be granted or refused by the competent public sector bodies or the competent bodies referred to in Article 7 (1) within
Amendment 457 #
Proposal for a regulation Article 9 – paragraph 1 – introductory part (1) Th
Amendment 458 #
Proposal for a regulation Article 9 – paragraph 1 – point a (a)
Amendment 459 #
Proposal for a regulation Article 9 – paragraph 1 – point b (b) intermediation services between data subjects that seek to make their personal data available and potential data users, including making available the technical or other means to enable such services, in the exercise of the rights provided in Regulation (EU) 2016/679, in particular managing the data subjects’ consent to data processing;
Amendment 460 #
Proposal for a regulation Article 9 – paragraph 1 – point b (b) intermediation services between data subjects that seek to make their personal or non-personal data available and potential data users, including making available the technical or other means to enable such services, in the exercise of the rights provided in Regulation (EU) 2016/679;
Amendment 461 #
Proposal for a regulation Article 9 – paragraph 1 – point c (c)
Amendment 462 #
Proposal for a regulation Article 9 – paragraph 1 – point c (c) services of data cooperatives
Amendment 463 #
Proposal for a regulation Article 9 – paragraph 1 – point c (c) services of data cooperatives, that is to say services supporting data subjects or one-person companies or micro, small and medium-sized enterprises, including social economy enterprises, who are members of the cooperative or who confer the power to the cooperative to negotiate terms and conditions for data processing before they consent, in making informed choices before consenting to data processing, and allowing for mechanisms to exchange views on data processing purposes and conditions that would best represent the interests of data subjects or legal persons.
Amendment 464 #
Proposal for a regulation Article 9 – paragraph 1 a (new) (1 a) any operations involving personal data in the scope of Article 9 is subject to the rules of the GDPR and therefore the conditions for the joint use of the data is subject to these rules.
Amendment 465 #
Proposal for a regulation Article 9 – paragraph 1 a (new) (1 a) This chapter does not apply to the following activities:
Amendment 466 #
Proposal for a regulation Article 9 – paragraph 1 b (new) (1 b) (a) services, which are aimed at a closed group of data holders or data users, including those operated between two companies or a limited group of legal entities for the purpose of exchanging data in the context of a contractually- defined collaboration or joint undertaking;
Amendment 467 #
Proposal for a regulation Article 9 – paragraph 1 c (new) (1 c) (b) value-added data services, which aggregate data, transform or combine data with other data, or analyse it for the purpose of adding substantial value to it and make available the use of the resulting data to data users, unless they have a direct relationship with data holders for the purpose of data sharing services or reshare the unprocessed data received from the data holder;
Amendment 468 #
Proposal for a regulation Article 9 – paragraph 1 d (new) (1 d) (c) auxiliary technical, legal, financial or administrative support services offered to either data holder or data users for the purpose of preparing an exchange of data;
Amendment 469 #
Proposal for a regulation Article 9 – paragraph 1 e (new) (1 e) (d) not-for-profit online encyclopedias, not-for-profit educational and scientific repositories, and open source software-developing and-sharing platforms;
Amendment 470 #
Proposal for a regulation Article 9 – paragraph 1 f (new) (1 f) (e) ‘Consolidated tape providers’ in the sense of Article 4 (1) point 53 of Directive 2014/65/EU of the European Parliament and of the Council;
Amendment 471 #
Proposal for a regulation Article 9 – paragraph 1 g (new) (1 g) (f) ‘account information service providers’ in the sense of Article 4 point 19 of Directive (EU) 2015/2366 of the European Parliament and of the Council;
Amendment 472 #
Proposal for a regulation Article 9 – paragraph 1 h (new) (1 h) (g) providers of data sharing services, which have been available to the public in the Union for less than 12 months and which have either a consolidated annual turnover at the group level below EUR 10 million, calculated in accordance with Commission Recommendation 2003/361/EC, or, where no consolidated annual turnover can be established less, than one hundred users, who are legal entities, or less than one thousand users who are natural persons.
Amendment 473 #
Proposal for a regulation Article 9 – paragraph 2 a (new) (2 a) A mandatory certification system shall be provided for data intermediaries in order to limit the risks associated with the central role of data intermediaries and thus increase trust in these organisations and their activities.
Amendment 474 #
Proposal for a regulation Article 10 – paragraph 1 (1)
Amendment 475 #
Proposal for a regulation Article 10 – paragraph 3 (3) A provider of data sharing services that is not established in the Union, but offers the services referred to in Article 9 (1) within the Union, shall appoint a legal representative in one of the Member States in which those services are offered. The provider shall be deemed to be under the jurisdiction of the Member State in which the legal representative is established.
Amendment 476 #
Proposal for a regulation Article 10 – paragraph 3 (3) A provider of data sharing services that is not established in the Union, but offers the services referred to in Article 9 (1) within the Union, shall
Amendment 477 #
Proposal for a regulation Article 10 – paragraph 4 Amendment 478 #
Proposal for a regulation Article 10 – paragraph 6 – point b (b) the provider’s legal status,
Amendment 479 #
Proposal for a regulation Article 10 – paragraph 6 – point c (c) the address of the provider’s main establishment in the Union, if any, and, where applicable, any secondary branch in another Member State or that of the legal
Amendment 480 #
Proposal for a regulation Article 10 – paragraph 6 – point d (d) a website where information on the provider and the activities can be found,
Amendment 481 #
Proposal for a regulation Article 10 – paragraph 6 – point d (d) a website where above information on the provider and the activities can be found, where applicable;
Amendment 482 #
Proposal for a regulation Article 10 – paragraph 6 – point g (g) the estimated date for starting the activity, or the date the activity has started;
Amendment 483 #
Proposal for a regulation Article 10 – paragraph 6 – point h (h) optionally, and indicative list of the Member States where the provider intends to provide services.
Amendment 484 #
Proposal for a regulation Article 10 – paragraph 6 – point h (h) optionally, an indicative list of the Member States where the provider intends to provide services.
Amendment 485 #
Proposal for a regulation Article 10 – paragraph 6 a (new) (6 a) The competent authority shall ensure that the notification procedure does not impose undue hurdles for small and medium-sized enterprises and organisations and ensures non- discrimination and competition.
Amendment 486 #
Proposal for a regulation Article 10 – paragraph 7 (7)
Amendment 487 #
Proposal for a regulation Article 10 – paragraph 7 a (new) (7 a) Upon reception of the standardised declaration, the provider of data sharing services may start the activity subject to the conditions laid down in this Chapter.
Amendment 488 #
Proposal for a regulation Article 10 – paragraph 8 Amendment 489 #
Proposal for a regulation Article 10 – paragraph 8 Amendment 490 #
Proposal for a regulation Article 10 – paragraph 9 (9) The competent authority shall notify the Commission of each new notification without delay and the Commission shall forward each notification to the national competent authorities of the Member States by electronic means. The Commission shall keep a register of providers of data sharing services.
Amendment 491 #
Proposal for a regulation Article 10 – paragraph 9 (9) The competent authority shall notify the Commission and the national competent authorities of the Member States by electronic means, without delay, of each new notification. The Commission shall keep a public register of providers of data sharing services
Amendment 492 #
Proposal for a regulation Article 10 – paragraph 9 (9)
Amendment 493 #
Proposal for a regulation Article 10 – paragraph 9 (9) The competent authority shall notify the Commission of each new notification. The Commission shall keep and regularly update a public register of all providers of data sharing services.
Amendment 494 #
Proposal for a regulation Article 10 – paragraph 9 (9) The competent authority shall
Amendment 495 #
Proposal for a regulation Article 10 – paragraph 9 (9) The competent authority shall notify the Commission of each new notification. The Commission shall keep a public register of
Amendment 496 #
Proposal for a regulation Article 10 – paragraph 10 Amendment 497 #
Proposal for a regulation Article 10 – paragraph 10 (10) The competent authority may charge fees. Such fees shall be proportionate and objective and be based on the administrative costs related to the monitoring of compliance and other market control activities of the competent authorities in relation to notifications of data sharing services. The competent authority may also charge discounted fees or allow free of charge notification for small and medium-sized enterprises (SMEs).
Amendment 498 #
(10 a) Providers shall submit any changes of the information provided pursuant to paragraph 6 to the competent authority within 14 calendar days from the day on which the change takes place;
Amendment 499 #
Proposal for a regulation Article 10 – paragraph 11 (11) Where a
Amendment 500 #
Proposal for a regulation Article 11 – paragraph 1 – point 1 (1) the provider may not use the data for which it provides services for other purposes than to put them at the disposal of data users
Amendment 501 #
Proposal for a regulation Article 11 – paragraph 1 – point 1 a (new) (1 a) the provider may not make the commercial terms, including pricing, for the provision of data sharing services to a data holder or data user dependent upon whether or to what degree the data holder or data user uses other services from the same provider or a related enterprise;
Amendment 502 #
Proposal for a regulation Article 11 – paragraph 1 – point 2 (2) the metadata collected from the provision of the data sharing service may be used only for the development of that service respecting the GDPR as a legal basis of processing of personal data;
Amendment 503 #
Proposal for a regulation Article 11 – paragraph 1 – point 2 (2) the metadata collected from the provision of the data sharing service may be used only for the development of that service and should be made available to the data holders upon request;
Amendment 504 #
Proposal for a regulation Article 11 – paragraph 1 – point 2 (2) the metadata collected from the provision of the data sharing service may be used only for the
Amendment 505 #
Proposal for a regulation Article 11 – paragraph 1 – point 3 (3) the provider shall ensure that the procedure for access to its service is fair, transparent and non-discriminatory for both data holders and data users, including as regards to terms of service and prices;
Amendment 506 #
Proposal for a regulation Article 11 – paragraph 1 – point 3 (3) the provider shall ensure that the procedure for access to its service is fair, transparent and non-discriminatory for both data holders and data users, including as regards to prices;
Amendment 507 #
Proposal for a regulation Article 11 – paragraph 1 – point 3 a (new) (3 a) the provider shall avoid lock-in effects and ensure interoperability with other data sharing services, in particular by providing openly accessible application programming interfaces and using open data formats, where technically feasible; (i) Within 12 months of the entry into force of this law, the Commission shall issue guidance on interoperability standards; (ii) The Commission shall consult Member States and relevant stakeholders for the purpose of issuing such guidance.
Amendment 508 #
Proposal for a regulation Article 11 – paragraph 1 – point 3 a (new) (3 a) the provider cannot condition the commercial terms, (including pricing)of data sharing services by the fact whether or to what degree the data holder or data user uses other services from the same company, even if under separate legal entity;
Amendment 509 #
Proposal for a regulation Article 11 – paragraph 1 – point 4 a (new) (4 a) the data intermediary may offer additional specific services to data holders facilitating the exchange of the data, such as aggregation, curation, pseudonymisation and anonymisation; with the aim of improving the quality or conversion of data to data holders or data users, or other related services, and those tools shall be used only at the explicit request or approval of the data holder in the framework of business-to-business agreements;
Amendment 510 #
Proposal for a regulation Article 11 – paragraph 1 – point 4 a (new) (4 a) the provider may offer additional specific tools to data holders facilitating the exchange of the data, such as aggregation, analysis, improving the quality of data or anonymization, only at the explicit request or approval of the data holder. The third-party tools offered in that context shall not use data for purposes other than those requested or approved by the data holder;
Amendment 511 #
Proposal for a regulation Article 11 – paragraph 1 – point 5 (5) the provider must ensure and shall have procedures in place to prevent fraudulent or abusive practices in relation to access to data from parties seeking access through their services and is liable for damages resulting from security breaches;
Amendment 512 #
Proposal for a regulation Article 11 – paragraph 1 – point 5 (5) the provider shall have procedures in place to prevent and monitor potential fraudulent or abusive practices in relation to access to data from parties seeking access through their services;
Amendment 513 #
Proposal for a regulation Article 11 – paragraph 1 – point 5 (5) the provider shall have procedures and sanctions in place to prevent fraudulent or abusive practices in relation to access to data from parties seeking access through their services;
Amendment 514 #
Proposal for a regulation Article 11 – paragraph 1 – point 6 (6) the provider shall ensure a reasonable continuity of provision of its services and, in the case of services which ensure storage of data, shall have sufficient guarantees in place that allow data holders and data users to obtain access to and to retrieve their data in case of insolvency of the provider;
Amendment 515 #
Proposal for a regulation Article 11 – paragraph 1 – point 6 a (new) (6 a) the provider shall avoid lock-in effects and ensure interoperability with the other data intermediaries (as defined in article 2) in particular by providing openly accessible application programming inter faces and using open data formats, where technically feasible;
Amendment 516 #
Proposal for a regulation Article 11 – paragraph 1 – point 6 a (new) (6 a) the provider to the extent possible shall ensure interoperability with other data sharing services;
Amendment 517 #
Proposal for a regulation Article 11 – paragraph 1 – point 6 b (new) (6 b) The intermediator services should follow the interoperability requirements defined in the common European data spaces.
Amendment 518 #
Proposal for a regulation Article 11 – paragraph 1 – point 7 (7) the provider shall put in place adequate technical, legal and organisational
Amendment 519 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the
Amendment 520 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the provider shall take measures to ensure a high level of security for the storage and transmission of non-personal data
Amendment 521 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the provider shall take measures to ensure a high level of security, including cybersecurity standards, for the storage and transmission of non-personal data;
Amendment 522 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the
Amendment 523 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the provider shall take measures to ensure a high level of security for the storage and transmission of
Amendment 524 #
Proposal for a regulation Article 11 – paragraph 1 – point 8 (8) the provider shall take measures to ensure a high level of security for the storage and transmission of
Amendment 525 #
Proposal for a regulation Article 11 – paragraph 1 – point 10 (10)
Amendment 526 #
Proposal for a regulation Article 11 – paragraph 1 – point 11 (11) where a provider provides tools for obtaining consent from data subjects or permissions to process data made available by legal persons, it shall specify the jurisdiction or jurisdictions in which the data use is intended to take place. Such a consent does not replace the need to have a lawful basis for data processing as set by the GDPR.
Amendment 527 #
(11) where a provider provides tools for obtaining consent from data subjects or permissions to process data made available by legal persons, it shall specify the jurisdiction or jurisdictions in which the data use is intended to take place and provide to the data subject tools for tracking the use of that data and consent withdrawal.
Amendment 528 #
Proposal for a regulation Article 11 – paragraph 1 – point 11 (11) where a provider provides tools for obtaining consent from data subjects or permissions to process data made available by legal persons, it shall specify the jurisdiction or jurisdictions in which the data use is intended to take place and ensure that data subjects are also provided with tools to withdraw consent.
Amendment 529 #
Proposal for a regulation Article 11 – paragraph 1 – point 11 a (new) (11 a) (1 a) the data intermediary must ensure the right conditions to keep data secured.
Amendment 530 #
Proposal for a regulation Article 11 a (new) Article 11 a Data intermediary should ensure quality and security of the services they offer. This control of quality should also be periodically monitored and reviewed. Recommendations or guidance by the Commission, in cooperation with data users in the market, could improve the services of the providers.
Amendment 531 #
Proposal for a regulation Article 11 b (new) Article 11 b It should ensure data portability by adhering to the « Switching Cloud Providers and Porting Data » Association, facilitated by the European Commission in application of Art. 6 of the EU Free Flow of Non-Personal Data Regulation ((EU) 2018/1807) and aimed at developing voluntary Codes of Conduct to offer services with data portability
Amendment 532 #
Proposal for a regulation Article 12 – paragraph 1 (1) Each Member State shall designate in its territory one or more authorities competent, including its data protection authority, to carry out the tasks related to the notification framework and shall communicate to the Commission the identity of those designated authorities by [date of application of this Regulation]. It shall also communicate to the Commission any subsequent modification.
Amendment 533 #
Proposal for a regulation Article 12 – paragraph 2 (2) The designated competent authorities under Regulation 2018/679” shall comply with Article 23”..
Amendment 534 #
Proposal for a regulation Article 12 – paragraph 3 (3) The designated competent authorities, the data protection authorities, the national competition authorities, the authorities in charge of cybersecurity, and other relevant sectorial authorities shall exchange the information which is necessary for the exercise of their tasks in relation to data sharing providers. The data protection authorities shall be designated as the main competent authorities for the supervision and enforcement of the provisions under Chapter IV of the Regulation.
Amendment 535 #
Proposal for a regulation Article 12 – paragraph 3 (3) The designated competent authorities, the data protection authorities, the national competition authorities, the authorities in charge of cybersecurity, and other relevant sectorial authorities shall exchange the information which is necessary for the exercise of their tasks in relation to data sharing providers and ensure consistency of the decisions taken in application of this directive.
Amendment 536 #
Proposal for a regulation Article 12 – paragraph 3 (3) The designated competent authorities, the data protection authorities, the national competition authorities, the authorities in charge of cybersecurity, and other relevant sectorial authorities shall build up a strong cooperation and exchange the information which is necessary for the exercise of their tasks in relation to data sharing providers.
Amendment 537 #
Proposal for a regulation Article 13 – paragraph 2 (2) The competent authority shall have the power to request from providers of data sharing services all the information that is necessary to verify compliance with the requirements laid down in Articles 10 and 11. Any request for information shall be proportionate to the performance of the task and shall be reasoned. In case a data sharing service does not submit a notification, he is submitted to Article 31.
Amendment 538 #
Proposal for a regulation Article 13 – paragraph 3 (3) Where the competent authority finds that a provider of data sharing services does not comply with one or more of the requirements laid down in Article 10 or 11, it shall notify that provider of those findings and give it the opportunity to state its views, within a
Amendment 539 #
Proposal for a regulation Article 13 – paragraph 3 (3) Where the competent authority finds that a provider of data sharing services does not comply with one or more of the requirements laid down in Article 10
Amendment 540 #
Proposal for a regulation Article 13 – paragraph 4 – introductory part (4) The competent authority shall have the power to require the cessation of the breach referred to in paragraph 3
Amendment 541 #
Proposal for a regulation Article 13 – paragraph 4 – introductory part (4) The competent authority shall have the power to require the cessation of the breach referred to in paragraph 3 either immediately or within a
Amendment 542 #
Proposal for a regulation Article 13 – paragraph 4 – point a (a) to impose dissuasive financial penalties which may include periodic penalties with retroactive effect
Amendment 543 #
Proposal for a regulation Article 13 – paragraph 4 – point a (a) to impose dissuasive financial penalties which may include periodic penalties with retroactive effect; these should be proportionate to the size of the provider and the severity of the breach.
Amendment 544 #
Proposal for a regulation Article 13 – paragraph 4 – point a (a) to impose
Amendment 545 #
Proposal for a regulation Article 13 – paragraph 4 – point b (b) to require
Amendment 546 #
Proposal for a regulation Article 13 – paragraph 4 – point b (b) to
Amendment 547 #
Proposal for a regulation Article 13 – paragraph 5 (5) The competent authorities shall communicate the measures imposed pursuant to paragraph 4
Amendment 548 #
Proposal for a regulation Article 13 – paragraph 6 a (new) (6 a) Upon the request of a data intermediary the competent authority shall confirm that the data intermediary complies with the requirements laid down Articles 10 and 11.
Amendment 549 #
Amendment 550 #
Proposal for a regulation Article 14 – paragraph 1 This Chapter shall not apply to
Amendment 551 #
Proposal for a regulation Article 14 – paragraph 1 This Chapter shall not apply to not-for- profit
Amendment 552 #
Proposal for a regulation Article 14 – paragraph 1 This Chapter shall not apply to not-for- profit entities whose activities consist only in seeking to collect data for objectives of
Amendment 553 #
Proposal for a regulation Article 14 – paragraph 1 – point a (new) (a) public sector bodies that offer data sharing facilities on a non-commercial basis;
Amendment 554 #
Proposal for a regulation Article 14 – paragraph 1 – point b (new) (b) not-for-profit entities whose activities consist only in seeking to collect data for objectives of general interest, made available by natural or legal persons on the basis of data altruism.
Amendment 555 #
Proposal for a regulation Chapter IV – title IV
Amendment 556 #
Proposal for a regulation Article 15 – title Register of
Amendment 557 #
Proposal for a regulation Article 15 – paragraph -1 (new) (-1) The collection of data based on voluntary data sharing in the public interest, as referred to in Article 6(1)(e) of Regulation (EU) 2016/679 is subject to general authorisation by a competent authority, referred to in Article 20. Such authorisation shall be valid in all Member States of the European Union.
Amendment 558 #
Proposal for a regulation Article 15 – paragraph 1 (1) Donating personal or non- personal data is a voluntary and free act of the data subject and hence subject to high-level safeguards. Each competent authority designated pursuant to Article 20 shall keep a public register of recognised data altruism organisations.
Amendment 559 #
Proposal for a regulation Article 15 – paragraph 1 (1) Each competent authority designated pursuant to Article 20 shall keep a regularly-updated public register of recognised data altruism organisations.
Amendment 560 #
Proposal for a regulation Article 15 – paragraph 1 (1) Each competent authority designated pursuant to Article 20 shall keep a public register of
Amendment 561 #
Proposal for a regulation Article 15 – paragraph 2 (2) The Commission shall maintain a public Union register of recognised data altruism organisations. The Commission shall monitor and audit the register of recognised data altruism organizations.
Amendment 562 #
Proposal for a regulation Article 15 – paragraph 2 (2) The Commission shall maintain a publicly accessible and regularly updated Union register of recognised data altruism organisations.
Amendment 563 #
Proposal for a regulation Article 15 – paragraph 2 (2) The Commission shall maintain a public Union register of
Amendment 564 #
Proposal for a regulation Article 15 – paragraph 3 (3) An entity registered in the register in accordance with Article 16 may refer to itself as a ‘data altruism organisation recognised in the Union’ in its written and spoken communication. The entity shall use a EU dedicated logo or QR code linking to the European register of recognised data altruism organisations, both online and offline. The logo shall have the objective of providing a coherent visual identity to European Union data altruism organisations and contribute to increase trust for data subjects and legal entities. The logo must be created and displayed with rules established in a separate implementing act in accordance with the procedure referred to in Article 29.
Amendment 565 #
Proposal for a regulation Article 15 – paragraph 3 (3) An entity registered in the register in accordance with Article 16 may refer to itself as a ‘data altruism organisation recognised in the Union’ in its written and spoken communication. The entity shall use a EU dedicated logo and link to the European register of recognised data altruism organisations. The logo shall have the objective of providing a coherent visual identity to European Union data altruism organisations and contribute to increase trust for data subjects and legal entities. The logo must be created and displayed with rules established in a separate implementing act in accordance with the procedure referred to in Article 29.
Amendment 566 #
Proposal for a regulation Article 15 – paragraph 3 (3)
Amendment 567 #
Proposal for a regulation Article 16 – title General requirements for
Amendment 568 #
Proposal for a regulation Article 16 – paragraph 1 – introductory part 1. In order to qualify for registration, the data altruism organisation shall:
Amendment 569 #
Proposal for a regulation Article 16 – paragraph 1 – introductory part In order to qualify for
Amendment 570 #
Proposal for a regulation Article 16 – paragraph 1 – point a (a) be a legal entity constituted to meet objectives of
Amendment 571 #
Proposal for a regulation Article 16 – paragraph 1 – point a (a) be a legal entity constituted to meet objectives of
Amendment 572 #
Proposal for a regulation Article 16 – paragraph 1 – point a a (new) (a a) fit definition of data altruism under article 2-10
Amendment 573 #
Proposal for a regulation Article 16 – paragraph 1 – point b (b) operate on a not-for-profit basis and be independent from any entity that operates on a for-profit basis; in case the entity undertakes other activities on a not- for-profit basis, it shall ensure the legal and functional separation of such activities from the activities related to the collection of data based on voluntary data sharing in the public interest. The entity may not use the data collected based on voluntary data sharing in the public interest for other activities;
Amendment 574 #
Proposal for a regulation Article 16 – paragraph 1 – point b (b) operate on a not-for-profit basis and be legally and structurally independent from any entity that operates on a for-profit basis;
Amendment 575 #
Proposal for a regulation Article 16 – paragraph 1 – point c (c) perform the activities related to
Amendment 576 #
Proposal for a regulation Article 16 – paragraph 1 – point c (c) perform the activities related to data altruism
Amendment 577 #
Proposal for a regulation Article 16 – paragraph 1 – point c a (new) (c a) be able to process the data within the secure processing environment operated by the entity;
Amendment 578 #
Proposal for a regulation Article 16 – paragraph 1 – point c a (new) (c a) provide to the competent authority an operational data security plan;
Amendment 579 #
Proposal for a regulation Article 16 – paragraph 1 – point c b (new) (c b) have effective oversight mechanism to ensure high standards of scientific ethics;
Amendment 580 #
Proposal for a regulation Article 16 – paragraph 1 – point c c (new) (c c) have effective technical means to withdraw or modify context at any moment as well as means for data subjects to stay informed about th use of data they made available;
Amendment 581 #
Proposal for a regulation Article 16 – paragraph 1 a (new) In case personal data is processed in the context of voluntary data sharing in the public interest, such processing shall be compliant with the requirements laid down in Regulation (EU) 2016/679, including the provisions on transfers of personal data to third countries or international organisations
Amendment 582 #
Proposal for a regulation Article 17 – paragraph 1 (1) Any entity which meets the requirements of Article 2 (10) and 16 may request to be entered in the register of recognised data altruism organisations referred to in Article 15 (1).
Amendment 583 #
Proposal for a regulation Article 17 – paragraph 1 (1) Any entity which meets the requirements of Article 16 may request to be entered in the register of
Amendment 584 #
Proposal for a regulation Article 17 – paragraph 2 (2) For the purposes of this Regulation, an entity engaged in activities based on
Amendment 585 #
Proposal for a regulation Article 17 – paragraph 3 Amendment 586 #
Proposal for a regulation Article 17 – paragraph 3 (3) An entity that is not established in
Amendment 587 #
Proposal for a regulation Article 17 – paragraph 3 (3) An entity that is not established in the Union, but meets the requirements in Article 16, shall appoint a legal representative in one of the Member States where it intends to collect data based on
Amendment 588 #
Proposal for a regulation Article 17 – paragraph 4 – point c (c) the statutes of the entity
Amendment 589 #
Proposal for a regulation Article 17 – paragraph 4 – point f (f) a public website where information on the entity and the activities can be found including as a minimum the information as referred to in letters a, b, d, e and h of this paragraph;
Amendment 590 #
Proposal for a regulation Article 17 – paragraph 4 – point f (f) a website where information on the entity and the activities can be found including as a minimum the information as referred to in letters a, b, d, e and h of this paragraph;
Amendment 591 #
Proposal for a regulation Article 17 – paragraph 4 – point h (h) the purposes of
Amendment 592 #
Proposal for a regulation Article 17 – paragraph 4 – point h (h) the purposes of
Amendment 593 #
Proposal for a regulation Article 17 – paragraph 5 (5) Where the entity has submitted all necessary information pursuant to paragraph 4 and the competent authority considers that the entity complies with the
Amendment 594 #
Proposal for a regulation Article 17 – paragraph 6 (6) The information referred to in paragraph 4, points (a), (b), (f), (g), and (h) shall be published in the national public register of recognised data altruism organisations.
Amendment 595 #
Proposal for a regulation Article 17 – paragraph 6 (6) The information referred to in paragraph 4, points (a), (b), (f), (g), and (h) shall be published in the national register
Amendment 596 #
Proposal for a regulation Article 17 – paragraph 7 (7) Any entity entered in the register of recognised data altruism organisations shall submit any changes of the information provided pursuant to paragraph 4 to the competent authority within 14 calendar days from the day on which the change takes place. The competent authority shall inform the Commission by electronic means of each such notification without delay.
Amendment 597 #
Proposal for a regulation Article 17 – paragraph 7 (7) Any entity entered in the public register of recognised data altruism organisations shall submit any changes of the information provided pursuant to paragraph 4 to the competent authority within 14 calendar days from the day on
Amendment 598 #
Proposal for a regulation Article 17 – paragraph 7 (7) Any entity entered in the register of
Amendment 599 #
Proposal for a regulation Article 17 – paragraph 7 (7)
Amendment 600 #
Proposal for a regulation Article 18 – paragraph 1 – introductory part (1) Any entity entered in the national register of
Amendment 601 #
Proposal for a regulation Article 18 – paragraph 2 – introductory part (2) Any entity entered in the register of
Amendment 602 #
Proposal for a regulation Article 18 – paragraph 2 – point b (b) a description of the way in which the
Amendment 603 #
Proposal for a regulation Article 18 – paragraph 2 – point b (b) a description of the way in which the
Amendment 604 #
Proposal for a regulation Article 18 – paragraph 2 – point c (c) a list of all natural and legal persons that were allowed to use data it holds,
Amendment 605 #
Proposal for a regulation Article 18 – paragraph 2 – point c (c) a list of all natural and legal persons that were allowed to use data it holds, including a summary description of the
Amendment 606 #
Proposal for a regulation Article 19 – paragraph 1 – introductory part (1) A mandatory authorisation framework for data altruistic organisations shall be provided to ensure a higher level of trust. Any entity entered in the register of recognised data altruism organisations shall inform data holders:
Amendment 607 #
Proposal for a regulation Article 19 – paragraph 1 – introductory part (1) Any entity entered in the register of recognised data altruism organisations shall inform data
Amendment 608 #
Proposal for a regulation Article 19 – paragraph 1 – introductory part (1) Any entity entered in the register of
Amendment 609 #
Proposal for a regulation Article 19 – paragraph 1 – introductory part (1) Any entity entered in the register of recognised data altruism organisations shall inform data holders prior to any processing of their data:
Amendment 610 #
Proposal for a regulation Article 19 – paragraph 1 – point a (a) about the purposes of
Amendment 611 #
Proposal for a regulation Article 19 – paragraph 1 – point a (a) about the purposes of
Amendment 612 #
Proposal for a regulation Article 19 – paragraph 1 – point a (a) about the purposes of general interest for which it permits the processing of their data by a data user
Amendment 613 #
Proposal for a regulation Article 19 – paragraph 1 – point b Amendment 614 #
Proposal for a regulation Article 19 – paragraph 1 – point b (b) about the location of any processing outside the Union. In addition, the non-profit entities will request an authorisation to data holders with approval regarding all the information pursuant in accordance with paragraph 4 of Article 17. The authorisation should be issued by competent authorities designated pursuant to Article 20.
Amendment 615 #
Proposal for a regulation Article 19 – paragraph 1 – point b (b) about
Amendment 616 #
Proposal for a regulation Article 19 – paragraph 1 – point b (b) about any processing outside the Union
Amendment 617 #
Proposal for a regulation Article 19 – paragraph 1 – point b (b) about any processing outside the Union and the location of such processing.
Amendment 618 #
Proposal for a regulation Article 19 – paragraph 1 – point b a (new) (b a) the effective means and tools for withdrawal of consent according to Article 7 of GDPR.
Amendment 619 #
Proposal for a regulation Article 19 – paragraph 2 (2) The entity shall also ensure that the data is not be used for other purposes than those of general interest for which it permits the processing. Safeguards shall be provided to ensure that misleading marketing practices are not used to solicit donations of data. Possibilities for sanctions shall be provided for when acting against public interests, according to national laws.
Amendment 620 #
Proposal for a regulation Article 19 – paragraph 2 (2) The entity shall also ensure that the data is not be used for other purposes than those of general interest for which it permits the processing as well as that the obtained consent from data subjects or permissions to process data made available by legal persons can be easily withdrawn.
Amendment 621 #
Proposal for a regulation Article 19 – paragraph 2 (2) The entity shall also ensure that the data is not be used for other purposes than those of
Amendment 622 #
Proposal for a regulation Article 19 – paragraph 2 (2) The entity shall also ensure that the data is not be used for other purposes than those of
Amendment 623 #
Proposal for a regulation Article 19 – paragraph 2 a (new) (2 a) The entity shall take measures to ensure a high level of security for the storage and processing of data that it has collected based on voluntary data sharing in the public interest or is responsible for in the exercise of its activities.
Amendment 624 #
Proposal for a regulation Article 19 – paragraph 3 (3) Where an entity entered in the register of
Amendment 625 #
Proposal for a regulation Article 19 – paragraph 3 (3) Where an entity entered in the register of recognised data altruism organisations provides tools for obtaining consent from data subjects or permissions to process data made available by legal persons, it shall specify the jurisdiction or jurisdictions outside the Union in which the data use is intended to take place.
Amendment 626 #
Competent authorities for registration of data altruism organisations
Amendment 627 #
Proposal for a regulation Article 20 – paragraph 1 (1) Each Member State shall designate one or more competent authorities responsible for the register of recognised data altruism organisations and for the monitoring of compliance with the requirements of this Chapter. The designated competent authorities for the registration of data altruism organisations shall meet the requirements of Article 23.
Amendment 628 #
Proposal for a regulation Article 20 – paragraph 1 (1) Each Member State shall designate one or more competent authorities under Regulation 2018/679 responsible for the register of recognised data altruism organisations and for the monitoring of compliance with the requirements of this Chapter. The designated competent authorities shall
Amendment 629 #
Proposal for a regulation Article 20 – paragraph 1 (1) Each Member State shall designate
Amendment 630 #
Proposal for a regulation Article 20 – paragraph 1 (1) Each Member State shall designate one
Amendment 631 #
Proposal for a regulation Article 20 – paragraph 2 (2) Each Member State shall inform the Commission of the identity of the designated authorit
Amendment 632 #
Proposal for a regulation Article 20 – paragraph 3 (3) The competent authority shall undertake its tasks in cooperation with the data protection authority, where such tasks are related to processing of personal data, and with relevant sectoral bodies of the same Member State. For any question requiring an assessment of compliance with Regulation (EU) 2016/679, the competent authority shall first seek an opinion or decision by the competent supervisory authority established pursuant to that Regulation and comply with that opinion or decision. The data protection authorities shall be designated as the main competent authorities for the supervision and enforcement of the provisions under Chapter IV of the Regulation.
Amendment 633 #
Proposal for a regulation Article 20 – paragraph 3 (3) The competent authority for the registration of data altruism organisations shall undertake its tasks in cooperation with the data protection authority, where such tasks are related to processing of personal data, and with relevant sectoral bodies of the same Member State. For any question requiring an assessment of compliance with Regulation (EU) 2016/679, the competent authority shall first seek an opinion or decision by the competent supervisory authority established pursuant to that Regulation and comply with that opinion or decision.
Amendment 634 #
Proposal for a regulation Article 21 – paragraph 1 (1) The
Amendment 635 #
Proposal for a regulation Article 21 – paragraph 1 (1) The competent authority shall monitor and supervise compliance of entities entered in the register of
Amendment 636 #
Proposal for a regulation Article 21 – paragraph 2 (2) The competent authority shall have the power to request information from entities included in the register of
Amendment 637 #
Proposal for a regulation Article 21 – paragraph 3 (3) Where the competent authority finds that an entity does not comply with one or more of the requirements of this Chapter it shall notify the entity of those findings and give it the opportunity to state its views, within
Amendment 638 #
Proposal for a regulation Article 21 – paragraph 5 – point a (a) lose its right to collect data made available by natural or legal persons on the basis of data altruism, perform the activities linked to the realisation of the data altruism purpose and refer to itself as a ‘data altruism organisation
Amendment 639 #
Proposal for a regulation Article 21 – paragraph 5 – point b (b) be removed from the national and Union registers of
Amendment 640 #
Proposal for a regulation Article 21 – paragraph 5 – point b a (new) (b a) In the case that the entity wishes to make the request again, an appropriate period of at least 12 months must pass. If the entity runs into criminal problems of a certain entity, neither the company nor the persons responsible in other companies will no longer be able to apply for registration.
Amendment 641 #
Proposal for a regulation Article 21 – paragraph 5 a (new) (5 a) In this regard, the competent authorities shall be able, where appropriate: (a) to impose dissuasive financial penalties which may include periodic penalties with retroactive effect; (b) to impose immediate cessation or postponement of the provision of the data sharing service.
Amendment 642 #
Proposal for a regulation Article 21 – paragraph 6 (6) If an entity included in the register of recognised data altruism organisations has its main establishment or legal representative in a Member State but is active in other Member States, the competent authority of the Member State of the main establishment or where the legal representative is located and the competent authorities of those other Member States shall cooperate and assist each other as necessary and they shall also comply with the rules of the most restrictive Member States in which they operate. Such assistance and cooperation may cover information exchanges between the competent authorities concerned and requests to take the supervisory measures referred to in this Article.
Amendment 643 #
Proposal for a regulation Article 21 – paragraph 6 (6) If an entity included in the register of
Amendment 644 #
Proposal for a regulation Article 22 – title European data altruism consent
Amendment 645 #
Proposal for a regulation Article 22 – paragraph 1 (1) In order to facilitate the collection of data based on
Amendment 646 #
Proposal for a regulation Article 22 – paragraph 1 (1) In order to facilitate the collection of data based on data altruism, the
Amendment 647 #
Proposal for a regulation Article 22 – paragraph 1 (1) In order to facilitate the collection of data based on data altruism, the Commission may adopt implementing acts developing a European data altruism consent form with cooperation of Data innovation board. The form shall allow the collection of consent across Member States in a uniform format. Those implementing acts shall be adopted in accordance with the advisory procedure referred to in Article 29 (2).
Amendment 648 #
Proposal for a regulation Article 22 – paragraph 1 (1) In order to facilitate and ease the collection of data based on data altruism, the Commission may adopt implementing acts developing a European data altruism
Amendment 649 #
Proposal for a regulation Article 22 – paragraph 2 (2) The European data altruism consent form shall use a modular approach allowing customisation for specific sectors and for different purposes leading to full understanding of the purpose.
Amendment 650 #
Proposal for a regulation Article 22 – paragraph 2 (2) The European data altruism consent
Amendment 651 #
Proposal for a regulation Article 22 – paragraph 3 (3) Where personal data are provided, the European data altruism consent form shall ensure that data subjects are able to give consent to and withdraw consent from a specific data processing operation in compliance with the requirements of Regulation (EU) 2016/679. Data subjects shall be informed of the purposes of any subsequent use before they give their consent.
Amendment 652 #
Proposal for a regulation Article 22 – paragraph 3 (3) Where personal data are provided, the European data altruism consent
Amendment 653 #
Proposal for a regulation Article 22 – paragraph 3 (3) Where personal data are provided, the European data altruism consent form shall ensure that data subjects are able to give free and unambiguous consent to and to be able withdraw their consent from a specific data processing operation in compliance with the requirements of Regulation (EU) 2016/679 at any time.
Amendment 654 #
Proposal for a regulation Article 22 – paragraph 4 (4) The form shall be available in a
Amendment 655 #
Proposal for a regulation Article 22 – paragraph 4 a (new) (4 a) The online consent tools shall include a minimal list of checks and balances allowing consent to be given and withdrawn in an easy to understand, timely and modular manner and a set of standardised visual indicators.
Amendment 656 #
Proposal for a regulation Article 23 – title Requirements and procedures relating to competent authorities
Amendment 657 #
Proposal for a regulation Article 23 – paragraph 1 (1) The competent authorities designated pursuant to Article 12 and Article 20 shall be legally distinct from, and functionally independent of any provider of data sharing services or entity included in the register of recognised data altruism organisations. The functions of the competent authorities designated pursuant to Article 12 and Article 20 may be carried out by the same entity.
Amendment 658 #
Proposal for a regulation Article 23 – paragraph 1 (1) The competent authorities designated pursuant to Article 12 and Article 20 shall be legally distinct from, and functionally independent of any provider of data sharing services or entity included in the register of
Amendment 659 #
Proposal for a regulation Article 23 – paragraph 2 (2) Competent authorities shall exercise their tasks in an impartial, transparent, consistent, reliable and timely manner and safeguard fair competition and non-discriminatory access for individuals and small actors at all times.
Amendment 660 #
Proposal for a regulation Article 23 – paragraph 5 (5) The competent authorities shall have at their disposal the adequate financial
Amendment 661 #
Proposal for a regulation Article 23 – paragraph 6 (6) The competent authorities of a Member State shall provide the Commission and competent authorities from other Member States, on reasoned request, with the information necessary to carry out their tasks under this Regulation. Where a national competent authority considers the information requested to be confidential in accordance with Union and national rules on national security, commercial and professional confidentiality, the Commission and any other competent authorities concerned shall ensure such confidentiality
Amendment 662 #
Proposal for a regulation Article 24 – paragraph 1 (1) Natural and legal persons shall have the right to lodge a complaint, individually or by the representatives of one or more natural persons, with the relevant national competent authority against a provider of data sharing services or an entity entered in the register of
Amendment 663 #
Proposal for a regulation Article 24 – paragraph 2 (2) The authority with which the complaint has been lodged shall inform the complainant of the progress of the proceedings and of the decision taken, take immediate measures to prevent further infringements and shall inform the complainant of the right to an effective judicial remedy provided for in Article 25.
Amendment 664 #
Proposal for a regulation Article 25 – paragraph 1 – point -a (new) (-a) a breach of obligations stemming from the current Regulation, including but not limited to the purposes of data processing, consent mechanisms and exercise of voluntary data sharing for public interest activities by organisations that are not listed in the national data altruism registry.
Amendment 665 #
Proposal for a regulation Article 25 – paragraph 1 – point b (b) decisions of the competent authorities referred to in Articles 13, 17 and 21 taken in the management, control and enforcement of the notification regime for providers of data sharing services and the monitoring of entities entered into the register of
Amendment 666 #
Proposal for a regulation Article 25 – paragraph 2 (2) Proceedings pursuant to this Article shall be brought before the courts of the Member State in which the authority against which the judicial remedy is sought is located individually or by the representatives of one or more natural persons.
Amendment 667 #
Proposal for a regulation Chapter V a (new) Amendment 668 #
Proposal for a regulation Article 26 Amendment 669 #
Proposal for a regulation Article 26 – paragraph 1 (1) The Commission shall establish a European Data Innovation Board (“the Board”)
Amendment 670 #
Proposal for a regulation Article 26 – paragraph 1 (1) The Commission shall establish a European Data Innovation Board (“the Board”) in the form of an Expert Group, consisting of the representatives of competent authorities of all the Member States, the European Data Protection Board, the Commission,
Amendment 671 #
Proposal for a regulation Article 26 – paragraph 1 (1) The Commission shall establish a European Data Innovation Board (“the Board”) in the form of an Expert Group, consisting of the representatives of competent authorities of all the Member States, the European Data Protection Board, the Commission,
Amendment 672 #
Proposal for a regulation Article 26 – paragraph 1 (1) The Commission shall establish a European Data Innovation Board (“the Board”)
Amendment 673 #
Proposal for a regulation Article 26 – paragraph 1 (1) The Commission shall establish a European Data Innovation Board (“the Board”) in the form of an Expert Group, consisting of the representatives of competent authorities of all the Member States, the European Data Protection Board, the Commission, relevant data spaces and other representatives of
Amendment 674 #
Proposal for a regulation Article 26 – paragraph 1 a (new) (1 a) The composition shall guarantee a fair distribution of the different third parties between public actors including the Commission, private actors as well as civil society and social partners;
Amendment 675 #
Proposal for a regulation Article 26 – paragraph 2 (2)
Amendment 676 #
Proposal for a regulation Article 26 – paragraph 2 (2)
Amendment 677 #
Proposal for a regulation Article 26 – paragraph 2 (2) Stakeholders and relevant third parties
Amendment 678 #
Proposal for a regulation Article 26 – paragraph 2 (2) Stakeholders
Amendment 679 #
Proposal for a regulation Article 26 – paragraph 2 (2) Stakeholders
Amendment 680 #
Proposal for a regulation Article 26 – paragraph 2 (2) Stakeholders and relevant third
Amendment 681 #
Proposal for a regulation Article 26 – paragraph 2 (2) Stakeholders and relevant third parties
Amendment 682 #
Proposal for a regulation Article 26 – paragraph 2 a (new) (2 a) The Commission shall ensure a balanced composition of the invitations of stakeholders to participate in the work of the Board, accounting for gender as well as geographical diversity, and made up of members with diverse industrial backgrounds, with a well thought out selection process.
Amendment 683 #
Proposal for a regulation Article 26 – paragraph 2 a (new) (2 a) The Commission shall ensure a balanced composition of the invitations of stakeholders to participate in the work of Board, accounting for gender as well as geographical diversity, and made up of members with diverse industrial backgrounds, with a well thought out selection process.
Amendment 684 #
Proposal for a regulation Article 26 – paragraph 3 (3) The Commission shall chair the meetings of the Board which may be conducted in different configurations, depending on the subjects to be discussed.
Amendment 685 #
Proposal for a regulation Article 26 – paragraph 4 a (new) Amendment 686 #
Proposal for a regulation Article 26 – paragraph 4 a (new) (4 a) The data protection supervisory authorities established under national and Union law are the “competent authority”, insofar as the processing of personal data is concerned.
Amendment 687 #
Proposal for a regulation Article 26 – paragraph 4 a (new) (4 a) The Board's deliberations and, where relevant, documents shall be made public.
Amendment 688 #
Proposal for a regulation Article 27 – title Tasks of the European Data Innovation Board
Amendment 689 #
Proposal for a regulation Article 27 – paragraph 1 – point -a (new) (-a) to assist and advise the Commission and the emerging data spaces on how to enable the interoperability, and if possible, scalability, of the emerging data spaces within the Union. This assistance could include assistance on agreeing principles on soft infrastructure (standards) as well as assistance on how to get the best out of the financial help under Digital Europe Programme.
Amendment 690 #
Proposal for a regulation Article 27 – paragraph 1 – point -a a (new) (-a a) to advise and assist the Commission on a soft infrastructure with data sovereignty as key design principle, to form a set of agreements enabling a unified way for control over data
Amendment 691 #
Proposal for a regulation Article 27 – paragraph 1 – point b (b) to advise and assist the Commission in developing a consistent practice of the competent authorities in the application of requirements applicable to data sharing providers as well as entities carrying out activities in relation to data altruism;
Amendment 692 #
Proposal for a regulation Article 27 – paragraph 1 – point b (b) to advise and assist the Commission in developing a consistent practice of the competent authorities in the application of requirements applicable to data sharing providers and data altruism organisations;
Amendment 693 #
Proposal for a regulation Article 27 – paragraph 1 – point b a (new) (b a) to advise and assist the Commission in developing consistent guidelines on how to best protect, in the context of this Regulation, commercially sensitive data of non-personal nature, notably trade secrets, but also non- personal data representing content protected by intellectual property rights from unlawful access that may lead to IP theft or industrial espionage.
Amendment 694 #
Proposal for a regulation Article 27 – paragraph 1 – point b a (new) (b a) to advise and assist the Commission in developing consistent guidelines for increase a data literacy and that looks at the technology transfer from research, thanks to an expansion of the resources available to those involved in data literacy training, associations, cooperatives and in general to innovation brokers.
Amendment 695 #
Proposal for a regulation Article 27 – paragraph 1 – point c (c) to advise the Commission on the prioritisation of cross-sector standards to be used and developed for data use and cross-sector data sharing between emerging data spaces, cross-sectoral comparison and exchange of best practices with regards to sectoral requirements for security, access procedures, while taking into account sector-specific standardisations activities in particular in clarifying and distinguishing which standards and practices are cross-sectoral and which are sectoral;;
Amendment 696 #
Proposal for a regulation Article 27 – paragraph 1 – point c (c) to advise the Commission on the prioritisation of cross-sector standards to be used and developed for data use and cross-sector data sharing, cross-sectoral comparison and exchange of best practices with regards to sectoral requirements for security, access procedures, while taking into account sector-specific standardisations activities, in particular in clarifying and distinguishing which standards and practices are cross-sectoral and which are sectoral;
Amendment 697 #
Proposal for a regulation Article 27 – paragraph 1 – point c a (new) (c a) to collaborate with sectoral boards and expert groups which may be established in establishing data spaces to perform similar but sector specific tasks defined in (a) – (e) for The Board for cross-sectoral data sharing.
Amendment 698 #
Proposal for a regulation Article 27 – paragraph 1 – point d (d) to assist the Commission in enhancing the interoperability of data as well as data sharing services between different sectors and domains, building on existing European, international or national standards and to assist and advice the EU institutions and the emerging data spaces, including on financial assistance through European programmes such as the Digital Europe Programme;
Amendment 699 #
Proposal for a regulation Article 27 – paragraph 1 – point d (d) to assist the Commission in addressing fragmentation of the data economy in the single market by enhancing the interoperability of data as well as data sharing services between different sectors and domains, building on existing European, international or national standards, inter alia with the aim of encouraging the creation of Common European data spaces;
Amendment 700 #
Proposal for a regulation Article 27 – paragraph 1 – point d a (new) (d a) establish a permanent sub group called the Data Exchange Board (“the DEB”) in the form of an expert group consisting of actors that have a direct interest in the establishment, governance, and adoption of a standardised approach to data sharing and exchange with the help of European data spaces and to support it in defining the interoperability measures for the data intermediaries. These actors should be researchers, practitioners, and public and private initiatives for data sharing and exchange.
Amendment 701 #
Proposal for a regulation Article 27 – paragraph 1 – point d a (new) (d a) In addition, it should assist the Commission in defining policies and strategies with the aim of avoiding any cases of data manipulation and the creation of "false data", which could cause serious damage to various sectors. With reference to 'false data', the Board could evaluate the possibility of creating a "data passport" containing certified or certifiable data, in order to exclude any attempt to falsify the data.
Amendment 702 #
Proposal for a regulation Article 27 – paragraph 1 – point d a (new) (d a) to maintain a registry of applications and use cases that demonstrate the value of data sharing, contributing to a level playing field and enabling participating stakeholders to identify which data assets to share for and the corresponding objectives of the exchange scheme;
Amendment 703 #
Proposal for a regulation Article 27 – paragraph 1 – point d a (new) (d a) To advise the Member States and the Commission on the possibility to set harmonised conditions allowing for re- use of data referred to in Article 3 (1) held by public sector bodies across the single market;
Amendment 704 #
Proposal for a regulation Article 27 – paragraph 1 – point d a (new) (d a) to advise and assist the Commission in developing consistent guidelines for cybersecurity requirements for the exchange and storage of data;
Amendment 705 #
Proposal for a regulation Article 27 – paragraph 1 – point d b (new) Amendment 706 #
Proposal for a regulation Article 27 – paragraph 1 – point d b (new) (d b) to advise the Commission on the improvement of funding of use cases through mechanisms such as Horizon Europe and the Digital Europe Programme, building on the knowledge gathered from the applications and use cases within its registry;
Amendment 707 #
Proposal for a regulation Article 27 – paragraph 1 – point d c (new) (d c) to advise the Commission in providing guidance to Member States on the contractual arrangements, rights and responsibilities for data sharing;
Amendment 708 #
Proposal for a regulation Article 27 – paragraph 1 – point e (e) to facilitate the cooperation between national competent authorities, the Commission and other European and international bodies under this Regulation through capacity-
Amendment 709 #
Proposal for a regulation Article 27 – paragraph 1 – point e (e) to facilitate the cooperation between national competent authorities and, where relevant, European and international bodies under this Regulation through capacity-
Amendment 710 #
Proposal for a regulation Article 27 – paragraph 1 – point e (e) to facilitate the cooperation between national competent authorities under this Regulation through capacity- building and the exchange of information, in particular by establishing methods for the efficient exchange of information relating to the notification procedure for data sharing service providers and the registration and monitoring of
Amendment 711 #
Proposal for a regulation Article 27 – paragraph 1 – point e a (new) (e a) The advise the European Commission on data protection matters and the development of consistent practices related to the processing of personal data that do not fall within the competences attributed to the European Data Innovation Board.
Amendment 712 #
Proposal for a regulation Article 27 – paragraph 1 – point e a (new) (e a) to facilitate cooperation between Member States in relation to the rules on penalties laid down by the Member States pursuant to Article 31 and to issue recommendations as regards the harmonisation of those penalties across the Union.
Amendment 713 #
Proposal for a regulation Article 27 – paragraph 1 – point e a (new) (e a) to advise the Commission in the decision of adopting implementing acts referred to in article 5 (9);
Amendment 714 #
Proposal for a regulation Article 27 – paragraph 1 – point e b (new) (e b) to assist the Commission in the discussions conducted at bilateral, plurilateral or multilateral level with third countries aimed at improving the regulatory environment for non-personal data, including standardisation, at global level;
Amendment 715 #
Proposal for a regulation Article 28 Amendment 716 #
Proposal for a regulation Article 28 – paragraph 6 (6) A delegated act adopted pursuant to Article 5 (11) shall enter into force only if no objection has been expressed either by the European Parliament or by the Council within a period of three months of notification of that act to the European Parliament and to the Council
Amendment 717 #
Proposal for a regulation Article 29 – paragraph 2 (2) Where reference is made to this paragraph, Article
Amendment 718 #
Proposal for a regulation Article 30 – paragraph 1 (1) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider or the entity entered in the register of recognised data altruism organisations, as the case may be, shall take all reasonable technical, legal and organisational measures in order to
Amendment 719 #
Proposal for a regulation Article 30 – paragraph 1 (1) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider or the entity entered in the register of
Amendment 720 #
Proposal for a regulation Article 30 – paragraph 1 (1) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider or the entity entered in the register of recognised data altruism organisations, as the case may be, shall take all reasonable technical, legal and organisational measures in order to prevent
Amendment 721 #
Proposal for a regulation Article 30 – paragraph 1 (1) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider or the entity entered in the register of recognised data altruism organisations, as the case may be, shall take all reasonable technical, legal and organisational measures in order to prevent transfer or access to non-personal sensitive data held in the Union where such transfer or access would create a conflict with Union law or the law of the relevant Member State
Amendment 722 #
Proposal for a regulation Article 30 – paragraph 2 (2) Any judgment of a court or tribunal and any decision of an administrative authority of a third country requiring a
Amendment 723 #
Proposal for a regulation Article 30 – paragraph 3 – introductory part (3)
Amendment 724 #
Proposal for a regulation Article 30 – paragraph 3 – introductory part (3) Where a public sector body, a natural or legal person to which the right to re-use data was granted under Chapter 2, a data sharing provider or entity entered in the register of
Amendment 725 #
The addressee of the decision
Amendment 726 #
Proposal for a regulation Article 30 – paragraph 3 – subparagraph 1 The addressee of the decision
Amendment 727 #
Proposal for a regulation Article 30 – paragraph 4 (4) If the conditions in paragraph 2, or 3 are met, the public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2,
Amendment 728 #
Proposal for a regulation Article 30 – paragraph 4 (4) If the conditions in paragraph 2, or 3 are met, the public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider or the entity entered in the register of
Amendment 729 #
Proposal for a regulation Article 30 – paragraph 5 (5) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing provider and the entity providing data altruism shall inform the data subject or the data holder about the existence of a request of an administrative authority in a third-country to access its data before complying to the request, except in cases where the request serves law enforcement purposes and for as long as this is necessary to preserve the effectiveness of the law enforcement activity.
Amendment 730 #
Proposal for a regulation Article 30 – paragraph 5 (5) The public sector body, the natural or legal person to which the right to re-use data was granted under Chapter 2, the data sharing services provider and the entity providing
Amendment 731 #
Proposal for a regulation Article 31 – paragraph 1 Member States shall lay down the rules on penalties applicable to infringements of this Regulation and shall take all measures necessary to ensure that they are implemented. The penalties provided for shall be effective, proportionate and dissuasive. Member States shall notify the Commission of those rules and measures by [date of application of the Regulation] and shall notify the Commission without delay of any subsequent amendment affecting them. For those who infringe the provisions on data altruism, Member States may impose financial sanctions.
Amendment 732 #
Proposal for a regulation Article 31 – paragraph 1 Member States shall lay down the rules on penalties applicable to infringements of this Regulation and shall take all measures necessary to ensure that they are implemented. The penalties provided for shall be effective, proportionate and dissuasive. The penalties system shall be based on the recommendations from the European Data Innovation Board. Member States shall notify the Commission of those rules and measures by [date of application of the Regulation] and shall notify the Commission without delay of any subsequent amendment affecting them.
Amendment 733 #
Proposal for a regulation Article 31 – paragraph 1 Amendment 734 #
Proposal for a regulation Article 32 – paragraph 1 By [
Amendment 735 #
Proposal for a regulation Article 32 – paragraph 1 By [
Amendment 736 #
Proposal for a regulation Article 32 – paragraph 1 By [
Amendment 737 #
Proposal for a regulation Article 32 – paragraph 1 By [
Amendment 738 #
Proposal for a regulation Article 34 – paragraph 1 Entities providing the data sharing services provided in Article 9(1) on the date of entry into force of this Regulation shall comply with the obligations set out in Chapter III by [date -
Amendment 739 #
Proposal for a regulation Article 35 – paragraph 2 It shall apply from [
source: 691.468
|
History
(these mark the time of scraping, not the official date of the change)
committees/2/rapporteur |
|
docs/7 |
|
docs/8 |
|
docs/9 |
|
events/1/body |
EP
|
docs/4 |
|
docs/5 |
|
docs/6 |
|
docs/0 |
|
events/0 |
|
events/0 |
|
events/1 |
|
events/1/type |
Old
?!oeil-ANPRO!?New
Committee referral announced in Parliament, 1st reading |
docs/0 |
|
docs/3 |
|
docs/4 |
|
docs/4/docs/0/url |
Old
https://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&mode=XML&language=EN&reference=PE691.139New
https://www.europarl.europa.eu/doceo/document/ITRE-PR-691139_EN.html |
events/0 |
|
events/0 |
|
events/1 |
|
docs/3/docs/0/url |
https://www.europarl.europa.eu/sides/getDoc.do?type=COMPARL&mode=XML&language=EN&reference=PE691.139
|
docs/3 |
|
committees/0 |
|
committees/0 |
|
committees/0 |
|
committees/0 |
|
committees/3 |
|
committees/3 |
|
committees/0 |
|
committees/0 |
|
committees/3 |
|
committees/3 |
|
committees/0 |
|
committees/0 |
|
committees/3/rapporteur |
|
committees/0 |
|
committees/0 |
|
committees/1/rapporteur |
|
docs/0 |
|
events/0/summary |
|
events/1 |
|
otherinst/1 |
|
procedure/dossier_of_the_committee |
|
procedure/other_consulted_institutions |
Old
European Economic and Social CommitteeNew
European Economic and Social Committee European Committee of the Regions |
procedure/stage_reached |
Old
Preparatory phase in ParliamentNew
Awaiting committee decision |
commission |
|
otherinst |
|
procedure/other_consulted_institutions |
European Economic and Social Committee
|