Proposed Regulation on the Free Flow of Non-personal Data in the EU

Data is a resource for digital business and we can expect more and more rules regulating this vital resource. In addition to the GDPR and the proposed ePrivacy regulation, the European Commission has proposed another regulation (COM(2017)495) within the regulatory framework of the European data economy.

In short, the proposed regulation concerns data that is not covered in the GDPR. In other words, it is concerned with non-personal data comprising e.g. ordinary business or industrial data, raw machine data, and such information. The proposed regulation will not impose burdens on enterprises as the GDPR does, but will instead seek to facilitate the free movement of non-personal data in the European Union.

Background of the proposal

To understand what the free flow of non-personal data is, one must remember that one of the objectives for the European Union is to remove all obstacles and barriers to trade between Member States, thus creating a single market where goods and services, workers and capital can move freely across borders.

With the digitalisation of the world, this means that also data should flow freely between Member States of the EU. This has been recognised as a key step in enabling the European Digital Single Market.

If disproportionate restrictions to the movement of data across Member States and IT systems are abolished, it has been estimated that an economic growth of 4 % will be stimulated as an effect.

The main obstacles in the way for a free flow of data in the European Union today have been identified as being:

  • unjustified data localisation restrictions by Member States’ public authorities;
  • legal uncertainty about which legislation that is applicable to cross-border data storage and processing;
  • a lack of confidence that authorities of a Member State will be able to enforce its powers on data stored in other Member States; and
  • difficulties in switching cloud service providers due to vendor lock-in practices.

The proposal and its impact

The proposal mainly imposes obligations for Member States to abolish data localisation rules that restrict the free flow of data and to establish procedures to facilitate requests for official cross-border data access requests made by authorities.

Thus, the proposal is not imposing a regulatory burden on business practitioners in general. However, for enterprises operating in the infrastructure sector of the data ecosystems (such as cloud storage providers), it is worthwhile to know that self-regulatory codes of conduct may be introduced, with the objective of avoiding vendor lock-in and ensuring that users are given clear and transparent information before a contract is entered into. This information would include aspects such as:

  • the technical requirements, timeframes and charges that apply if a professional user wants to switch to another service provider, or port data back to its own IT systems;
  • information about processes and location of any back-up data;
  • the available data formats and supports, required IT configuration, and more.

The European Commission considers that the proposed regulation, complementing the personal data protection rules, is an additional step towards a truly functional common European data space.

For further information, please contact Ida Häggström, Vencel Hodák or Niels Dahl-Nielsen.

News and Insights
Blog Posts

Responsibility of online platforms and the regressive opinion of the Advocate General

08/12/2020

This blog post was written by My Byström, lawyer at Synch A comment on the opinion of the Advocate General in joined cases Youtube (C-682/18) and Cyando (C‑683/18) In December, the CJEU is expected to deliver its judgement in the joined cases Youtube and Cyando, where questions regarding the liability of platforms for user uploaded materials have […]

Blog Posts

New standard contractual clauses for data transfers between EU and non-EU countries and how it affects your business

01/10/2021

As of September 27th, 2021, companies and organisations relying on Standard Contractual Clauses (SCCs) to transfers personal data outside the EU/EAA must use the new set of Standard Contractual Clauses (2021 SCCs) for all new contracts. Background All companies that transfer personal data outside the EU/EAA must ensure that the level of protection of natural […]

Press release

Synch has assisted 1 Bil Kredit Syd AB

30/09/2021

Synch has assisted 1 Bil Kredit Syd AB (“Fordonskrediten”) with its application to obtain a license from the Swedish Financial Supervisory Authority to commence consumer credit mediation services. Fordonskrediten is a company that is building a unique platform for mediation of credits to consumers and companies for the purchase of vehicles. The platform will reduce […]

Press release

Synch has advised Colzyx AB regarding financing from the EIC Fund

24/09/2021

Synch has advised Colzyx AB regarding a convertible loan from the European Innovation Council Fund. Colzyx has received financing from EIC Fund for its business to develop innovative wounds care and antimicrobial products. Colzyx’s invention WOUNDCOM accelerates wound healing and has defined antibacterial effects against all bacteria tested so far, including multidrug resistant bacteria, which […]

Press release

Synch has acted as legal advisor for Redstone Investment Group SA

24/08/2021

Synch has acted as legal advisor for Redstone Investment Group SA in their sale of Electric Fuel Infrastructure Sweden 2 AB (“eFuel”) to DistIT AB (publ) (“DistIT”). eFuel is one of the largest companies in Sweden within the electric car charging sector with a market share of approximately 30% of all delivered charging boxes. For […]

Press release

Synch is proud to announce that Sara Sparring is included in the list of Top 250 Women in IP

17/08/2021

Managing IP revealed this year’s 2021 edition of leading female intellectual property practitioners in private practice. Synch is proud to announce that Sara Sparring is included in the list of Top 250 Women in IP from more than 30 jurisdictions and different regions of the world. Synch is also delighted to announce that Sara Sparring […]

Press release

Synch has assisted ValidAlpha AB

16/08/2021

Synch has assisted ValidAlpha AB with its application to register its first fund ValidOne with the Swedish Financial Supervisory Authority as an alternative investment fund. ValidAlpha is an AI-driven proprietary trading company specializing in high-frequency trading on multiple global markets. The company´s mission is to generate superior risk-adjusted returns through the use of cutting edge […]