EU Data Act: New Rules Proposed on Data Access
EU Data Act: New Rules Proposed on Data ...

EU Data Act: New Rules Proposed on Data Access

This regulation looks to mold a standard for data sharing and use across the EU

clock3 Min Read

Featured Image

On February 23, 2022, the European Commission proposed a new set of rules on the use and access of data stemming from the EU. As the amount of data generated and accessed continues to grow astronomically, the EU Data Act looks to set a regulatory standard around the access of data by different parties.  

The goal is to empower consumers, businesses, and public sector bodies with data access rules.  

Maragrethe Vestager, EVP, A Europe Fit for the Digital Age, said: “We want to give consumers and companies even more control over what can be done with their data, clarifying who can access data and on what terms…” 

What are the key highlights of the EU Data Act?

This new regulation comes on the heels of the Data Governance Act launched in December 2021, as the second legislative initiative under the European Strategy for Data, which, as the European Commission states, “focuses on putting people first in developing technology and defending and promoting European values and rights in the digital world”.  

The press release from the European Commission mentions the points below as key inclusions of the Data Act. 

  • Device users (individual or enterprise) will have access to data generated by their devices, with manufacturers transparent about this information. 
  • These users can also enable third parties to access their data for value-added services (predictive maintenance, energy management, etc.), but are restricted from creating competing products or services from the data. 
  • Data controllers will be incentivized to generate and provide high-quality data to their consumers. Contract standards are also set to prevent the exploitation of businesses.  
  • In the case of a public emergency, such as a natural disaster or national security threat, public sector bodies will have easier access to the necessary private sector data.  
  • New rules will facilitate customers switching between cloud-based data processing services, easing this process, along with safeguards to prevent unlawful data transfers.  

Who does the EU Data Act affect?

 The Data Act applies to the following parties: 

  • IoT and other connected products/services manufacturers in the EU 
  • Users (Individual and Enterprise) of these products and services 
  • Data recipients in the EU 
  • Public sector bodies in the EU 
  • Providers of data processing services who offer these services in the EU 

What does this mean for businesses?

With more control over their data and more avenues to share data, businesses will now be empowered to innovate around the data-driven aspects of their products/services. 

The new standard contractual clauses in place will also allow for more balanced data-sharing contracts. 

Overall, companies that offer connected products or services will need to look at the effects that increased user access and third-party sharing will have and focus on enabling processes to facilitate these new movements of data as stipulated by the EU Data Act.  

Further resources on legislation related to the European Strategy on Data:  

Follow OneTrust on LinkedIn, Twitter, or YouTube for the latest on the EU Data Act and related legislation. 

You Might Also Be Interested In


JUN 08, 2022

The New Digital and Data Strategy in the EU and UK: DMA, DSA and the UK Online Safety Bill

MAY 18, 2022
Consent and Preferences

IAB TCF 2.0 Checklist for Publishers

JUN 01, 2022
Privacy Automation

From Data Compliance to Data Intelligence

JUN 01, 2022

7 Ways Trusted Brands Promote Their Security, Privacy, Ethics, and ESG Programs

JUN 01, 2022
Regulations

Thailand Personal Data Protection Act Takes Effect

MAY 16, 2022
Third-Party Risk

OneTrust is a Leader in Third-Party Risk Management Platforms

MAY 26, 2022
GRC

How successful security teams manage risk to build trust and drive growth

JUN 02, 2022
Privacy Automation

OneTrust and Microsoft Come Together to Automate Employee Rights Requests

BackToTop
Onetrust All Rights Reserved