EU データガバナンス法案

こんにちは、丸山満彦です。

2020.02.19に欧州データ戦略が公表されましたが、それを具体的に実行していくための施策の第一弾のようです。。。

● 2020.11.25 Proposal for a Regulation on European data governance (Data Governance Act)

データ仲介者への信頼を高め、EU全体でデータ共有メカニズムを強化することにより、使用するデータの可用性を促進することを目的としているとなっていますね。。。

・・[PDF] Data Governance Act

 

この制度の目的に関して・・・

原文	仮訳
The instrument aims to foster the availability of data for use by increasing trust in data intermediaries and by strengthening data-sharing mechanisms across the EU. The instrument would address the following situations:	この制度は、データ仲介者への信頼を高め、EU全体のデータ共有メカニズムを強化することで、利用可能なデータを促進することを目的としている。この制度は、以下のような状況に対応する。
- Making public sector data available for re-use, in situations where such data is subject to rights of others.	- 公共部門のデータを再利用可能な状態にすること、そのようなデータが他者の権利の対象となっている場合。
- Sharing of data among businesses, against remuneration in any form.	- 企業間でのデータの共有を、いかなる形式の報酬にも反して行うこと。
- Allowing personal data to be used with the help of a ‘personal data-sharing intermediary’, designed to help individuals exercise their rights under the General Data Protection Regulation (GDPR).	- 一般データ保護規則（GDPR）に基づく個人の権利行使を支援するための「個人データ共有仲介者」の助けを借りて、個人データを使用することを認める。
- Allowing data use on altruistic grounds.	- 利他的な理由でのデータ利用を認めること。

 

 

 

■ 参考

● まるちゃんの情報セキュリティ気まぐれ日記

・2020.02.20 EUのデジタル戦略！ データと人工知能の戦略を提示

[2020.11.30 追記始まり]

夏井先生が欧州データ戦略の翻訳をしていますね。。。

● Cyberlaw（夏井先生のブログ）

・2020.11.30 法と情報雑誌5巻2号（通巻40号）をWeb公開

・・法と情報雑誌5巻2号（通巻40号） - 委員会通知COM(2020) 66 final 欧州データ戦略[参考訳]

[2020.11.30 追記終わり]


　

---

 

構成については、、

第一章は、定義

第二章は、公共部門データの再利用するためのメカニズム

第三章は、データ共有プロバイダーに対する通知制度

第四章は、個人または企業が公共の利益のために自発的に利用できるようにしたデータを促進（データ利他主義）

第五章は、データ共有サービス提供者及びデータ利他主義事業者の通知の枠組みを監視し、実施するための所轄官庁の機能に関する要件

第六章は、正式な専門家グループ（欧州データ・イノベーション委員会）の設置

第七章は、欧州データ利他主義の同意書

第八章は、データ共有プロバイダーのための一般認可制度

---

Chapter I defines the subject matter of the regulation and sets out the definitions used throughout the instrument.

Chapter II creates a mechanism for re-using certain categories of protected public sector data which is conditional on the respect of the rights of others (notably on grounds of protection of personal data, but also protection of intellectual property rights and commercial confidentiality).This mechanism is without prejudice to sector-specific EU legislation on access to and the re-use of this data. The re-use of such data falls outside the scope of Directive (EU) 2019/1024 (Open Data Directive). Provisions under this Chapter do not create the right to re-use such data, but provide for a set of harmonized basic conditions under which the re-use of such data may be allowed (e.g. the requirement of non-exclusivity). Public sector bodies allowing this type of re-use would need to be technically equipped to ensure that data protection, privacy and confidentiality are fully preserved. Member States will have to set up a single contact point supporting researchers and innovative business in identifying suitable data, and are required to put structures in place to support public sector bodies with technical means and legal assistance.

Chapter III aims to increase trust in sharing personal and non-personal data and lower transaction costs linked to B2B and C2B data sharing by creating a notification regime for data sharing providers. These providers will have to comply with a number of requirements, in particular the requirement to remain neutral as regards the data exchanged. They cannot use such data for other purposes. In the case of providers of data sharing services offering services for natural persons, the additional criterion of assuming fiduciary duties towards the individuals using them will also have to be met.

The approach is designed to ensure that data sharing services function in an open and collaborative manner, while empowering natural and legal persons by giving them a better overview of and control over their data. A competent authority designated by the Member States will be responsible for monitoring compliance with the requirements attached to the provision of such services.

Chapter IV facilitates data altruism (data voluntarily made available by individuals or companies for the common good). It establishes the possibility for organisations engaging in data altruism to register as a ‘Data Altruism Organisation recognised in the EU’ in order to increase trust in their operations. In addition, a common European data altruism consent form will be developed to lower the costs of collecting consent and to facilitate portability of the data (where the data to be made available is not held by the individual).

Chapter V sets out the requirements for the functioning of the competent authorities designated to monitor and implement the notification framework for data-sharing service providers and entities engaged in data altruism. It also contains provisions on the right to lodge complaints against the decisions of such bodies and on the means of judicial redress.

Chapter VI creates a formal expert group (the ‘European Data Innovation Board’) which will facilitate the emergence of best practices by Member States’ authorities in particular on processing requests for the re-use of data which is subject to the rights of others (under Chapter II), on ensuring a consistent practice regarding the notification framework for data sharing service providers (under Chapter III), and for data altruism (Chapter IV). In addition, the formal expert group will support and advise the Commission on the governance of cross-sectoral standardisation and the preparation of strategic cross-sector standardisation requests. This chapter establishes also the composition of the Board and organises its functioning.

Chapter VII allows the Commission to adopt implementing acts concerning the European data altruism consent form.

Chapter VIII contains transitional provisions for the functioning of general authorisation scheme for data sharing providers and provides for final provisions.

---