Other available languages: FR
Brussels, Monday 9 November 2009
ePrivacy Directive close to enactment: improvements on security breach, cookies and enforcement, and more to come
Following last week's agreement on the EU telecoms reform, nothing stands in the way for the ePrivacy Directive to enter into force. The formalities required for formal adoption will be undertaken in the coming weeks. The revised ePrivacy Directive (*) , as amended by the European Parliament and adopted by the Council must be implemented by the Member States within 18 months.
The new provisions will bring vital improvements in the protection of the privacy and personal data of all Europeans active in the online environment. The improvements relate to security breaches, spyware, cookies, spam, and enforcement of rules. The EDPS cooperated closely with the European Parliament, the Council and the European Commission on the legislative work leading to the final text (**) .
Peter Hustinx, EDPS, says: "I welcome the many improvements in the protection of privacy in the revised ePrivacy Directive. But it is now crucially important to broaden the scope of the security breach provisions to all sectors and further define the procedures for notification. Also, the new rules must be effectively enforced. I note in particular the emphasis on more effective enforcement of the rules on spyware and cookies. This has special relevance where privacy rights must be protected in relation to so called targeted advertising."
The changes introduced include:
(*) Directive 2002/58/EC of the European Parliament and of the Council concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications)
EDPS - The European guardian of personal data protection