European Union regulation | |
Text with EEA relevance | |
Title | Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) |
---|---|
Made by | European Parliament and Council of the European Union |
Made under | Article 114 of the TFEU |
Journal reference | L, 2023/2854, 22.12.2023 |
History | |
Date made | 13 December 2023 |
Preparative texts | |
Commission proposal | COM/2022/68 final - 2022/0047/COD |
Current legislation |
The Data Act is a European Union regulation which aims to facilitate and promote the exchange and use of data within the European Economic Area. [1]
The act was published in the Official Journal of the European Union on 22 December 2023. [2]
The European Commission was expected to formally present the act in the fourth quarter of 2021. [3] [4] Notwithstanding, the proposal was formally issued on 23 February 2022. [5]
European (harmonised) standards may be drafted by the European Standardization Organizations (ESOs) following standardisation requests from the European Commission in order to support the application of the requirement that 'products shall be designed and manufactured, and related services shall be provided, in such a manner that data generated by their use are, by default, easily, securely and, where relevant and appropriate, directly accessible to the user'. In addition, European standards and technical specifications in the meaning of Article II of Regulation (EU) 1025/2012 on European Standardisation may also support the issuing of "standard" contracts or transparency on how data will be used. [6]
A draft of the proposed act had earlier been leaked on 2 February 2022, [7] and was swiftly opposed by industry. [8]
If implemented in its proposed form the Act would impact on data rights current under Directive 96/9/EC of the European Parliament and of the Council of 11 March 1996 on the legal protection of databases (the Database Directive). [5] : Chapter X
On 27 June 2023, the Council and the European Parliament reached a provisional agreement on the final version. This was adopted by the Council on 27 November 2023 and published in the Official Journal of the European Union on 22 December 2023. [9]
Eur-Lex is the official online database of European Union law and other public documents of the European Union (EU), published in 24 official languages of the EU. The Official Journal (OJ) of the European Union is also published on EUR-Lex. Users can access EUR-Lex free of charge and also register for a free account, which offers extra features.
Summer time in Europe is the variation of standard clock time that is applied in most European countries in the period between spring and autumn, during which clocks are advanced by one hour from the time observed in the rest of the year, with a view to making the most efficient use of seasonal daylight. It corresponds to the notion and practice of daylight saving time (DST) to be found in some other parts of the world.
The European Union Agency for Cybersecurity – self-designation ENISA from the abbreviation of its original name – is an agency of the European Union. It is fully operational since September 1, 2005. The Agency is located in Athens, Greece and has offices in Brussels, Belgium and Heraklion, Greece.
A cybersecurity regulation comprises directives that safeguard information technology and computer systems with the purpose of forcing companies and organizations to protect their systems and information from cyberattacks like viruses, worms, Trojan horses, phishing, denial of service (DOS) attacks, unauthorized access and control system attacks. While cybersecurity regulations aim to minimize cyber risks and enhance protection, the uncertainty arising from frequent changes or new regulations can significantly impact organizational response strategies.
The Roaming Regulation 2022 bans roaming charges (Eurotariff) within the European Economic Area (EEA), which consists of the member states of the European Union, Iceland, Liechtenstein and Norway. This regulates both the charges mobile network operator can impose on its subscribers for using telephone and data services outside of the network's member state, and the wholesale rates networks can charge each other to allow their subscribers access to each other's networks. The 2012 Regulation was recast in 2022.
The Water Framework Directive (WFD)2000/60/EC is an EU directive to establish a framework for the protection of all water bodies (including marine waters up to one nautical mile from shore) by 2015. The WFD establishes a programme and timetable for Member States to set up River Basin Management Plans by 2009.
The General Data Protection Regulation is a European Union regulation on information privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of EU privacy law and human rights law, in particular Article 8(1) of the Charter of Fundamental Rights of the European Union. It also governs the transfer of personal data outside the EU and EEA. The GDPR's goals are to enhance individuals' control and rights over their personal information and to simplify the regulations for international business. It supersedes the Data Protection Directive 95/46/EC and, among other things, simplifies the terminology.
European company law is the part of European Union law which concerns the formation, operation and insolvency of companies in the European Union. The EU creates minimum standards for companies throughout the EU, and has its own corporate forms. All member states continue to operate separate companies acts, which are amended from time to time to comply with EU Directives and Regulations. There is, however, also the option of businesses to incorporate as a Societas Europaea (SE), which allows a company to operate across all member states.
eIDAS is an EU regulation with the stated purpose of governing "electronic identification and trust services for electronic transactions". It passed in 2014 and its provisions came into effect between 2016 and 2018.
The ePrivacy Regulation (ePR) is a proposal for the regulation of various privacy-related topics, mostly in relation to electronic communications within the European Union. Its full name is "Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC ." It would repeal the Privacy and Electronic Communications Directive 2002 and would be lex specialis to the General Data Protection Regulation. It would particularise and complement the latter in respect of privacy-related topics. Key fields of the proposed regulation are the confidentiality of communications, privacy controls through electronic consent and browsers, and cookies.
Projects of Common Interest (PCIs) is a category of projects launched in 2013, which the European Commission has identified as a key priority to interconnect the energy infrastructure in the European Union. These projects are eligible to receive public funds. The PCI list is reviewed every two years. Since 2014, it is synoymously used with the term "Important Project of Common European Interest" (IPCEI) and includes innovation in microelectronics and communication technologies.
The migration and asylum policy of the European Union is within the area of freedom, security and justice, established to develop and harmonise principles and measures used by member countries of the European Union to regulate migration processes and to manage issues concerning asylum and refugee status in the European Union.
The Directive on the accessibility of websites and mobile applications also known as Directive (EU) 2016/2102 was adopted by the European Union (EU) in 2016. This Directive applies to public sector organizations of member states of the European Union. The goal was to ensure that all public sector organizations were accessible for the 80 million people with disabilities in the EU.
The Digital Services Act Regulation 2022 (EU) 2022/2065 ("DSA") is a regulation in EU law to update the Electronic Commerce Directive 2000 regarding illegal content, transparent advertising, and disinformation. It was submitted along with the Digital Markets Act (DMA) by the European Commission to the European Parliament and the Council on 15 December 2020. The DSA was prepared by the Executive Vice President of the European Commission for A Europe Fit for the Digital Age Margrethe Vestager and by the European Commissioner for Internal Market Thierry Breton, as members of the Von der Leyen Commission.
The Data Governance Act (DGA) is a regulation by the European Union that aims to create a framework which will facilitate data-sharing. The proposal was first announced within the 2020 European strategy for data and was officially presented by Margrethe Vestager in 25 November 2020. The DGA covers the data of public bodies, private companies, and citizens. Its main aims are to safely enable the sharing of sensitive data held by public bodies, to regulate data sharing by private actors. On 30 November 2021, the EU Parliament and Council reached an agreement on the wording of the DGA. The formal approval by those bodies was competed by the 30.05.2022.
The Artificial Intelligence Act is a European Union regulation concerning artificial intelligence (AI). It establishes a common regulatory and legal framework for AI within the European Union (EU). It comes into force on 1 August 2024, with provisions coming into operation gradually over the following 6 to 36 months.
The European Chips Act (ECA), also known as simply the Chips Act, is a legislative package to encourage semiconductor production in the European Union.