The European Union has adopted a new regulation on working with data related to the potential expansion of Internet giants, primarily, of course, American, but also affecting the interests of Russian services, such as, for example, Yandex, Mail.ru, Aviasales and Ozon. If the regulation is ratified, only the European offices of companies will have access to EU data.
The project was published on the website of the European Commission, and affects the work of both American and Russian Internet companies and services. The 43-page document introduces a restriction on data transmission to countries that do not have a standard of compliance with European legal norms.
This regulation restricts access to information by large multinational corporations, offering “an alternative model to data processing methods on large technology platforms that can gain a high degree of market power due to their business models that assume control over large amounts of data,” according to a press release from the European Commission.
The current personal data protection regulation GDPR came into force on may 25, 2018, tightening the requirements for obtaining consent to the processing of information and granting data subjects additional rights. The impact of the GDPR extends to European organizations and branches of foreign companies in Europe. In 2020, the European court of justice in Luxembourg has already canceled the Privacy Shield agreement on data transfer between the European Union and the United States due to concerns about possible surveillance by the us authorities.
The draft European data management regulation provides for two types of data management – commercial and gratuitous, while the data itself, according to the procedure proposed by the EC in February 2020, is now divided into nine “trusted spaces” – from industry to health.
“You don’t have to share all the data, “said Margrethe Vestager, Executive Vice President of Europe Fit for the Digital Age. – But if you do this with confidential data, you need to make sure that it is protected and trustworthy. We intend to give businesses and citizens the tools to manage their data, and strengthen their confidence that data is processed in accordance with European fundamental rights and values.” The new approach involves using a model based on the principles of ” neutrality and transparency of data intermediaries, who are the organizers of the exchange or Association of data, to increase trust,” the document notes. “Trusted data spaces” under the new EU regulation assume that in order to maintain neutrality, the intermediary for the exchange of commercial data will be required to comply with a number of strict requirements for the security and format of data exchange. This means that they will not be able to process data on behalf of their own account – for example, by offering it to another company on a commercial basis or using it to develop their own commercial product.
In 2021, after the adoption of the law on the new data exchange regulations, new refined proposals on “data spaces” are expected to appear to improve “data exchange between companies, businesses and the state,” according to the corresponding press release.
According to developers of the document, the implementation of the new rules, only health will allow the EU to save up to 120 billion euros annually by improving individual treatment, the treatment of rare and chronic diseases, as well as more efficient and rapid response to global threats class COVID-19.
Market data in Russia, for example, at the end of 2019 in ABD was estimated at 45 billion rubles, with its growth forecast to 2024 up to 100 billion rubles.