On 10 January 2017, the EU Commission published a Communication on "Building a European Data Economy" where it notably suggests that Europe is not tapping into the potential of data for business, research and innovation purposes. Along with such Communication, the Commission published a Staff Working Document that provides additional evidence and a detailed description of the emerging issues relevant for the EU data economy, as well as a public consultation. The consultation period will run until 26 April 2017 and has the objective of collecting information on four main topics:
The EU Commission already had the opportunity on multiple occasions of voicing the most important legal issues in a data environment. It did so in its data-driven economy Communication of July 2014, but also more recently in the context of its 2016 free flow of data initiative where it highlighted that "barriers to the free flow of data are caused by the legal uncertainty surrounding the emerging issues on 'data ownership' or control, (re)usability and access to/transfer of data and liability arising from the use of data".
In this context, Bird & Bird examined some specific legal issues in a data environment as part of its work performed in the EU-funded research and innovation big data project: TOREADOR. In particular, the research has been performed in a commercial context, relying on the concrete circumstances of the TOREADOR big data analytics project and its four use-cases. The results of our research are not only aimed at the partners of the aforementioned project, but also strive to provide additional evidence to policymakers on the emerging issues of data ownership. For the latter purpose, the results of our research are presented in a White Paper.
The White Paper provides an overview of the EU acquis in relation to data management and in particular on access to, ownership, exploitation or exchange of data. To this end, we provide a diagram with a snapshot of the current EU framework. Such mapping demonstrates the various categories of EU legislation related to data and potentially playing a role with respect to the possible "ownership" of data, but also with respect to the restrictions and requirements that may apply in relation to certain types of behaviours or certain types of data.
More specifically, our in-depth analysis has allowed concluding the following:
On the basis of the abovementioned findings, it is established that the existing legal framework in the EU is not optimal and does not sufficiently facilitate operations on or including data. In the same vein, it is concluded that the cumulative implementation of the current maze of different possibly applicable legislations is a significant hurdle to the uptake of data analytics in the EU and is creating legal uncertainty in this fast-growing market. It results from this situation that those involved in the data value cycle may currently hold back on data sharing initiatives and presently have no choice but to rely on contractual arrangements to manage their rights in data.
While relying on contracts may seem to provide greater flexibility to the contracting parties, it was found that it nevertheless comes with various difficulties. In particular, the lack of harmonisation of contract law in the EU, but also the limits of contractual arrangements towards third parties and the issues related to the validity of data-related agreements create a high legal uncertainty that affects the entire data value chain and all data flows. It is therefore concluded that such situation is not sustainable in a data-driven economy and with the fast-increasing development and adoption of data mining and analysis tools.
Against a background where the EU strives towards a data-driven environment in which both citizens and companies can reap the benefits of novel data technologies, but also against a background where the current legal framework does not sufficiently tackle all the issues related to data and where actors involved in the data value chain have no certainty as to the ownership of the data they have gathered, created, analysed, enriched or otherwise processed, we conclude that a more solid and legally secure solution is needed.
In such context, the last Chapter of the White Paper suggests the creation of a non-exclusive, flexible and extensible ownership right in data(sets), with a data traceability obligation as a safeguard. Such Chapter discusses the specificities of said right and obligation, their interaction with the other existing rights in data, their incidence on civil law, and their possible reflection in contractual arrangements.