Article 3 of ePrivacy Regulation: Territorial Scope and Representative (Proposed Text)
The proposed text for ePrivacy Regulation Article 3 from the 4th of May, 2018 is below, covering the territorial scope and representative. This will likely change in the next month or two as they are meeting to discuss the changes to the current ePrivacy Directive. We will update accordingly. Negotiations continue about the precise text and the current version gives one year from the date of entry into force for implementation. We will post the full text when it is available.
Article 3: Territorial scope and representative
1. This Regulation applies to:
(a) the provision of electronic communications services to end-users who are in the Union
(aa) the processing of electronic communications content and of electronic communications metadata of end-users who are in the Union;
(c) the protection of terminal equipment information of end-users who are in the Union.
(ca) the placing on the Union market of software permitting electronic communications, including the retrieval and presentation of information on the internet;
(cb) the offering of publicly available directories of end-users of electronic communications services who are in the Union;
(cc) the sending of direct marketing communications to end-users who are in the Union.
2. Where the provider of an electronic communications service, the provider of a publicly available directory or the provider of software enabling electronic communications or a person using electronic communications services to send direct marketing communications or makes use of processing and storage capabilities or collects information processed by or emitted by or stored in the end-users’ terminal equipment is not established in the Union it shall designate in writing a representative in the Union.
2a. The requirements laid down in paragraph 2 shall not apply if activities listed in paragraph 1 are occasional and are unlikely to result in a risk to the fundamental rights of end-users taking into account the nature, context, scope and purpose of those activities.
3. The representative shall be established in one of the Member States where the end-users of such electronic communications services are located.
4. The representative shall be mandated by the provider or person it represents to be addressed in addition to or instead of the provider it represents, in particular, to supervisory authorities, and end-users, on all issues related to processing electronic communications data for the purposes of ensuring compliance with this Regulation.
5. The designation of a representative pursuant to paragraph 2 shall be without prejudice to legal actions, which could be initiated against the provider or person it represents.
Previous (Article 2) | Index | Next (Article 4)
Improve Data Privacy for GDPR or CCPA with Clarip
The Clarip team and enterprise privacy management software are ready to meet your compliance automation challenges. Click here to contact us (return messages within 24 hours) or call 1-888-252-5653 to schedule a demo or speak to a member of the Clarip team.
If compliance with the California Consumer Privacy Act is your focus until 2020, ask us about our CCPA software. Handle automation of data subject access requests with our DSAR Portal, or provide the right to opt out of the sale of personal information with the consent management software.
Need to improve your GDPR compliance solution? Clarip offers modular GDPR software that can fill in gaps in your privacy program. Choose from the data mapping software for an automated solution to understanding your data collection and sharing, conduct privacy risk assessments with DPIA software, or choose the cookie consent manager for ePrivacy.
Click here to contact us (return messages within 24 hours) or call 1-888-252-5653 to schedule a demo and speak to a member of the Clarip team.