Back in December, U.S. Department of Commerce General Counsel Cameron Kerry gave a speech in which he said that his agency would be "watching closely" how the European Commission approached data privacy protection in its then-unreleased data protection regulations. At the time, neither the European Commission nor the Department of Commerce had released their data privacy protection proposals.
The European Commission's proposal for a data protection regulation is out now. Commerce's proposal is expected to be released any day.
There seems little doubt that, when the two documents are laid side-by-side, they will reveal a difference in approach to privacy as wide as the Atlantic itself.
In his speech, Kerry promised that his agency's forthcoming "white paper" proposal would call for a "comprehensive Bill of Rights as a baseline for consumer data privacy." Because data privacy protection is a significant financial burden on business, particularly on the dynamic (and notoriously insecure) internet, the privacy rights that Commerce eventually proposes will necessarily be tempered by the needs of businesses to maximize the return on their activities and to eliminate barriers to future innovation. A true privacy right emanating from the Department of Commerce would be an odd duck indeed. Perhaps the thought here is that online businesses should be given same sort of friendly regulation that domestic agriculture receives from the Department of Agriculture.
Over on the other side of the Atlantic, the European Commission's privacy proposal describes the following as fundamental human rights:
The EC also proposed additional rights for individuals in cases of sensitive data, data-mining, and profiling. All of the rights proposed by the EC would be enforced by data protection authorities in each EU member state, who have authority to impose rather large fines, and by private lawsuits in local courts.
The green paper reflects the reality that there is very little sentiment among federal government officials to write into law strong data privacy rules along the lines of those proposed by the European Commission. The United States and Europe are fundamentally at odds over the nature of privacy rights. We don't agree with Europe on the nature of privacy or on how privacy rights/interests/expectations should be enforced. This state of affairs is not going to change soon, unless a movement in favor of individual privacy rights materializes soon. Though something along the lines of the recent SOPA/PIPA uprising might do it.
By Thomas O'Toole
Follow this blogger on Twitter at @bnatechlaw.
All Bloomberg BNA treatises are available on standing order, which ensures you will always receive the most current edition of the book or supplement of the title you have ordered from Bloomberg BNA’s book division. As soon as a new supplement or edition is published (usually annually) for a title you’ve previously purchased and requested to be placed on standing order, we’ll ship it to you to review for 30 days without any obligation. During this period, you can either (a) honor the invoice and receive a 5% discount (in addition to any other discounts you may qualify for) off the then-current price of the update, plus shipping and handling or (b) return the book(s), in which case, your invoice will be cancelled upon receipt of the book(s). Call us for a prepaid UPS label for your return. It’s as simple and easy as that. Most importantly, standing orders mean you will never have to worry about the timeliness of the information you’re relying on. And, you may discontinue standing orders at any time by contacting us at 1.800.960.1220 or by sending an email to email@example.com.
Put me on standing order at a 5% discount off list price of all future updates, in addition to any other discounts I may quality for. (Returnable within 30 days.)
Notify me when updates are available (No standing order will be created).