{"id":6035,"date":"2025-01-09T12:01:05","date_gmt":"2025-01-09T10:01:05","guid":{"rendered":"https:\/\/aiternalex.com\/?p=6035"},"modified":"2025-01-09T12:01:47","modified_gmt":"2025-01-09T10:01:47","slug":"data-act-a-first-analysis-to-prepare-in-time-for-its-entry-into-force","status":"publish","type":"post","link":"https:\/\/aiternalex.com\/en\/innovation\/data-act-a-first-analysis-to-prepare-in-time-for-its-entry-into-force\/","title":{"rendered":"DATA ACT: A FIRST ANALYSIS TO PREPARE IN TIME FOR ITS ENTRY INTO FORCE"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"6035\" class=\"elementor elementor-6035 elementor-6047\">\n\t\t\t\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-4817103f elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"4817103f\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-447414cd\" data-id=\"447414cd\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-5e3c21ad elementor-widget elementor-widget-text-editor\" data-id=\"5e3c21ad\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.9.2 - 21-12-2022 *\/\n.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:#818a91;color:#fff}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap{color:#818a91;border:3px solid;background-color:transparent}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap{margin-top:8px}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap-letter{width:1em;height:1em}.elementor-widget-text-editor .elementor-drop-cap{float:left;text-align:center;line-height:1;font-size:50px}.elementor-widget-text-editor .elementor-drop-cap-letter{display:inline-block}<\/style>\t\t\t\t<p><b>The Data Act.<\/b> <b>Introduction.<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The Data Act was created to improve the European Union&#8217;s data economy and promote a competitive market by making data, especially industrial data, more accessible and usable.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The legislation aims to ensure fairness in the distribution of the value of data among the players in this economy by clarifying who can use what data and under what conditions.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The Data Act gives users of network-connected products (companies or individuals who own or lease such products) more control over the data they generate by providing incentives for those who invest in data technology. It also sets the general conditions for situations in which a company has a legal obligation to share data with another company.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In addition, the Data Act includes measures to increase fairness and competition in the European cloud market and to protect companies from unfair contractual clauses, imposed by contractually stronger parties, in relation to data sharing. It also establishes a mechanism through which, in cases of exceptional need, public bodies can request data from a company; providing clear rules on how such requests should be made. Furthermore, the Data Act introduces safeguards to prevent third country government bodies from accessing non-personal data where this would be contrary to EU or national law.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">On the issues raised by the Data Act, it is also very important to note the presence of the European Commission&#8217;s FAQs, which, although they are not regulatory documents, are an excellent interpretative tool to navigate this topic.\u00a0<\/span><\/p>\n<p><b>The Data Act.<\/b> <b>Analysis of the legislation.<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Following the general provisions (Chapter I) defining the scope of the regulation and key terms, the Data Act is structured in nine main chapters:<\/span><\/p>\n<ul>\n<li><span style=\"font-weight: 400;\"> Chapter II: Business-to-business and business-to-consumer data sharing in the context of IoT.<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter III: Enterprise-to-Enterprise Data Sharing.<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter IV: Protection against unfair contract terms.<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter V: Data sharing between businesses and public administrations<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter VI: Switching between data processing services<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter VII: Protection against unlawful access to data by third country governments<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter VIII: Interoperability in data flows<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Chapter IX: Enforcement through designated competent authorities<\/span><\/li>\n<\/ul>\n<p><b>Chapter II: Business-to-business and business-to-consumer data sharing in the context of the IoT marketplace<\/b><\/p>\n<p><span style=\"font-weight: 400;\">A key objective of the Data Act is to create equity in the data economy and enable users to derive value from the data generated using the connected products they own or lease. This provision aims to ensure that users have access to their data generated through the daily use of IoT objects.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The standard allows users of connected products (such as connected cars, medical devices and industrial machinery) and related services (e.g. apps for managing product functionality) to access data co-created through the use of the product itself. The availability of such data will have a significant impact on the economy, as it can be used to develop after-sales services or new innovative services.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Connected products include:<\/span><\/p>\n<ul>\n<li><span style=\"font-weight: 400;\"> Consumer products: connected cars, wearable devices for health monitoring.<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Other products: aircraft, industrial robots.<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Connected services may include applications that provide detailed analysis on the use of the product or assistance in managing its functionalities.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Chapter II applies to all types of data generated by the use of the related product or related service. This includes both personal data and non-personal data, such as metadata and information collected by sensors (e.g. temperature or location). However, derived or highly processed content is outside the scope of the law.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Users can access their own data generated through the connected product and decide whether to share it with third parties. The owner of the data must provide clear information about the rights to access and share their data.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">It is not permitted to use this data to develop competing products. The rule also ensures that micro-businesses are not subject to the same obligations as large companies.<\/span><\/p>\n<p><b>Chapter III: Rules on mandatory data sharing between companies<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The Data Act introduces specific rules for cases in which a company has a legal obligation to share its data with another company. This is particularly relevant in the context of the increasing digitisation and interconnection of economic activities as well as the significant rise of the IoT sector.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Chapter III applies to all types of data held by an enterprise and is designed to ensure that the terms of sharing are fair and reasonable. Data owners may request reasonable compensation for making information available.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Compensation may include costs incurred in preparing and disseminating the requested data sets. Micro-enterprises and SMEs may not be charged higher costs than those incurred in making the data sets available.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The law provides for specific measures in the event of unlawful access or misuse of the information shared with the aim of protecting the rights holders of their data sets. This includes the possibility for the rights holder to request corrective measures such as ceasing production of the unlawfully used product or financial compensation.<\/span><\/p>\n<p><b>Chapter IV: Protection against Unfair Contract Terms<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter IV of the Data Act is designed to protect all companies, in particular small and medium-sized enterprises (SMEs), from unfair contractual terms that might be imposed by stronger players in the market. This protection is key to ensuring a fair and competitive ecosystem where SMEs can operate without being subjected to undue pressure from larger companies.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The provisions of this chapter stipulate that contractual terms and conditions must be fair, clear and reasonable. It establishes specific criteria for identifying unfair terms, which may include terms that excessively restrict the rights of SMEs or impose obligations that are disproportionate to the benefits received.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In addition, the law requires that contractual terms be drafted in a comprehensible and accessible manner so that all parties involved can easily understand their rights and obligations. This approach aims to ensure that SMEs are not forced to accept disadvantageous conditions simply because they need access to certain services or data.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The law provides specific measures to deal with situations where unfair contractual terms are suspected. SMEs can challenge such clauses before the competent authorities or through dispute resolution mechanisms. In addition, the law encourages transparency in contracts by requiring larger companies to provide detailed information on contractual terms and the implications of proposed clauses.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These measures are intended to strengthen the position of SMEs in the market, enabling them to negotiate more favourable terms and compete more fairly with large players in the sector.<\/span><\/p>\n<p><b>Chapter V: Data Sharing between Business and Government<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter V of the Data Act focuses on data sharing between the private sector and public administrations. This chapter is particularly relevant in situations of emergency or exceptional need, where timely access to data can improve the response of public authorities to critical events such as health crises or natural disasters.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Public administrations will be able to access certain data sets held by the private sector in order to make informed data-driven decisions. The law stipulates that such access must take place while respecting the rights of data owners and must be justified by a clear and urgent need.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Public administrations must follow specific procedures to request access to data, thus ensuring transparency and accountability in the process. Requests must be reasoned and documented, and data subjects must be informed of the purposes for which their data are requested.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To protect the rights of data owners, the law stipulates that access requests must respect the principles of proportionality and necessity. In addition, a redress mechanism is provided for data controllers if they consider that the request is unjustified or does not comply with the applicable regulations.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These provisions aim to ensure a balance between the need of public authorities to access data for legitimate purposes and the right of citizens to privacy and protection of their personal data.<\/span><\/p>\n<p><b>Chapter VI: Transition from one data processing service to another<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter VI of the Data Act establishes minimum requirements for providers of cloud and edge computing services to facilitate users&#8217; switching from one service to another. This chapter is crucial for promoting competition in the digital services market and ensuring that users have control over their data.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Providers of the above-mentioned services must implement practices that allow users to easily transfer their data sets between different providers without incurring costly penalties or significant technical difficulties. This includes the adoption of open standards to ensure interoperability between different systems.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The law also requires providers to inform users about how the data will be transferred, including any associated costs and timeframes for completing the transfer. Users must have access to clear information on how to manage the process of migrating their data.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To ensure a smooth transition, the law provides for specific measures in case of problems during data transfer. Users are entitled to receive assistance from providers during the process and can lodge complaints if they encounter unjustified obstacles to the transfer.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These provisions are designed to reduce user lock-in with a single provider and encourage greater competition in the digital services market.<\/span><\/p>\n<p><b>Chapter VII: Illegal access to data by the government of third countries<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter VII of the Data Act aims to protect European citizens from unlawful requests by external government authorities for their non-personal data sets stored in the EU. This protection is crucial to ensure the security of European users&#8217; data and to maintain trust in the digital marketplace.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The law stipulates that any request from foreign governments must comply with EU regulations and cannot violate the fundamental rights of individuals. Competent EU bodies are responsible for overseeing access to non-personal data and must ensure that such access is justified on legitimate grounds.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In addition, the law requires IT service providers to take proactive measures to protect their data sets from unauthorised access by foreign governments. These measures may include advanced encryption and regular audits of security practices.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In the event of unlawful requests, users have the right to be informed and can challenge such requests through the competent authorities. The law also provides for severe penalties for those who attempt to illegally access non-personal data sets stored in the EU.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These provisions aim to ensure a high level of personal data protection and to maintain the integrity of the European digital market.<\/span><\/p>\n<p><b>Chapter VIII: Interoperability<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter VIII focuses on interoperability between different information systems so that there is smooth communication between different information spaces. Interoperability is essential to ensure that data can flow freely between different economic actors without technical or regulatory obstacles.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Participants in common spaces will be required to comply with specific technical standards so that information flows smoothly and efficiently between different operating systems and cloud platforms. The law lays down clear requirements regarding the technical standards needed to facilitate interoperability between different digital service providers.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Furthermore, an EU directory will be created that will define relevant standards for cloud interoperability, thus ensuring a common basis on which interoperable solutions can be built.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To ensure the effectiveness of interoperability, competent bodies will have to continuously monitor the implementation of the standards laid down in the law. Any shortcomings in interoperability will have to be addressed through appropriate corrective measures.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">These provisions are designed to promote an integrated digital ecosystem where data can be easily shared between different platforms and sectors, thus contributing to the overall economic efficiency of the EU.<\/span><\/p>\n<p><b>Chapter IX: Enforcement<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Chapter IX sets out the responsibilities of Member States in enforcing the provisions of the Data Act through designated competent authorities.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Each Member State must appoint at least one competent authority responsible for supervising enforcement; if more than one authority is designated, a \u2018data coordinator\u2019 must be appointed as the national single point of access.<\/span><\/p>\n<p><b>The Data Act.<\/b> <b>Roadmap.<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The European Data Strategy defines the roadmap for the EU to become a leader in the data economy. This will be achieved through the creation of a single European data market in which data can flow between sectors and Member States securely and reliably for the benefit of the economy and society. Within this scenario, the Data Act is a key element in achieving fairness in the allocation of the value of data between stakeholders.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This new legislation will be applicable on 12 September 2025.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">To help companies navigate these new rules, the Commission will recommend a set of model contract terms to facilitate fair, reasonable and non-discriminatory data sharing contracts (Chapters II and III of the Data Act). These terms will also provide guidance on reasonable compensation and protection of trade secrets.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The Commission will also recommend a set of non-binding standard contractual clauses for cloud computing contracts between users and cloud service providers. An expert group has also been set up to help the Commission draft such terms and clauses; these recommendations are expected to be published by autumn 2025.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Within three years of the Data Act coming into force, the Commission will conduct an assessment of the impact of the data regulation. On this basis, it may, if necessary, propose an amendment to the Act.<\/span><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>The Data Act was created to improve the European Union&#8217;s data economy and promote a competitive market by making data, especially industrial data, more accessible and usable. <\/p>\n","protected":false},"author":9,"featured_media":6063,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[44],"tags":[],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/aiternalex.com\/wp-content\/uploads\/2025\/01\/A-digital-art-representation-of-a-balance-scale-made-entirely-of-binary-code-On-one-plate-of-the-scale-there-is-a-lock-symbolizing-data-protection-.webp","_links":{"self":[{"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/posts\/6035"}],"collection":[{"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/comments?post=6035"}],"version-history":[{"count":5,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/posts\/6035\/revisions"}],"predecessor-version":[{"id":6070,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/posts\/6035\/revisions\/6070"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/media\/6063"}],"wp:attachment":[{"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/media?parent=6035"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/categories?post=6035"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aiternalex.com\/en\/wp-json\/wp\/v2\/tags?post=6035"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}