coronavirus
#COVID-19 tracing apps: Ensuring privacy and data protection
Dedicated mobile apps could play a key role in the fight against COVID-19, especially as part of national strategies to lift confinement measures and enable safe travel. The EU has been working with member states to develop effective solutions. As apps could expose sensitive user data, Parliament has underlined the need to ensure they are designed carefully.
The European Commission has recommended a common EU approach towards contact-tracing apps, designed to warn people if they have been in contact with an infected person.
In a resolution adopted on 17 April and during a plenary debate on 14 May, Parliament stressed that any digital measures against the pandemic must be in full compliance with data protection and privacy legislation. It said the use of apps should not be obligatory and that they should include sunset clauses so that they are no longer used once the pandemic is over.
MEPs stressed the need for anonymized data and said that to limit the potential risk of abuse, the generated data should not be stored in centralized databases.
In addition, MEPs said It should be made clear how the apps are expected to help minimize infection, how they are working and what commercial interests the developers have.
Check out the timeline of EU action against COVID-19.
Tracing and tracking apps in the EU
The EU and many member states have been putting forward various digital tracking measures aimed at mapping, monitoring and mitigating the pandemic.
The Commission has recognized contact tracing apps, based on short-range technologies such as Bluetooth rather than geolocation, as the most promising from a public health perspective.
Such apps could alert people who have been in proximity to an infected person for a certain time, including those one may not notice or remember, without tracking the user’s location.
Combined with other methods such as questionnaires, these apps could enable more accuracy and help limit the further spread of the disease, while the risk to privacy is limited.
They are preferred over geolocation based tracking apps that collect real-time data on the precise location and movements of people, together with information about their health, which pose a higher risk to privacy and raise questions on proportionality.
COVID-19 related apps could also provide accurate information to individuals on the pandemic, provide questionnaires for self-assessment and guidance, or provide a communication forum between patients and doctors, while the use of anonymised and aggregated data, collected by telecommunications operators and other digital technology companies, can help identify risk areas and plan public health resources.
The use of apps and data might prove effective, but could also expose sensitive user data, such as health and location.
The guidelines and toolbox for developing any COVID-19 related apps, prepared by the Commission in cooperation with member states, European Data Protection Supervisor, and European Data Protection Board aim at guaranteeing sufficient protection of data and limiting intrusiveness.
Guidance on data protection is an essential part of the Commission guidelines, stressing that the apps must fully comply with EU data protection rules, most notably the General Data Protection Regulation (GDPR) and the ePrivacy Directive.
On 13 May, the Commission listed the use of contact-tracing apps among the guidelines for resuming travel in Europe and noted they have to be interoperable so that people can use them to be alerted wherever in Europe they are.
In June, when EU countries began relaxing travel restrictions, they agreed to ensure the safe exchange of information between national contact tracing apps to ensure travelers can use their country’s app wherever they are in the EU. This builds on the interoperability guidelines agreed in May, which aim to allow national apps to work seamlessly with each other, while fully complying with privacy and data protection standards.
The Parliament will keep monitoring
Juan Fernando López Aguilar, chairman of Parliament’s civil liberties committee, noted the important role apps could play in mitigating the crisis and welcomed the introduction of the toolbox, but stressed that fundamental rights and data protection must be maintained.
“We´ll keep a close eye that EU law principles and rules are respected throughout the fight against Covid-19. That includes apps and technologies to control the spread patterns of the pandemics.”
Read 10 things the EU is doing to fight COVID-19 and reduce its impact.
-
National health authorities should approve apps and be accountable for compliance with EU personal data protection rules
-
Users remain in full control of personal data. App installation should be voluntary and they should be discontinued as soon as no longer needed
-
Limites use of personal data: only data relevant to the purpose in question, and should not include location tracking
-
Strict limits on data storage: personal data should be kept for no longer than necessary.
-
Security of data: data should be stored on an individual's device and encrypted.
-
Interoperability: apps should be usable in other EU countries as well
-
National data protection authorities should be fully consulted and involved
Share this article:
EU Reporter publishes articles from a variety of outside sources which express a wide range of viewpoints. The positions taken in these articles are not necessarily those of EU Reporter. Please see EU Reporter’s full Terms and Conditions of publication for more information EU Reporter embraces artificial intelligence as a tool to enhance journalistic quality, efficiency, and accessibility, while maintaining strict human editorial oversight, ethical standards, and transparency in all AI-assisted content. Please see EU Reporter’s full A.I. Policy for more information.
Why China and Russia did not come to the aid of Iran? Yes, they did!
Why right-wing populism remains popular 10 years post-Brexit
Lebanon, Hezbollah and the price of caution
Going down a treat...that's top chef Dev Biswal
Improving energy efficiency of buildings to reduce bills and save energy
Europe's broken promise, 300 million times over
DG Translation in a city near you: June events
Energy use in the industry sector continues to decline
High-Speed Drama Shatters Monaco’s Tranquil Façade
Mobile liver testing rolls into Brussels
Commission accelerates transition away from animal testing in chemical safety assessments
Commission proposes new authorization for mobile satellite services for EU's resilience and competitiveness
Defending values, driving reform, delivering impact: New measures to strengthen EU humanitarian action
Europe must not turn its back on rural women’s empowerment
Republic of Moldova joins European Patent Organization as 40th member state
Stepping out...to get the UK back in European Union
Kazakhstan reforms under scrutiny at Brussels Press Club round table
Japan should face up to history and contribute more to regional peace
Ambassador calls for 'speeding up' of co-operation between EU and Kazakhstan
Timur Turlov at Smart Moves Summit 2025: How chess can transform global education
Shevtsova’s case: Out-of-court sanctions dismantling trust in Ukrainian cause
The future of European transport
Trump Vs Trueman
