EDPS Publishes Letter Addressing Coronavirus and Monitoring Location Data
Time 2 Minute Read
Categories: European Union, Health Privacy, International

On March 25, 2020, the European Data Protection Supervisor (“EDPS”) sent a letter to the Directorate-General for Communications Networks, Content and Technology (“DG CONNECT”) addressing the various initiatives involving telecommunications providers at the Member State level to monitor the spread of the COVID-19 outbreak using location data.

In the letter, the EDPS states that the data protection rules currently in force in the EU are flexible enough to allow for the implementation of measures to fight against pandemics like the COVID-19 crisis. The EDPS stresses the importance of adopting a coordinated approach to handle this crisis and the urgent need for action at the European level.

The EDPS also outlines some factors to be taken into account when working on initiatives that will make use of location data to track the spread of the virus:

  • Data Anonymization: With respect to using anonymous data to track individuals’ location data, the EDPS reminds those monitoring the spread of COVID-19 that effective anonymization requires more than simply removing personal identifiers (such as phone numbers).
  • Data Security and Data Access: According to the EDPS, even to the extent the data obtained would be anonymous and therefore fall outside the scope of the EU General Data Protection Regulation, certain security and confidentiality requirements still apply. In addition, to the extent third parties are relied on to process the information, those security and confidentiality requirements would also apply to them.
  • Data Retention: The EDPS urges that the data obtained from telecommunication providers would be deleted as soon as the COVID-19 crisis ends and further stresses that these measures should only be extraordinary and temporary.
  • Transparency: The EDPS emphasizes the importance of clearly defining the types of data the EU Commission wants to obtain and providing appropriate information to the public to ensure transparency, in particular, the purposes and procedure of the measures to be implemented.
Tags: Coronavirus/COVID-19, Data Protection Authority, EU Member States, European Data Protection Supervisor, GDPR, Personal Data, Personal Health Information
Print Email Twitter/X Linkedin Facebook

You May Also Be Interested In

Time 3 Minute Read
Connecticut AG Clarifies AI Compliance Obligations Under CTDPA

The Connecticut Attorney General recently issued a legal memorandum regarding the application of existing Connecticut laws, such as the Connecticut Data Privacy Act, to the use of artificial intelligence.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 4 Minute Read
HHS Final Rule on 42 CFR Part 2 Requires Targeted Updates to HIPAA Privacy Notices

Recent changes to 42 CFR Part 2 mean many covered entities must update their HIPAA Notices of Privacy Practices by February 16, 2026.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 2 Minute Read
Data Protection Authorities Globally Highlight Privacy Issues in AI Image Generation

On February 23, 2026, a Joint Statement on AI-Generated Imagery was published by 61 data protection authorities. The Joint Statement addresses concerns regarding AI systems capable of generating realistic images and videos depicting identifiable individuals without their knowledge or consent.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 6 Minute Read
NetChoice Files Suit Challenging South Carolina Age-Appropriate Code Design

On February 9, 2026, trade association NetChoice filed a lawsuit challenging South Carolina’s newly passed Age-Appropriate Code Design (“SC AACD”) on First and Fourteenth Amendment grounds. The SC AACD was signed into law on February 5, 2026, making South Carolina the fifth U.S. state to enact such a law, following California, Maryland, Nebraska and Vermont.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook

Search

Subscribe Arrow

Recent Posts

Categories

Tags

Archives

Jump to Page