Connected vehicles: first step towards an international agreement
The International Working Group on Data Protection in Telecommunications (IWGDPT or so-called Berlin Group), has adopted a Working Paper on Connected Vehicles.
As vehicles become increasingly connected to the Internet and to other vehicles, more and more personal data will be collected and processed by the vehicles. Relevant types of data collected by the vehicle’s sensors may concern driver behaviour or information about other people inside or outside the vehicle. This data may be processed by the vehicle’s IT systems, or when other personal devices connect to it. The advent of autonomous vehicles will raise additional privacy issues, as their functioning will require the collection and use of significant amounts of data.
The Working Paper on Connected Vehicles analyses the different types of data that can be collected, generated, transmitted, processed or retained by connected vehicles and identifies the privacy risks involved in these processes. The paper provides recommendations for manufacturers, third party service providers, standardization bodies, public authorities and rule makers as well as for drivers of connected vehicles on how to effectively avert these risks.
Following the publication of CNIL’s compliance package, this work draws the attention of the stakeholders in the automobile sector to the fundamental principles of data protection and privacy, a necessary step to condition user confidence. With the resolution adopted by the International Conference of Data Protection and Privacy Commissioners (ICDPPC) last year, this paper is also a first step towards an international agreement on the questions raised by connected vehicles before the adoption of guidelines by the European Data Protection Board (EDPB).