Digital Euro: acting for a privacy-friendly model
The European Data Protection Board calls on the European Central Bank to design the future digital euro with features and safeguards similar to cash, the most privacy-friendly means of payment.
The digital euro: what is at stake for the freedoms of citizens
The European Central Bank (ECB) has launched in the summer of 2021 an investigation phase to develop a digital form of the euro. For this institution, one of the objectives is to maintain a link between citizens and fiat money in a context of declining cash payments, particularly accelerated in some countries. However, the ECB sees the digital euro as a complement to cash, not as a substitute.
The year 2023 will be key for the digital euro project. The objective is to have a legislative proposal from the European Commission by this summer, following the ECB’s investigation phase. This leaves six months to design a digital euro that respects privacy from the outset.
The risks for privacy
In the ECB's preparatory public consultation, respondents considered transaction confidentiality to be the most important parameter in the design of the digital euro (43%).
The CNIL took an early interest in this subject, relaying the preferences of citizen-consumers and warning of the potential risks of this project. The European Data Protection Board (EDPB) also took a position, in the summer of 2021, that the digital euro should include a principle of privacy and data protection by default and by design. It also argued that the digital euro should be designed as closely as possible to the physical euro (cash).
In addition, the European data protection authorities consider that respecting the privacy of transactions is one of the key conditions for the success of the future digital euro. In order for this new means of payment to find its audience in an already highly efficient and competitive European payment ecosystem, it will have to demonstrate additional value added in terms of privacy and data protection.
79% of the French remain attached to cash.
84% of the French believe that their privacy would be more controlled if cash were to disappear.
Key points for a privacy-friendly digital euro by design
As part of the investigation phase, the European Central Bank deliberated in September 2022 on initial choices for the architecture of the digital euro with respect to the privacy of transactions. In doing so, the ECB essentially based itself on a review of the existing technologies and the European payment law in force and selected an approach that would lead to transactions taking place online, being listed on an account, being fully traceable and validated by an intermediary.
60 % of eurozone citizens consider it important to have the choice to pay in cash.
40% think that cash better protects their anonymity.
The characteristics of the model thus envisaged do not correspond to the first recommendations made by the data protection authorities.
In response, the EDPB issued a statement last October inviting the ECB to review its approach on three main points:
- The possibility of using the digital euro via an offline electronic wallet, without Internet connection, in order to offer peer-to-peer payments in particular, must be proposed as a priority when the digital euro is created and not as a second step;
- In order to avoid generalized tracing of transactions, a privacvy threshold shall be provided for both offline and online use. Below this threshold, transaction data would remain on the user's terminal and would not be subject to any tracing by the Eurosystem or intermediaries;
- In order to provide a good balance between privacy and data protection on one hand and the fight against money laundering and terrorist financing (AML/CFT) on the other, a specific legal regime for the digital euro shall be introduced in European law.
In addition to the risk of generalized tracing already mentioned, the project also includes a cap on the number of digital euros held per European. This point raises risks of over-identification of individuals and could lead to constant verification of balances held.
Understand the challenges of payment data and means of payment
In its recent white paper on payment data and means of payment, the CNIL shed light on the main economic, legal and societal issues surrounding payment data. Among its key messages, it insists on the need to preserve some anonymity of payments and the free use of cash.
A democratic vigilance to voice in the public debate
A digital euro that does not respect the principles of necessity and proportionality of data collection and processing would not comply with either the GDPR or Articles 7 and 8 of the European Charter of Fundamental Rights (which concern respect for private and family life and the protection of personal data, respectively).
Faced with these challenges, the CNIL and the European Data Protection Board intend to confirm their intention to remain in this debate to prevent the risks identified in 2021 from becoming reality.
The CNIL calls, beyond this work in European bodies, for a broad public and democratic debate on this subject, both at European and national levels. It is now up to citizens and their representatives to choose what kind of digital euro they want and how this digital euro will protect their data and their freedoms.
