Our economy depends more and more on data: data can create significantly added value to existing services and facilitate entirely new business models.
The Regulation on the free flow of non-personal data
The Regulation, applicable as of 28 May 2019, aims at removing obstacles to the free movement of non-personal data across Member States and IT systems in Europe.
The Regulation ensures:
- Free movement of non-personal data across borders: every organisation should be able to store and process data anywhere in the European Union,
- The availability of data for regulatory control: public authorities will retain access to data, also when it is located in another Member State or when it is stored or processed in the cloud,
- Easier switching of cloud service providers for professional users. The Commission has started facilitating self-regulation in this area, encouraging providers to develop codes of conduct regarding the conditions under which users can port data between cloud service providers and back into their own IT environments,
- Full consistency and synergies with the cybersecurity package, and clarification that any security requirements that already apply to businesses storing and processing data will continue to do so when they store or process data across borders in the EU or in the cloud.
The General Data Protection Regulation (GDPR) already provides for the free movement of personal data within the Union, next to its primary goal of protecting personal data. Together with the GDPR, this Regulation will therefore ensure a comprehensive and coherent approach to the free movement of all data in the EU. To provide more clarity to businesses on how to handle data across borders the Commission has published informative guidance.
The Commission is continuing its engagement with stakeholders, for instance by organising structured dialogues with the Member States and workshops with different stakeholders. Also the Commission is closely monitoring the work done by the DSM self-regulatory cloud stakeholder groups, inter alia on on codes of conduct for easier switching of cloud providers and a European cloud security certification scheme.
Contact points per country
Information for businesses and users on Your Europe: your rights, national single information points, single points of contact and more
Press and communication
- Press release and MEMO - Commission publishes guidance on free flow of non-personal data – Questions and Answers (29/05/2019)
- Press release and MEMO – Questions & Answers on the proposed Regulation on the free flow of non-personal data (19/09/2017)
- Blog by Vice-President Andrus Ansip on 13/09/2017 on the adoption of the proposal for a Regulation
- Speech by Vice-President Andrus Ansip at Digital Single Market conference on the free movement of data, Tallinn 17 July 2017
Factsheet explaining free flow of non-personal data
- Communication "Building a european Data Economy" (10 January 2017)
- Communication "DSM mid-term review" (10 May 2017) addressing the daa economy in Europe
- Public consultation in 2017 on building a European data economy
- Study on Measuring the economic impact of cloud computing in Europe
- Study on Facilitating cross-border data flow in the Digital Single Market: data location restrictions
- European Data Market study
- Impact assessment: Part 1 - Part 2 - Summary
- Digital Assembly 15/16 June 2017: Data Economy workshop & report
- Net Futures 2017 Conference "A free flow of data help building European Data Economy"
- Cloud switching workshop 18 May