Checkliste herunterladenBereiten Sie sich mit unserer Selbsteinschätzung vor

Das Europäische Datenschutzgesetz

Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act)

The Regulation (EU) 2023/2854, also known as the Data Act, sets out harmonized rules on fair access to and use of data within the European Union. This regulation is a key part of the EU’s broader strategy to create a single market for data, ensuring that data can be accessed and utilized in a manner that fosters innovation and economic growth while safeguarding user rights.

Aufbau und wichtige Abschnitte

  1. Objectives and Scope: The regulation aims to remove barriers to data sharing, ensuring that data generated by connected products and related services can be accessed and used by users, including sharing with third parties of their choice. It defines the conditions under which data holders must make data available to users and third parties in a fair, reasonable, and non-discriminatory manner.
  2. Rights and Obligations: The regulation establishes clear rights for users to access data generated by their use of connected products and related services. It also imposes obligations on data holders to provide access to this data, particularly to ensure interoperability and prevent monopolistic control over data.
  3. Contractual Fairness: The regulation introduces private law rules to ensure that contracts involving data sharing are fair and do not exploit imbalances between parties. This section is critical for protecting smaller businesses and consumers from unfair terms imposed by more powerful data holders.
  4. Access by Public Sector Bodies: In exceptional circumstances, the regulation allows for the public sector, including the European Commission and other Union bodies, to access necessary data to perform tasks in the public interest, such as during emergencies.
  5. Interoperability and Standards: The regulation emphasizes the need for interoperability between different data systems and sets out requirements for technical standards to facilitate seamless data sharing across different platforms and services.
  6. Amendments to Existing Legislation: The Data Act also amends Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 to align them with the new rules on data access and use.

This regulation is pivotal in shaping the digital landscape in the EU, enabling a more competitive and innovative economy while ensuring that data is used responsibly and equitably across different sectors.

NIS 2 Lieferkette erhalten RisikoRisiko Bezeichnet das Potenzial für Verluste oder Störungen, die durch ein Ereignis verursacht werden, und wird als Kombination aus dem Ausmaß eines solchen Verlusts oder einer solchen Störung und der Wahrscheinlichkeit des Eintretens des Ereignisses ausgedrückt. Definition gemäß Artikel 6 der Richtlinie (EU) 2022/2555 (NIS2-Richtlinie) Checkliste

Download our free NIS2 Supply Chain Risk Checklist to ensure your organization meets the latest CybersicherheitCybersecurity "Cybersicherheit" ist die Cybersicherheit im Sinne von Artikel 2 Nummer 1 der Verordnung (EU) 2019/881; - Definition gemäß Artikel 6 der Richtlinie (EU) 2022/2555 (NIS2-Richtlinie) "Cybersicherheit" bezeichnet die Tätigkeiten, die erforderlich sind, um Netz- und Informationssysteme, die Nutzer solcher Systeme und andere von Cyberbedrohungen betroffene Personen zu schützen; - Definition gemäß Artikel 2 Nummer 1 der Verordnung (EU) 2019/881; compliance standards effortlessly.