This article is part of our special report Data protection.
The European Commission launched this month a consultation designed to streamline electronic public-sector information amid uncertainty as to how new data protection rules will affect public administrations as well as the private sector.
The consultation, which will run for three months, aims to create consistency in how administrative categories – such as people, vehicles, businesses and locations – are described in member states' government information systems.
The exercise is designed to counteract inconsistencies in the processing of information that can result in a mismatch of data when nationals of one EU country receive services in another.
A new ‘vocabulary’
Currently this mismatch results in data processing problems and the EU executive’s Interoperability Solutions for European Public Administrations (ISA) programme is developing central “data vocabulary”, with the aim of making it easier to re-use and share information.
The move is seen as the potential genesis of more harmonised online government services, but it comes at a sensitive time as public services prepare for a rigorous new data-protection regime that will affect them as well as private users.
Under the proposed regime, public administrative data – such as criminal investigations – will be subject to special exemptions and be covered by a directive rather than a regulation. This would not be the case with private data.
There are doubts as to how the new system can work since many public administrations access the data of private operators, creating scope for grey areas.
Investigations protected, but up to what point?
The use of data by administrations has long been contentious and lawyers will be scrutinising the new regime carefully to see how bodies such as the Commission itself reserve the right to manage data for use on their own investigations.
The Commission’s competition department, for example, regularly swaps information with its counterparts in the US and Japan in the course of its investigations.
The core vocabulary will provide a model of specific features that could be used to catalogue and describe a person, including the date and place of birth and the gender. It is possible to add more detailed information, such as whether she or he is a voter, an employee, a passenger or a patient. The other two vocabularies describe data entities in the domains of business and geographical location.
The Commission said that the new rules for such information categories would be non-binding, instead they would highlight the issue to encourage more rational systems.