The European Commission is considering a comprehensive plan to support the growing connectivity between machines, but may settle for a more targeted initiative as part of its Digital Single Market strategy, EURACTIV has learned.
Commission officials acknowledge that the executive has been relatively silent since it published a study on the Internet of Things last year.
Thibaut Kleiner, head of unit for Network Technologies, said the Commission is considering now whether a specific piece of legislation is needed to address this fast-growing sector, or whether it would be sufficient to add elements to legislative plans already in the pipeline, like the Digital Single Market (DSM).
“It is a very timely discussion” Kleiner told a panel discussion on Thursday (26 November).
Speaking to EURACTIV, Kleiner said he expected a decision on the best approach by early next year, and to issue a document, probably in the form of a communication, by the summer of 2016.
The key areas the Commission will look into are the free flow of data, standardisation, data protection, telecommunications, and the authentication of objects.
The DSM already addresses some of these elements, such as standardisation. Meanwhile, data protection and privacy, one of the most controversial issues, is being dealt with by the updated data protection regulation currently being negotiated by the European Parliament and Council.
Privacy by design
Privacy could be one of the main barriers to the development of the Internet of Things, according to the the Alliance for Internet of Things Innovation (AIOTI), a broad coalition of companies and sectoral organisations brought together by the Commission.
This 200-member group recommended adopting the principle of ‘privacy by design’. According to this concept, the protection of privacy is embedded upfront into the design specifications of technologies, networks and physical infrastructures.
This approach would be key for the development of the Internet of Things, stressed Robert MacDougall, from Vodafone who chairs the AIOTI Policy working group. He cited connected cars as an example where privacy by design works.
Kleiner explained that the “strong guiding principle” of the upcoming data protection regulation is “to make life easier” for all the stakeholders involved. Companies would need only to comply with a single European regulation instead of having to pass through numerous interfaces of national data privacy requirements.
Kleiner said the Commission will issue a set of guidelines for companies on how to comply with EU rules when applying the ‘privacy by design’ concept. But this can only happen once the data protection regulation is adopted, possibly by the end of this year.
Critics say ‘privacy by design’ is a vague concept that leaves privacy issues almost entirely in the private sector’s hands.
Sebastian Ziegler, president of the Internet of Things Forum, emphasised that “for the first time” the EU’s legal obligations on data privacy will have a global scope affecting non-European companies.
Ziegler called on policymakers to be “creative” in balancing citizen’s privacy concerns with the need to maintain a free flow of data enabling the Internet of Things.
“There is a need for research to come up with solutions for privacy”?for example for smart cities, he said. He agreed that data privacy is a key challenge, but also an opportunty for those able to develop practical solutions.
Industry sources say striking the right balance will be crucial to pave the way for a “truly horizontal” Internet of Things which applies seamlessly accross different domains instead of operating in silos.