The Council of Europe works with its 46 member states, the private sector, civil society and other actors to shape an Internet based on human rights, democracy and the rule of law. It aims to ensure that the Internet provides a safe and open environment where freedom of expression, freedom of assembly, diversity, culture, education and knowledge can flourish.

To achieve this goal, the organisation has created international conventions in fields such as cybercrime, personal data protection and the protection of children. It also develops model legislation – via recommendations to its member states – and guidelines for private sector Internet actors.

The key pillar for the protection of human rights online is the European Convention on Human Rights. The European Court of Human Rights, which rules on applications alleging violations of the Convention, has already delivered landmark judgments concerning the online environment, in particular in connection to the right to freedom of expression and to access to information, and the right to privacy.

Atrás COVID-19 tracing apps: side effects on personal data protection should be avoided

COVID-19 tracing apps: side effects on personal data protection should be avoided

In a joint statement the Chair of the Council of Europe’s data protection “Convention 108” committee, Alessandra Pierucci, and the Council of Europe’s Data Protection Commissioner, Jean-Philippe Walter, have warned of the possible side effects of digital contact tracing applications used to help combat the COVID-19 pandemic, and call for adequate safeguards to be put in place to prevent risks to personal data and privacy.

Since the start of the pandemic, governments and stakeholders involved in the fight against the virus have been relying on data analytics and digital technologies to address the threat. Mobile applications have been used in some countries and are being considered in others as a complementary response to the need to rapidly perform contact monitoring.

Aimed at contributing to deliberations currently underway in many countries, the statement has been issued in order to emphasise that, wherever such solutions are chosen, strict legal and technical safeguards need to be in place to mitigate the risks to the protection of personal data and privacy.

If these applications are deployed, it should be for a limited duration only and solely on a voluntary basis. These applications should include safeguards "by design" to prevent or minimise risks, e.g. to ensure that location data of individuals are not used, that no direct identification is possible or that re-identification is prevented.

This statement follows a first Joint Declaration on the right to data protection in the context of the COVID-19 pandemic issued on 30 March.

In 1981, the Council of Europe adopted the first international treaty to address the right of individuals to the protection of their personal data, Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data, also known as “Convention 108”. In 2018, the treaty was updated by an amending protocol, not yet in force, aimed at ensuring that its data protection principles are still adapted to new tools and new practices. So far, 55 countries have ratified “Convention 108” and many others have used it as a model for new data protection legislation.

Council of Europe Strasbourg 28 April 2020
  • Diminuer la taille du texte
  • Augmenter la taille du texte
  • Imprimer la page

Human Rights of Internet Users
 

The Council of Europe has created a guide for Internet users to help them better understand their human rights online and what they can do when these rights are challenged.

Generally, these rights are set out in the terms of service of Internet companies, which are mostly lengthy legal contractual conditions which are seldom read and even more seldom fully understood.