...
Late last night (at 0:45), the European Parliament and the Council of Ministers reached an agreement on the EU Telecoms Reform, after intense negotiations brokered by the European Commission. The reform, proposed by the Commission in November 2007 ( IP/07/1677 ), substantially strengthens competition and consumer rights on Europe's telecoms markets, facilitates high-speed internet broadband connections to all Europeans and establishes a European Body of Telecoms Regulators to complete the single market for telecoms networks and services. Following the endorsement of the reform package by an overwhelming majority of the European Parliament in May this year ( MEMO/09/219 ), only one subparagraph had remained controversial between Parliament and Council: the degree to which access to the internet should, and could, be protected by EU law, as well as the procedural and judicial safeguards for internet users. After further talks, in a conciliation committee made up of representatives of the 27 Member States and an equal number of representatives from Parliament, the negotiators of Parliament, Council and Commission agreed last night – by unanimity – on a new internet freedom provision (see Annex 1) that will substantially strengthen the rights of internet users. The new internet freedom provision will be accompanied by new measures to reinforce the neutral character of the internet in Europe. Following final votes in Parliament and Council in November, these reforms could come into force in early 2010. EU countries will then have 18 months to incorporate the new provisions into their national legislation.
...
5. Consumer protection against personal data breaches and s p am: European citizens' privacy is a priority of the new telecoms rules. Names, email addresses and bank account information of the customers of telecoms and internet service providers, and especially the data about every phone call and internet session, need to be kept safe from accidentally or deliberately ending up in the wrong hands ( IP/09/571 ). Operators must respond to the responsibility that comes with processing and storing this information. Therefore, the new rules introduce mandatory notifications for personal data breaches – the first law of its kind in Europe. This means that communications providers will be obliged to inform the authorities and their customers about security breaches affecting their personal data. This will increase the incentives for better protection of personal data by providers of communications networks and services.
In addition, the rules concerning privacy and data protection are strengthened, e.g. on the use of “cookies” and similar devices. Internet users will be better informed about cookies and about what happens to their personal data, and they will find it easier to exercise control over their personal information in practice. Furthermore, internet service providers will also gain the right to protect their business and their customers through legal action against spammers.