Om jouw privacy te respecteren, maken we géén gebruik van analytische cookies. We maken enkel gebruik van functionele cookies die minimaal nodig zijn om de website goed te laten werken.

Hoe we met deze informatie omgaan vind je terug in ons privacy- en cookiebeleid.

Deel op facebook
Deel op X
Deel op facebook
Deel op X
Ontdek het thema

4.4.1 Afspraken: Engagementen van alle actoren - Data

The data governance framework must embed GDPR conditions i.e. user consent for location data and voluntary data-sharing

Geef hier meer uitleg over jouw feedback

Under the draft, “(real-time) location data” is to be considered personal data of a sensitive nature and may also qualify as “special categories of personal data” to the extent they reveal passenger’s political opinions, religious beliefs, sexual orientation, etc (Article 9 GDPR). The framework should therefore recognise that MaaS providers, acting as data controllers, are under no obligation to share users’ location data. Mandating 3rd party data access/use is unlikely to meet the principles of necessity and proportionality. Furthermore, MaaS providers may share location data providing that passengers and drivers have given their consent (Articles 4, 7, 9). 3rd parties must also stop the processing as soon as users have withdrawn their consent, either on the MaaS provider’s platform, or directly from the third party controller (Article 14(2)(d)). Finally, this data governance scheme should not be understood as an exercise of users’ right to data portability under GDPR.