The meeting had been prepared based on a questionnaire around the sharing of data.
The Commission presented first the results of the questionnaire which highlighted a vast diversity in new services around data in the mobility sector (pay as you drive insurance, driving coaching, rental services, traffic services, third party services…). The vast majority of stakeholders supported the sharing of data. As regards the conditions for such sharing, the need of cybersecurity, data privacy fair competition were highlighted but also liability, anonymization, IPR, trade secrets. Additional criteria: user friendliness.
Session I - Cybersecurity
Panel
- BMW (Maik Böres)
- Here (Ahmed Nasr)
- Mobivia (Stéphane Derville)
- GSMA (Joop Hazenberg)
There is no consensus on the technical solution for ensuring cybersecurity.
Car manufacturers notably state that in vehicle access is not secure; almost all attacks performed were done via dongles in the car.
On the other hand, third party service providers (e.g. car rental companies, repair and maintenance operators, insurance companies) pleaded for:
- An on board access to data.
- A real time access to data
- A standardised security protocol
- A factual assessment of which data are shared with whom (taxonomy of data) as basis to address data-sharing issues.
Session II - Data privacy
Panel
- FIA (Laurianne Krid)
- Insurance Europe (Nicolas Jeanmart)
The presentation and the discussion highlighted the following elements:
- Perception of the consumer that the data that concern them belong to them
- The option for user choice (and the real option to disconnect)
- Embedding privacy by design in the car design
- Need of compliance with the GDPR
- Importance of transparency and awareness of the consumer on collection of their data.
- The importance of data for new personalised services (such as driving coaching)
- The legitimate interest of car manufacturers to have a feedback on their own products
- The public interest that needs to be taken into account
Session III - Fair competition and consumer choice: how to apply these principles in practice ?
Panel
- ACEA (Joost Vantomme)
- FIGIEFA (Sylvia Gotzen)
- Avis (Gail Jones)
- BEUC (Agustin Reyna)
The debate highlighted a divergence in positions between the OEMs and the third party service providers.
ACEA demonstrated the OEM approach in the video shown. The OEMs propose to provide access to a number of data-subsets through B2B contracts via their own extended vehicle server and also to neutral servers connected to that extended vehicle server. Placing the debate in a wider data economy perspective was welcomed. A comment was that not only OEMs collect data and that ideas for a possible sharing obligation should not be restricted to the OEMs.
It was also noted that there is regulatory provision for OBD access, for instance, for emission monitoring.
It was highlighted that the use cases to be developed will also depend on the available data. The Finnish Transport authority underlined that a neutral server is being used for opening data in the Nordic way for providing traffic information services.
Conclusions
Eddy Hartog, Chair, concluded that the issue was not so much with the technology but more with establishing the right governance model.
Eddy further invited all stakeholders to participate in the cross border corridor testing initiatives on CCAM where the actual solutions will be able to be tested in real life conditions.