France's Council of State ruled national security concerns justify the retention of data for law enforcement investigations. The council examined how the ePrivacy Directive and EU General Data Protection Regulation match up with "French rules on the retention of connection data" following appeals made by several nongovernmental organizations. The council ordered the French government to continuously reassess all national security threats to justify retaining data and submit data use to an independent authority for clearance.
21 April 2021
Council of State rules on data retention for national security threats
Related stories
Notes from the IAPP Canada: Ontario IPC's deidentification guidelines a welcome regulatory addition
A view from DC: A self-help book for privacy leaders
Data privacy and the Brazilian public sector
Happy anniversary, NIS2: Too soon to celebrate?
EU Data Act operational impacts: Introducing the Data Act
