France's Council of State ruled national security concerns justify the retention of data for law enforcement investigations. The council examined how the ePrivacy Directive and EU General Data Protection Regulation match up with "French rules on the retention of connection data" following appeals made by several nongovernmental organizations. The council ordered the French government to continuously reassess all national security threats to justify retaining data and submit data use to an independent authority for clearance.
21 April 2021
Council of State rules on data retention for national security threats
Related stories
How proposed AI enforcement moratorium cuts into US state-level powers
Notes from the IAPP Canada: Building momentum to address youth privacy issues
Navigate 2025: Potential EU AI Act pause opens new questions on approach to global regulation
Notes from the Asia-Pacific region: Chinese regulators strengthen AI, data protection governance
Notes from the IAPP Europe: Data protection and AI in focus
