Autonomous and connected vehicles—data protection and privacy issues
Produced in partnership with Shoosmiths
Autonomous and connected vehicles—data protection and privacy issues

The following Commercial guidance note Produced in partnership with Shoosmiths provides comprehensive and up to date legal information covering:

  • Autonomous and connected vehicles—data protection and privacy issues
  • The technology
  • Declaration of Amsterdam
  • Cooperative Intelligent Transport Systems (C-ITS)
  • General Data Protection Regulation
  • Privacy and Electronic Communications Regulations 2003
  • ePrivacy Regulation
  • Cybersecurity
  • eCall
  • Practical issues

This Practice Note considers the following data protection, privacy and security issues arising in connection with the use of autonomous and connected vehicle technology:

  1. The technology

  2. Declaration of Amsterdam

  3. Cooperative Intelligent Transport Systems (C-ITS)

  4. General Data Protection Regulation

  5. Privacy and Electronic Communications Regulations 2003

  6. ePrivacy Regulation

  7. Cybersecurity

  8. eCall

  9. Practical issues

For more information about other key legal issues arising in connection with this technology, see Practice Notes: Autonomous vehicles—key legal issues and Autonomous vehicles and insurance, and for a summary of key dates and information, see Practice Note: Autonomous vehicles—timeline.

See also Precedent: Autonomous vehicles—training materials.

The technology

Modern vehicles already feature a range of external communications systems such as satellite navigation, in-car entertainment and emergency assistance. The development of autonomous vehicles over the next decade is likely to broaden the extent of these systems and vastly increase the amount of data being generated and processed. Vehicles will need to be equipped with systems that enable them not only to communicate with other vehicles but also with apparatus installed as part of the road network such as junction signals and speed limits.

Specifically, connected and autonomous vehicles (CAVs) may collect and transmit data in relation to:

  1. the vehicle itself, including its location, performance, failures, driving or parking offences and accidents

  2. the vehicle’s environment, including the state of the roads, surrounding vehicles, nearby amenities,