Oct. 9, 2020
Thesaurus : Jurisprudence
Full reference: Tribunal judiciaire de Paris, 9th of October 2020, Ordonnance de référé, Veolia/Suez, N° RG 20/56077
Oct. 6, 2020
Thesaurus : 05. CJCE - CJUE
Full reference: CJEU, Grand Chamber, 6th of October 2020, Privacy International c/ Secretary of State for Foreign and Commonwealth Affairs, C-623/17.
Read the summary of the judgment (in French)
Oct. 1, 2020
Thesaurus : Soft Law
Full reference of the guidelines: Commission Nationale de l'Informatique et des Libertés (CNIL), Délibération n°2020-091 du 17 septembre 2020 portant adoption de lignes directrices relatives à l'application de l'article 82 de la loi du 6 janvier 1978 modifiée aux opérations de lecture et écriture dans le terminal d'un utilisateur (notamment aux "cookies et autres traceurs") et abrogeant la délibération n°2019-093 du 4 juillet 2019
Full reference of the recommendation: Commission Nationale de l'Informatique et des Libertés (CNIL), Délibération n°2020-092 du 17 septembre 2020 portant adoption d'une recommandation proposant des modalités pratiques de mise en conformité en cas de recours aux "cookies et autres traceurs".
Read the guidelines (in French)
Read the recommendation (in French)
Read the presentation of these guilines and of this recommendation by the CNIL (in French)
Read Marie-Anne Frison-Roche's comment about this in the Newsletter MAFR - Law, Regulation & Compliance of 1st of October 2020
Sept. 29, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Judge between Platform and Regulator: current example of Uber case in U.K., Newsletter MAFR - Law, Compliance, Regulation, 29th of September 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news:
On 22nd of September 2017, Transport of London (TFL), London Transport Regulator, refused to renew the licence, granted on 31st of May 2012 for 5 years, authorizing Uber to transport people because of criminal offenses committed by Uber's drivers. On 26th of June 2018, The Westminster Court prolonged Uber's licence for 15 months under the condition that the platform prevent the reproachable behaviors of its drivers. After these 15 months, the TFL refused once again to prolonge Uber's licence because of the persistence of aggressions against passengers. Uber, once again, contest this decision before the Westminster Court.
In a decision of 28th of September 2020, the Court observes that during the 15 months, the platform implemented many measures to prevent aggressions, that the level of maturity of these measures has improved over time and that the number of offenses was reduced over the period (passing from 55 in 2018 to 4 in 2020). The Court estimated the the implementation of this actions is sufficient to grant a new licence to Uber.
We can learn three lessons from this decision:
Read to go further:
Sept. 28, 2020
Thesaurus : Soft Law
Full reference: Giuliani-Viallard, A., The Europe of Compliance, at the heart of tomorrow's world. For a transformation of our European businesses and the upturn in their international competitiveness, European Issue, n°572, policy paper from the Robert Schuman Foundation, 28th of September 2020, 3 p.
Sept. 24, 2020
Newsletter MAFR - Law, Compliance, Regulation
The Economic Impact of Law: a new report about it. And what about Regulation & Compliance? 3 lessons
Full reference: Frison-Roche, M.-A., The Economic Impact of Law: a new report about it. And what about Regulation & Compliance? 3 lessons, Newsletter MAFR - Law, Regulation, Compliance, 24th of September 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Regulation, Compliance
Summary of the news:
On 18th of September 2020, the European Economic and Social Committee (EESC) published a report about the impact of Rule of Law on Economic Growth.
The EESC defines the Rule of Law as the obligation to "all public powers act within the constraints laid down by law, in accordance with the values of democracy and fundamental rights, and under the control of independent and impartial courts". According to the Committee, the Rule of Law thus defined is favorable and even necessary to a durable economic growth especially because instability of regulations, absence of guarantee of labor and property rights, discrimination or non-application of contracts poorly favors or are detrimental for investments and economic agents' productive activities. The EESC observes by the way that countries which respect the Rule of Law grow more rapidly than those which do not respect it. The Committee also insists on the destructive effect of corruption which destroys public services, public action, public institutions on the long run and confidence, increasing inequalities.
Although EESC approves the actions of European Commission to advance Rule of Law in the Union, it however invites the Commission to continue its efforts by giving a more important place to jurisdictions and by protecting better media freedom in a context of rising autocratic forces in Eastern Europe.
We can learn three lessons from this report:
Sept. 22, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Interregulation: way of "cooperation protocol" between Regulatory Bodies. Example between French Financial Markets Authority and Anticorruption Agency, Newsletter MAFR - Law, Compliance, Regulation, 22nd of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news:
Although Regulation Law was born from the notion "sector", constant interferences between sectors and frequent interactions between some sectors and more general questions common to different sectors, make interregulation necessary. Compliance Law being the extension of Regulation Law, this interregulation mechanism is also necessary in Compliance Law.
This interregulation can take many legal paths like letters exchanges between regulators, the creation of a network of regulators and supervisors at the world level or about some specific question or the adoption of a "cooperation protocol" as the AMF (French Financial Market Regulator) and the AFA (French Anticorruption Agency) did on 16th of September 2020 to reinforce their respective fight against corruption, against market abuses and for the protection of investors.
This cooperation protocol between the AFA and the AMF has the following subjects:
Are regulators the new teachers?
Sept. 21, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Regulation, Compliance & Cinema: learning about Internet Regulation with the series "Criminals", Newsletter MAFR - Law, Compliance, Regulation, 21st of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news:
Season 2 Episode 3 of the British version of the series "Criminals" features the character of Danielle. Danielle is a mother which has decided to hunt down pedophiles on social networks in order to trap them and show to the world their acts. Danielle insists on the efficiency of her action with regard to the police and justice that she finds unproductive. In the episode, Danielle is accused of defamation by the police. While policemen try to explain to Danielle the importance of using a regular procedure and to respect the Rule of Law aiming to prove its accusations, she makes efficiency her only principle. According to her, her methods get results (on the contrary of those used by the police which respect procedures) and those she accuses to be pedophiles do not deserve defense rights.
We can learn three lessons from Danielle's story:
Sept. 21, 2020
Law by Illustrations
This working paper is an extraction of an eponym newsletter published in the Newsletter MAFR - Law, Regulation & Compliance on 21st of September 2020 on LinkedIn.
Sept. 16, 2020
Thesaurus : Doctrine
Full reference: Lamoureux, M., Droit de l'énergie, Collection "Précis Domat Droit public/Droit privé", LGDJ-Lextenso, 2020
Sept. 16, 2020
Publications
🌐follow Marie-Anne Frison-Roche on LinkedIn
🌐subscribe to the Newsletter MAFR Regulation, Compliance, Law
____
Full reference: M.-A. Frison-Roche, Se tenir bien dans l'espace numérique, in Penser le droit de la pensée. Mélanges en l'honneur de Michel Vivant, Lexis Nexis and Dalloz, 2020, pp. 155-168.
____
📝Read the article (in French)
____
English summary of the article: The digital space is one of the scarce spaces not framed by a specific branch of Law, Freedom also offering opportunity to its actors to not "behave well", that is to express and diffuse broadly and immediately hateful thoughts through Hate speechs, which remained before in private or limited circles. The intimacy of Law and of the legal notion of Person is broken: Digital permits to individuals or organizations to act as demultiplied and anonymous characters, digital depersonalized actors who carry behaviors that are hurtful to other's dignity.
Against that, Compliance Law offers an appropriate solution: internalizing in digital crucial operators the mission to disciplinary and substantially hold the digital space. The digital space has been structured by powerful firms able to maintain order. Because Law must not reduce digital space to be only a neutral market of digital prestations, these crucial operators, like social networks or search engines, must be forced to substantially control behaviors. It could be about an obligation of internet users to act with their face uncover, "real identity" policy controlled by firms, and to respect others' rights, privacy rights, dignity, intellectual property rights. In their Regulatory function, digital crucial firms must be supervised by public authorities.
Thus, Compliance law substantially defined is the protector of the person as "subject of law" in the digital space, by the respect that others must have, this space passing from the status of free space to the one of civilized space, in which everyone is obliged to behave well.
______
Read to go further:
Sept. 11, 2020
Thesaurus : Soft Law
Full reference: Agence Française Anticorruption (French anticorruption agency), Département de l'appui aux acteurs économiques (Support to economic actors department), La politique cadeaux et invitations dans les entreprises, les EPIC, les associations et les fondations (Gifts and invitations policy for firms, public firms, associations and fondations), Guide pratique 2020 (Practical Guide 2020), 11th of September 2020, 14 p.
Sept. 10, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Responding to an email with "serious anomalies",transferring personal data, blocks reimbursement by the bank: French Cour de cassation, July 1st 2020, Newsletter MAFR - Law, Compliance, Regulation, 10th of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
"Phishing" is a kind of cyber criminality aiming to obtain, by sending fraudulent emails which look like to those sent by legitimate organisms, recipient's personal information in order to impersonate or steal him or her. As it is difficult to find the authors of "phishing" and to prove their intentionality in order to punish them directly, on mean to fight against "phishing" could be to entitle banks to secure their information network and, to accompany this obligation with a strong incentive, to convict them to reimburse the victims in case of robbery of their personal data.
In 2015, a client victime of this kind of fraud asked to his bank, the Crédit Mutuel, to reimburse him the amount stole, what the bank refused to do on the grounds that the client committed a fault, transferring its confidential information without checking the email, however grossly counterfeit. The Court of first instance gave reason to the client because although he committed this fault, he was in good faith. This judgment was broken by the Chambre commerciale de la Cour de cassation (French Judicial Supreme Court) by a decision of 1st of July 2020 which states that this serious negligence, exclusive of any consideration of good faith, justifies the absence of reimbursement by the bank.
___
From this particular case, we can draw three lessons:
______
Sept. 9, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Freedom&Media: when Italian Media Regulation's real "goal" is not Pluralism Protection, Freedom of Establishment prevails (CJEU, 3 Sept.2020,Vivendi), Newsletter MAFR - Law, Regulation, Compliance, 9th of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Regulation, Compliance
Summary of the news
The media sector is organized on an equilibrium between the principle of competition and other concerns like information pluralism. Generally, competition Law by making market accessible to many competitors ensures information pluralism. But, this is not the case if an operator get an excessive market power, running risk not only for competition but also for information pluralism. It is the reason why the Italian legal system forbids the constitution of an operator gathering more than 40% of the total income generated by the media sector or more than 10% of the total income generated by the Italian communication sector.
In 2016, Vivendi, a French media group, got more than 28% of the Mediaset Group's actions and around 30% of its voting right. The Italian communication regulation authority sized by Mediaset demands in 2017 to Vivendi to ends its participations in the group Mediaset. Vivendi contested this decision before the regional administrative court which referred to the Court of Justice of the European Union in order to know if freedom of establishment can legitimately be discarded in favor of information pluralism in this concrete case. The Court of Justice answered, in a decision of 3rd of September 2020, that the restriction of the freedom of establishment can in principle be justified by a general interest objective such as information pluralism protection but that in this concrete case, this is not justified because the fact that a firm is committed in the transmission of contents does not necessarily give it the power to control the production of such contents.
We can learn three lessons form this case:
Sept. 7, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Conflict of interests & "revolving doors": what the European Ombudsman said in May 2020, the European Banking Authority agreed in August.Three lessons, Newsletter MAFR - Law, Compliance, Regulation, 7th of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news:
Supervision and regulation authorities' impartiality and independence are conditioned to the fact that their members do not have any conflict of interest with the sector that they supervise or regulate. Such an absence of conflict of interest is necessary to guarantee a climate of trust between the authority and operators. This supposes that regulation and supervision authority members do not cumulate functions of operator and of regulator/supervision during but also after their mandate in the regulation/supervision authority because the anticipation of a future hiring can influence present decisions.
On 2nd of August 2019, the executive director of the European Banking Authority (EBA) informed the authority of its willingness to become PDG of the Association des marchés financiers en Europe, lobby of the financial sector. EBA approved this perspective. However, "Change Finance", a civil coalition, sized the European Mediator explaining that such a professional reorientation created an inevitable conflict of interest. The European Mediator reacted on 7th of May 2020 through a recommendation saying that although EBA took preventive measures, theses measures are not sufficient with regard to the risks. In this recommendation, the European Mediator also made some general propositions to manage future conflicts of interest:
In a letter of 28th of August 2020, the president of EBA told to the European Mediator that he accepts these remarks and propositions.
In this particular case, we can draw three lessons:
Sept. 2, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., For regulating or supervising, technical competence is required: example of the French creation of the "Pôle d'expertise de la régulation numérique", Newsletter MAFR - Law, Regulation, Compliance, 2nd of September 2020
Lire par abonnement gratuit d'autres news de la Newsletter MAFR - Law, Regulation, Compliance
Summary of the news
Through a decree of 31st of August 2020, the government created a national service, the "Pôle d'expertise de la régulation numérique" (digital regulation expertise pole). It has to furnish to State services a technical expertise in computer science, data science and algorithm processes in order to assist them in their role of control, investigation and study. The aim is to favor information sharing between researchers and State services in charge of regulating digital space.
As its acronym indicates, this pole of expertise aims to represents constance in a changing world. Moreover, more than being a national service, this organism must adopt a transversal dimension, its creation decree being signed by the Prime Minister, Minister of Economy, Minister of Culture and Minister of Digital Transition. The creation of such a pole shows the awareness of the government of the importance of technical competency in the regulation of digital space and of the necessity to centralize these expertises in one organ.
However, as the decree indicates, this pole of expertise could be consulted only by "State services", that excludes regulators which are independent from the State and which could put the pole in conflict of interest, and courts even if they are supposed to play a central role in the regulation of digital space and even if they are allowed to ask the advice of the regulator about some cases. But if regulators cannot size the pole, to whom does it benefit except the legislator and a few officials?
It would therefore have been better for this pole of expertise to be placed under the direction of regulatory and supervisory bodies, which would have enabled it to be able to be consulted both by regulators and by judges, both of whom are key players in digital regulation.
Sept. 2, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Compliance & Regulatory Soft Law, legal Certainty and Cooperation: example of the U.S. Financial Crimes Enforcement Network new Guidelines on AML/FT, Newsletter MAFR - Law, Compliance, Regulation, 2nd of September 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
The Financial Crimes Enforcement Network (FinCEN) is an organ, depending on the American Treasury, in charge of fighting against financial criminality and especially against money laundering and terrorism financing. For this, it has large control and sanction powers.
In August 2020, the FinCEN published a document untitled "Statement on Enforcement" which aimed to explicit its control and sanction methods. It reveals what firms risk in case of offense (from the simple warning letter to criminal pursuits passing through financial fines) and the different criteria on which FinCEN is based to use one sanction rather than another. Among these criteria, we find for examples the nature and the seriousness of committed violations or the firm's history but also the implementation of compliance program or the quality and the spread of the cooperation with FinCEN durning the investigation.
One of the objectives of the publication of such an information document is to obtain the cooperation of firms by creating a confidence relationship between the regulator and the regulated firm. However, it is very difficult to ask to the firms to cooperate and to furnish information if they can fear that this same information can be used later as proof against them by the FinCEN.
Another objective is to reinforce legal security and transparency. However, the FinCEN's declaration does not seem to commit it, because it is not presented as a chart but as a simple declaration. Indeed, the list of the possible sanctions and the criteria used by the FinCEN are far from being exhaustive and can be completed in concreto by the FinCEN without any justification.
Aug. 31, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Compliance by Design, a new weapon? Opinion of Facebook about Apple new technical dispositions on Personal Data protection, Newsletter MAFR - Law, Compliance, Regulation, 31st of August 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news:
Personal Data, as they are information, are Compliance Tools. They represent a precious resource for firms which must implement a vigilance plan in order to prevent corruption, money laundering or terrorism financing, for examples. It is the reason why personal data are the angular stone of "Compliance by design" systems. However, the use of these data cannot clear the firm of its simultaneous obligation to protect these same personal data, that is also a "monumental goal" of Compliance Law.
In order to be able to exploit these data in an objective of Compliance and protecting them in the same time, the digital firm Apple adopted for example new dispositions in order to the exploitation of the Identifier For Advertisers (IDFA) integrated in the iPad and in the iPhone and broadly used by targeted advertising firms, is conditioned to the consumer's consent.
Facebook reacted to this new disposition explaining that such measures will restrict the access to data for advertisers who will suffer from that. Facebook suspects Apple to block the access to advertisers in order to develop its own advertising tool. Facebook guaranteed to advertisers who work with it that it will not take similar measures and that it will always favor consultation before decision making in order to concile sometimes divergent interests.
We can sleep and already make some remarks:
The whole paradox of Compliance Law rests in the equilibrium between circulation of information and secret.
Aug. 27, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., "Interregulation" between Payments System and Personal Data Protection: how to organize this "interplay"?, Newsletter MAFR - Law, Compliance, Regulation, 27th of August 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
Regulation Law, in order to recognize and draw the consequences from the specificities of some objects, has been build, at the start, around the notion of "technical sector" although their delimitation is partially related to a political choice. But, in facts, there are multiple points of contacts between sectors, actors moving from one to another as objects. The regulatory solution is so to climb over some technical borders through the methodology of interregulation which is by the way the only one to enable the regulation of some phenomena going beyond the notion of sector and related to Compliance Law.
This news takes the exemple of companies furnishing new payment services. In order to they can provide these services, these firms needs to access to banking accounts of concerned people and so to very sensitive personal data. Regulation of such a configuration needs a cooperation between the banking regulator and the personal data regulator. Legislation being not sufficient to organize in Ex Ante this interregulation, the European Data Protection Board has published some guidelines on 17th of July 2020 about the way it conceives the articulation between the PSD2 (European directive about payment services) and GDPR and has announced that it intended to expand the circle of its interlocutors to do this interregulation. Such an initiative from EDPB can be justified by the uncertainty about how interpreting both texts and articulating them.
Aug. 26, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Difficulty of Compliance in Self-Regulation system: example of the Summer 2020 meetings of OPEC about the "conformity" for Oil Market Stability, Newsletter MAFR - Law, Compliance, Regulation, 26th of August 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
The world production of oil is largely coordinated by the Organization of the Petroleum Exporting Countries (OPEC) and especially by its Joint Ministerial Monitoring Committee (JMMC). On 15th of July 2020, this Committee decides to reduce the world production of oil in order to maintain a certain price stability in a context of restricted demand because of the COVID-19 pandemic.
However, such a stability can be maintained only if each member respects this decision and effectively reduce its production level. This meeting of 15th of July also aimed to get member's conformity. In order to get this conformity, the JMMC declared that it will use "name and shame", shaming countries which do not respect the Committee's declaration and naming those which respect it. A second meeting, on 19th of August 2020, reminded to non-compliant countries their obligation and urged them to comply before the 28th of August.
We can observe two things:
Aug. 25, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., The always in expansion "Right to be Forgotten": a legitimate Oxymore in Compliance Law built on Information. Example of Cancer Survivors Protection, Newsletter MAFR - Law, Compliance, Regulation, 25th of August 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
The "right to be forgotten" is an invention of the Court of Justice of the European Union during the case Google Spain in 2014. It implies that digital firms block the access to personal data of someone who asks it. This "right to be forgotten", which permits to impose secret to third parties has largely been generalized by GDPR in 2016. This new fundamental subjective right is a very political and European right. United-States which, on the contrary of Europe, did not experience nazism, links the "right to be forgotten" to the protection of consumer, conception which especially leads California Consumer Privacy Act adopted in 2018 to link this right to a situation of absence of necessity of this data for the firm which obtained it.
In Europe, this willingness to protect directly the person increases the scope of such a subjective right. Thus, in France and in Luxembourg, since 2020, a cancer survivor can thus ask that such an information is not accessible among his or her health data, especially for insurance companies which use them in their risk calculus to set premium amount. Netherlands will do the same in 2021 to fight against discrimination between banks' and insurances' clients.
The "monumental goal" is therefore not so much here the protection of individual freedoms as the protection of the vulnerable person, which is bye the way the keystone of a Compliance Law, concealing sometimes prohibition to circulate information (as here) and sometimes obligation to circulate information (in other cases, where the alert must be given) depending on whether vulnerable people are protected either by one or by the other.
Aug. 24, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., The control by regulator of the essential infrastructure manager's investment plan: example of electric network and the notion of "doctrine", Newsletter MAFR - Law, Compliance, Regulation, 24th of August 2020
Read by freely subscribing other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
On 31st of July 2020, the Commission de Régulation de l'Energie (CRE and French energy regulator) has examined the investment plan of the French electric network manager (RTE) as it does every year. This investment plan is an economic document but it also contains societal purposes, especially the adaptation of the electric network in order to integrate renewable energies.
The control by the CRE is not a financial control. The crucial operator (RTE) is free to decide the way it wants to manage its budget. The CRE just advices on the financial side by recommending for exemple to be more flexible in its financial strategies. The true CRE's control is about the investment plan's general orientations, the methodology of needs analysis and crucial operator's investment choices which must be aligned with those of the regulator.
Such a control leads to the emergence of an "investment doctrine" from the side of the crucial operator, mixing its own choices and the regulator's guidelines. Beyond this, the elaboration of the investment plan is the result of a true co-writing between the regulator and the firm which discuss together, exchanges points of view and methods. Such a method, expressing a kind of coregulation, could be used in other sectors.
Aug. 21, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Being obliged by Law to unlock telephone is not equivalent to self-incrimination: Cour de cassation, Criminal Chamber, Dec. 19, 2019, Newsletter MAFR - Law, Compliance, Regulation, 21st of August 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
The Cour de Cassation (French Supreme Judicial Court) made a decision on 19th of December 2019 about a case concerning a refusal to communicate his mobile phone's unlock code to the police while the police found him with a significant quantity of narcotic and a lot of cash and that there was a certain probability that this mobile phone get proofs of culpability of its owner. The individual was indicted not for narcotic trafficking but for not having communicate its unlock code which constitute an offense to article 434-15-2 of code pénal, from the loi du 3 juin 2018 renforçant la lutte contre la criminalité organisée, et le terrorisme et leur financement (law reinforcing organized crime, terrorisme and their financing).
The accused invokes before the court its right to not incriminate oneself. Indeed, the configuration face to policemen was such that if he refused to communicate its unlock code, he will be punished because of this obligation to communicate his code and that if he accepted, he will also be sanctioned because of the proofs contained into the mobile phone. Such a configuration therefore offered him no alternative to confessing, which is contrary to the European Convention on Human Rights and to European and national jurisprudence.
Face to such a case, the Cour de Cassation chose to segment the information and proposed the following solution: if the researched information cannot be obtained regardless of the suspect willingness, it is not possible to constraint this person to communicate this information without violating its procedural rights, but if the information can be obtained regardless of the suspect willingness then the individual is obliged to communicate his code. In the current case, as it was possible for policemen to obtain information contained in the phone by technical means, longer but existent, then the refuse of communication of the unlock code by the suspect constitute an obstruction that should be sanctioned.
Such a decision is an exemple of the conciliation by the judge of two fundamental but contradictory "monumental goals" of Compliance Law: transparency of information towards public authorities and very sensible personal data protection.
To go further, read Marie-Anne Frison-Roche's working paper: Rethinking the world from the notion of data
Aug. 20, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., When Compliance Law is violated, does the "right to be (re)compensated" exist, and must it be encouraged or not? - The Marriott case, Newsletter MAFR - Law, Compliance, Regulation, 20th of August 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Compliance, Regulation
Summary of the news
In August 2020, Marriott International, online hotel room booking platform, has be sued before an English court by a consulting firm through a "class action" technic. The firm ask to Marriott International compensates the clients whose personal data jas been hacked while Marriott International which was in charge of this data, did not implement all it could to protect these data. According to the plaintiff firm, making the online platform responsible in Ex Ante of the clients' data security and constraint it to compensate injured clients in case of failure is a more important incentive for the firm to do its best to protect this data than a simple fine.
Many similar actions are ongoing, especially during English Courts where the practice of "class action" is more developed. The question is therefore to know whether it is interesting to encourage the development of this kind of process in France. Concretly, a substantial subjective right (here the right to have its data protected) exists only if it is accompanied by a procedural right to size the judge in order to he or she activates it. The right to ask for a compensation in case of violation of these Compliance obligations but also is therefore not only a strong incentive for firms but also a condition of effectivity of these same obligations, knowing that the effectivity is the major care of Compliance Law.
Aug. 19, 2020
Newsletter MAFR - Law, Compliance, Regulation
Full reference: Frison-Roche, M.-A., Regulators' Impartiality and contents control: "Les infidèles" case, Newsletter MAFR - Law, Compliance, Regulation, 19th of August 2020
Read by freely subscribing the other news of the Newsletter MAFR - Law, Compliance, Regulation
To go further, read the chapter of the book Compliance Tools: "The geographical pregnancy of Compliance tools" opened by an introductive chapter written by Jean-Baptiste Racine
Summary of the news
Impartiality of the regulator is one of the most important principles of Regulation and Compliance Law. However, this impartiality can be difficult to implement when the regulation object has a strong moral dimension.
In August 2020, various religious associations sized the Conseil National de Régulation de l'Audiovisuel sénégalais (Senegalese audiovisual regulatory authority) to ask the interdiction of broadcasting on television of the film "Les infidèles" telling the story of a married woman with multiple lovers.
First, the regulator distinguishes the sequences likely to be detrimental to cultural and religious identities and shocking sequences or likely to attack the dignity of the person. Then, it asks the deletion of indecent and obscene scenes and of scenes likely to be detrimental to cultural and religious identities, bans the broadcasting of the film in the television before 10.30 pm, asks an update of the trailer and requires the introduction of a pictogram "forbidden to children under 16" during the broadcasting. The CNRA judges itself able to regulate the content of telefilms in order to protect cultural identities with regards to the law of 4th of January setting its mission.
In 2012, a similar controversy surrounded, in France, the broadcasting of a different film with the same name. However, the purpose and the context were very different because the film was broadcasted at cinema, because it presented adultery men, because it was comic, because the competent regulator was not an administrative body but a professional body and because the broadcasting country was not the same. Here, only the poster was modified.
Thus, an impartial regulation must however taking into consideration "local cultural identities".