German Parliament Considering the Future of Open Source Software

In 2010, the German Parliament set up a commission of enquiry (“Enquete-Kommission”) on “Internet and Digital Society” that looks at future strategies in this field of policy (http://www.bundestag.de/internetenquete/Hintergrund_Enquete/). The idea behind such commissions, which have existed and exist in a number of other fields as well, is to collect and evaluate information about the impact of technical, economic and social developments in the relevant fields to provide the Parliament with recommendations for its further political decisions.

The Internet and Digital Society commission just recently turned to a topic of the highest importance for the use and development of digital technologies when it decided to form – among several others – a project group called “Interoperability, Standards, Open Source”. Continue reading

YouTube v. GEMA Decision by Hamburg District Court

After having uploaded quite some posts about how liability for third party Internet content works in German law, and having done so in rather abstract terms (in part, admittedly, for shying away from translating dozens of pages of court decisions) here is a good example of how it works in practice. A colleague from Italy has thankfully posted an English translation of the YouTube v. GEMA decision of the Hamburg District Court of April 20, 2012 on his blog. Continue reading

Confiscation of Facebook Accounts in Criminal Proceedings

Social networks enjoy great popularity among online users. In Germany, more than 50 percent of all users surf on social networks on a weekly basis. In more than 50 percent the social network of choice is Facebook. But Facebook not only has the highest amount of users. They are also the most active, show the highest rate of general online activity (e.g. online shopping) and thus have the highest e-commerce-potential. Therefore, there has not been a way around Facebook for online shops for quite some time (more statistics on Facebook can be found here).

Now, there no longer seems to be a way around Facebook for state institutions, especially law enforcement agencies, neither.

Continue reading

No liability for third party content embedded via RSS-feed unless made aware of infringement

With judgment dated 27 March 2012 the German Federal Court of Justice (Bundesgerichtshof, BGH) held that the provider of an information portal who puts news online that may easily be detected as third party content – in this case: RSS-feeds – is  generally not required to check the articles with regard to potential rights infringements prior to publishing them.

Once the provider of an information portal has been made aware of an infringement of the personality right by the person affected the provider may be held liable to prevent such infringements in the future.

The reasons of the BGH’s decision dated are now available in German.  Continue reading

„Implied Consent“ to Cookies Being Set Suffices in the UK

Contrary to what had been the understanding before, the ICO in its capacity as data privacy watchdog in the UK has now declared in his guidance (download it here) that implied consent – if actually given – is just as valid a form of consent as explicit consent. That is not to say that website owners can simply continue to as before. When you read through the ICO’s advice on how implied consent may be brought about, it becomes quite clear that there really is not much difference from what the website owner must do to obtain explicit consent. Continue reading

CNIL’s Sends Second Questionnaire to Google on Google’s New Privacy Policy

Google’s new privacy policy is not that new, as it “went into force” on March 1. It is still big news in data protection terms, though, at least as far as European data protection authorities are concerned. CNIL, commissioned by the Art. 29 Working Party, has now sent a second rather comprehensive questionnaire to Google. Obviously they were not completely sold on Google’s answers to the first set of questions CNIL had sent in March. Continue reading

Fraunhofer Study on the (Lack of) Data Security of Cloud Storage Services

Popular cloud storage sercives often lack data security. This is the result of a detailed study published by MP3 inventor Fraunhofer Institute. Fraunhofer has scrutinized  Dropbox, Cloudme, Crashplan, Mozy, Teamdrive, Ubuntu One and Wuala. Continue reading

Direct Effect of the “Cookie Directive” in Germany?

It has been reported that today Mr. Peter Schaar, head of the Federal Commissioner for Data Protection and Freedom of Information, announced at the Data Protection Congress 2012 that is currently held in Berlin that the EU “Cookie Directive” – which has not yet been implemented into German law – has EU law’s “direct effect” (also known as “immediate applicability”), making Art 5 (3) of the Directive directly applicable and effective under German law. He (as reported) added that therefore Art. 5 (3) of the Directive can be applied and enforced by the German data protection authorities in their day to day business. Ooops! Continue reading

Analytics Cookies to Be Exempt from Consent Requirement in France

As reported by DataGuidance, the UK Information Commissioner the enforcement of the “cookie law” will be “pragmatic and realistic” in the UK. “Pragmatic” and realistic”: Sounds good doesn’t it? Doesn’t sound very German, though, does it? As explained here, the cookie situation in Germany is still unresolved, largely due to the (my take on the matter) inability to come up with a draft for transforming the Directive’s into German law that provides for a workable solution the problem. It seems that at least the current government feels uncomfortable to pass a law the wording of which would effectively rule out a good portion of how websites work today.

Even more interestingly, in the same DataGuidance post they report that the French Data Protection Authority (CNIL) will exempt analytics cookies from the new requirement of prior consent. Continue reading

On Facebook Fan Pages

As you may have heard, as per the self-appointedly competent data protection authorities in Germany you may not set up and maintain a Facebook fan page, nor may you embed Facebook plugins into to your web pages (it’s true, read here, here, here, and here). If you do, you’re acting in violation of German data protection law. Continue reading

Let’s draw a legal picture of framing: may a frame provider be held liable for a copyright infringement?

Framing is a convenient tool for journalists and readers alike. Putting a frame around a wide variety of content makes life easier for many jobs, passions and commercial interests. However, does framing provide any legal pitfalls?

Let’s first draw a picture of framing: What’s framing exactly? Other than setting an ordinary link to content of a third party’s website, in the case of framing the content is integrated via a link (“embedded” – e.g. as an iframe – or “inline link”) onto the very website which is called up. Via this link the third party’s content is displayed without any further click and without change of the URL in the browsers address bar in a so called frame of the same screen window whilst being stored on the third party’s server.

And legally? May a frame provider be held liable for a copright infringement? He may, but not necessarily: The Cologne Court of Appeal (Oberlandesgericht) recently held that a frame provider embedding content in the way described above does not commit a copyright infringement. Continue reading

EU Cookie Law in Germany

As we are quickly moving towards Germany’s 1st anniversary of non-compliance with the infamous “EU Cookie Directive“, one would expect the legislator to really make a push to get something on paper, right? Well, not so. In fact, there isn’t even a legislative silver lining anywhere to be seen. We have witnessed one draft of a change to the “Telemedia Act” (the place where any transforming the EU’s wisdom into German law would take place) submitted by the federal state of Hessen last year that no one has really talked much about, and one draft submitted by the current opposition in the Bundestag that has now been rebuffed on committee level without before even getting a proper hearing in parliament – without spoiling us by publishing any reasons for the government’s stance, sadly. That said, that’s all good news, really. Continue reading

Federal Constitutional Court on WLAN Liability

Germany’s Federal Constitutional Court has just reminded the Higher Regional Court of Cologne (one of the courts that will hold you liable for just about anything that third parties, i.e. your children, your neighbors, the guests of your hotel etc., might do using your WLAN) that, contrary to what the Cologne Court assumed, not all legal questions have been answered. The Cologne Court had refused a request by the defendant to be granted a second appeal to the Federal Supreme Court because it assumed (for reasons no one can really understand) that the Supreme Court has already decided on the relevant legal issue. Continue reading

Motion to Curtail WLAN Liability

As reported by heise, the Senate of Berlin (in its capacity as government of the Federal State of Berlin) will, it has been announced, put forward a motion in the Federal Council of Gemany (the second “half” of the federal parliamentary instutions next to the Bundestag) aiming at rewriting – or actually writing for the fist time – the law on the liability of those who operate WLANs for unlawful acts commited by other people through those WLANs. If successful, the motion could finally put an end to, or at least regulate by democratic means, some of the rather strange views that the German courts have taken over the past ten odd years regarding this particular “problem” of the Internet age. Continue reading

Search Engine Liability

Now that the Google and its fellow search engines are possibly heading for a new form of liability in the UK, what’s life like for search engine providers in Germany? Well, as usual, it’s complicated.

The question of Google’s responsibility for what one may find when searching for a particular set of terms has been dealt with by a variety of court decisions on appeal court level (our “Oberlandesgerichte”) and even once by the German Supreme Court (Bundesgerichtshof). Interestingly, though, the problem that one would think is the most common problem that people have with the search engine phenomenon has not really been dealt with by the courts. We know that Google is generally allowed to display thumbnails of copyrighted images on its image search site. We have been informed that Google is not liable for the “snippets” that appear as a result of one’s search. But we don’t know what Google is required to do (if anything) when being informed of a clear violation of someone’s, say, protected private sphere committed on the internet and spread through tools like Google’s search engine. Continue reading