In may 2017, around 323.000 cars registered in germany. Most of them as so-called "connected cars," i.e. vehicles that collect data without restriction and transmit it to the manufacturer. In addition to operationally relevant data for the on-board computer, such as tire pressure, distance traveled, position or engine management, these vehicles collect a wide range of other information and turn the vehicle owner into a "transparent customer".
Very few "transparent drivers" know what data they involuntarily transmit to car manufacturers and what happens to the data. Up to now, the manufacturer has had unlimited access to the data and can decide to whom and under what conditions it passes on the data for use. The federation internationale de l’automobile (FIA) has found in a study that car manufacturers collect data and transfer it from the car "the use of which should be discussed with the manufacturer, in the interest of consumer protection". These include, for example, the maximum engine speed with the respective mileage, the number of times the power driver’s seat is adjusted, the number of times the CD/DVD drive media is inserted, and the number of times the seat belts are tightened by the electric motor, for example after heavy braking. In the opinion of the FIA, "conspicuous data can be used to draw conclusions about the driver’s driving style.
Finally, there is one clear conclusion: data protection in "connected cars is still treated stepmotherly. This is also the conclusion reached by stiftung warentest in its test "the apps of the car manufacturers are data snoops".
In addition to unencrypted forwarding, the lack of consent from the vehicle owner is criticized in particular, u.A. In an article in the newspaper "the transparent driver.
The carpass, as a vehicle data ID card, does not have these weaknesses.
My car my data at a glance
- Alert initial situation
- Accessibility data sovereignty?
- Cached trusted car data
- Security data protection
- Gavel consumer protection
initial situation
Welcome to the future
Today’s vehicles can already be described as rolling computers.
The increasing ability of cars to exchange data with the outside world opens up opportunities that require a closer look and certified handling of this sensitive data. Under the right conditions, the immense amounts of data generated by networked vehicles can be used legally to offer a wide range of services and to introduce new ones. The "trusted car data platform" meets these requirements as the only service provider so far.
Instead of complex technical integrations and lengthy business negotiations between oems and service providers, the trusted car data platform everything a central data platform has to offer. On the one hand, the exchange of data takes place simply, yet according to the highest safety standards. In addition to the usual methods, blockchain technology is now also being used. It goes without saying that the data is processed and secured exclusively on security-certified servers in German data centers.
The "trusted car data platform was established to secure already archived and newly generated data, as well as real-time vehicle data, to protect it from unauthorized access, to process it, and to offer it if desired. The project was founded in 2015 with the aim of simplifying vehicle data and access to it through standardization, while at the same time ensuring that it is handled in compliance with the law. In line with the FIA’s "my car – my data" requirement.
Who owns the data?
Legally, however, the data collected belongs to the owner and not to the manufacturer. In 2016, the Federal Ministry of Transport and Digital Infrastructure published a strategy paper on digital sovereignty. Former transport minister alexander dobrindt (CSU) said:
"data and associated rights belong to people – in the case of vehicle data, for example, to the owner who purchased the vehicle."
Leading associations and interest groups such as the FIA and the avd have recognized this and are taking a stand in a joint declaration to strengthen consumer protection.
Mycarmydata stands for transparent and legally compliant data management for vehicle owners, car manufacturers, the service sector and application developers.
federal ministry of transport and digital infrastructure makes it clear that a legally required "data card" for motor vehicles is only a matter of time: "therefore, a data card should be required for all services and products, such as a motor vehicle, which, among other things, provides full and comprehensible information about the scope and frequency of data collection, as well as about the use and disclosure of the data.".
"mycarmydata" already meets the requirements from politics, consumer protection and interest groups.
The trusted car data platform offers registered service providers and the data owner simple, standardized access to all vehicle-related data. Authorization is done solely by the data owner. Standardized interfaces and connections to almost all established systems in the automotive sector ensure that data already archived from dealer management solutions, data from third-party providers, information from official bodies, data from inspection companies, insurance companies, etc., can be accessed and stored in the system. Easy to implement.
With the kind permission of motordialog.De
We have the tools!
courtesy of motordialog.De
Neutral data platform
The trusted car data platform provides registered service providers and the data owner with easy, standardized access to all vehicle-related data. Authorization is provided solely by the data owner. Standardized interfaces and connections to almost all established systems in the automotive sector ensure that data already archived from dealer management solutions, data from third-party providers, information from official bodies, data from inspection companies, insurance companies, etc. can be used in the same way. Can be easily implemented.
All vehicle data, including that from the car itself, i.e. in the case of connected cars, but also from the connected systems, is brought together centrally and stored in a standardized data format. Through this platform, the data can then be made available to interested parties and authorized by the data sovereignty holder. Classification according to special categories – such as data on road safety, data enabling brand-specific services, data for technical product monitoring or personal user data – is taken into account. The "trusted car data platform follows the principles of data protection, fair competition and interoperability in the handling and distribution of data. All connected partners are given the opportunity to establish their own data-driven business models.
motor vehicle data subject to data protection
"all data generated in a vehicle is considered personal as soon as it is linked to the vehicle identification number or license plate number. Industry and data protection officers have agreed on this and more. after more than a year of negotiations, the german automotive industry and the data protection supervisory authorities have agreed on a first common basic position. Accordingly, technical data is also subject to data protection law. The "joint declaration you can find here.
the key point of the statement is that all data that accumulates in the vehicle is considered personal as soon as it is linked to the vehicle identification number or the license plate number.
In representative surveys conducted in recent years, the issue of data protection has become very relevant and has gained in importance, especially in germany. "only 31 percent of customers would definitely agree to oems processing their data anonymously" so dr. Muller-martini. "the fact that a large part of the data is probably used by third parties via smartphones does not seem to play a role here."(source mm car connectivity study)
If customers are offered discounted services in return for data, however, this has an impact on user willingness: 56 percent of German respondents who do not give their general consent to the processing of personal data would change their mind and agree to data processing after all if there were suitable benefits, such as discounts for visits to the repair shop. "for oems, this is an opportunity to generate additional revenue from vehicle data, as long as they allow their customers to share in the benefits. The ‘pay with data’ model familiar from smartphones can also be used in cars," says jan burgard from berylls.
Consumer protection
At the 15. Consumer Protection Ministers Conference on 24. May 2019 in mainz were held on the topic of "ensuring data sovereignty over vehicle data for consumers" several resolutions drafted.
It is noted that a multiple of the data collected is to be expected and that "questions regarding storage, access, disposal and utilization rights have so far remained largely unresolved from the consumer perspective." vehicle owners need "tamper-proof technical means to retain full control over the use of personalized vehicle data at all times"." vehicle manufacturers are required to comply with the "principles enshrined in particular in the basic data protection regulation" to take into account and "already in the context of technical development precautions to ensure the principle of "privacy by design" and "privacy by default to take".
You can read the complete resolutions in the minutes of the Consumer Protection Ministers’ Conference (S.45 ff).
Consumer advocates, testing companies and politicians make great demands.
You can read more about this here.
- Record_voice_over avd
- Directions_car FIA
- Brightness_low ethics committee
- Settings_input_antenna vdtuv
- Directions_car EAC
Transparent data protection
A statement from the avd
Transparent data protection in the connected and future autonomous car is an important concern for the initiative against tachometer manipulation and its member avd. The respective driver, owner or holder must remain "master of his data". This includes information at all times about who generates, collects, passes on or otherwise uses data from the vehicle. This is what the initiative, together with the federation internationale de l’automobile (FIA), which the avd co-founded in 1904, is calling for in the "my car my data" campaign.
The initiative and the avd are helping the FIA to clarify what data is collected from connected cars. The results of a study on the data actually collected and transmitted by modern cars show how much the vehicles actually "communicate" in comparison to the common perception of the consumers. Currently, only the manufacturers have direct access to this on-board data.
vehicle manufacturers must be required to provide a list of all externally collected and stored personal data for each model. data collected, processed, stored and transmitted is made available to consumers.
Legislation must ensure that drivers and owners retain sovereignty over their personal data and can give informed consent to the use of their data. The phrase "vehicle data belongs to us", also used by manufacturers’ representatives, may mean the IT industry, but must not restrict the rights of vehicle users. Drivers, keepers or owners must always be free to choose any type of service related to their vehicle and their mobility. This includes fair competition with the right of every competitor to offer safe products and services.
The initiative and the avd oppose the obligation to use such data of one’s own vehicle in civil or criminal legal proceedings. The data subject’s decision on how to handle this data and whether to disclose it must be protected by fundamental rights.
MY CAR MY DATA
A campaign by the FIA
We are fully committed to the FIA’s new motto "my car my data". What do today’s vehicle owners want?? An infographic on the topic of "connected cars. With the kind permission of the FIA. Further information on the campaign can be found here.
ethics commission
The ethics commission on automated driving set up by former federal minister alexander dobrindt has presented its report. the panel of experts headed by former federal constitutional court judge prof. Dr. Dr. Udo di fabio has developed guidelines for the programming of automated driving systems.
the principle was developed that vehicle owners and users should be able to decide on the transfer and use of their vehicle data. The holder may decide which data he publishes and what happens with these data.
Therefore, all permitted business models must respect the data sovereignty of road users and integrate them accordingly into their business processes. The report of the ethics committee from June 2017 can be found here.
Road safety and environmental protection through remote access to vehicle data
The position of the vdtuv
vdtuv position trustcenter 2019
Digitalization is increasingly shaping the environment of people and companies. With the internet of things (iot), everything in mobility can also be networked with everything else; functionalities no longer emerge from the component, but from the system context (smart services). The complexity becomes more complex and there are more opportunities to compromise (sub)systems or iot components. This can have an impact on the entire mobility eco-system and have a damaging effect on the environment of people and companies.
Against this backdrop, TuV companies are committed to the following principles in the age of digitalization:
The goal is a uniform and interoperable safety standard for IT security and functional safety in vehicles. The automotive platform protects the vehicle from unauthorized external access. Information that leaves the vehicle is prepared in advance by the platform according to specific usage profiles. These profiles can only be changed in the company by a neutral internet service provider (administrator) who, however, does not have direct access to the data himself for data protection reasons."