Who will win the battle between privacy and cyber security? Is it a real battle or just a fake problem that has emerged on both sides of the Atlantic in order to exert pressure in the data flow debate? Who benefits from fomenting this old conflict between rights and freedoms on the one hand and security, both physics and cyber, on the other? Will the new Privacy Shield and GDPR, the new General Data Protection Regulation, with its principles of privacy by design, accountability and privacy by default, succeed in clarifying, once and for all, the boundaries where national security needs, the safety of citizens and the legitimate defence against terror- ism meet with the enjoyment of fundamental freedoms, such as, just to mention a few, free- dom and secrecy of communications and domestic domicile inviolability? And what will hap- pen to the legitimate interests of the companies processing user data for their different pur- poses, while maintaining, at the same time, high levels of trust and IT security? Is it right to entrust individuals with job of assessing the validity of a national agency request for data ac- cess due to anti-terrorism purposes?
Let’s try to clarify the matter.
It is therefore time to rethink the relationship between States and the privacy of their citizens, not in an emergency perspective that has led to the signing of the Privacy Shield nor in the context of the debate on GDPR. We now need international treaties that put both the individ- ual and internet in the driving seat. These are the indissoluble duo that we must all learn to deal with and legislate for on the basis of our shared European culture. We have got to set aside the end of Schengen or Brexit. Here we need to come together and forge new and en- during partnerships.