B v Latvijas Republikas Saeima.

JurisdictionEuropean Union
Celex Number62019CJ0439
ECLIECLI:EU:C:2021:504
Date22 June 2021
Docket NumberC-439/19
CourtCourt of Justice (European Union)

Provisional text

JUDGMENT OF THE COURT (Grand Chamber)

22 June 2021 (*)

(Reference for a preliminary ruling – Protection of natural persons with regard to the processing of personal data – Regulation (EU) 2016/679 – Articles 5, 6 and 10 – National legislation providing for public access to personal data relating to penalty points imposed for road traffic offences – Lawfulness – Concept of ‘personal data relating to criminal convictions and offences’ – Disclosure for the purpose of improving road safety – Right of public access to official documents – Freedom of information – Reconciliation with the fundamental rights to respect for private life and to the protection of personal data – Re-use of data – Article 267 TFEU – Temporal effect of a preliminary ruling – Ability of a constitutional court of a Member State to maintain the legal effects of national legislation incompatible with EU law – Principles of primacy of EU law and of legal certainty)

In Case C‑439/19,

REQUEST for a preliminary ruling under Article 267 TFEU from the Latvijas Republikas Satversmes tiesa (Constitutional Court, Latvia), made by decision of 4 June 2019, received at the Court on 11 June 2019, in the proceedings brought by

B

other party:

Latvijas Republikas Saeima,

THE COURT (Grand Chamber),

composed of K. Lenaerts, President, R. Silva de Lapuerta, Vice-President, J.‑C. Bonichot, A. Arabadjiev, E. Regan, M. Ilešič (Rapporteur) and N. Piçarra, Presidents of Chambers, E. Juhász, M. Safjan, D. Šváby, S. Rodin, F. Biltgen, K. Jürimäe, C. Lycourgos and P.G. Xuereb, Judges,

Advocate General: M. Szpunar,

Registrar: A. Calot Escobar,

having regard to the written procedure,

after considering the observations submitted on behalf of:

– the Latvian Government, initially by V. Soņeca and K. Pommere, and subsequently by K. Pommere, acting as Agents,

– the Netherlands Government, by M.K. Bulterman and M. Noort, acting as Agents,

– the Austrian Government, by J. Schmoll and G. Kunnert, acting as Agents,

– the Portuguese Government, by L. Inez Fernandes, P. Barros da Costa, A.C. Guerra and I. Oliveira, acting as Agents,

– the Swedish Government, by C. Meyer-Seitz, H. Shev, H. Eklinder, R. Shahsavan Eriksson, A. Runeskjöld, M. Salborn Hodgson, O. Simonsson and J. Lundberg acting as Agents,

– the European Commission, by D. Nardi, H. Kranenborg and I. Rubene, acting as Agents,

after hearing the Opinion of the Advocate General at the sitting on 17 December 2020,

gives the following

Judgment

1 This request for a preliminary ruling concerns the interpretation of Articles 5, 6 and 10 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ 2016 L 119, p. 1; ‘the GDPR’), of Article 1(2)(cc) of Directive 2003/98/EC of the European Parliament and of the Council of 17 November 2003 on the re-use of public sector information (OJ 2003 L 345, p. 90), as amended by Directive 2013/37/EU of the European Parliament and of the Council of 26 June 2013 (OJ 2013 L 175, p. 1) (‘Directive 2003/98’), and of the principles of primacy of EU law and legal certainty.

2 The request has been made in proceedings brought by B concerning the legality of national legislation providing for public access to personal data relating to penalty points imposed for road traffic offences.

Legal context

EU law

Directive 95/46/EC

3 Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (OJ 1995 L 281, p. 31) was repealed by the GDPR, with effect from 25 May 2018. Article 3 of that directive, headed ‘Scope’, was worded as follows:

‘1. This Directive shall apply to the processing of personal data wholly or partly by automatic means, and to the processing otherwise than by automatic means of personal data which form part of a filing system or are intended to form part of a filing system.

2. This Directive shall not apply to the processing of personal data:

– in the course of an activity which falls outside the scope of Community law, such as those provided for by Titles V and VI of the [EU Treaty, in the version in force prior to the Treaty of Lisbon,] and in any case to processing operations concerning public security, defence, State security (including the economic well-being of the State when the processing operation relates to State security matters) and the activities of the State in areas of criminal law,

…’

The GDPR

4 Recitals 1, 4, 10, 16, 19, 39, 50 and 154 of the GDPR state:

‘(1) The protection of natural persons in relation to the processing of personal data is a fundamental right. Article 8(1) of the Charter of Fundamental Rights of the European Union (the ‘Charter’) and Article 16(1) [TFEU] provide that everyone has the right to the protection of personal data concerning him or her.

(4) The processing of personal data should be designed to serve mankind. The right to the protection of personal data is not an absolute right; it must be considered in relation to its function in society and be balanced against other fundamental rights, in accordance with the principle of proportionality. This Regulation respects all fundamental rights and observes the freedoms and principles recognised in the Charter as enshrined in the Treaties, in particular the respect for private and family life, home and communications, the protection of personal data, freedom of thought, conscience and religion, freedom of expression and information, freedom to conduct a business, the right to an effective remedy and to a fair trial, and cultural, religious and linguistic diversity.

(10) In order to ensure a consistent and high level of protection of natural persons and to remove the obstacles to flows of personal data within the Union, the level of protection of the rights and freedoms of natural persons with regard to the processing of such data should be equivalent in all Member States. Consistent and homogenous application of the rules for the protection of the fundamental rights and freedoms of natural persons with regard to the processing of personal data should be ensured throughout the Union. …

(16) This Regulation does not apply to issues of protection of fundamental rights and freedoms or the free flow of personal data related to activities which fall outside the scope of Union law, such as activities concerning national security. This Regulation does not apply to the processing of personal data by the Member States when carrying out activities in relation to the common foreign and security policy of the Union.

(19) The protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of threats to public security and the free movement of such data, is the subject of a specific Union legal act. This Regulation should not, therefore, apply to processing activities for those purposes. However, personal data processed by public authorities under this Regulation should, when used for those purposes, be governed by a more specific Union legal act, namely Directive (EU) 2016/680 of the European Parliament and of the Council [of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA (OJ 2016 L 119, p. 89)]. …

(39) … In particular, the specific purposes for which personal data are processed should be explicit and legitimate and determined at the time of the collection of the personal data. … Personal data should be processed only if the purpose of the processing could not reasonably be fulfilled by other means. …

(50) The processing of personal data for purposes other than those for which the personal data were initially collected should be allowed only where the processing is compatible with the purposes for which the personal data were initially collected. In such a case, no legal basis separate from that which allowed the collection of the personal data is required. If the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, Union or Member State law may determine and specify the tasks and purposes for which the further processing should be regarded as compatible and lawful. …

(154) This Regulation allows the principle of public access to official documents to be taken into account when applying this Regulation. Public access to official documents may be considered to be in the public interest. Personal data in documents held by a public authority or a public body should be able to be publicly disclosed by that authority or body if the disclosure is provided for by Union or Member State law to which the public authority or public body is subject. Such laws should reconcile public access to official documents and the reuse of public sector information with the right to the protection of personal data and may therefore provide for the necessary reconciliation with the right to the protection of personal data pursuant to this Regulation. The reference to public authorities and bodies should in that context include all authorities or other bodies covered by Member State law on public access to documents. Directive [2003/98/EC] leaves intact and in no way affects the level of protection of...

To continue reading

Request your trial
51 practice notes
  • Opinion of Advocate General Campos Sánchez-Bordona delivered on 4 May 2023.
    • European Union
    • Court of Justice (European Union)
    • 4 May 2023
    ...(C‑136/17, EU:C:2019:773), punto 64; e del 22 giugno 2021, Latvijas Republikas Saeima (Punti di penalità per infrazioni stradali) (C‑439/19, EU:C:2021:504), punti 96, 99, 100 e 20 Conformemente al considerando 52 del regolamento 2018/858, esso mira a «garantire una concorrenza efficace sul ......
  • HOLD Alapkezelő Befektetési Alapkezelő Zrt. v Magyar Nemzeti Bank.
    • European Union
    • Court of Justice (European Union)
    • 1 August 2022
    ...toute l’Union européenne, une interprétation autonome et uniforme [arrêt du 22 juin 2021, Latvijas Republikas Saeima (Points de pénalité), C‑439/19, EU:C:2021:504, point 81 et jurisprudence 42 D’autre part, l’interprétation d’une disposition du droit de l’Union requiert de tenir compte non ......
  • Opinion of Advocate General Campos Sánchez-Bordona delivered on 29 September 2022.
    • European Union
    • Court of Justice (European Union)
    • 29 September 2022
    ...du Net e a. (C‑511/18, C‑512/18 e C‑520/18, EU:C:2020:791, punto 216), e del 22 giugno 2021, Latvijas Republikas Saeima (Punti di penalità) (C‑439/19, EU:C:2021:504, punto SCHLUSSANTRÄGE DES GENERALANWALTS MANUEL CAMPOS SÁNCHEZ-BORDONA vom 29. September 2022(1) Rechtssache C‑555/21 UniCredi......
  • Conclusiones del Abogado General Sr. G. Pitruzzella, presentadas el 15 de diciembre de 2022.
    • European Union
    • Court of Justice (European Union)
    • 15 December 2022
    ...V. sentenza del 20 dicembre 2017, Nowak (C‑434/16, EU:C:2017:994, punti 36 e 42). 19 V. sentenza del 22 giugno 2021, B (Punti di penalità) (C‑439/19, EU:C:2021:504, punto 60). 20 V. considerando 10 e 11 del RGPD. 21 Risulta peraltro dalle osservazioni della CRIF GmbH che all’interessato è s......
  • Request a trial to view additional results
49 cases
  • Randstad Italia SpA v Umana SpA and Others.
    • European Union
    • Court of Justice (European Union)
    • 21 December 2021
    ...y la eficacia del Derecho de la Unión [sentencia de 22 de junio de 2021, Latvijas Republikas Saeima (Puntos por infracciones de tráfico), C‑439/19, EU:C:2021:504, apartado 135 y jurisprudencia 53 Los efectos que se asocian a este principio se imponen a todos los órganos de un Estado miembro......
  • VS v Inspektor v Inspektorata kam Visshia sadeben savet.
    • European Union
    • Court of Justice (European Union)
    • 8 December 2022
    ...ampio l’ambito di applicazione materiale di tale regolamento [sentenza del 22 giugno 2021, Latvijas Republikas Saeima (Punti di penalità), C‑439/19, EU:C:2021:504, punto 61], il quale include qualsiasi «trattamento interamente o parzialmente automatizzato di dati personali e [i]l trattament......
  • Opinion of Advocate General Campos Sánchez-Bordona delivered on 4 May 2023.
    • European Union
    • Court of Justice (European Union)
    • 4 May 2023
    ...(C‑136/17, EU:C:2019:773), apartado 64; y de 22 de junio de 2021, Latvijas Republikas Saeima (Puntos por infracciones de tráfico) (C‑439/19, EU:C:2021:504), apartados 96, 99, 100 y 20 Con arreglo al considerando quincuagésimo segundo del Reglamento 2018/858, este pretende «garantizar una co......
  • Commission européenne contre République de Pologne.
    • European Union
    • Court of Justice (European Union)
    • 5 June 2023
    ...C‑345/17, EU:C:2019:122, point 41 et jurisprudence citée, ainsi que du 22 juin 2021, Latvijas Republikas Saeima (Points de pénalité), C‑439/19, EU:C:2021:504, point 62 et jurisprudence 317 La Cour a ainsi jugé que l’article 2, paragraphe 2, sous a), du RGPD, lu à la lumière du considérant 1......
  • Request a trial to view additional results
1 books & journal articles

VLEX uses login cookies to provide you with a better browsing experience. If you click on 'Accept' or continue browsing this site we consider that you accept our cookie policy. ACCEPT