Diverse Readings of the Court of Justice Judgments on Copyright Work

EU law’s impact on the meaning of the copyright work for a long time seemed limited to software and databases. But recent judgments of the CJEU (Infopaq, BSA, FootballAssociation [Murphy], Painer) suggest we have entered an era of harmonization of copyright subject-matter, after decades of focus on the scope of exclusive rights and their duration. Unlike before however, it is the Court and not the legislator that takes centre stage in shaping pivotal concepts. This article reviews the different readings and criticisms the recent case law on copyright works evokes in legal doctrine across the EU. It puts them in the wider perspective of the on-goingdevelopment towards uniform law and the role of the preliminary reference procedure in that process.

The Levy Runs Dry: A Legal and Economic Analysis of EU Private Copying Levies

This article provides a legal and economic analysis of private copying levies in the EU, against the background of the Copyright Directive (2001/29), a number of recent rulings by the European Court of Justice and the recommendations presented by mediator Vitorino earlier this year. It concludes that notwithstanding these rulings and recommendations, there remains a lack of concordance on the relevance of contractual stipulations and digital rights management technologies (DRM) for setting levies, and the concept of harm. While Mr Vitorino and AG Sharpston (in the Opinion preceding VG Wort v. Kyocera) use different lines of reasoning to argue that levies raised on authorised copies would lead to double payment, the Court of Justice’s decision in VG Wort v. Kyocera seems to conclude that such copies should nonetheless be levied. If levies are to provide fair compensation for harm resulting from acts of private copying, economic analysis suggests one should distinguish between various kinds of private copies and take account of the extent to which the value said copies have for consumers can be priced into the purchase. Given the availability of DRM (including technical protection measures), the possibility of such indirect appropriation leads to the conclusion that the harm from most kinds of private copies is de minimis and gives no cause for levies. The user value of copies from unauthorised sources (e.g. from torrent networks or cyber lockers), on the other hand, cannot be appropriated indirectly by rightholders. It is, however, an open question in references for preliminary rulings pending at the Court of Justice whether these copies are included in the scope of the private copying exception or limitation and can thus be levied for. If they are not, as currently happens in several EU Member States, legal and economic analysis leads to the conclusion that the scope of private copying acts giving rise to harm susceptible of justifying levies is gradually diminishing.

Personal Data and Encryption in the European General Data Protection Regulation

Encryption of personal data is widely regarded as a privacy preserving technology which could potentially play a key role for the compliance of innovative IT technology within the European data protection law framework. Therefore, in this paper, we examine the new EU General Data Protection Regulation’s relevant provisions regarding encryption – such as those for anonymisation and pseudonymisation – and assess whether encryption can serve as an anonymisation technique, which can lead to the non-applicability of the GDPR. However, the provisions of the GDPR regarding the material scope of the Regulation still leave space for legal uncertainty when determining whether a data subject is identifiable or not. Therefore, we inter alia assess the Opinion of the Advocate General of the European Court of Justice (ECJ) regarding a preliminary ruling on the interpretation of the dispute concerning whether a dynamic IP address can be considered as personal data, which may put an end to the dispute whether an absolute or a relative approach has to be used for the assessment of the identifiability of data subjects. Furthermore, we outline the issue of whether the anonymisation process itself constitutes a further processing of personal data which needs to have a legal basis in the GDPR. Finally, we give an overview of relevant encryption techniques and examine their impact upon the GDPR’s material scope.

Gibt es ein Europäisches Verwaltungsrecht?

Der Beitrag schildert an Beispielen aus der Rechtsprechung des Europäischen Gerichtshofs (EuGH), wie sich ausgehend von der Regel, dass jeder Mitgliedstaat das Gemeinschaftsrecht nach eigenem nationalstaatlichen Verwaltungsrecht vollzieht (sog. Vollzugskompetenz der Mitgliedstaaten) in den letzten Jahren gleichwohl Ansätze eines gemeinsamen Europäischen Verwaltungsrechts entwickelt haben. Hierbei werden zunächst die Wirkungsweisen des Effektivitätsgebotes und des Diskriminierungsverbotes erläutert, die als Grund legende Prinzipen dem nationalen Verwaltungsvollzug zugrunde liegen müssen. Daneben erläutert der Beitrag als weitere systematische Grundstrukturen, die für eine gleichmäßige Anwendung des Verwaltungsrechts in allen Mitgliedstaaten kennzeichnend sind, exemplarisch den Grundsatz der Verhältnismäßigkeit, den Grundsatz des Vertrauensschutzes und den Grundsatz der Rechtssicherheit. Im Fazit konstatiert der Verfasser eine durch den EuGH forcierte Rechtsfortbildung, die sich deutlich in Richtung auf ein sich ständig verdichtendes Europäisches Verwaltungsrecht weiterentwickelt.

Software als Schutzgegenstand des Europäischen Urheberrechts

After 20 years of silence, two recent references from the Czech Republic (Bezpečnostní softwarová asociace, Case C-393/09) and from the English High Court (SAS Institute, Case C-406/10) touch upon several questions that are fundamental for the extent of copyright protection for software under the Computer Program Directive 91/25 (now 2009/24) and the Information Society Directive 2001/29. In Case C-393/09, the European Court of Justice held that “the object of the protection conferred by that directive is the expression in any form of a computer program which permits reproduction in different computer languages, such as the source code and the object code.” As “any form of expression of a computer program must be protected from the moment when its reproduction would engender the reproduction of the computer program itself, thus enabling the computer to perform its task,” a graphical user interface (GUI) is not protected under the Computer Program Directive, as it does “not enable the reproduction of that computer program, but merely constitutes one element of that program by means of which users make use of the features of that program.” While the definition of computer program and the exclusion of GUIs mirror earlier jurisprudence in the Member States and therefore do not come as a surprise, the main significance of Case C-393/09 lies in its interpretation of the Information Society Directive. In confirming that a GUI “can, as a work, be protected by copyright if it is its author’s own intellectual creation,” the ECJ continues the Europeanization of the definition of “work” which began in Infopaq (Case C-5/08). Moreover, the Court elaborated this concept further by excluding expressions from copyright protection which are dictated by their technical function. Even more importantly, the ECJ held that a television broadcasting of a GUI does not constitute a communication to the public, as the individuals cannot have access to the “essential element characterising the interface,” i.e., the interaction with the user. The exclusion of elements dictated by technical functions from copyright protection and the interpretation of the right of communication to the public with reference to the “essential element characterising” the work may be seen as welcome limitations of copyright protection in the interest of a free public domain which were not yet apparent in Infopaq. While Case C-393/09 has given a first definition of the computer program, the pending reference in Case C-406/10 is likely to clarify the scope of protection against nonliteral copying, namely in how far the protection extends beyond the text of the source code to the design of a computer program and where the limits of protection lie as regards the functionality of a program and mere “principles and ideas.” In light of the travaux préparatoires, it is submitted that the ECJ is also likely to grant protection for the design of a computer program, while excluding both the functionality and underlying principles and ideas from protection under the European copyright directives.

Oblivion, Erasure and Forgetting in the Digital Age

In light of the recent European Court of Justice ruling (ECJ C-131/12, Google Spain v Spanish Data Protection Agency),the “right to be forgotten” has once again gained worldwide media attention. Already in 2012, whenthe European Commission proposed aright to be forgotten,this proposal received broad public interest and was debated intensively. Under certain conditions, individuals should thereby be able todelete personal data concerning them. More recently – in light of the European Parliament’s approval of the LIBE Committee’samendments onMarch 14, 2014 – the concept seems tobe close to its final form.Although it remains, for the most part,unchanged from the previously circulated drafts, it has beenre-labelled as a“right of erasure”. This article argues that, despite its catchy terminology, the right to be forgotten can be understood as a generic term, bringing together existing legal provisions: the substantial right of oblivion and the rather procedural right to erasure derived from data protection. Hereinafter, the article presents an analysis of selected national legal frameworks and corresponding case law, accounting for data protection, privacy, and general tort law as well as defamation law. This comparative analysis grasps the practical challenges which the attempt to strengthen individual control and informational self-determination faces. Consequently, it is argued that narrowing the focus on the data protection law amendments neglects the elaborate balancing of conflicting interests in European legal tradition. It is shown thatthe attemptto implement oblivion, erasure and forgetting in the digital age is a complex undertaking.

Bittorent Loses Again: A Recent Lithuanian BitTorrent Case and What It Means for the Construction of the E-commerce Directive

This article first discusses a recent Lithuanian BitTorrent case, Linkomanija, with its shortcomings and perspectives. It then compares the outcomes of the Lithuanian case with recent court practice in Scandinavian countries (the Swedish Pirate Bay and Finnish Finreactor cases). Finally, it poses some questions as to whether BitTorrent sites should be qualified as hosting services under Article 14 of the EU E-commerce Directive (2000/31/EC) and whether the application of the limited liability standard, as developed by the Court of Justice of the European Union, would be reasonable for BitTorrent file-sharing services in general.

On the Search for an Adequate Scope of the Right to Be Forgotten

During the last decades, the virtual world increasingly gained importance and in this context the enforcement of privacy rights became more and more difficult. An important emanation of this trend is the right to be forgotten enshrining the protection of the data subject’s rights over his/her “own” data. Even though the right to be forgotten has been made part of the proposal for a completely revised Data Protection Regulation and has recently been acknowledged by the Court of Justice of the European Union (“Google/Spain” decision), to date, the discussions about the right and especially its implementation with regard to the fundamental right to freedom of expression have remained rather vague and need to be examined in more depth.

Kontent i Pravo v. Masterhost Presidium of the Supreme Arbitration Court of the Russian Federation, Judgment of 23 December 2008, Nr. 10962/08 Translation and Comment

This Judgment by the Presidium of the Supreme Arbitration Court of the Russian Federation can be considered as a landmark ruling for Internet Service Provider’s (ISP) liability. The Court stipulates for the first time concise principles under which circumstances an ISP shall be exempt from liability for transmitting copyright infringing content. But due to the legislation on ISP liability in the Russian Federation it depends on the type of information which rules of liability apply to ISP. As far as a violation of intellectual property rights is claimed, the principles given now by the Supreme Arbitration Court are applicable, which basically follow the liability limitations of the so called EU E-Commerce Directive. But, furthermore, preventive measures that are provided in service provider contracts to suppress a violation through the use of services should be taken into account as well. On the other hand, as far as other information is concerned the limitations of the respective Information Law might be applicable which stipulates different liability requirements. This article gives a translation of the Supreme Arbitration Court’s decision as well as a comment on its key rulings with respect to the legal framework and on possible consequences for practice.

Google Images German Federal Court Entscheidung vom 29.04.2010, I ZR 69/08 With an English Introduction

The long-awaited verdict by the German Federal Court of Justice towards Google image search has drawn much attention to the problem of copyright infringement by search engines on the Internet. In the past years the question has arose whether the listing itself in a search engine like Google can be an infringement of copyright. The decision is widely seen as one of the most important of the last years. With significant amount of effort, the German Fede- ral Court tried to balance the interests of the right holders and those of the digital reality.

Hard Court Heroes

Bundesgerichtshof (German Federal Court of Justice) Case I ZR 60/09, Judgement of 28 October 2010 (“Hartplatzhelden”)

Copyright, Interfaces, and a Possible Atlantic Divide

Recent copyright cases on both sides of the Atlantic focused on important interoperability issues. While the decision by the Court of Justice of the European Union in SAS Institute, Inc.v. World Programming Ltd. assessed data formats under the EU Software Directive, the ruling by the Northern District of California Court in Oracle America, Inc. v. Google Inc. dealt with application programming interfaces. The European decision is rightly celebrated as a further important step in the promotion of interoperability in the EU. This article argues that, despite appreciable signs of convergence across the Atlantic, the assessment of application programming interfaces under EU law could still turn out to be quite different, and arguably much less pro-interoperability, than under U.S. law.

Virtues and Perils of Anonymity: Should Intermediaries Bear the Burden?

On October 10, 2013, the Chamber of the European Court of Human Rights (ECtHR) handed down a judgment (Delfi v. Estonia) condoning Estonia for a law which, as interpreted, held a news portal liable for the defamatory comments of its users. Amongst the considerations that led the Court to find no violation of freedom of expression in this particular case were, above all, the inadequacy of the automatic screening system adopted by the website and the users’ option to post their comments anonymously (i.e. without need for prior registration via email), which in the Court’s view rendered the protection conferred to the injured party via direct legal action against the authors of the comments ineffective. Drawing on the implications of this (not yet final) ruling, this paper discusses a few questions that the tension between the risk of wrongful use of information and the right to anonymity generates for the development of Internet communication, and examines the role that intermediary liability legislation can play to manage this tension.