If, however, the Wi-Fi network is used unlawfully, the Wi-Fi operator may be required by court or administrative order to password-protect its network in order to bring an end to or prevent such infringements. Before obtaining the password, users are required to reveal their identity to be prevented from acting anonymously.
Facts of the case
A vendor in his shop offered potential customers – in order to draw their attention to his goods and services – access to an anonymous Wi-Fi network free of charge. A customer connected to this Wi-Fi hotspot downloaded a musical work from the Internet free ofcharge and without the consent of the right holder, thus committing a copyright infringement.
The CJEU convened to clarify if the operator of the Wi-Fi network is liable for such copyright infringements on the grounds that he failed to secure his network against illegal downloads. Moreover, the CJEU reviewed the consistency of a possible liability with the Directive on electronic commerce (Directive 2000/31/EC of the European Parliament and of the Council of 8 June 2000 on certain legal aspects of information society services, in particular electronic commerce, in the Internal Market).
Key provision of the directive on electronic commerce
Art 12 para 1 of the Directive on electronic commerce – the decisive provision of this Case – contains a limitation of liability for services of mere conduit of data ("information society services"). Accordingly, the service provider is not liable for information provided by the recipient of the service on the condition that the provider (i) does not initiate the transmission, (ii) does not select the receiver of the transmission and (iii) does not select or modify the information contained in the transmission. In case these requirements are fulfilled such an access provider may not be held liable.
Central statements of the CJEU case
The CJEU ruled that the limitation of liability pursuant to Art 12 para 1 of the Directive on electronic commerce must also be applied to operators of Wi-Fi hotspots who offer their network to the public free of charge, provided that the services are rendered for purposes of advertising the goods sold and services provided by the operator. In this respect, the objective provision of free Wi-Fi may be regarded as information society service within the meaning of the Directive.
Hence, the operator of a Wi-Fi hotspot cannot be held liable by the right holder on the grounds that the network was used by third parties to infringe upon its rights. Due to the lack of entitlement to damages, the right holder may not claim the reimbursement of costs incurred by giving formal notice and initiating court procedures.
However, national authorities or courts may order the Wi-Fi operator to end, or prevent, any infringement of copyright committed by its customers. Generally, the operator may choose which technical measures to take in order to comply with this obligation. In light of this, the Wi-Fi operator may not be burdened with measures that would restrict his freedom to conduct business in its entirety. In this regard in particular, the complete termination of the Internet connection or the monitoring of all information transmitted was taken into consideration. Therefore it is legitimate to require the operator to secure the Internet connection by means of a password, provided that the users of the providedWi-Fi hotspot reveal their identity to be prevented from acting anonymously before obtaining the password.
Consequences of the decision
Despite the fact that the registration process for gaining access to a Wi-Fi network by disclosing the user’s identity occasionally is already common practice (e.g. at airports or in some cases also in hotels), the objective decision in its described scope does indeed constitute a rather significant restriction for the swift and uncomplicated use of laptops, smartphones and other mobile devices. In view of the fact that otherwise the operator of a private Wi-Fi network would not enjoy the limited liability of an access-provider, the users of such networks will have to get used to revealing their identity in the course of a formalised registration process. Eventually, this should serve to facilitate the prosecution of infringements committed by the actual offender on the Internet.
Read the full text
Read the full text
WI-FI/Copyright
Operator of a Wi-Fi network cannot be held liable for copyright infringements committed by users of that network...
Damages directive
By 27 December 2016, the Croatian Parliament needs to implement the Directive 2014/104/EU on antitrust damages actions ("Damages Directive"), which is expected to streamline the procedure for private individuals and businesses to sue for damages in cases of competition law infringements. Will Croatia be successful in taking its cut of one of the fastest growing niche areas in law, which in the EU alone is estimated at EUR 20 billion?...
Nachweis von Behinderungsmehrkosten – Ein Job für Sisyphos?
Die Argumentation und Durchsetzung komplexer Mehrkostenforderungen beinhaltet zweifelsohne zahlreiche Herausforderungen auf technischer, aber vor allem bauwirtschaftlicher und juristischer Ebene. Zu den herausforderndsten Aufgaben zählt sicherlich die kompetente Begründung und korrekte Bezifferung von behinderungsbedingten Mehrkostenforderungen ("Leistungsstörungen")....
Retail sector tax suspended in Poland
At the press conference held on Tuesday, September 20th, Poland's Minister of Finance, Mr. Paweł Szałamacha, announced that the application of a retail sector tax will be suspended following the European Commission's decision on opening an in-depth investigation and issuance of an interim injunction. The tax in question was adopted by Poland in July 2016 and entered into force on 1 September 2016. The first payments were due in October 2016....
Mandatory EU cybersecurity standards in critical business sectors and in digital services
The EU Cybersecurity Directive, known as the "NIS Directive" was published on 19 July 2016 in the Official Journal of the European Union. The NIS Directive entered into force on 8 August 2016 and the Member States will have to transpose the Directive into their national laws by 9 May 2018....
Public consultation on cross-borders distribution of investment funds
Since 1985, the EU has sought to mobilize capital in Europe and encourage investment in all Member States by promoting cross border distribution of funds. To this end, certain key pieces of legislation were adopted starting with the Council Directive 85/611/EEC of 20 December 1985 on the coordination of laws, regulations and administrative provisions relating to undertakings for collective investment in transferable securities (UCITS) and ending with the most recent Directive 2011/61/EU of 8 June 2011 on Alternative Investment Fund Managers....
PSD2: EBA consults on strong customer authentication and common secure communication
On 12 August 2016 the European Banking Authority (EBA) published a Consultation Paper on draft regulatory technical standards on strong customer authentication and common and secure communication under the revised Payment Services Directive (EU) 2015/2366 (PSD2)....
Ukrainian competition authority adopts new merger clearance regulation
The new Merger Clearance Regulation that entered into force on 19 August 2016, can be considered as another step towards harmonizing Ukrainian legislation with EU law. The Regulation, though not yet ideal, contains a number of positive developments that we expect significantly to simplify, shorten and make the process of gathering required information by notifying parties as well as the merger filing process itself more cost-efficient....
Bulgaria: Reading between the lines of the banking system assessment
The Bulgarian National Bank (BNB) released the results of the banking system overview, which was initiated earlier this year. Pursuant to the report of the national regulator on the outcome of the asset quality review (AQR) and the stress tests, that was announced recently (Report), the domestic banking sector successfully passed this, first-of-its-kind, system–wide assessment. The tests in Bulgaria were extended throughout all 22 locally licensed banks, with the exception of the 6 branches of foreign banks operating in the country. As a result, the domestic exercise had a broader scope than its Eurozone counterpart, which only covered the banking institutions of systematic importance....
ESMA – Advises on extension of funds passport
The European Securities and Markets Authority (“ESMA”) has published its second set of advice (the “Advice”) on the possible extension of the Alternative Investment Fund Managers Directive (“AIFMD”) passport to non-EU alternative investment funds managers (“AIFMs”) and non-EU alternative investment funds (“AIFs”)....
New contract registration in the Czech Republic
As of 1 July 2016, nearly all contracts concluded with the Czech State must be published in the Register of Contracts (the "Register"). This obligation was introduced by the new Czech Contract Register Act (1) (the "Act"). This article briefly summarizes the core scope of the Act and its application....
Developments in consumer credit regulation in the Czech Republic
On 27 July 2016, the President of the Czech Republic signed a new Consumer Credit Act (the "CCA") that brings substantial changes to the provision of consumer (and mortgage) credit (the "credit"). The new legislation will affect, among others, also traders, acting as credit intermediaries, who provide consumers with credit for purchasing their goods or services. Please find below a brief summary of selected essential changes introduced by the new CCA. The novelties primarily concern credit providers, credit parameters and the protection of consumers....