Posted in IT Law, Privacy

European Court rules on storing dynamic IP addresses to help prevent cyber attacks

The EUCJ ruled that the operator of a website could have a legitimate interest in storing certain personal data relating to visitors to that website in order to protect itself against cyberattacks.

Patrick Breyer v Bundesrepublik Deutschland: Mr Breyer filed a lawsuit before the German courts to prevent Governamental websites from recording and storing his IP addresses. Addiitonal data stored is the date and time when a site was accessed, for the purpose of preventing cyber attacks and to be bale to pursue criminal proceedings.

Do dynamic IP addresses constitute “personal data”?

The court ruled that a dynamic IP address constitutes a personal information if the website operator had the legal means to identify the relevant individual with the help of the internet service provider. Moreover, in the case, the German institutions had a legitimate interest in processing such personal data for the purpose of preventing cyber attacks.




Junior Legal Counsel with a remarkable lust for legal and business knowledge

Share your insights with a comment

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s