e-Privacy Directive

The E-Privacy Directive is a European Union law that regulates the protection of privacy in the electronic communication sector, this includes the telecommunication sector and internet service providers (ISPs). The GDPR and the e-Privacy Directive work parallelly to regulate privacy in the electronic communication sector.

What is e-Privacy Directive

What is e-Privacy Directive

Directive 2002/58/EC of the European Parliament and of the Council concerning the processing of personal data and the protection of privacy in the electronic communications sector (e-Privacy Directive) is a European Union legislation. It emphasises on privacy related issues associated with electronic communications, location data, traffic data, itemised billing, unsolicited calls, e-marketing, cookie and other monitoring and tracking technologies. It came into effect in July, 2002 and was amended in 2009. Since it is a Directive and not a Regulation, different countries have different versions of the e-Privacy Directive. Therefore, the EU is planning to replace this legislation with the e-Privacy Regulation which will be a more harmonious legislation and will cover machine to machine communications (IoTs) or the confidentiality of individuals communication on public networks like Wi-Fi.

Jurisdiction to comply:


The e-Privacy Directive does not contain a specific provision on fines for non-compliance. However national laws will often prescribe a penalty for breach. For instance the UK law limits the fine that can be imposed up to £500,000.

How our privacy team can help

At Tsaaro’s, our privacy team comprises of experienced lawyers and InfoSec professionals. Together we ensure that your organisation is compliant with all regulatory requirements along with best possible technical and infrastructural solutions. We provide personalised plans to our customers to inculcate data protection by design and by default in their processes in a cost efficient manner.