V16 beacon: it does not spy on the driver but opens up a new legal front

The mandatory implementation of the V16 beacon has reopened the debate on privacy, data protection and public trust in technological systems linked to road safety. 

Sofía García Pascual, a lawyer in the Information Security and Data Protection department at Lener, analyses the legal framework of the system from the perspective of the GDPR and cybersecurity in Expansión. 

Although the system's design seeks to minimise the use of personal data, this does not eliminate all the risks inherent in any connected technology. In particular, Sofía warns of the "possible interception of communications, vulnerabilities in the device's software or failures in the technology supply chain". 

One of the key points is "the clear delineation of responsibilities, including possible joint responsibility between data controllers and processors," as well as the need to ensure that data is not retained longer than necessary and that infrastructures pass audits and meet high cybersecurity standards. 

The scenario changes when additional services are incorporated, which require "an additional legal basis, usually express consent", along with enhanced information duties and safeguards for the exercise of rights.

See the full article in Expansión ➡️ https://www.expansion.com/juridico/actualidad-tendencias/2026/01/26/6977be52468aeb23798b4579.html