Privacy, Cybersecurity, and GATS Article XIV: A New Frontier for Trade and Internet Regulation?

World Trade Review (Forthcoming, 2019) (Pre-edited draft)

NUS Centre for International Law Research Paper No. 19/11

31 Pages Posted: 4 Jun 2019 Last revised: 16 Sep 2020

See all articles by Neha Mishra

Neha Mishra

Graduate Institute of International and Development Studies (IHEID) - Department of International Law

Date Written: February 2, 2019

Abstract

Measures restricting data flows outside one's borders, including mandatory data/server localization measures, are not only a barrier to trade, but also largely ineffective in achieving better internet security or trust. Nevertheless, governments deploy such measures, primarily on grounds of cybersecurity and privacy, potentially violating their obligations under the General Agreement on Trade in Services (GATS). In this article, I investigate whether GATS-inconsistent measures may be justified under GATS Art. XIV when aimed at ensuring privacy or cybersecurity, and, if so, whether GATS Art. XIV effectively balances trade and internet policy. As the internet governance framework is complex and somewhat ambiguous, applying GATS Art. XIV to cybersecurity/privacy measures necessitates balancing of trade liberalization principles and domestic internet policy. This exercise can be effective in weeding out data localization measures disguised as privacy/cybersecurity measures, particularly by employing relevant technical and factual evidence. However, given the lack of binding international law/norms on these issues, GATS Art. XIV has a limited role, particularly in cases involving direct conflict between multistakeholder/transnational internet norms and domestic internet policies, or where the measures are founded on contentious standards/benchmarks on privacy/cybersecurity. Ultimately, ensuring free and secure data flows requires a multidimensional policy response, including strengthening linkages between trade law and internet governance.

Keywords: privacy, cybersecurity, WTO, digital trade, cross-border data flows

Suggested Citation

Mishra, Neha, Privacy, Cybersecurity, and GATS Article XIV: A New Frontier for Trade and Internet Regulation? (February 2, 2019). World Trade Review (Forthcoming, 2019) (Pre-edited draft), NUS Centre for International Law Research Paper No. 19/11, Available at SSRN: https://ssrn.com/abstract=3383684

Neha Mishra (Contact Author)

Graduate Institute of International and Development Studies (IHEID) - Department of International Law ( email )

Geneva
Switzerland

Do you have negative results from your research you’d like to share?

Paper statistics

Downloads
360
Abstract Views
1,376
Rank
151,869
PlumX Metrics