With the increase in automation of vehicles and the rise of driver monitoring systems in those vehicles, data protection becomes more relevant for the automotive sector. Monitoring systems could contribute to road safety by, for instance, warning the driver if he is dozing off. However, keeping such a close eye on the user of the vehicle has legal implications. Within the European Union, the data gathered through the monitoring system, and the automated vehicle as a whole, will have to be collected and processed in conformity with the General Data Protection Regulation. By means of a use case, the different types of data collected by the automated vehicle, including health data, and the different requirements applicable to the collecting and processing of those types of data are explored. A three-step approach to ensuring data protection in automated vehicles is discussed. In addition, the possibilities to ensure data protection at a European level via the (type-) approval requirements will be explored.

随着车辆自动化程度的提高以及这些车辆中驾驶员监控系统的兴起，数据保护在汽车领域变得越来越重要。监视系统可以通过例如警告驾驶员是否正在打off睡来促进道路安全。然而，密切注意车辆的使用者具有法律上的意义。在欧盟内部，必须根据《通用数据保护条例》收集和处理通过监控系统以及整个自动化车辆收集的数据。通过用例，探索了由自动车辆收集的不同类型的数据，包括健康数据，以及适用于收集和处理这些类型数据的不同要求。讨论了确保自动车辆数据保护的三步方法。此外，还将探讨通过（类型）批准要求确保在欧洲范围内保护数据的可能性。