General Data Protection Regulation (GDPR) – The EU Law Strengthening the Information Society in Poland

The importance of personal data processing for international organizations (‘IOs’) demonstrates the need for them to implement data protection in their work. The EU General Data Protection Regulation (‘GDPR’) will be influential around the world, and will impact IOs as well. Its application to them should be determined under relevant principles of EU law and public international law, and it should be interpreted consistently with the international obligations of the EU and its Member States. However, IOs should implement data protection measures regardless of whether the GDPR applies to them in a legal sense. There is a need for EU law and international law to take each other better into account, so that IOs can enjoy their privileges and immunities also with regard to EU law and avoid conflicts with international law, while still providing a high level of data protection in their operations.

Download Full-text

Das intelligente Energiesystem der Zukunft

10.5771/9783748905622 ◽

2020 ◽

Author(s):

Ryan Kelly

Keyword(s):

Data Protection ◽

Energy System ◽

Fundamental Rights ◽

Smart Meter ◽

Eu Law ◽

Smart Meters ◽

General Data Protection Regulation ◽

Regulatory Strategy ◽

General Data ◽

The Eu

The regulated rollout of smart meters is intended to digitise the energy infrastructure with the goal of creating a future-oriented European energy system. In order to implement the EU requirements, the German legislature is pursuing a regulatory strategy with mandatory legal toleration of intelligent metering systems. This is associated with a variety of fundamental rights and data protection problems. The study examines the smart meter rollout in its complex reality between constitutional, energy and data protection law, as well as European and national regulations. The implementation of smart meters will be discussed in its entirety and analysed on the basis of constitutional and EU law. The focus lies, in particular, on the dogmatic localisation in the European constitutional framework and the examination on the legal basis of the General Data Protection Regulation (GDPR). The results of the study are visualised in two condensed illustrations.

Download Full-text

Can the Internet Forget? – Rhe Eight to be Forgotten in the EU Law and its Actual Impact on the Internet. Comparison of the Approaches Towards the Notion and Assessment of its Effectiveness

Wroclaw Review of Law Administration & Economics ◽

10.2478/wrlae-2019-0006 ◽

2020 ◽

Vol 9 (1) ◽

pp. 86-101

Author(s):

Aleksandra Gebuza

Keyword(s):

Data Protection ◽

Personal Data ◽

The Internet ◽

Eu Law ◽

General Data Protection Regulation ◽

Actual Impact ◽

Right To Be Forgotten ◽

General Data ◽

The Right ◽

The Eu

AbstractThe main aim of the article is to provide analysis on the notion of the right to be forgotten developed by the CJEU in the ruling Google v. AEPD & Gonzalez and by the General Data Protection Regulation within the context of the processing of personal data on the Internet. The analysis provides the comparison of approach towards the notion between European and American jurisprudence and doctrine, in order to demonstrate the scale of difficulty in applying the concept in practice.

Download Full-text

The GDPR and International Organizations

AJIL Unbound ◽

10.1017/aju.2019.78 ◽

2020 ◽

Vol 114 ◽

pp. 15-19 ◽

Cited By ~ 1

Author(s):

Christopher Kuner

Keyword(s):

International Law ◽

International Organizations ◽

Data Protection ◽

Personal Data ◽

Intergovernmental Organizations ◽

Eu Law ◽

Public International Law ◽

General Data Protection Regulation ◽

General Data ◽

The Eu

The entry into application of the EU General Data Protection Regulation (GDPR) on May 25, 2018 has raised questions about its impact on data processing by intergovernmental organizations that operate under public international law (referred to here as international organizations or IOs). EU data protection law can have impact beyond EU borders, and the global reach of EU law is a well-recognized phenomenon. The GDPR contains numerous references to IOs but does not state whether it applies to them, and this uncertainty has led to tensions between IOs and the European Commission. The issues surrounding IOs’ processing of personal data show how the GDPR can give rise to unexpected questions under public international law, and illustrate the need for greater engagement between EU law and international law.

Download Full-text

Background and Evolution of the EU General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) ◽

10.1093/oso/9780198826491.003.0001 ◽

2020 ◽

Author(s):

Christopher Kuner ◽

Lee A. Bygrave ◽

Christopher Docksey

Keyword(s):

Conceptual Framework ◽

Data Protection ◽

Personal Data ◽

Regulatory Framework ◽

Eu Law ◽

General Data Protection Regulation ◽

Data Protection Directive ◽

Major Shift ◽

General Data ◽

The Eu

This book provides an article-by-article commentary on the EU General Data Protection Regulation (‘GDPR’). Adopted in April 2016 and applicable from May 2018, the GDPR is the centrepiece of the reform of the EU regulatory framework for protection of personal data. While retaining the conceptual framework of the Data Protection Directive 95/46 (‘DPD’) that it replaced, the GDPR represents a major shift in the way that data protection is regulated in EU law. In addition, the GDPR has already become a global benchmark in the field.

Download Full-text

Assessing The Impact Of The EU General Data Protection Regulation (GDPR) On Businesses In Nigeria

SSRN Electronic Journal ◽

10.2139/ssrn.3393959 ◽

2018 ◽

Author(s):

Adebola Adeyemi

Keyword(s):

Data Protection ◽

General Data Protection Regulation ◽

General Data ◽

The Impact ◽

The Eu

Download Full-text

Buchbesprechungen. Feiler, Lukas / Forgó, Nikolaus / Weigl, Michaela: The Eu General Data Protection Regulation (Gdpr): A Commentary

Computer und Recht ◽

10.9785/cr-2018-340626 ◽

2018 ◽

Vol 34 (6) ◽

pp. r69-r70

Author(s):

Joachim Scherer ◽

Gerd Kiparski

Keyword(s):

Data Protection ◽

General Data Protection Regulation ◽

General Data ◽

The Eu

Download Full-text

The EU General Data Protection Regulation (GDPR)

10.1093/oso/9780198826491.001.0001 ◽

2020 ◽

Cited By ~ 1

Keyword(s):

Data Protection ◽

Personal Data ◽

Privacy Regulation ◽

General Data Protection Regulation ◽

Data Protection Directive ◽

Ongoing Work ◽

Protection Legislation ◽

Recent Reform ◽

General Data ◽

The Eu

This new book provides an article-by-article commentary on the new EU General Data Protection Regulation. Adopted in April 2016 and applicable from May 2018, the GDPR is the centrepiece of the recent reform of the EU regulatory framework for protection of personal data. It replaces the 1995 EU Data Protection Directive and has become the most significant piece of data protection legislation anywhere in the world. This book is edited by three leading authorities and written by a team of expert specialists in the field from around the EU and representing different sectors (including academia, the EU institutions, data protection authorities, and the private sector), thus providing a pan-European analysis of the GDPR. It examines each article of the GDPR in sequential order and explains how its provisions work, thus allowing the reader to easily and quickly elucidate the meaning of individual articles. An introductory chapter provides an overview of the background to the GDPR and its place in the greater structure of EU law and human rights law. Account is also taken of closely linked legal instruments, such as the Directive on Data Protection and Law Enforcement that was adopted concurrently with the GDPR, and of the ongoing work on the proposed new E-Privacy Regulation.

Download Full-text

The GDPR as Global Data Protection Regulation?

AJIL Unbound ◽

10.1017/aju.2019.80 ◽

2020 ◽

Vol 114 ◽

pp. 5-9 ◽

Cited By ~ 2

Author(s):

Cedric Ryngaert ◽

Mistale Taylor

Keyword(s):

International Law ◽

Data Protection ◽

Personal Data ◽

Fundamental Rights ◽

General Data Protection Regulation ◽

Data Protection Directive ◽

Protection Legislation ◽

General Data ◽

Global Data ◽

The Eu

The deterritorialization of the Internet and international communications technology has given rise to acute jurisdictional questions regarding who may regulate online activities. In the absence of a global regulator, states act unilaterally, applying their own laws to transborder activities. The EU's “extraterritorial” application of its data protection legislation—initially the Data Protection Directive (DPD) and, since 2018, the General Data Protection Regulation (GDPR)—is a case in point. The GDPR applies to “the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to: (a) the offering of goods or services . . . to such data subjects in the Union; or (b) the monitoring of their behaviour . . . within the Union.” It also conditions data transfers outside the EU on third states having adequate (meaning essentially equivalent) data protection standards. This essay outlines forms of extraterritoriality evident in EU data protection law, which could be legitimized by certain fundamental rights obligations. It then looks at how the EU balances data protection with third states’ countervailing interests. This approach can involve burdens not only for third states or corporations, but also for the EU political branches themselves. EU law viewed through the lens of public international law shows how local regulation is going global, despite its goal of protecting only EU data subjects.

Download Full-text

To What Extent Does the EU General Data Protection Regulation (GDPR) Apply to Citizen Scientist-Led Health Research with Mobile Devices?

The Journal of Law Medicine & Ethics ◽

10.1177/1073110520917046 ◽

2020 ◽

Vol 48 (S1) ◽

pp. 187-195

Author(s):

Edward S. Dove ◽

Jiahong Chen

Keyword(s):

Mobile Devices ◽

Data Protection ◽

Health Research ◽

Health Data ◽

Specific Context ◽

General Data Protection Regulation ◽

Citizen Scientist ◽

Open Questions ◽

General Data ◽

The Eu

In this article, we consider the possible application of the European General Data Protection Regulation (GDPR) to “citizen scientist”-led health research with mobile devices. We argue that the GDPR likely does cover this activity, depending on the specific context and the territorial scope. Remaining open questions that result from our analysis lead us to call for lex specialis that would provide greater clarity and certainty regarding the processing of health data by for research purposes, including these non-traditional researchers.

Download Full-text