United Kingdom ∙ Ensuring Legal Accountability of the UK Data Protection Authority:  From Cause for Data Subject Complaint to a Model for Europe?

In order to protect the privacy of participating patients in multicentric genetic research projects and to improve the working conditions for researchers in such projects a data protection framework needs to be installed. In the first place, all genetic data processed in the project has to be pseudonymized. In addition to that, contracts have to be concluded between the project and each project partner to guarantee that genetic data are used only within the project and that each partner complies with data security standards. Furthermore, a central data protection authority has to be installed in the project to control the partners' compliance with these contracts and to serve as a central contact point for participants. If these conditions are fulfilled, only (de facto) anonymous data are used in the project, so that data protection legislation is not directly applicable. Second, each participant has to sign a special consent form for ethical reasons and as a fallback solution if the pseudonymization of the genetic data fails. With this safety net it is possible to protect the participants' privacy and to improve the working conditions for researchers.

Download Full-text

The national data protection authority from spain authorizes the publication of transfers of value from pharmaceutical companies to healthcare professionals without their authorization: analysis of implications in privacy, tax and incompatibilities law

ACTUALIDAD MEDICA ◽

10.15568/am.2017.800.ds01 ◽

2017 ◽

Vol 102 (800) ◽

pp. 47-51

Author(s):

Javier Villegas Flores ◽

Manuel Jesús Pérez Sarabia ◽

Beatriz Acedo López

Keyword(s):

Data Protection ◽

Healthcare Professionals ◽

Pharmaceutical Companies ◽

National Data ◽

Data Protection Authority ◽

Protection Authority

Download Full-text

A Review of Personal Data Protection Law in Indonesia

10.31219/osf.io/tmnwg ◽

2020 ◽

Author(s):

Muhammad Firdaus

Keyword(s):

Data Protection ◽

House Of Representatives ◽

Personal Data ◽

Privacy Rights ◽

Legal Rules ◽

Personal Data Protection ◽

Personal Dignity ◽

Data Protection Authority ◽

Individual Ability ◽

Protection Authority

The importance of protecting personal data issue starts strengthened along with the increasing number of telephone user mobile and internet in Indonesia. Several cases were sticking out, especially those that have a connection with the leak of personal data and leads to fraud or crime, strengthen the discourse on the importance of making legal rules to protect personal data. In Indonesia, the protection of personal data is related to the concept of privacy, which is the idea of safeguarding the integrity and personal dignity. Privacy rights are also an individual ability to determine who is holding their information and how the information is used. Currently, Indonesia’s long-awaited comprehensive draft Law on the Protection of Personal Data has been submitted by President Joko Widodo to the Chairperson of the Indonesian House of Representatives on January 24th, 2020. When passed, it will be the first framework legislation on personal data protection in Indonesia. This paper discusses and summarizes the progress of personal data protection based on the law and the regulatory authority in Indonesia. The result shows that there is a lack of explanation of the term data protection authority (DPA) in the final Bill submitted.

Download Full-text

US tech majors will face more EU privacy challenges

Emerald Expert Briefings ◽

10.1108/oxan-db199156 ◽

2015 ◽

Keyword(s):

Data Protection ◽

Personal Data ◽

Content Type ◽

User Adaptation ◽

Technology Firms ◽

Full Compliance ◽

Data Protection Authority ◽

Sensitive Issues ◽

Protection Authority ◽

The Eu

Subject Action by European regulators and courts against US technology firms. Significance The Hamburg state data protection authority this month rejected an appeal by Google against the authority's decision requiring changes to Google's handling of users' personal data. This latest action comes as negotiations on new EU data-protection rules have reached a critical stage. These are raising questions about the transatlantic handling of personal data, an increasingly important resource commercially and politically. Impacts Policy differences within the EU will make it hard for the bloc to reach agreement on its proposed new data-protection rules this year. Given that user adaptation to any new EU regime will take at least two years, full compliance will not occur before 2018. Data protection will remain the most sensitive issues in transatlantic tensions over internet governance. Privacy and data-protection campaigners will try to block any transatlantic agreements on these issues, via legislative or judicial means.

Download Full-text

Netherlands ∙ The Year 2016 Through the Eyes of the Dutch Data Protection Authority

European Data Protection Law Review ◽

10.21552/edpl/2017/2/16 ◽

2017 ◽

Vol 3 (2) ◽

pp. 233-237 ◽

Cited By ~ 1

Author(s):

C. van Waesberge

Keyword(s):

Data Protection ◽

Data Protection Authority ◽

Protection Authority

Download Full-text

Surveillance in Public Spaces as a Means of Protecting Security

Cyber Crime ◽

10.4018/978-1-61350-323-2.ch206 ◽

2013 ◽

pp. 300-309

Author(s):

Anna Tsiftsoglou

Keyword(s):

Data Processing ◽

Crime Prevention ◽

Data Protection ◽

Public Safety ◽

Personal Data ◽

Public Spaces ◽

Security Measure ◽

Data Protection Authority ◽

Data Protection Law ◽

Protection Authority

The Greek Data Protection Authority (DPA) was asked in July 2009 to review a proposed legislation that was exempting personal data processing via camera installations in public spaces from the scope of the Greek Data Protection Law 2472/1997. Such an exemption was justified, among other reasons, for the protection of public safety and crime prevention. This paper examines the legitimacy of this security measure from two angles: European and Greek Law. Furthermore, our analysis focuses on questions of privacy, the concept of public safety and its application, as well as the DPA’s role in safeguarding citizens’ privacy even in city streets.

Download Full-text

Data protection in the United Kingdom, Part 2

Journal of Information Science ◽

10.1177/016555158300700201 ◽

1983 ◽

Vol 7 (2) ◽

pp. 47-57 ◽

Cited By ~ 1

Author(s):

Anne Crook

Keyword(s):

United Kingdom ◽

Data Protection ◽

Trade Unions ◽

Civil Liberties ◽

Codes Of Practice ◽

The United Kingdom ◽

Legislative Proposals ◽

Data Protection Authority ◽

Effective Role ◽

The Government

Part I of this paper reviewed the issues which make up the subject of data protection and reasons for legislation. This second part examines in detail the development of legislative proposals in the United Kingdom, culminating in the Data Protection Bill currently before Parliament. The Committee on Data Protection (Lindop) recommended regulation by a Data Protection Authority enforcing statutory Codes of Practice for different data processing applications. This failed to find favour with the Conservative Government which preferred a scheme of registration enforced by an independent Registrar. The data protection lobby (including groups from the computer industry, trade unions, professions, business and civil liberties) were critical of the proposals; particularly those dealing with exemp tions from the law. Their comments are summarised and the response by the Government described. Some of the underlying political reasons for the develop ment of data protection in the U.K. are discussed. It is by understanding the decision-making process relating to legisla tion that those involved with information technology can play an effective role in its regulation and development.

Download Full-text