Eurobarometer 67.2: European Union Enlargement, Personal Data Privacy, the National Economy, and Scientific Research, April-May 2007

Introduction:As of May 2018, a new European privacy law called the General Data Protection Regulation (GDPR) is in order. With this law, every organization operating in the European Union (EU), needs to adhere to a strict set of rules concerning collection and processing of personal data.Aim:To explore the consequences of the GDPR for data collection at mass gatherings in the European Union.Methods:Since the law was published on April 27, 2016, a thorough reading of the law was conducted by 4 persons with a background in mass gathering health. The GDPR consists of 99 articles organized into 11 chapters. There are also 173 recitals to further explain certain ambiguities. Key articles and recitals relating to healthcare and scientific research were identified. Possible pitfalls and opportunities for data collection and processing at mass gatherings were noted.Discussion:Under article 4, key definitions are noted. There is a clear definition of “data concerning health”. According to the GDPR, health data is a special category of personal data which should not be processed according to article 9(1). However, there is an exception for scientific research (article 9(2)(j)). There are a few safeguards in place, as laid out in article 89. One interesting point is that according to article 89(2), certain derogations can take place if the law interferes with scientific research. The GDPR has major consequences for data collection and processing in the EU. However, with the use of certain safeguards (e.g., pseudonymization) there are still ample opportunities for scientific research. It is important to review one’s method of data collection to make sure it complies with the GDPR.

Download Full-text

A Methodology for Eliciting Data Privacy Requirements and Resolving Conflicts

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.d9049.118419 ◽

2019 ◽

Vol 8 (4) ◽

pp. 8366-8374

Keyword(s):

European Union ◽

System Design ◽

Data Protection ◽

Data Privacy ◽

Personal Data ◽

Natural Languages ◽

Privacy Requirements ◽

Customer Base ◽

Legal Policies ◽

Different Sources

Privacy is one of the major concerns of data protection where personal data of individuals are used by enterprises for providing services. To ensure the rights of citizens, different legal authorities, including European Union, have made it mandatory for enterprises to implement certain privacy principles. An enterprise may also have its own set of privacy principles that help provide customized privacy experience to its customers, with the motive of retaining its customer base and weaning away customers from its competitors. To ensure privacy compliance with legal policies, enterprise privacy principles and expectations of customers, the system design should consider the privacy requirements emanating from all these sources. However, the requirements are often expressed in natural languages, which are difficult to interpret for system designers. In this paper, a logic-based methodology is proposed to formally express privacy requirements emanating from all three different sources. The methodology also includes an algorithm to identify and resolve conflicts among elicited privacy requirements. The proposed approach can be considered as the first step towards ensuring privacy compliance. This would help an enterprise to identify conflicting privacy requirements, resolve conflicts as per pre-defined rules and identify implementable privacy principles to enable the management of privacy compliance.

Download Full-text

The Use of Surveillance of Personal Data by the United Kingdom and the Extent to Which Such Use is Compatible with the European Union Law.

SSRN Electronic Journal ◽

10.2139/ssrn.2688264 ◽

2014 ◽

Author(s):

Angelika Majchrowska

Keyword(s):

European Union ◽

United Kingdom ◽

Personal Data ◽

The European Union ◽

European Union Law ◽

The United Kingdom

Download Full-text

European Union ∙ The European Commission’s Proposal for a Framework for the Free Flow of Non-Personal Data in the EU

European Data Protection Law Review ◽

10.21552/edpl/2017/3/13 ◽

2017 ◽

Vol 3 (3) ◽

pp. 380-383

Author(s):

D. Broy

Keyword(s):

European Union ◽

Personal Data ◽

Free Flow ◽

The Eu

Download Full-text

Security and the future of personal data protection in the European Union

Security and Human Rights ◽

10.1163/18750230-99900036 ◽

2013 ◽

Vol 23 (4) ◽

pp. 331-342 ◽

Cited By ~ 3

Author(s):

Gloria González Fuster

Keyword(s):

European Union ◽

Data Protection ◽

Personal Data ◽

The European Union ◽

Personal Data Protection ◽

The Future

Download Full-text

Personal Data Broker: A Solution to Assure Data Privacy in EdTech

Learning and Collaboration Technologies. Designing Learning Experiences - Lecture Notes in Computer Science ◽

10.1007/978-3-030-21814-0_1 ◽

2019 ◽

pp. 3-14

Author(s):

Daniel Amo ◽

David Fonseca ◽

Marc Alier ◽

Francisco José García-Peñalvo ◽

María José Casañ ◽

...

Keyword(s):

Data Privacy ◽

Personal Data ◽

Data Broker

Download Full-text

New Perspectives for the Protection of Personal Data in Criminal Proceedings in the European Union and Repercussions on the Italian Legal System

Human Rights in European Criminal Law ◽

10.1007/978-3-319-12042-3_13 ◽

2014 ◽

pp. 261-277 ◽

Cited By ~ 1

Author(s):

Federica Crupi

Keyword(s):

European Union ◽

Legal System ◽

Personal Data ◽

The European Union ◽

Criminal Proceedings

Download Full-text

Solutions to Big Data Privacy and Security Challenges Associated With COVID-19 Surveillance Systems

Frontiers in Big Data ◽

10.3389/fdata.2021.645204 ◽

2021 ◽

Vol 4 ◽

Author(s):

Vibhushinie Bentotahewa ◽

Chaminda Hewage ◽

Jason Williams

Keyword(s):

Big Data ◽

Data Privacy ◽

Personal Data ◽

Surveillance Systems ◽

Privacy Rights ◽

Personal Privacy ◽

Privacy And Security ◽

Digital Surveillance ◽

Feasible Solutions ◽

The Impact

The growing dependency on digital technologies is becoming a way of life, and at the same time, the collection of data using them for surveillance operations has raised concerns. Notably, some countries use digital surveillance technologies for tracking and monitoring individuals and populations to prevent the transmission of the new coronavirus. The technology has the capacity to contribute towards tackling the pandemic effectively, but the success also comes at the expense of privacy rights. The crucial point to make is regardless of who uses and which mechanism, in one way another will infringe personal privacy. Therefore, when considering the use of technologies to combat the pandemic, the focus should also be on the impact of facial recognition cameras, police surveillance drones, and other digital surveillance devices on the privacy rights of those under surveillance. The GDPR was established to ensure that information could be shared without causing any infringement on personal data and businesses; therefore, in generating Big Data, it is important to ensure that the information is securely collected, processed, transmitted, stored, and accessed in accordance with established rules. This paper focuses on Big Data challenges associated with surveillance methods used within the COVID-19 parameters. The aim of this research is to propose practical solutions to Big Data challenges associated with COVID-19 pandemic surveillance approaches. To that end, the researcher will identify the surveillance measures being used by countries in different regions, the sensitivity of generated data, and the issues associated with the collection of large volumes of data and finally propose feasible solutions to protect the privacy rights of the people, during the post-COVID-19 era.

Download Full-text

Data Sharing Under the General Data Protection Regulation

Hypertension ◽

10.1161/hypertensionaha.120.16340 ◽

2021 ◽

Vol 77 (4) ◽

pp. 1029-1035

Author(s):

Antonia Vlahou ◽

Dara Hallinan ◽

Rolf Apweiler ◽

Angel Argiles ◽

Joachim Beige ◽

...

Keyword(s):

European Union ◽

Data Protection ◽

Personal Data ◽

Research Approach ◽

The European Union ◽

General Data Protection Regulation ◽

Personal Data Protection ◽

Protection Legislation ◽

General Data ◽

Almost All

The General Data Protection Regulation (GDPR) became binding law in the European Union Member States in 2018, as a step toward harmonizing personal data protection legislation in the European Union. The Regulation governs almost all types of personal data processing, hence, also, those pertaining to biomedical research. The purpose of this article is to highlight the main practical issues related to data and biological sample sharing that biomedical researchers face regularly, and to specify how these are addressed in the context of GDPR, after consulting with ethics/legal experts. We identify areas in which clarifications of the GDPR are needed, particularly those related to consent requirements by study participants. Amendments should target the following: (1) restricting exceptions based on national laws and increasing harmonization, (2) confirming the concept of broad consent, and (3) defining a roadmap for secondary use of data. These changes will be achieved by acknowledged learned societies in the field taking the lead in preparing a document giving guidance for the optimal interpretation of the GDPR, which will be finalized following a period of commenting by a broad multistakeholder audience. In parallel, promoting engagement and education of the public in the relevant issues (such as different consent types or residual risk for re-identification), on both local/national and international levels, is considered critical for advancement. We hope that this article will open this broad discussion involving all major stakeholders, toward optimizing the GDPR and allowing a harmonized transnational research approach.

Download Full-text