Judicial Review in Date Protection Cases in Bosnia and Herzegovina and Comparative Jurisdictions

The paper analyses the issue of judicial review in personal data protection proceedings. The subject of analyses is a procedural safeguard and other peculiarities of the administrative dispute and the standard of administrative law protection in the mentioned proceedings and the role of the Court of BiH. A comparative legal analysis of administrative-legal protection in the same disputes within Croatia and Slovenia is conducted, together with the relevant legal framework of the European Union. The comparative legal analysis aims to determine the extent to which the domestic model of administrative-legal protection and legal standards of judicial protection is compatible with the solutions adopted across Europe. It draws attention to problematic and controversial solutions to domestic legislation. In conclusion, the authors propose several regulatory solutions which would bring improvements to the current system of judicial protection in domestic law.

Download Full-text

Security of personal data: legal standards of the European Union and modern applied problems

INFORMATION AND LAW ◽

10.37750/2616-6798.2021.1(36).238174 ◽

2021 ◽

pp. 17-28

Author(s):

V. BRYZHKO ◽

V. PYLYPCHUK

Keyword(s):

Social Relations ◽

Personal Data ◽

Legal Regulation ◽

Digital Transformation ◽

Eu Law ◽

The European Union ◽

Personal Data Protection ◽

Legal Standards ◽

Key Aspects ◽

The Eu

The article is a continuation of a number of scientific works on the state, trends and further ensuring security of personal data in the context of digital transformation and related problems of legal regulation of new social relations in this area. The key aspects of the EU documents approved in recent years, in particular, the GDPR Regulation, the NIS Directive and the draft legal act on e-Privacy, are considered and evaluated. The main criteria and topical issues that need to be addressed in the context of the implementation of EU law and the development of national legislation on personal data protection are highlighted.

Download Full-text

ESTUDO SOBRE A REALIZAÇÃO DO DIREITO DA PROTECÇÃO DE DADOS PESSOAIS ATRAVÉS DA JURISPRUDÊNCIA DO TRIBUNAL DE JUSTIÇA DA UNIÃO EUROPEIA

Dereito revista xurídica da Universidade de Santiago de Compostela ◽

10.15304/dereito.29.1.6519 ◽

2020 ◽

Vol 29 (1) ◽

Author(s):

Rita De Sousa Costa

Keyword(s):

European Union ◽

Data Protection ◽

Personal Data ◽

Case Law ◽

Legal Framework ◽

The European Union ◽

Personal Data Protection ◽

Court Of Justice ◽

European Data ◽

Data Protection Law

[PT]No presente texto, apresentamos as grandes linhas de aplicação do direito europeu da protecção de dados conforme gizadas pela jurisprudência do TJUE, com o objectivo de demonstrar como e em que medida este Tribunal modelou – e continua a modelar – o quadro jurídico em vigor, na certeza de que aquela jurisprudência impõe um conjunto de desafios determinantes para a realização material do direito europeu da protecção de dados pessoais. [ESP]Este texto presenta las líneas generales de la aplicación de la legislación europea de protección de datos tal como se establece en la jurisprudencia del TJUE, con el objetivo de demostrar cómo y en qué medida este Tribunal ha configurado -y sigue configurando- el marco jurídico vigente, con la certeza de que la dicha jurisprudencia plantea una serie de retos cruciales para la aplicación material del derecho europeo de la protección de datos personales. [ENG]This text outlines the implementation of the European data protection law as laid down in the case-law of the Court of Justice of the European Union, with the aim of demonstrating how and to what extent the Court has shaped – and continues to shape – the current legal framework. The case-law analysed points out a plethora of challenges which are key to the implementation of the European personal data protection law.

Download Full-text

PERSONAL DATA PROTECTION AND RESEARCH ACTIVITIES: EU LEGAL REGULATION EXPERIENCE

Actual Problems of Russian Law ◽

10.17803/1994-1471.2019.103.6.186-194 ◽

2019 ◽

pp. 186-194

Author(s):

A. G. Barabashev ◽

D. V. Ponomareva

Keyword(s):

Data Processing ◽

Data Protection ◽

Personal Data ◽

Legal Framework ◽

Legal Regulation ◽

The European Union ◽

Personal Data Protection ◽

Research Activities ◽

Special Rules ◽

Biometric Information

Legal regulation of the use of personal data is essential in ensuring the quality of scientific research. Regulation of the European Parliament and of the Council of the European Union No. 2016/679 of April 27, 2016 «On the protection of natural persons with regard to the processing of personal data and on the free movement of such data», repealing Directive 95/46/EC, aims to unify the standards governing the protection of human rights to privacy, certain conditions beyond. This novel, introduced by the Regulation in the EU legal framework, complements and updates the acquis communautaire achieved within the framework of Directive 95/46/EC on personal data protection. The Regulation establishes both general rules applicable to any type of personal data processing and special rules applicable to the analysis of certain categories of personal data, such as information obtained during clinical trials. This paper provides an overview of new standards (in force since May 2018) that regulate aspects of personal data processing in the context of research activities (personal health data, genetic, biometric information, etc.)

Download Full-text

INTERCONNECTIVITY AND DIFFERENCES OF THE (INFORMATION) PRIVACY RIGHT AND PERSONAL DATA PROTECTION RIGHT N THE EUROPEAN UNION

Review of European and Comparative Law ◽

10.31743/recl.4264 ◽

2017 ◽

Vol 30 (3) ◽

pp. 125-135

Author(s):

Zana Pedic

Keyword(s):

Data Protection ◽

Personal Data ◽

Legal Protection ◽

Information Privacy ◽

Legal Rights ◽

The European Union ◽

Personal Data Protection ◽

Contact Points ◽

Protection Legislation ◽

Right To Information

Right to (information) privacy and right to personal data protection have many common contact points. However, the very act of developing data protection, as a younger right into the sui generis right shows that these two rights are not the same and that there are differences between them, huge enough to make them separate legal rights. The main trigger for noticing their different nature, purpose and background and for development of the data protection into the separate right was the revolution in the information technology solutions. This IT progress, for the first time, enabled massive and relatively cheap operations with the personal data and brought not only concern about the security of the personal data, but also unbelievable business possibilities. It was the turning point for the codification of the data protection right which started from 1970ies, aiming to create separate rules and legislation which will understand the importance of not only of protecting personal data but of their regulated and lawful usage. Despite all what was said, there is still certain confusion regarding these two rights, mainly because in the initial phase of the massive usage of the new IT solutions, when the data protection legislation still wasn’t developed, information privacy right served as the only legal protection of the data protection right and the relationship between these two rights is complex even today and deserves to be further researched

Download Full-text

Developing The Personal Data Protection In The European Union: A Consumer-Oriented Approach The Romanian Experience

Review of Business Information Systems (RBIS) ◽

10.19030/rbis.v12i1.4398 ◽

2008 ◽

Vol 12 (1) ◽

pp. 63-74

Author(s):

Calin Veghes

Keyword(s):

European Union ◽

Data Protection ◽

Direct Marketing ◽

Personal Data ◽

Legal Framework ◽

Public Institutions ◽

Legal Rights ◽

The European Union ◽

Personal Data Protection ◽

Laws And Regulations

Protection of personal data represents a relatively recent concern for all the entities consumers, organizations and public institutions involved in the development of the direct marketing industry and the overall Romanian market. Noteworthy growth of the direct marketing campaigns, increase in the consumer demands and expectations and the background provided by the countrys adhesion to the European Union, have determined a strong necessity to build up a legal framework for protection of the personal data. Important steps have been made when laws no. 677 (on the protection of the personal data in terms of their processing and free circulation - 2001), no. 506 (on the processing of personal data and protection of privacy in the electronic communications sector - 2004) and no. 102 (regarding the setting up, organization and functioning of the National Supervisory Authority for Personal Data Processing - 2005) have been issued. Adoption of the Directive no. 95/46/EC has connected Romanian and European Union legal framework of the personal data protection. Enforcement of the existing legal background has revealed several problems that have affected activities conducted mainly by the direct marketing and marketing research companies. Relatively unclear definition of the content of personal data to be protected appeared to be one of the most important. From this point, at least the following questions should be answered:what is the specific meaning of the personal data? What data is personal and must be protected through dedicated laws and regulations?are public initiatives best ways and public institutions sole entities to handle the development of an effective legal background for the personal data protection?how important is the voice of the consumers in the process of development of a regulatory environment in this area? Should those to be protected represent the main source of initiating and building the related legal framework?An exploratory survey on a sample including 96 Romanian urban consumers aged 18 to 45 has been conducted aiming to provide information on the: importance of the data protection for the consumers, main characteristics of the data protection legal environment (area of protection, public-private, respectively national-international relationships in terms of the data protection, need for national or international laws and regulations), content of the personal data to be protected by a more precisely defined object of the law, consumer preferences regarding the opt-in and opt-out mechanisms, knowledge associated to the legal rights of consumers related to the personal data protection as they are granted through the existing law, major risks associated with the absence or improper personal data protection mechanisms, consumers exposure to the personal communication media, preferences for personal sources of information and perceived importance of personalization as potential factors to be considered for the development of the personal data protection legal framework, opportunity to develop and implement a Robinson list.Results of the survey may serve as a starting point for a future research conducted at the level of a national representative sample and the Romanian experience may be considered for the upcoming effort to develop a legal framework of the personal data protection in the European Union based on the consumers views, needs and expectations.

Download Full-text

DEVELOPMENT OF THE PERSONAL DATA PROTECTION FRAMEWORK – WILL THE PANDEMIC BRING NEW CHANGES?

Acta Prosperitatis ◽

10.37804/1691-6077-2021-12-59-66 ◽

2021 ◽

Vol 12 ◽

pp. 59-66

Author(s):

Marta Mackeviča ◽

Keyword(s):

European Union ◽

Data Protection ◽

Personal Data ◽

Legal Framework ◽

Point Of View ◽

The European Union ◽

Personal Privacy ◽

General Data Protection Regulation ◽

Complex Concept ◽

Personal Data Protection

The General Data Protection Regulation (hereinafter – the Regulation), which entered into force on 25 May 2018 and introduced a new legal framework for the protection of personal data in the European Union, also included a number of new rights, more precise definitions and improvements in the field of personal data protection. The three‐year period has shown that the Regulation has successfully replaced Directive 95/46/EC of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement ofsuch data, but the Covid‐19 pandemic posed the question: does the Regulation sufficiently define and explain how controllers should deal with the processing of sensitive data, or in situations where employees of companies and institutions work remotely? Data protection is a complex concept that can be analyzed from both a legal and a social point of view. Traditionally, data protection has been referred to as the protection of personal privacy in the context of processes involving the use of personal data. Prior to the implementation of the Regulation, the existing rules on the protection of personal data in the European Union were not sufficiently uniform and were implemented differently in each Member State. It contributed to the development and implementation of the Regulation, in the hope that it would modernize and promote a common data protection regime, while maintaining all the basic principles of data protection that have been followed so far. Prior to the pandemic, the Regulation successfully achieved its original objectives, but hasthe pandemic necessitated a revision of the Regulation? This article will analyze the development of the legal framework for the protection of personal data and analyze the compliance of the Regulation with the requirements arising from the effects of the pandemic.

Download Full-text

Research Biobanking, Personal Data Protection and Implementation of the GDPR in France

GDPR and Biobanking - Law, Governance and Technology Series ◽

10.1007/978-3-030-49388-2_14 ◽

2021 ◽

pp. 257-276

Author(s):

Gauthier Chassang ◽

Michael Hisbergues ◽

Emmanuelle Rial-Sebbag

Keyword(s):

Data Protection ◽

Personal Data ◽

Legal Framework ◽

The European Union ◽

French Law ◽

General Data Protection Regulation ◽

Personal Data Protection ◽

Research Biobanks ◽

Active Research ◽

Set Up

AbstractSince 1978 and the initial French data protection law (Loi n°78-17 du 6 Janvier 1978), consecutive modifications regarding the protection of personal health data, especially in 2004, 2016 and 2018, set up a strict legal regime for processing sensitive personal data, including for research purposes. In recent years, French law has evolved proactively and in parallel with the work of the European Union (EU) on the preparation of what became the General Data Protection Regulation (GDPR), which has been in force since May 2018. This Chapter performs a state-of-art analysis (as of 1 July 2019) of the French legal framework for research biobanks and data protection rules applying to biobanking, in particular those related to data subjects’ rights and Article 89 of the GDPR. Firstly, it provides updated information about the national landscape of active research biobanks in France (Sect. 1). Secondly, it explores how the French law embodies the developments brought by the GDPR and how it envisages individuals’ rights in the context of research biobanking (Sects. 2 and 3). Thirdly, this Chapter analyses existing and potential national exemptions to individuals’ rights, including with regard to Article 89 GDPR, and how France conceives of processing activities of ‘public interest’ (Sect. 4). Finally, the authors address ongoing debates around bioethics law in France and argue for the creation of a specific Act focused on biobanking as a means of integrating, clarifying and developing not only data protection rules but also other activities related to samples, human or not, in a unique, operational and compact act (Sect. 5).

Download Full-text

Personalized Medicine and Medicinal Chemistry: Toward a Legal Framework in the European Union

Current Topics in Medicinal Chemistry ◽

10.2174/1568026619666181120144213 ◽

2019 ◽

Vol 18 (25) ◽

pp. 2165-2173 ◽

Cited By ~ 1

Author(s):

Aliuska Duardo-Sánchez ◽

Iñigo De Miguel Beriain

Keyword(s):

European Union ◽

Personalized Medicine ◽

Medicinal Chemistry ◽

Clinical Care ◽

Personal Data ◽

Legal Protection ◽

Legal Framework ◽

Sensitive Information ◽

The European Union ◽

Massive Sequencing

In the last few years, the fields of Medicinal Chemistry and especially the ones related to the so-called Personalized Medicine, have received a great attention. Significant investment and remarkable researches surround the matter; however, not all those promising advances are reaching patients as quickly as they should. The absence of an adequate regulatory framework could be of no help. The complete and/or massive sequencing of individual genomes faces many ethical-legal challenges. Some of them are access to Personalized Medicine; the treatment of a large volume of sensitive information and the use of tools produced by "big data" systems in clinical care or in predictive models. In addition, the legal protection of personal data related to health, the exercise of autonomy by patients, closely related to the regulation regarding clinical trials, are seriously involved. Our purpose of this work is to review the regulations of the European Union, in an attempt to contribute to a better understanding of the legal framework for the implementation and development of health systems based on Personalized Medicine.

Download Full-text

Legal Aspects of Artificial Intelligence on Automated Decision-Making in Indonesia

Lentera Hukum ◽

10.19184/ejlh.v7i3.18380 ◽

2020 ◽

Vol 7 (3) ◽

pp. 301

Author(s):

Denindah Olivia

Keyword(s):

Artificial Intelligence ◽

United States ◽

Decision Making ◽

Data Protection ◽

Personal Data ◽

Legal Protection ◽

The United States ◽

The European Union ◽

Personal Data Protection ◽

Automated Decision Making

This paper analyzes the importance of Indonesia's comprehensive legal framework on automated decision-making empowered by Artificial Intelligence, comparing it to the European Union, the United States, and China. Specifically, this paper inquires about the status quo of the legal protection of automated decision-making In Indonesia. The analysis highlights profiling in an automated decision-making system with the following discussion about personal data protection. In this context, the European Union's member states set out the General Data Protection Regulation (GDPR) that prohibits automated decision-making to a certain extent. In the United States, the practice of automated decision-making is rather usual. Simultaneously, China takes an exceptional measure instead and develops this automation through a social credit system. The analysis concludes that Indonesia has weak legal protection towards personal data and profiling, which later becomes the basis in facilitating automated decision-making. The provision of automated decision-making and profiling is the absolute bare minimum to Indonesia's Personal Data Protection Bill due to insufficient legal certainty. In the end, it is paramount for lawmakers to consider a comprehensive regulation on automated decision-making by adopting the European Union's GDPR framework. KEYWORDS: Artificial Intelligence, Automated Decision-Making, Personal Data Protection.

Download Full-text

Election of members of the supervisory body for personal data protection as a guarantee of their independence: Examples of Albania, Bosnia and Herzegovina, Montenegro and North Macedonia

Strani pravni zivot ◽

10.5937/spz64-28379 ◽

2020 ◽

pp. 125-135

Author(s):

Miloš Stanić

Keyword(s):

Personal Data ◽

Communication Technologies ◽

Legal Framework ◽

The European Union ◽

Legal Norms ◽

Personal Data Protection ◽

Eu Membership ◽

Legal Method ◽

The Social ◽

The Eu

With the development of communication technologies, it has become clear that it is necessary to create an adequate legal framework in order to protect personal data. One of its indispensable elements is the creation of an independent supervisory body for the protection of personal data. By using comparative legal method, on the example of four neighbouring countries, of which all were members of the ex-communist bloc and are the EU membership candidates, author tried to find out certain common legal solutions within these countries regarding the election of their members seeking to achieve their independence. The author also gives appropriate critical view concerning certain solutions. These countries were chosen because, in the historical and social sense, they went and are going through what Serbia is going through in the process of joining the European Union. It has to be noted that the goals guaranteed and proclaimed by legal norms do not always have to be achieved in practice. However, one must also be aware that a valid legal framework is the first step, without which the proclaimed goals cannot be achieved. This is where the social justification of the scientific study of this topic is reflected.

Download Full-text