Effective implementation: from Principles to Realities

Slides:



Advertisements
Similar presentations
1 IS THERE A FUNDAMENTAL RIGHT TO FORGET? Bruxelles – 20 May 2009.
Advertisements

The fundamentals of EC competition law
INTEGRATION POLICY IN THE EUROPEAN UNION THE QUESTION OF COMPETENCE John Handoll.
Consumer Law: Protection and Compliance UCC 11 December 2014 Consumer Law: the European Agenda.
A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.
Basic consumer rights and fundamental rights Jules Stuyck Professor K.U.Leuven, partner, Liedekerke. Wolters. Waelbroeck. Kirkpatrick, Brussels.
Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
Network_2012.ppt Prof. Dr. Christa TOBLER, LL.M., Universities of Basel (Switzerland) and Leiden (The Netherlands) Recent case-law of the CJEU: enforcement.
European Ombudsman Access to environmental information Task Force on Access to Information Geneva, 4 December 2014.
EC Study on the Implementation of Articles 9.3 and 9.4 of the Aarhus Convention in the EU Presentation at the 5th meeting of the Task Force on Access to.
Re – use of PSI in Slovenia Kristina Kotnik Šumah Deputy of the Information Commisoner.
Data Protection Privacy in the Digital Age: the UN General Assembly Resolution Sophie Kwasny, 16 October th International Conference, Mauritius.
Support for the Modernisation of the Mongolian Standardisation system – EuropeAid/134305/C/SER/MN Training on standardisation Support to the Modernisation.
The Eighth Asian Bioethics Conference Biotechnology, Culture, and Human Values in Asia and Beyond Confidentiality and Genetic data: Ethical and Legal Rights.
Directive on the Authorisation of electronic communications networks & Services Directive (2002/20/EC) Authorisation Directive Presented by: Nelisa Gwele.
DG Information Society The EU and Data Retention Data Retention Meeting London, 14 May 2003 Philippe GERARD, DG Information Society The positions.
EPRC State aid and the challenges of SME involvement in ETC Programmes Fiona Wishlade Interreg V – Avspark! Kommunal- og Regionaldepartementet.
The EU and Access to Environmental Information Unit D4 European Commission, Directorate General for the Environment 1.
1 TAIEX JHA Workshop on data protection and cloud computing Data transfers to third countries and standard contractual clauses Skopje, 29 May 2014.
2014 International Business Program & Erasmus Faculty of Management, University of Warsaw T. Skoczny & Co. EUROPEAN BUSINESS LAW.
Freedom of information and protection of personal data Hungarian experiences 5TH MEETING OF DATA PROTECTION AUTHORITIES 28 OCTOBER 2008.
“INTERNATIONAL FAMILIES” UNDER EU PRIVATE INTERNATIONAL LAW
Privacy in the Digital Age: the UN General Assembly Resolution
Convention 108 and the EU framework: Differing while Converging
Europe’s ‘Highly Competitive Social Market’ Economy
E-VOLUTION OF DATA PROTECTION (IMPLEMENTATION OF DATA PROTECTION REFORM) Developments and Challenges in EU Privacy Law Aspects from a German Perspective.
The future of data protection: General Data Protection Regulation
Current developments at EU level
Brussels Privacy Symposium on Identifiability
EU Sanctions on Individuals
European Union Law Law 326.
JUDr. Michal Maslen, PhD. University of Trnava, Faculty of Law
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Data Protection: EU & International
The EU and International Environmental Law
Introductory case 1. facts (1)
PRESENTATION OF MONTENEGRO
General Data Protection Regulation
EU Competences Tamara Ćapeta 2016.
European Union Law Law 326.
Information Governance and Data Privacy: A World of Risk
Online content regulation and human rights: what should responsible private actors look like? Associate Prof. Sophie Stalla-Bourdillon, University of Southampton,
EU legislation on Personal Protective Equipment (PPE)
DP BILL: DIFFERENCES AND DEROGATIONS
Bob Siegel President Privacy Ref, Inc.
Introduction to GDPR 09/11/2018.
The Mutual Recognition Regulation
Article 10 – Freedom of expression
The GDPR and research data
DG Employment and Social Affairs
EUROPEAN PRIVATE INTERNATIONAL LAW
Is Data Protection a Fundamental Right Protecting the Individual?
DIRECTORATE GENERAL FOR INTERNAL POLICIES
Key obligations of the MS in CAP
Free movement of persons
CAP decision making process
Item 4.1 Recent activities in confidentiality and micro data access
Avv. Roberto Panetta LL.M. Ph.D. ISCL Secretary General
Updating the Article 6 guide Outline of envisaged changes
The EDPS: competences and processing of personal data in EU funds
Data Protection in Law Enforcement Area Chapter 9a of the draft law
Overview of the recommendations regarding approximation of the Law on personal data protection to the new EU General data protection regulation Valerija.
The Treaty of Lisbon and Administrative Cooperation
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
FUNDAMENTAL SOCIAL RIGHTS IN EU
Outline Background: development of the Commission’s position
European Union Law Daniele Gallo
LECTURE No 6 - THE EUROPEAN UNION’s JUDICIAL SYSTEM I (courts)
Freedom of movement of workers in the EU
General Data Protection Regulation Community Councils
Presentation transcript:

Effective implementation: from Principles to Realities E-VOLUTION OF DATA PROTECTION 7-8 September 2017, Tartu Effective implementation: from Principles to Realities ERIC SITBON

Some key principles 1. A Regulation which is directly applicable in all Member States and fully harmonises certain data protection rules 2. A Regulation based on Article 16 TFEU 3. A Regulation covering the private and public sectors but excluding certain activities from its scope 4. A Regulation which seeks to ensure a more effective enforcement of data protection rules 5. A Regulation containing directly applicable rules which will be applied consistently by national Courts with the involvement of the CJEU

Principle 1: a Regulation which is directly applicable in all Member States – Reality? (1) No transposition. However, in some instances, see Recital 8 The Regulation lays down general rules and principles. Several provisions of the Regulation may be specified by Member States; however, it does not amount to minimal harmonisation. Public sector: Articles 6(2)&(3) (more specific provisions to adapt the application of the Regulation)

Principle 1: a Regulation which is directly applicable in all Member States – Reality? (2) Some examples of powers given to Member States: Rules on child’s consent (information society services) : Article 8(1) by MS law between the age of 13 and 16 years old; Article 23 on restrictions Freedom of expression and information : Article 85 Public access to official documents: Article 86 Processing in the context of employment: Article 88 Safeguards and derogations in certain areas (e.g. statistics or research): Article 89

Principle 2: a Regulation based on Article 16 TFEU What are the implications compared to Directive 95/46/EC based on Article 114 TFEU? How has the CJEU interpreted Article 16 TFEU and Article 8 of the Charter in recent case law? Reality on the ground: how will the big players of the digital economy apply the GDPR?

Principle 3: a Regulation covering the private and public sectors but excluding certain activities from its scope The GDPR has a broad scope but excludes certain activities, some of which are regulated by national law or by other Union acts applying adapted rules Delineation may prove difficult to implement in some instances

Principle 4: a Regulation which seeks to ensure a more effective enforcement of data protection rules Harmonised administrative fines but a broad margin of appreciation to calculate the amount of the fines – which actor(s) will ensure a consistent application of those fines? In addition, exceptions have been introduced in Article 83 (7) and (9) (see corresponding Recitals 150 and 151) The binding decisions of the European Data Protection Board to resolve disputes between national supervisory authorities: a more consistent implementation?

Principle 5: a Regulation containing directly applicable rules which will be applied consistently by national Courts with the involvement of the CJEU An increased role for national courts? An increased role for the CJEU through preliminary rulings and direct actions (see Recital 143)?

Recommendations and conclusion Member States should ‘screen’ their national laws as early as possible to enable a smooth application of the GDPR in May 2018 supervisory authorities, especially those likely to often be ‘lead authorities’, should be properly staffed and proactive

THANK YOU !