General Data Protection Regulation: Turning the black into white

Slides:



Advertisements
Similar presentations
Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
Advertisements

PRIVACY ASPECTS OF RE-USE OF PSI: BETWEEN PRIVATE AND PUBLIC SECTOR
Data Protection & Privacy in the Information Age COMNET – Legal Frameworks for ICTs Malta 2013 Dr Antonio Ghio Dr Jeanine Rizzo.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
The European Union legal framework for clinical data access: The European Union legal framework for clinical data access: potential challenges and opportunities.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
The promise and peril of ICT implants: setting the legal framework 47 th FITCE Congress London, September 2008 Eleni Kosta, Peggy Valcke Interdisciplinary.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
Data Protection Principles as Basic Foundation for Data Protection in EU/EEA Introduction to Data Protection Theory Seminar - AFIN Stephen.
Personal Data Protection
Key changes with the GDPR
Judicial Training on Data Protection and Privacy Rights
The future of data protection: General Data Protection Regulation
Processing for archiving purposes in the GDPR
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Issues of personal data protection in scientific research
General Data Protection Regulation (GDPR)
GDPR – Legal Aspects Desislava Krusteva, Attorney-at-Law, CIPP/E
IT Applications Theory Slideshows
General Data Protection Regulation
GDPR Any impact on procurement? 16/11/2017.
International Regulatory Trends
GDPR Overview Gydeline – October 2017
Where is the harm? Calculating the damages afforded in privacy cases by the European Court of Human Rights Bart van der Sloot May 14th 2017, Haifa, Israel.
Data for Child Health: Promoting & Protecting Public Health through Custodianship EAP Brussels, 28 January 2016 Health Databases & Biobanks Promoting &
GDPR Overview GDPR - General Data Protection Regulations
GDPR Overview Gydeline – October 2017
Data Protection & Freedom of Information- An Introduction
GENERAL DATA PROTECTION REGULATION (GDPR)
General Data Protection Regulation
General Data Protection Regulation (GDPR) and Data Protection
The Rise of Privacy: Complying with GDPR in the United States
The General Data Protection Regulation (GDPR)
Introducing the General Data Protection Regulation 2016
Appropriate Data Sharing in Health and Social Care
The GDPR and research data
FEK årskonferanse 28. februar 2018.
Bart van der Sloot Data Protection 2.0 The proposal for a General Data Protection Regulation Bart van.
The Data Protection Regulation for Europe

GDPR Overview and Use Cases.
General Data Protection Regulation
Relocation CARNIVAL come one…come all
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
General Data Protection Regulation
IMPLICATIONS OF GDPR ROBERT BELL.
Bart van der Sloot Data Protection 2.0 The proposal for a General Data Protection Regulation Bart van.
GDPR Workshop MEU Symposium Prague 2018
Data Protection in a Tutorial Context
GDPR enforcement begins
Big Data & the General Data Protection Regulation
Is Data Protection a Fundamental Right Protecting the Individual?
Information Handling Research Student Induction Day
The General Data Protection Regulation: Are You Ready?
Item 4.1 Recent activities in confidentiality and micro data access
Public Privacy: juridical & ethical perspective
GDPR – General Data Protection Regulation
The EDPS: competences and processing of personal data in EU funds
Data Protection for SDS Employers Alison Johnston Lead Policy Officer (Scotland) Information Commissioner’s Office.
General Data Protection Regulation Q & A Session
Legal Basis: CRITERIA FOR MAKING DATA PROCESSING LEGITIMATE
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
General Data Protection Regulation (GDPR)
GDPR Session
General Data Protection Regulation
General Data Protection Regulation (GDPR) and library authority data
The Data Protection Regulation for Europe
The EU General Data Protection Regulation
Information Governance
A. Šidlauskas Mykolas Romeris University (LITHUANIA)
Presentation transcript:

General Data Protection Regulation: Turning the black into white Bart van der Sloot Tilburg Institute for Law, Technology, and Society (TILT) Tilburg University, Netherlands www.bartvandersloot.com

Lippizaner

The Dark Side of the GDPR Everything is personal data

The Dark Side of the GDPR

The Dark Side of the GDPR Sensitive data Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation shall be prohibited

The Dark Side of the GDPR Medical exception Where personal data are processed for scientific or historical research purposes or statistical purposes, Union or Member State law may provide for derogations from the rights referred to in Articles 15, 16, 18 and 21 subject to the conditions and safeguards referred to in paragraph 1 of this Article in so far as such rights are likely to render impossible or seriously impair the achievement of the specific purposes, and such derogations are necessary for the fulfilment of those purposes.

The Dark Side of the GDPR Personal data shall be: 1. Lawfulness, fairness and transparency 2. Specified, explicit and legitimate purpose 3. Purpose limitation 4. Data minimization 5. Data accuracy 6. Storage limitation 7. Integrity and confidentiality

The Dark Side of the GDPR Consent Freely Specific Informed Unambiguous Burden of proof on data controller Withdraw his or her consent Special rules for children

The Dark Side of the GDPR Rights of individuals 1. Right to be informed 2. Right to access 3. Right to rectify 4. Right to object 5. Right to data portability 6. Right to be forgotten 7. Right to resist profiling

The Dark Side of the GDPR Obligations for Data Controllers 1. Documentation 2. Auditing 3. Transparency 4. Technical and organisational security 5. Data leaks 6. Data Protection Impact Assessement 7. Data Protection Officer

The Dark Side of the GDPR Fines Infringements of the following provisions shall, in accordance with paragraph 2, be subject to administrative fines up to 20 000 000 EUR, or in the case of an undertaking, up to 4 % of the total worldwide annual turnover of the preceding financial year, whichever is higher

Turning it into white

Turning it into white

Turning it into white

Turning it into white

Turning it into white

Turning it into white

Turning it into white

Turning it into white

GDPR: danger or opportunity?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.