FEK årskonferanse 28. februar 2018.

Slides:



Advertisements
Similar presentations
Data Protection & Privacy in the Information Age COMNET – Legal Frameworks for ICTs Malta 2013 Dr Antonio Ghio Dr Jeanine Rizzo.
Advertisements

DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
The data retention directive: data protection aspects Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg 375 B-1040.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
TEAM 4 Case Study Mauritius: Mrs Nandini Kissoon-Luckputtya
Convention for the protection of individual with regard to automatic processing of personal data “The purpose of this convention is to secure in the territory.
The Data Protection (Jersey) Law 2005.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
The Data Protection Act 1998 The Eight Principles.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.
Computing, Ethics & The Law. The Law Copyright, Designs and Patents Act (1988) Computer Misuse Act (1990) Data Protection Act (1998) (8 Main Principles)
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
Data Protection Principles as Basic Foundation for Data Protection in EU/EEA Introduction to Data Protection Theory Seminar - AFIN Stephen.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
General Data Protection Regulation (EU 2016/679)
The Data Protection Act 1998
The Data Protection Act 1998
Processing for archiving purposes in the GDPR
Seamus Carroll Civil Law Reform Division
Luca De Matteis Justice counsellor (criminal law, data protection)
Trevor Ellis Trainee Programmer (1981 – 28 years ago)
Level 2 Diploma in Customer Service
Issues of personal data protection in scientific research
General Data Protection Regulation (GDPR)
Viewing the GDPR Through a De-Identification Lens
General Data Protection Regulation
Data Protection Act.
The Data Protection Act 1998
Data Protection Update – GDPR or bust
General Data Protection Regulation: Turning the black into white
GDPR Overview GDPR - General Data Protection Regulations
EU Directive 95/46/EC (Paragraph 2) “Whereas data-processing systems are designed to serve man; whereas they must Respect their fundamental rights.
GDPR Road map to Compliance.
GDPR and research Maria Rehbinder
Data Protection & Freedom of Information- An Introduction
GENERAL DATA PROTECTION REGULATION (GDPR)
6 Principles of the GDPR and SQL Provision
GDPR 101 and ucsb’s response
General Data Protection Regulation
The General Data Protection Regulation (GDPR)
G.D.P.R General Data Protection Regulations
The GDPR and research data
General Data Protection Regulation
Data Protection principles
OECD Guidelines Collection Limitation: should be limited to personal data, obtained by lawful and fair means, and (where appropriate) with knowledge and.
Identify the laws and guidelines that affect day-to-day use of IT.
GDPR Workshop MEU Symposium Prague 2018
General Data Protection Regulations 2018
Big Data & the General Data Protection Regulation
The General Data Protection Regulation Six months on – What’s changed
Information Handling Research Student Induction Day
PERSONAL INFORMATION BILL
IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004
Welcome IITA Inbound Insider Webinar: An Introduction to GDPR
Public Privacy: juridical & ethical perspective
This project is funded by the European Union
Privacy and Cyber Security for Payroll Pros: A Global Perspective
Hot Topic 1: GDPR and Traffic Data Systems
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Legislative Response to Data Inferences
Data Protection What can I do? GDPR Principles General Data Protection
General Data Protection Regulation Community Councils
Presentation transcript:

FEK årskonferanse 28. februar 2018. Open data –an important aspect of open science. How does this idea challenge the basic principals of privacy rights? FEK årskonferanse 28. februar 2018. 22.11.2018

Open science –an introduction Open science embodies a number aspects, at the core this includes open access, open data, open source, and open standards that offer unfettered dissemination of scientific discourse (uavhengig formidling av vitenskapelig diskurs) These things enable reproducible science by giving full access to the major components of scientific research. Kilde: opensource.com

Nasjonale føringer

PERSONVERNPRINSIPPENE: Lovlighet, rettferdighet og gjennomsiktighet Formålsbegrensning Dataminimering Lagringsbegrensning Integritet og fortrolighet Ansvar

Basic principals relating to processing of personal data, GDPR art. 5 Personal data shall be Processed lawfully, fairly and in a transparent manner in relation to the data subjects (lawfulness, fairness and transparency) Collected for specified, explicit and legitimate purposes and not further processes in a manner that is incompatible with those purposes. (purpose limitation) Further processing for …scientific…purposes shall in accordance with Article 89 (1) not be considered to be incompatible with the initial purposes. Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation)

Accurate and where necessary, kept up to date Accurate and where necessary, kept up to date. Every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay. (accuracy) Kept in a form which permits identification of data subjects for no longer than is necessary for the purpose for which the data are prosessed. Personal data may be stored for longer periods insofar as the personal data will be prosessed solely for … scientific purposes or statistical purposes in accordance with Article 89(1) subject to implementation of the appropriate technical and organisational measures required by this regulation in order to safeguard the rights and freedoms of the data subjects. (storage limitation)

Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures. (integrity and confidentiality) The controller shall be responsible for, and be able to demonstrate compliance with paragraph 1 (accountability)

GDPR art 89(1) Processing for … scientific or historical research purposes… shall be subject to appropriate sefaguards, in accordance with this regulation, for the rights and freedoms of the data subject. Those safeguards shall ensure that technical and organisational measures are in place in particular in order to ensure respect for the principle of data minimisation. Those measures may include pseudonymisation provided that those purposes can be fulfilled in that manner. Where those purposes can be fulfilled by further processing which does not permit or no longer permits the identification of data subjects, those purposes shall be fulfilled in that manner.

DE REGISTRERTES RETTIGHETER

Unntak? Artikkel 11 Artikkel 89(2) og (3) Data som ikke krever identifisering Artikkel 89(2) og (3) Lovregulerte unntak fra de registrertes rettigheter

BEHANDLINGSANSVARLIGES OG DATABEHANDLERES PLIKTER by design

Consent, Artikkel 4(11) Any freely given, specific, informed and unamiguous indication of the data subject’s wishes by which he or she, by statement or by a clear affirmative action, signifies agreement to data processing of personal data relating to him or her.

Processing of special categories of personal data, Artikkel 9 (1) Shall be prohibited! (2)Unless: the data subject har given explicit concent to the prosessing of those personal data for one or more specified purposes… (…) Processing is necessary for …research purposes… in accordance with Article 89(1) based on Union or Member state law which shall be proportionate to the aim pursued, respect the essence of the right to data protection and provide suitable and specific measures to safeguard the fundamental rights and the interests of the data subject.

And besides… Member states may maintain or introduce further conditions, including limitations, with regard to processing of genetic data, biometric data or data concerning health. «Nullius in verba» Take nobody’s word for it.

Takk for oppmerksomheten! gral@datatilsynet.no | +47 22396913

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.