Ide kerülhet az előadás címe Enforcement of personal data protection in Hungary by Dr. Attila Péterfalvi "Business and Security" Research Center for Legal.

Slides:

Advertisements

Similar presentations

LAPSI 2nd Public Conference New Hungarian Data Protection and Freedom of Information Authority Tamás Kovács HUNAGI.

Advertisements

Counterfeit and Pirated Goods 6 th April Relevant Acquis Icelandic Legislation International Conventions Customs Intervention Preconditions Time.

The Data Protection (Jersey) Law 2005.

The Hungarian Civil Liberties Union’s FOI lawsuits Ádám Földes HCLU.

The fundamentals of EC competition law

China on the way to a high-technology country: The legal policy perspective Stefan Luginbuehl Lawyer, International Legal Affairs.

Copyright 2014 TOP TEN LEGAL ISSUES WITH. NUMBER 10: Are we friends?

Hong Kong Privacy Code on Human Resource Management

Ide kerülhet az előadás címe Data protection implications of the use of RPAS and recommendations – Budapest, 5th February 2015.

The UK Freedom of Information Act – A Practical Guide for Academic Researchers Cambridge Wednesday, 16 February 2011.

Ombudsman: protection of the rights of minorities in Portugal and best international practices João Tiago Silveira Seminar on Constitutional Reform and.

Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.

Per Anders Eriksson

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Overview

The Data Protection Act

Data Protection for Church of Scotland Congregations

Ide kerülhet az előadás címe Dr. Attila Péterfalvi: The Hungarian „case” (Independence of the DPA) Belgrade,

Regulation of Personal Information Daniel Pettitt, Leon Sewell and Matthew Pallot.

Conditions and Peculiarities of Submission of Complaints in Ukraine. Typical Errors/Infringements Relating to Submission of Complaints Kyiv, April.

Privacy Codes of Conduct as a self- regulatory approach to cope with restrictions on transborder data flow Dr. Anja Miedbrodt Exemplified with the help.

THE STATUS OF SECONDMENT  Poland is a country whose workers are mainly sent to other countries of the European Union or European.

Codes of Conduct and other legal instruments for building the public trust in parliaments Austrian regulations and experiences Alexandra Becker, Austrian.

NOTIFICATION AUTHORITY IN ROMANIA MINISTRY OF REGIONAL DEVELOPMENT AND PUBLIC ADMINISTRATION MRDPA.

Small claims procedure Regulation (EC) No 861/2007of European Parlament and of the Council of 11 July establishing a European Small Claims Procedure (OJ.

The Data Protection Act 1998 The Eight Principles.

Ide kerülhet az előadás címe CCTV operation at work Belgrade, 11 th April 2013.

VIDEO SURVEILLANCE AND DATA PROTECTION 8th Meeting of the Central and Eastern European Commissioners Euxinograde (Varna), May 2006 Neringa Kaktaviciute.

Access to Public Information in Slovenia Nataša Pirc Musar, LL.B. Commissioner for Access to Public Information The Hague – 24 th -25 th November, 2004.

Medical Law and Ethics, Third Edition Bonnie F. Fremgen Copyright ©2009 by Pearson Education, Inc. Upper Saddle River, New Jersey All rights reserved.

Health Insurance Portability and Accountability Act of 1996 HIPAA Privacy Training for County Employees.

Data Protection Act & Freedom of Information Simon Mansell Corporate Governance and Information Team.

Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.

The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;

The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.

INVESTIGATION AND ENFORCEMENT Presentation by Duncan T. Morotsi 15 th March

Hungarian Civil Liberties Union Hungarian Civil Liberties Union Ádám Földes Overview of FOI Litigation in Hungary.

1 The Public Interest Disclosure (Whistleblower Protection) Act.

Ide kerülhet az előadás címe Role of Data Protection Authorities – boundaries between lawful and unlawful processing of personal data Budapest, 17 September.

Ide kerülhet az előadás címe A New Experience: The Dilemmas and Specialties of the Data Protection Audit in Hungary.

Freedom of Information Act ‘What you need to know’ Corporate Information Governance Team Strategic Intelligence.

Introduction to Data Protection Plan »Brief Introduction to Data Protection  Example  Principles  P3, 4, 7  Sensitive Data  Conditions for Processing.

František Nonnemann Skopje, 10th October 2012 JHA Data protection and re-use of PSI as a tool for public control–CZ approach.

EU Certification Systems Dr. Friedrich Lüdeke, GLOBALG.A.P. Cairo, 12 June 2012.

1 M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 29 – Customs union Bilateral screening:

7/3/ Practical Problems and Issues of Applying the Review Mechanism Foreseen by the Legislation of Ukraine Kyiv, March 2012 Olexander Shatkovsky.

Ide kerülhet az előadás címe Julia Sziklay: Facial recognition – a relevant example of biometric data collection Sarajevo,

The European Commission´s Tax Transparency Package 18 March 2015.

Personal Data Protection

Monique Jefferson & Nadine Mather

Learning Intention Legislations impact on security of information

The Spanish experience of enforcing privacy norms Two decades of evolution from sticks to carrots Dr. Artemi Rallo Constitucional Law Professor Regulator's.

Ide kerülhet az előadás címe

Running a Privacy Impact Assessment (PIA)

Protection of Whistleblowers

Issues of personal data protection in scientific research

The European Union General Data Protection Regulation (GDPR)

Cyber Issues Facing Medical Practice Managers

Data Protection principles

United States — Countervailing and Anti-dumping Measures on Certain Products from China Bijou, Promito, Vasily.

Legal and Ethical Issues

How is the GDPR enforced ?

General Data Protection Regulations 2018

The activity of Art. 29. Working Party György Halmos

Trade Secrets 2018: International

The interplay between private enforcement and leniency policy

Changing the Reference Member State (RMS)

Fines, Sanctions and Compensation The teeth in the GDPR & Data Protection Act 2018 by Simon McGarr, CIPP/E Data Compliance Europe.

Overview of the recommendations regarding approximation of the Law on personal data protection to the new EU General data protection regulation Valerija.

Presentation by Fedor Kormilitsyn Deputy Head of Legal Department

Presentation transcript:

Ide kerülhet az előadás címe Enforcement of personal data protection in Hungary by Dr. Attila Péterfalvi "Business and Security" Research Center for Legal Informatics, Kiev

1992: Data Protection Act 1993: Data Protection Commissioner – ombudsman Main tool: recommendation, report and publicity 2004: modification of the Data Protection Act due to the European Union membership of Hungary → authority-like decisions of the commissioner to order the correction, deletion of illegally processed personal data or prohibit the further control or transfer of data to third countries Data controller should challenge the decision at the court + burden of proof Very rarely used tool, e.g. publication of hunting – diaries of VIP persons (state secretaries) or attacking the broadcasting of a commercial television show „Wife Swap” or Frauentausch”) because of unetchically publishing minors’ personal data Trends in the enforcement, Hungary

2011: new Pivacy Act (Act on Informational Self-determination and Freedom of Information) 1st January 2012: National Authority for Data Protection and Freedom of Information Constitutional changes, Hungary Ombudsman-like approach Main tools: recommendation, report and publicity Informal investigation Authority-like approach Main tool:official enforcement Official public administration procedure on the bases of a prior assessment report If the unlawful data control concern a wide-scope of persons or concern special data or significantly harm interests or endengers the risk of damages

Decisions of the Authority order the correction of unauthentic personal data; order the blocking, deletion or destruction of illegally controlled personal data; prohibit the illegal control or processing of the personal data; prohibit the transfer of the personal data to other countries; order notification of the data subject, should the controller have unlawfully refused to, impose a fine + and may also disclose the decision – with the ID data of the controller – should this be required in the interest of data protection or to protect the rights of a greater number of data subjects

Litigation Options for the Authority Should the controller fail to respond to the warning issued the Authority may, due to the infringement of law regarding data of public interest and data public on grounds of public interest, request the court to oblige the controller to act in accordance with the warning notification issued within a period of 30 days following the expiry of the deadline period for providing information. The controller is obliged to prove that the data control corresponds to provisions governing relevant legislation.

Practical examples 1.Company stores files with personal data of ex- employees in a stall without door or custody (5 million HUF fine) 2.Internal group of a bank sent to 600 adressees without anonymising the addresses ( HUF fine) 3.Group of a voluntary mutual insurance fund sent to 300 members without anonymising the addresses (2 million HUF fine)

Address: H-1125 Budapest, Szilágyi Erzsébet fasor 22/c. H-1530 Budapest, Pf. 5. Tel.: Fax: