1 www.privacyconference2009.org INTERNATIONAL STANDARDS on data protection & privacy Artemi Rallo Lombarte Director Agencia Española de Protección de Datos.

Slides:



Advertisements
Similar presentations
Terra Incognita Auditing for Privacy Workshop: Chairman’s Remarks
Advertisements

ENQA’S CONSULTATIVE MEMBERSHIP IN THE BFUG - WHAT DOES IT ENTAIL
The German Accreditation System: From programme to institutional approach Accreditation Council Foundation for the Accreditation of Study Programmes in.
1 EU Policy in the field of Organ Donation and Transplantation Media Seminar - EU Health Journalist Prize Brussels, 29 October 2009 Anna Pavlou European.
Regional Policy EUROPEAN COMMISSION 1 EGTC regulation EGTC regulation ESF and EGTC regulations Regulation of the European Parliament and of the Council.
1 IS THERE A FUNDAMENTAL RIGHT TO FORGET? Bruxelles – 20 May 2009.
1 The PATLIB (Patent Library) Network in Europe Heidrun Krestel European Affairs, Member States 19 May 2010.
1 The EPO Co-operation Programme to reorient patent information centres Heidrun Krestel European Affairs, Member States 4 October 2010.
1 Agencia Española de Protección de Datos AUDITING AND ENFORCEMENT AT THE SPANISH DPA. EXPERIENCE WITH OUTSOURCING TO COUNTRIES WITH A NON ADEQUATE LEVEL.
1 Enforcement Powers of National Data Protection Authorities and Experience gained of the Data Protection Directive Safe Harbour Conference Washington.
Yukiko Ko Binding Corporate Rules – Global Implications Conference on Cross Border Data Flows and Privacy October 16, 2007.
WP3. Evaluation, Monitoring and Quality Plan Dr. Luis Sobrado 27 th May 2011.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
WCO Customs Data Model Thomas Morawietz Technical Attaché e-commerce and Customs IT affairs.
1 The Data Protection Officer at work Experience, good practices and lessons learnt Pierre Vernhes – former DPO at the Council of the EU Workshop on Data.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
The Treaties, Institutions and Policies of the EU
Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
From European to international standards on data protection (1/2)
High-Level Meeting of Regional Energy Regulatory Associations of Emerging Markets Sergey Novikov Head of the Federal Tariff Service (FTS of Russia) April.
African Declaration on Internet Rights and Freedoms Presentation by: Edetaen Ojo Media Rights Agenda, Nigeria.
Privacy, Data Protection and Lex Informatica -- lecture 4 Dr. Lee A. Bygrave,
Codes, Standards & Conformity Assessment GP Russ Chaney CEO, The IAPMO Group
Christophe Depreter, CEO SABAM, Belgium Seminar AEPO-ARTIS Panel discussion 3 - Collective management of rights in a globalised environment Role and challenges.
Standards and innovation What is a standard? How do standards promote innovation? What is the role of governments and the UN?
Corporate Governance in the Caribbean Environment “The Caribbean Corporate Governance Forum” Trevor E Blake General Manager – ECSE.
UKRAINIAN INTERNET GOVERNANCE FORUM Kyiv 1 October 2014 State of play of the answers to Ed. Snowden revelations: TIME OF REPORTS USA National, EU, CoE.
1 Building the Privacy culture, starts with the youngsters and their education 20 th and 21 st June 2013 Zagreb, Croatia.
European Data Protection Supervisor Pharmaceutical Regulatory & Compliance Congress, Brussels, 7 June 2007 European Privacy and Data Protection Policy.
European Territorial Cooperation SAWP meeting, 9 July
1 30 YEARS AFTER: THE IMPACT OF THE OECD PRIVACY GUIDELINES 10 March 2010 Spanish Data Protection Agency Synergy between the OECD Privacy Guidelines and.
June 1, st Asia Pacific Privacy Authorities (APPA) Forum – PHAEDRA Workshop Nr. 3: The EU Data Protection Regulation and regional perspectives.
Data Protection in the DIFC Outreach Session Office of Data Protection 4 June 2013 Data Protection.
1 Access to Research Data from Public Funding: The development of international principles and guidelines for OECD countries CODATA conference, 23 October.
1 Joint EAIE/NAFSA Symposium Amsterdam, March 2007 John E Reilly, Director UK Socrates-Erasmus Council.
Malcolm Crompton APEC Information Privacy Framework: review, impact, & progress APEC Symposium on Information Privacy Protection in E Government & E Commerce.
Data protection and compliance in context 19 November 2007 Stewart Room Partner.
APEC vs APT?: The struggle for regional privacy standards Graham Greenleaf ‘Terrorists & Watchdogs’ Conference, 8 September 2003.
Session III: Common Safety Standards- The best way to best practices The IAEA Safety Standards aim at: – Enhancing safety principles and criteria – Documenting.
Préposé fédéral à la protection des données et à la transparence PFPDT Federal Data Protection and Information Commissioner FDPIC Les impératifs d’une.
European Aviation Safety Agency Head of Aircraft Product Certification
Mr Themba Wakashe Director-General Department of Arts and Culture Convention on the Protection and Promotion of the Diversity of Cultural Expressions POST.
1 Item 2.1.b of the agenda IT Governance in the ESS and related issues Renewal of mandates STNE Adam WROŃSKI Eurostat, Unit B5.
Public health, innovation and intellectual property 1 |1 | The Global Strategy on Public Health, Innovation and Intellectual Property Technical Briefing.
Pilot Project on implementation of SEA for regional planning in Ukraine Prof. Dr. Michael Schmidt Dmitry Palekhov Brandenburg University of Technology.
SEVESO II transposition and implementation: Possible approaches and lessons learned from member states and new member states SEVESO II transposition and.
1 Agencia Española de Protección de Datos The Use of Contracts and BCRs to Transfer Personal Data The European Union – United States Safe Harbor framework:
Council of Europe Child Participation Assessment Tool Agnes von Maravic Children’s Rights Division Council of Europe Based on slides prepared by Gerison.
EU TOOLS FOR TRASPARENCY: THE IMPACT OF EQF ON ITALIAN E&T SYSTEM Rome 7 October 2013.
Data Protection – the Lisbon Effect Billy Hawkes Data Protection Commissioner Institute of International and European Affairs Dublin, 17 September 2009.
SPANISH LAW on SOCIAL ECONOMY 5/2011 Miguel Ángel Cabra de Luna, PhD Member of the European Economic and Social Committee, Spanish Enterprise Confederation.
-1- WORKSHOP ON DATA PROTECTION AND DATA TRANSFERS TO THIRD COUNTRIES Technical and organizational security measures Skopje, 16 May - 17 May 2011 María.
Convention 108 and the EU framework: Differing while Converging
Member Body Compliance Program
Annex III to BS/SC/PDF/A(2003)1
Insurance Comparison Websites: EIOPA Good Practices
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Data Protection: EU & International
ERIC Experiences and New Developments
Secretariat for Legal Affairs
Iain McDonald Information Commissioner
ESF Monitoring & Evaluation and Data Protection in Spain
Nick Bonvoisin Secretary to the Convention on the
SOCIAL DIALOGUE WITHIN THE SCOPE OF EUPAN
1999 MOSAICC 2001 CBD BONN GUIDELINES
A Global Consensus Process
European Social Fund and Social Partners Partnership Joint actions in all Members States Capacity building in Convergence Regions DG Employment,
The 1997 UN Watercourses Convention
The “Once Only Principle” and reuse of data in Luxembourg
Presentation transcript:

1 INTERNATIONAL STANDARDS on data protection & privacy Artemi Rallo Lombarte Director Agencia Española de Protección de Datos

2 There are different regional approaches to privacy and data protection all around the world: Directive 95/46/EC OECD Guidelines on the Protection of Privacy APEC Privacy Framework Convention 108 of the Council of Europe… It entails State of Play Less protection for individuals More complexity for business

3 The 30 th International Conference of Data Protection and Privacy Commissioners adopted unanimously a draft resolution proposed by Switzerland and Spain that… supports the efforts of the Council of Europe, and the action taken within OECD, APEC...; mandates the establishment of a working group (…), to draft and submit to its closed session a Joint Proposal for setting international standards on privacy and personal data protection. International Standards

4 The adopted resolution also set the main criteria for the drafting process: To elaborate a set of principles and rights aimed to achieve the maximum degree of international acceptance, ensuring at once a high level of protection. To formulate the essential guarantees for better international transfers of data. To examine the role of self-regulation. To obtain the broadest institutional and social consensus. Criteria to be followed

5 Launched the drafting process Academics: Prf. Poullet, Benyekhlef, Cottier, Korff… DPA: CA, CH, CZ, DE, ES, FR, IE, NL, PT, SI, UK + EDPS Industry: Accenture, Google, Intel, ISO, Oracle… International Organizations: CoE, OECD, UE NGO: EDRi, FPF, Privacy International… Professional associations: EPON, IAPP Public bodies: FTC, DHS Set up the major guidelines of the Joint Proposal and the working methodology First step: Barcelona meeting

6 The first version was structured in 6 parts General provisions (purpose, definitions, scope) Basic principles Legitimacy for processing Rights of the data subject Security Compliance and monitoring 1 st Draft Version

7 We have received reactions: DPAs America: CA, MX, UY Asia: HK Europe: CH, CY, CZ, DE, ES, HR, IE, IT, PT + EDPS + UE Oceania: AU, NZ Industry Accenture, Atradius, Bird & Bird, CIPP, Écija, FFW, Garrigues, HP-EDS, Hunton & Williams, Microsoft, Procter & Gamble… Academics, Judges, NGOs… 1 st Draft Version

8 At this moment, we have just sent to the members of the Working Group a new draft version. We look forward for receiving all your remarks, in order to include them in the third draft version, which will be discussed next 11 June in Bilbao. The final draft should result of this meeting 2 nd Draft Version

9 To clarify the role of the Document …as a way for facilitating international data flows To review the controller/processor notions The responsible person decides on the existence of the processing. To consider the definition of filing system …an obsolete concept? To reduce bureaucratic requirements …that in practice do not improve data protection Some Main Innovations

10 To set an accountability principle …that imposes duties on the responsible person To adapt the concept of sensitive data …because every country has a different culture To promote international data transfers …if the recipient offers a similar level of protection to that provided by the International Standards To inform individuals of security breaches …when they could be seriously impaired Some Main Innovations

11 Some Main Innovations To broaden the Supervisory Authority idea …that, for instance, may be an arbitration institution or a consumer authority. To enhance international co-operation …among supervisory authorities, including coordinated enforcement actions. To encourage proactive measures …as a way for reducing liability in case of infraction To analyze the relevant law …on the Internet age.

12 The final draft proposal will be submitted to the 31 st Privacy Conference, that is being organized by the Agencia. If approved, the next step has to be defined: towards a binding instrument? 31 st Privacy Conference

13

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.