Can data protection regulation ever keep pace with technological change? Jonathan Bamford Assistant Information Commissioner.

Slides:



Advertisements
Similar presentations
European CommissionDirectorate-General Justice, Freedom and Security Data Protection 1 Conference on Cross Border Data Flows & Privacy October 15-16, 2007.
Advertisements

Legal & Regulatory Compliance. Overview What types of information should be included? What issues or problems might there be? What benefits could be obtained?
Data Protection Billy Hawkes Data Protection Commissioner Irish Human Rights Commission 20 November 2010.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Information Governance An Introduction. Information Governance Outline What is Information Governance What initiatives does IG cover.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
TEAM 4 Case Study Mauritius: Mrs Nandini Kissoon-Luckputtya
The Data Protection (Jersey) Law 2005.
Getting data sharing right for every child
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
1 Pertemuan 7 Points of Exposure Matakuliah:A0334/Pengendalian Lingkungan Online Tahun: 2005 Versi: 1/1.
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.
Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
Data Protection: The Law. EU & Irish Legislation Data Protection Directive 95/46/EC Electronic Privacy Directive 2002/58/EC EUROPOL etc Data Protection.
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
Audiences NI Data Protection Workshop
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
An overview of the Data Protection Act Legal framework The Data Protection Act 1998 came into force in March 2001, replacing the Data Protection.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
2 Private versus public. 2 Lesson objectives By the end of the session, you will: understand how you might unintentionally disclose personal data; define.
The Information Commissioner’s Office David Evans.
Care.Data an ICO Update EMIS National User Group Conference East Midlands Conference Centre Nottingham 3 rd October 2013 Lynne Shackley Lead Policy Officer.
EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.
The Data Protection Act 1998 The Eight Principles.
Data Protection Act AS Module Heathcote Ch. 12.
Local Government Reform: Incorporating Planning Functions Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s.
Data Protection: What You Need to Know Shauna Dunlop 1 July 2015.
What is personal data? Personal data is data about an individual which they consider to be private.
Information Management in Telco: A Legal Perspective Sheila Tormey Barlow Lyde & Gilbert LLP Ronan Lupton Barrister at Law 17 September 2009.
Local Government Reform and Compliance with the DPA Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s Office.
Legal issues The Data Protection Act Legal issues What the Act covers The misuse of personal data By organizations and businesses.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Data protection and compliance in context 19 November 2007 Stewart Room Partner.
THE DATA PROTECTION ACT Data Protection Act 1998 DPA 1. Reasons2. People3. Principles 4. Exemptions 4 key points you need to learn/understand/revise.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
Information Management in Retail: A Legal Perspective Chris Hill Barlow Lyde & Gilbert LLP 17 September 2009.
DATA PROTECTION ACT (DPA). WHAT IS THE DATA PROTECTION ACT?  The Data Protection Act The Data Protection Act (DPA) gives individuals the right.
What is the Data Protection Act (DPA)? 1998 The Data Protection Act 1998 seeks to strike a balance between the rights of individuals and the sometimes.
Data Protection Philip Reed. Introduction What is data? What is data protection? Who needs your data? Who wants your data? Who does not need your data?
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
DATA PROTECTION ACT DATA PROTECTION ACT  Gives rights to data subjects (i.e. people who have data stored about them on a computer)  Information.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Computing and Ethics & The Law. The Law Copyright, Designs and Patents Act (1988) Computer Misuse Act (1990) Data Protection Act (1998) (8 Main Principles)
Getting data sharing right for every child Maureen H Falconer Senior Policy Officer Information Commissioner’s Office.
Workshop Understanding your responsibilities under the Data Protection Act 1998 and the Freedom of Information Act 2000 Adele Rhodes Girling.
Data protection—training materials [Name and details of speaker]
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Commissioning Services: with the DPA in mind South Yorkshire Information and Data Sharing Group Sheffield 14 th August 2014 Lynne Shackley Lead Policy.
Data protection act. During the second half of the 20th century, businesses, organisations and the government began using computers to store information.
Information Management in Government: A Legal Perspective
Trevor Ellis Trainee Programmer (1981 – 28 years ago)
Data Protection: EU & International
General Data Protection Regulation
Museums + Heritage webinar, 30 November 2017
Data Protection Legislation
EU Directive 95/46/EC (Paragraph 2) “Whereas data-processing systems are designed to serve man; whereas they must Respect their fundamental rights.
Protection of Personal Information Bill: An International Perspective
Data Protection and You
Identify the laws and guidelines that affect day-to-day use of IT.
General Data Protection Regulations 2018
What is the Data Protection Act (DPA)? 1998
GDPR & Accountability ISACA Ireland Annual Conference 2018
Identify the laws and guidelines that affect day-to-day use of IT.
General Data Protection Regulation Community Councils
GDPR what do we need to do?
Presentation transcript:

Can data protection regulation ever keep pace with technological change? Jonathan Bamford Assistant Information Commissioner

Are our DP laws stuck in time? OECD Privacy Guidelines 1980 Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data (ETS No 108) 28 January 1981 & Protocol (ETS No 181) What did information handling look like back then? PCs…Internet…mobile communications…CCTV… RFID?

Are our DP laws stuck in time? UK Data Protection Act 1984 European Union Directive 95/46/EC UK Data Protection Act 1998 Even since then there has been substantial changes in personal information handling

All have a similar set of core standards UK DPA 1998 requires personal data to be processed fairly and lawfully obtained only for specified and lawful purposes and further processed only in a compatible manner adequate, relevant and not excessive accurate and up to date kept for no longer than necessary processed in accordance with the rights of data subjects kept secure transferred outside the EEA only if there is adequate protection

Are these standards still relevant today? ICO Research 2004-Public attitudes to deployment of surveillance techniques in public places Chose privacy rules almost same as the DP Principles IC commissioned research with Small and Medium Sized Enterprises in % think DP principles are good for business 91% agree that privacy is important to customers

Moves to particularise European Union Directive on Privacy and Electronic Communications- 02/58/EC UK Privacy and Electronic Communication Regulations

Constitutionalisation of DP Articles 7 & 8 – Charter of Fundamental Rights of the European Union – Nice, 7 December 2000 Proposed EU Constitution

Areas of wear and tear Definitions- personal data, transfers, personal use- arsing from Durant and Bodil Lindqvist cases Better regulatory powers to deal with telemarketing/spam Need for proactive tools such as audit/inspection and privacy impact assessments

The challenge for DP regulators Make sure the existing requirements are understood (lessons of ICO Make Data Protection Simpler project) Work together to clarify and enforce Be proactive Make sure we have the right tools for the job

Conclusions The core of the existing law is still relevant and effective Some of the defining terms are struggling to keep pace Better tools are needed to deliver compliance

Any Questions? Information Commissioner Wycliffe House Water Lane Wilmslow SK9 5AF United Kingdom Switchboard Helpline

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.