Presentation is loading. Please wait.

Presentation is loading. Please wait.

General Data Protection Regulation: Turning the black into white

Published byLoren Golden Modified over 6 years ago

Similar presentations

Presentation on theme: "General Data Protection Regulation: Turning the black into white"— Presentation transcript:

1 General Data Protection Regulation: Turning the black into white
Bart van der Sloot Tilburg Institute for Law, Technology, and Society (TILT) Tilburg University, Netherlands

2 Lippizaner

3 The Dark Side of the GDPR
Everything is personal data

4 The Dark Side of the GDPR

5 The Dark Side of the GDPR
Sensitive data Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation shall be prohibited

6 The Dark Side of the GDPR
Medical exception Where personal data are processed for scientific or historical research purposes or statistical purposes, Union or Member State law may provide for derogations from the rights referred to in Articles 15, 16, 18 and 21 subject to the conditions and safeguards referred to in paragraph 1 of this Article in so far as such rights are likely to render impossible or seriously impair the achievement of the specific purposes, and such derogations are necessary for the fulfilment of those purposes.

7 The Dark Side of the GDPR
Personal data shall be: 1. Lawfulness, fairness and transparency 2. Specified, explicit and legitimate purpose 3. Purpose limitation 4. Data minimization 5. Data accuracy 6. Storage limitation 7. Integrity and confidentiality

8 The Dark Side of the GDPR
Consent Freely Specific Informed Unambiguous Burden of proof on data controller Withdraw his or her consent Special rules for children

9 The Dark Side of the GDPR
Rights of individuals 1. Right to be informed 2. Right to access 3. Right to rectify 4. Right to object 5. Right to data portability 6. Right to be forgotten 7. Right to resist profiling

10 The Dark Side of the GDPR
Obligations for Data Controllers 1. Documentation 2. Auditing 3. Transparency 4. Technical and organisational security 5. Data leaks 6. Data Protection Impact Assessement 7. Data Protection Officer

11 The Dark Side of the GDPR
Fines Infringements of the following provisions shall, in accordance with paragraph 2, be subject to administrative fines up to EUR, or in the case of an undertaking, up to 4 % of the total worldwide annual turnover of the preceding financial year, whichever is higher

12 Turning it into white

13 Turning it into white

14 Turning it into white

15 Turning it into white

16 Turning it into white

17 Turning it into white

18 Turning it into white

19 Turning it into white

20 GDPR: danger or opportunity?

Download ppt "General Data Protection Regulation: Turning the black into white"

Similar presentations

Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.

Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
PRIVACY ASPECTS OF RE-USE OF PSI: BETWEEN PRIVATE AND PUBLIC SECTOR

PRIVACY ASPECTS OF RE-USE OF PSI: BETWEEN PRIVATE AND PUBLIC SECTOR
Data Protection & Privacy in the Information Age COMNET – Legal Frameworks for ICTs Malta 2013 Dr Antonio Ghio Dr Jeanine Rizzo.

Data Protection & Privacy in the Information Age COMNET – Legal Frameworks for ICTs Malta 2013 Dr Antonio Ghio Dr Jeanine Rizzo.
DATA PROTECTION and Research University Research Ethics Committee – 08.05.2006 David Cauchi Office of the Data Protection Commissioner.

DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
The European Union legal framework for clinical data access: The European Union legal framework for clinical data access: potential challenges and opportunities.

The European Union legal framework for clinical data access: The European Union legal framework for clinical data access: potential challenges and opportunities.
Data Protection Act 1998. The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.

Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
The promise and peril of ICT implants: setting the legal framework 47 th FITCE Congress London, 21-24 September 2008 Eleni Kosta, Peggy Valcke Interdisciplinary.

The promise and peril of ICT implants: setting the legal framework 47 th FITCE Congress London, September 2008 Eleni Kosta, Peggy Valcke Interdisciplinary.
DATA PROTECTION ACT 1998. INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March 2000. It is more far reaching than its predecessor,

DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
Data Protection Principles as Basic Foundation for Data Protection in EU/EEA Introduction to Data Protection Theory Seminar - AFIN 02. 02. 2006 Stephen.

Data Protection Principles as Basic Foundation for Data Protection in EU/EEA Introduction to Data Protection Theory Seminar - AFIN Stephen.
Personal Data Protection

Personal Data Protection
Key changes with the GDPR

Key changes with the GDPR
Judicial Training on Data Protection and Privacy Rights

Judicial Training on Data Protection and Privacy Rights
The future of data protection: General Data Protection Regulation

The future of data protection: General Data Protection Regulation
Processing for archiving purposes in the GDPR

Processing for archiving purposes in the GDPR
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,

THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Issues of personal data protection in scientific research

Issues of personal data protection in scientific research
General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR)
GDPR – Legal Aspects Desislava Krusteva, Attorney-at-Law, CIPP/E

GDPR – Legal Aspects Desislava Krusteva, Attorney-at-Law, CIPP/E
IT Applications Theory Slideshows

IT Applications Theory Slideshows
General Data Protection Regulation

General Data Protection Regulation

Similar presentations

Ads by Google