Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: EU Data Protection

Under EU General Data Protection Regulation large fines result from failure to protect consumer data

eSecurity Planet: “The massive Equifax breach that recently affected 143 million consumers would have led to hugely significant fines if the European Union’s General Data Protection Regulation (GDPR), which takes effect in May 2018, had already been in place. Under the new rules, organizations that fail to protect sensitive data can be fined up to 4 percent of annual global turnover, or 20 million Euros, whichever is greater. Since Equifax had $3.15 billion in operating revenue in 2016, if the breach had taken place after the GDPR had gone into effect, the company could have faced fines of up to $126 million. What’s more, CipherCloud founder and CEO Pravin Kothari told eSecurity Planet by email, GDPR may well just be the beginning. “We expect GDPR to serve as a model for similar regulations in the U.S. and around the world, helping to protect individual privacy and thus minimize the economic threat from future breaches,” he said…”

Paper – Compensation for Breach of the General Data Protection Regulation

O’Dell, Eoin, Compensation for Breach of the General Data Protection Regulation (June 25, 2017). Available at SSRN: https://ssrn.com/abstract=2992351 “Article 82(1) of the General Data Protection Regulation (GDPR) provides that any “person who has suffered material or non-material damage as a result of an infringement of this Regulation shall have the right to receive compensation from… Continue Reading

European Data Protection Supervisor – New Website

“Our website has undergone quite a makeover! With new features and drop down menus, we present you our new look website to share information about who we are and what we do. Read how the EDPS is organised under the About EDPS section; for detailed information on our data protection work, Ethics, IPEN, Big Data… Continue Reading

The Right Tools: Europe’s Intermediary Liability Laws and 2016 General Data Protection Regulation

Keller, Daphne, The Right Tools: Europe’s Intermediary Liability Laws and the 2016 General Data Protection Regulation (February 8, 2017). Available for download at SSRN: https://ssrn.com/abstract=2914684 “The so-called “Right to Be Forgotten” established by the Court of Justice of the European Union in 2014 is about to change. The EU’s General Data Protection Regulation, which goes… Continue Reading

ABA Journal – Erasing the News: Should some stories be forgotten?

Erasing the News: Should some stories be forgotten? By Terry Carter – this is an extensive and well researched article. I have snipped a small portion to invite you to read it in its entirety online. Note – This article originally appeared in the January 2017 issue of the ABA Journal with this headline: “Erasing… Continue Reading

PersonalData.IO helps you get access to your personal data

“PersonalData.IO is a free and open platform for citizens to track their personal data and understand how it is used by companies. It is part of the MyData movement, promoting a human-centric approach to personal data management. A lot of readers of this blog will be familiar with Freedom of Information laws, a legal mechanism… Continue Reading

Bing To Use Location for Requests To Be Forgotten

Via Bing Blog: “Bing has expanded the scope of our Right to be Forgotten (RTBF) filtering in Europe. In the past, when Bing accepted an RTBF request, the URL would be delisted from all applicable European versions of Bing (such as Bing.fr, Bing.de, Bing.co.uk) for searches of the requestor’s name. Going forward, in addition to… Continue Reading

Friending the Privacy Regulators

McGeveran, William, Friending the Privacy Regulators (August 5, 2016). 58 Arizona Law Review, Forthcoming; Minnesota Legal Studies Research Paper No. 16-26. Available for download at SSRN: http://ssrn.com/abstract=2820683 “According to conventional wisdom, data privacy regulators in the European Union are unreasonably demanding, while their American counterparts are laughably lax. Many observers further assume that any privacy… Continue Reading

Text of European Commission Adequacy Decision on Privacy Shield

“European Commission Implementing Decision of 12.7.2016 pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequacy of the protection provided by the EU-U.S. Privacy Shield (Text with EEA relevance) THE EUROPEAN COMMISSION, Having regard to the Treaty on the Functioning of the European Union, Having regard to Directive 95/46/EC of… Continue Reading

Motherboard – Terrorism Database Used by Governments and Banks Leaked Online

“…Thomson Reuters’ database, called World-Check, is used by over 300 government and intelligence agencies, as well as 49 of the world’s top 50 banks, according to a company fact sheet. World-Check is designed to give insight into financial crime and the people potentially behind it “We monitor over 530 sanction, watch, and regulatory law and… Continue Reading

TTIP and Digital Rights

TTIP and Digital Rights Published: 08.06.2015 – “The Transatlantic Trade and Investment Partnership (TTIP – pronounced “tee-tip”) is a draft trade agreement being negotiated between the United States (US) and the European Union (EU). This booklet presents the concerns that EDRi and its members have regarding TTIP, such as the lack of transparency in the… Continue Reading

BEUC and EDRi urge EU Commission not to undermine citizens’ privacy in trade agreements

EDRI – By Heini Järvinen “On 10 June 2016, the European Consumers Association (BEUC) and European Digital Rights (EDRi) sent an open letter to the EU Commissioner for Trade, Cecilia Malmström, to express our concerns about the inclusion of a ban on (non-defined) “data localisation” in trade agreements. We urge the Commission to defend one… Continue Reading