Threats and Challenges to Data Protection and Privacy :-

Slides:



Advertisements
Similar presentations
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY.
Advertisements

Data Protection & Human Rights. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Cyber Security and Data Protection Presented by Mrs Drudeisha Madhub (Data Protection Commissioner ) Tel: Helpdesk:+230.
The Data Protection (Jersey) Law 2005.
Training on Data Protection Functions of the Data Protection Office.
ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.
Presented by Mrs Drudeisha Madhub (Data Protection Commissioner) Tel: Helpdesk: Fax:
Contemporary Issues in Canadian Health Care Nola M. Ries, MPA, LLM Adjunct Assistant Professor, University of Victoria Research Associate, Health Law Institute,
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
An overview of the Data Protection Act Legal framework The Data Protection Act 1998 came into force in March 2001, replacing the Data Protection.
DATA PROTECTION OFFICE
The Information Commissioner’s Office David Evans.
A Common Immigration Policy for Europe Principles, actions and tools June 2008.
Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.
Finance and Governance Workshop Data Protection and Information Management 10 June 2014.
Data Protection and You Your Rights & The Law Registration Basics Other Activities Disclaimer: This presentation only provides an introductory info. Please.
OUTLINE Introduction Background of Securities Regulation Objective of Securities Regulation Violations under the Securities Industry Law The Securities.
Data Protection Act AS Module Heathcote Ch. 12.
Breakaway Session 2: Data Protection and The Role of the Data Protection Supervisor Michael Mingle Director, NTSS Solutions (UK) D ATA P ROTECTION C ONFERENCE.
Workshop Understanding your responsibilities under the Data Protection Act 1998 and the Freedom of Information Act 2000 Adele Rhodes Girling.
Protection of Personal Information Act An Analysis on the impact.
ENSURING THE PRIVACY OF CITIZENS IN CCTV SYSTEMS WITH REGARD TO PUBLIC SECURITY Sarajevo May 2016 CEEDPA INFORMATION AND DATA PROTECTION COMMISSIONER.
7/7/20161 The Public Sector Equality Duty for Schools in England Jonathan Timbers – Policy Manager, PSED Team, Equality and Human Rights Commission.
HIPSSA Project PRESENTATION ON SADC DATA PROTECTION MODEL LAW
Data Protection Officer’s Overview of the GDPR
Privacy and Public Policy Implications of IoT
GDPR (General Data Protection Regulation)
Overview General Data Protection Regulation (GDPR)
NATIONAL ECONOMIC DEVELOPMENT AND LABOUR COUNCIL (NEDLAC)
THE NEW GENERAL DATA PROTECTION REGULATION: A EUROPEAN OR A GLOBAL STANDARD? Bart van der Sloot Senior Researcher Tilburg Institute for Law, Technology,
Understanding EU GDPR from an Office 365 perspective
Accountability: an EU perspective
Privacy principles Individual written policies
Data Protection: EU & International
FUNCTIONS OF THE Data Protection OFFICE
Presentation to GTMC on GDPR
Building Coalitions for Change Information, Consultation and Public Participation in Policy-making Experience from OECD countries Directorate for Public.
Managing Data Protection
GDPR – Legal Aspects Desislava Krusteva, Attorney-at-Law, CIPP/E
Data Protection in AN organisation
General Data Protection Regulation
Data protection issues in regulatory investigations
General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.
GDPR Overview Gydeline – October 2017
Information Governance and Data Privacy: A World of Risk
Data Protection Legislation
GDPR support January GDPR support January 2018.
GDPR Overview Gydeline – October 2017
Data protection reform:
Bob Siegel President Privacy Ref, Inc.
GENERAL DATA PROTECTION REGULATION (GDPR)
Introduction to GDPR 09/11/2018.
State of the privacy union
Privacy: a work in progress
G.D.P.R General Data Protection Regulations
Data protection in the Education Sector - understanding the impact of GDPR Tuesday 23rd January 2018.
The GDPR & Schools - An Introduction -
HIPSSA Project Support for Harmonization of the ICT Policies in Sub-Sahara Africa, Meeting with the Namibia ICT Ministry and Data Protection Stakeholders.
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
General Data Protection Regulation (GDPR)
GDPR Workshop MEU Symposium Prague 2018
Welcome!.
OHSC 2018 CONSULTATIVE WORKSHOPS CERTIFICATION AND ENFORCEMENT
The General Data Protection Regulation: Are You Ready?
General Data Protection regulation (GDPR)
Data Protection in Law Enforcement Area Chapter 9a of the draft law
Overview of the recommendations regarding approximation of the Law on personal data protection to the new EU General data protection regulation Valerija.
Presentation transcript:

Threats and Challenges to Data Protection and Privacy :- Addressing them Now – For a Better Future Presented by: Mrs Drudeisha MADHUB Data Protection Commissioner Venue: Institute for Judicial and Legal Studies 14th November 2017

Today’s Agenda Introduction Tools for Data Protection Data Protection as a Human Rights Issue Some European Case Laws Vision and Mission Need for DPO in Mauritius Some Definitions Principles of the DPA Roles of the Data Protection Office Some Decisions on Complaints Managing Data Protection Offences and Penalties Key Challenges in Data Privacy Accession to Convention 108 Data Protection Bill Benefits of the new Bill This is another option for an Overview slide.

Introduction Privacy is a fundamental right, essential to autonomy and protection of human dignity. ICT have facilitated new ways of communicating directly with virtually the entire world in ways that were unthinkable only a few decades ago. New modes of communication also create risks. If the whole world becomes a village in which everybody knows one another, what will become of privacy?

Tools for DPO We are leaving our digital traces, publishing a lot of personal data or entrusting our data without knowing where or how it is going to be used. The best protection for individuals is when their personal information is only collected when required. To consider Privacy by Design Use of Privacy Enhancing Technologies should not be limited to tools that provide a degree of anonymity to living individuals.

Data Protection as a Human Rights Issue Data protection concerns the protection of the personal data of living individuals. Scope is not restricted to purely economical considerations or gains but encompasses the broader perspective of the right to privacy or the right to be left alone of every citizen of this country. Links between data protection and privacy indicate that data protection is linked to private life and the right to decide on whom the data related to private life are shared with and how they are shared.

Some European Case Laws Chave née Jullien v. France,1991 P.G. and J.H. v. the United Kingdom, 2001 Uzun v. Germany, 2010 Roman Zakharov v. Russia, 2015

Vision & Mission Vision A society where Data Protection is understood and practiced by all. The right to privacy and data protection is primordial to the sanctity of any modern democracy. The adoption of clear procedures for the collection and use of personal data in a responsible, secure, fair and lawful manner by all data controllers and data processors. Mission Safeguard the privacy rights of all individuals with regard to the processing of their personal data.

NEED FOR DPO IN MAURITIUS Data protection’s importance has certainly increased due to technology. Technology can be used to glean meaning from a large set of detailed data. Technology is undoubtedly responsible for creating a new environment in which data protection must be implemented.

Are you a Data Controller? SOME DEFINITIONS What is Personal Data? Are you a Data Controller? Who is a Data Processor?

PRINCIPLES OF THE DPA Principle 1: Fairness Principle 2: Transparency   Principle 3: Quantity Principle 4: Accuracy Principle 5: Time limit Principle 6: Individuals’ rights Principle 7: Security Principle 8: International transfers

Registration of Data Controllers Investigation of Complaints ROLES OF THE DATA PROTECTION OFFICE Registration of Data Controllers Investigation of Complaints Conduct compliance audits Sensitisation Exercise control on all data protection issues Research on data processing and computer technology

DECISIONS ON COMPLAINTS Decision No 4 - Unauthorised use of CCTV cameras of Respondent Decision No 6 - ​Complaint on request for sensitive personal data without consent Decision No 18 - Complaint on unauthorised disclosure of personal information

MANAGING DATA PROTECTION Awareness Exception of consent Data Quality and accuracy Security Policy Outsourcing

Offences and Penalties Subject to Section 61 of the DPA, any person who contravenes this ACT shall commit an offence. Where no specific penalty is provided for an offence, the person shall, on conviction, be liable to a fine not exceeding 200,000 rupees and to imprisonment for a term not exceeding 5 years.

KEY CHALLENGES IN DATA PRIVACY Complicated in a modern, high-tech society as new communication technologies and methods have led to new challenges and threats. Data privacy is more than compliance. A strategic investment, not a cost challenge.

ACCESSION TO CONVENTION 108 Strengthening our data protection legal framework with international best practices Ratification of Mauritius to the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data, also known as ''Convention 108''.

ACCESSION TO CONVENTION 108 Outlaws the processing of "sensitive" data in the absence of proper legal safeguards Enshrines the individual's right to know that information is stored on him or her and, if necessary, to have it corrected Vision 2030 Blueprint: Adoption of the position to partly meet this target with the ratification of Convention 108 Fully compliant with Vision 2030 Blueprint Alignment of the existing Data Protection Laws with the new 2016 EU Directive in the new Bill

DATA PROTECTION BILL New challenges for the protection of personal data. Scale of the collection and sharing of personal data has increased significantly. Building trust in the online environment is key to economic development. Requirement of a stronger and more coherent data protection framework backed by strong enforcement. To make the existing Data Protection Act coherent with technological and other advancements and to align with the EU Directive Reform and Convention 108.

DATA PROTECTION BILL Increased accountability of data controllers to implement controlled business processes. Better organisation, greater productivity and efficiency, and higher level of security. To gain and strengthen customer trust, confidence and loyalty. Give individuals greater control over their personal data. Minimization of risk of data breaches. Reinforcement of the legal and practical certainty for economic operators and public authorities   Significantly improve the digital legal landscape to respond to the new EU requirements for adequacy.

Questions

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.