Class 13 Internet Privacy Law European Privacy.

Slides:



Advertisements
Similar presentations
Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
Advertisements

Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Innovation through participation Attributes Release Working Group European data protection directive REFEDS meeting 22th Apr, 2012
Data Protection.
Sarah Branam Mehmet MunurDino Tsibouris
1 PRIVACY ISSUES IN THE U.S. – CANADA CROSS BORDER BUSINESS CONTEXT Presented by: Anneli LeGault ACC Greater New York Chapter Compliance Seminar May 19,
Data Protection and Records Management
Legal European Aspects of Digital Rights Management © Abdullah Sherbini 2006 بسم الله الرحمن الرحيم.
Text Privacy and Data Protection in Sweden Christine Kirchberger.
What if my organization conducts business across borders ? Your footnote Privacy and “Personal Information” have different meanings in different countries;
INTERNET and CODE OF CONDUCT
A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.
Anomalous Aspects of Transfer of Personal Data from the E.U. to the U.S. Stephen R. Bell Willkie Farr & Gallagher ABA Section of International Law New.
Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
Data Protection: The Law. EU & Irish Legislation Data Protection Directive 95/46/EC Electronic Privacy Directive 2002/58/EC EUROPOL etc Data Protection.
THE CHOICES WE MAKE THAT MATTER – International Data Privacy/Protection JILL L. UREY, ASSISTANT GENERAL COUNSEL MID-ATLANTIC CIO FORUM NOVEMBER 20, 2014.
Data Protection Overview
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Lawyer at the Brussels Bar Lecturer at the University of Strasbourg Assistant at the University of Brussels Data Protection & Electronic Communications.
LexisNexis Confidential EU Privacy Framework Michael Lamb LexisNexis Risk Solutions Vice President and Lead Counsel: Regulatory, Privacy & Policy May 19,
Privacy & Personal Information Prepared by the CBC Law Department CONFIDENTIAL – FALL 2011.
The European influence on privacy law and practice Nigel Waters, Pacific Privacy Consulting International Dimension of E-commerce and Cyberspace Regulation.
OCR Nationals Level 3 Unit 3.  To understand how the Data Protection Act 1998 relates to the data you will be collecting, storing and processing  To.
Data Protection Compliance Professor Ian Walden Institute of Computer and Communications Law, Centre for Commercial Law Studies, Queen Mary, University.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
E-Privacy and Cookies: Legal Aspects. E-Privacy Directive 2002/58, amended by 136/2009 Main amendments focus on DBN (security) and confidentiality of.
INTERNATIONAL E-DISCOVERY: WHEN CULTURES COLLIDE Alvin F. Lindsay Hogan & Hartson LLP.
IT Applications Theory Slideshows By Mark Kelly Vceit.com Privacy Laws.
IM NETWORK MEETING 20 TH JULY, 2010 CONSULTATION WITH 3 RD PARTIES.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
Privacy, Data Protection and Lex Informatica -- lecture 7 Dr. Lee A. Bygrave,
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
Session 11 Data protection. 1 Contents Part 1: Introduction Part 2: Applicability and responsibility Part 3: Our procedures on data protection Part 4:
Data protection—training materials [Name and details of speaker]
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Protection of Personal Information Act An Analysis on the impact.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
TRANSBORDER DATA FLOWS INA MEIRING. THE PROTECTION OF PERSONAL INFORMATION ACT (“POPI”) > 'personal information' means information relating to an identifiable,
František Nonnemann Skopje, 9th October 2012 JHA DP aspects related to provision of information about public figures in CZ.
Data Protection Laws in the European Union John Armstrong CMS Cameron McKenna.
Data protection act. During the second half of the 20th century, businesses, organisations and the government began using computers to store information.
Students’ Unions 2011 Data Protection and Students’ Unions Mairead O’Reilly 19 July 2011.
Monique Jefferson & Nadine Mather
Key changes with the GDPR
Judicial Training on Data Protection and Privacy Rights
Data Protection GCSE ICT Mrs N Steventon-2005.
Data Protection: The Law
Issues of personal data protection in scientific research
Data Protection: EU & International
IT Applications Theory Slideshows
Data Protection The Current Regime
Museums + Heritage webinar, 30 November 2017
Information Governance and Data Privacy: A World of Risk
Bob Siegel President Privacy Ref, Inc.
GENERAL DATA PROTECTION REGULATION (GDPR)
General Data Protection Regulation
GDPR Overview and Use Cases.
Relocation CARNIVAL come one…come all
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
IMPLICATIONS OF GDPR ROBERT BELL.
GDPR Workshop MEU Symposium Prague 2018
Data transfers to non-EU countries under the new GDPR
The EDPS: competences and processing of personal data in EU funds
General Date Protection Regulation
Legal Basis: CRITERIA FOR MAKING DATA PROCESSING LEGITIMATE
Session 4: Data Mapping and Data Subject Rights
General Data Protection Regulation (GDPR)
Session 4: Data Mapping and Data Subject Rights
Presentation transcript:

Class 13 Internet Privacy Law European Privacy

Differing Approaches EuropeUnited States General Terms DATA PROTECTIONS PRIVACY Data Protection Privacy is policies, laws, and regs Data protection is privacy related laws and regulations Treatment of Privacy Fundamental human right. No processing of PI is default, and processing must meet strict guidelines Some constitutional rights to privacy. Commercial use is acceptable. Processing limited by sector. Privacy Protection ModelComprehensiveSectoral Sensitive Information race/ethnic origin, political opinion, religion, health or sex life, criminal history, union membership SSN, Drivers License, Medical records, financial info

The Comprehensive Model ❖ EU data protection directive (1998) ❖ Parental consent before collecting data from under 13 ❖ Companies with >250 employees must have data protection

Why the different approaches to privacy?

Defining what is private in EU ❖ EU definition of PI ❖ Any information relating to an identified or identifiable individual (includes name, address). ❖ Personal data ❖ Any information related to an identifiable natural person

EU Data Protection Roles ❖ DPA in each member state ❖ Data controller – individual in entity who directs data management (most laws are focused on data controller) ❖ Data processor – follows orders of data collector ❖ Data subject – user ❖ Processing - Under EU ANYTHING with PI is processing (even storage)

Generally ❖ Processing of PI prohibited unless: ❖ Notice ❖ Consent ❖ Data quality principles ❖ Other exceptions ❖ Special processing for certain categories ❖ Right to access and object ❖ Controls on automated decisions ❖ Notice to DPAs ❖ Transfer restrictions

Legitimate Processing ❖ EXPRESS CONSENT unless ❖ Contract where data subject is subject of a contract ❖ Legal obligation ❖ Vital interests of data subjet ❖ Legitimate use ❖ Processing of Sensitive PI PROHIBITED unless: ❖ Explicit consent ❖ Vital interests ❖ Public information

Transferring Out of Europe ❖ Adequacy ❖ Andorra, Argentina, Canada (commercial organizations), Faeroe Islands, Guernsey, Israel, Isle of Man, Jersey, New Zealand, Switzerland, Uruguay and the US Department of Commerce's Safe Harbor Privacy Principles ❖ Safe-harbor (Between EU and US only) ❖ Model contracts ❖ Limited exceptions ❖ Binding corporate rules

Employee Privacy ❖ May not probe into past ❖ Employee monitoring ONLY with specific justification ❖ Background checks are limited ❖ Employers required to consult with trade unions agreements and regulations

EU Cookie Directive ❖ The ePrivacy directive – more specifically Article 5(3) – requires prior informed consent for storage of or access to information stored on a user's terminal equipment. ❖ In other words, you must ask users if they agree to most cookies and similar technologies … before the site starts to use them.

EU Cookie Directive ❖ However, some cookies are exempt from this requirement. Consent is not required if the cookie is: ❖ used for the sole purpose of carrying out the transmission of a communication, and ❖ strictly necessary in order for the provider of an information society service explicitly required by the user to provide that service.

Closing out the class

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.