ICO’s report updates investigation into the use of data analytics in political campaigns

On 6 November 2018 the ICO published it's report to Parliament (Investigation into the use of data analytics in political campaigns A report to Parliament 6 November 2018). The detailed report serves as an update to the ICO's ongoing investigation into the use of data analytics for political purposes which commenced in May 2017 and whose ...

EDPB establishes common criteria for Data Protection Impact Assessment lists drafted by national supervisory authorities

On 26 September 2018, the European Data Protection Board (“EDPB”) adopted Opinions on the draft lists, submitted by the respective national supervisory authorities, on the processing operations subject to the requirement of a data protection impact assessment (“DPIA”). The Opinions which result from the obligation for supervisory authorities to establish a list of the kind of processing operations that ...

BIG DATA, SMART DATA, MY DATA, YOUR DATA: SMART DATA PROTECTION BY DESIGN (PART 5)

Part 5. Core International Data Protection Principles: Purpose specification Another core principle of data protection is purpose specification, a primary instrument of international data protection that is closely related to the principles of data quality and use limitation.  The purposes for which personal data are collected need to be specified before or at the latest, at the time ...

MEPs demand full audit on Facebook – resolution on the use of Facebook users’ data by Cambridge Analytica and the impact on data protection

In light of the  Facebook-Cambridge Analytica scandal, this past Thursday (25 October 2018) MEPs called for a full audit on Facebook in addition to new measures against interference in elections. The (non-binding)  resolution (European Parliament resolution of 25 October 2018 on the use of Facebook users’ data by Cambridge Analytica and the impact on data protection (2018/2855(RSP)) adopted ...

BIG DATA, SMART DATA, MY DATA, YOUR DATA: SMART DATA PROTECTION BY DESIGN (PART 4)

Part 4. Core International Data Protection Principles: Collection limitation, lawfulness and fairness The principle of collection limitation with respect to personal data establishes that data should be collected by way of fair and lawful means, with the knowledge and when appropriate, the consent of the data subject as so to limit indiscriminate data collection. In the Smart ...

BIG DATA, SMART DATA, MY DATA, YOUR DATA: SMART DATA PROTECTION BY DESIGN (PART 3)

Part 3. Core International Data Protection Principles: Openness  Accountability, collection limitation, purpose specification, use limitation, security, data quality, access and correction, and openness - these are all core principles of data protection that are so fundamental, they are internationally recognised. Let's start with Openness. Data controllers must always be open and transparent with respect to their developments, practices, ...

BIG DATA, SMART DATA, MY DATA, YOUR DATA: SMART DATA PROTECTION BY DESIGN (PART 2)

Part 2. Legal compliance = primary enabler of Smart Data and Data protection by design and by default  As stated in the introductory post in this blog series,  my aim is to develop a sound legal methodology for the generation of  #SmartData from #bigdata in order to allow us to successfully harness value in massive datasets ...

Big data, smart data, my data, your data: Smart data protection by design (Part 1)

“The oil of the 21st century”, “the fuel of the digital economy”, the “data gold rush”. There’s no doubt that data is playing an ever-more important role in both the global society and the economy. The former Article 29 Working Party, renamed European Data Protection Board on 25 May 2018, when the GDPR became directly applicable ...

EDPD Opinion 23/2018

The European Data Protection Board (EDPD) recently published its Opinion 23/2018 on Commission proposals on European Production and Preservation Orders for electronic evidence in criminal matters (Art. 70.1.b) which was approved on 28 September 2018.  The Opinion comes in light of the April 2018 Commission two complementary legislative proposals aiming to foster coordination among EU Member State authorities ...

EDPS Publishes Opinion on “A New Deal for Consumers” legislative package

The EDPS has published a new Opinion on the “A New Deal for Consumers” legislative package. The package consists of two proposals: one for a Directive as regards better enforcement and modernisation of EU consumer protection rules and  for a Directive on representative actions for the protection of the collective interests of consumers. You can access the ...