Serious Privacy Podcast appearance – “The fourth leg of ESG: a Privacy Framework”

I recently had the pleasure of being interviewed by Paul Breitbarth of Catawiki and Dr. K Royal of Outschool for the Serious Privacy podcast, check out the episode here! During the podcast we discuss my research on the topic of Data Protection as a Corporate Social Responsibility which aims to improve data protection and data security for a ...

#DataProtectionDay: Committing to Transparency in 2022 with ECPC Data Protection Icons

Today is International Data Protection Day, in celebration of the 41st anniversary of the first binding international treaty concerning the topic of data protection being opened for signature: the Council of Europe Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data. Since the early 1980s, both the quantity and economic importance of data ...

How data minimization, data quality, and storage limitation can help in the fight against climate change

Over the last 20 years, access to cheap computational capacity has increasingly led to the harvesting of more and more personal data, without having to worry too much about costs related to data storage and processing activities. For this very reason (and all too often), data sets are offhandedly replicated, databases are left unmanaged, and the same ...

AI & Cybersecurity: Reflections on a multidimensional relationship

Earlier this month I was a guest on Episode 47: Innovation and Tech Zoom In of the European Edition of the Breaking Banks Podcast Moderated by Ajit Tripathi. The podcast looks at “European Unicorns, Startups, Founders, Regulators and Leaders innovating the rapidly evolving Fintech scene, with some of the world’s most well-known hosts and influencers in fintech. Produced in cooperation with FintechStage.” LISTEN ...

Happy Safer Internet Day: A call for data security by design

Today, Safer Internet Day, represents a good opportunity to remind organizations of the importance of embedding data protection and security into the design of processes, products and services. This consideration is, in fact, embodied in the first principle of five which I have identified as the foundation of Socially Responsible Data Protection and which are ...

Successful kick-off of the Data Protection as a Corporate Social Responsibility project

Yesterday, 6 February 2020, the Data Protection as a Corporate Social Responsibility project kick-off meeting was held within the European Centre on Privacy and Cybersecurity (ECPC) within the Faculty of Law at Maastricht University.  The project aims to trigger virtuous data protection competition between companies by creating an environment that identifies and promotes data protection as ...

Launching the Data Protection as a Corporate Social Responsibility research project at ECPC

There’s no better day than today, European Data Protection Day, to announce the 6 February kickoff meeting of the Data Protection as a Corporate Social Responsibility Research Project that I am leading at the European Centre on Privacy & Cybersecurity (ECPC) at Maastricht University.  In our data-centric global economy businesses need to consider privacy and data protection as assets rather than simply ...

Personal Data Protection as the New Competitive Edge: Generating Socially Responsible Corporate Behaviour

Last Friday I held my inaugural lecture as Professor of Privacy, Cybersecurity, and IT Contract Law at the Faculty of Law - European Centre for Privacy & Cybersecurity at Maastricht University. During my lecture I introduced the research activities that I would like to further develop at Maastricht University in a multidisciplinary setting that includes ...

Wojciech Wiewiórowski (EDPS) on Civil society organisations as allies of DPAs

Earlier this week in his blog, Wojciech Wiewiórowski (Assistant Supervisor at the EDPS) discussed the importance of civil society organisations as strategic allies of European DPAs because they play an important role in the practical application of data protection principles by "empowering individuals to assert their rights and holding data controllers accountable for their actions." Wiewiórowski pointed out ...