Keyword: Privacy
Ziekenhuizen en energiebedrijven gaan wellicht boeten voor beveiligingsfouten: Nieuwe IT-wet bedoeld om ‘potentiële maatschappelijke ontwrichting’ te voorkomen external link
beveiliging, Cybersecurity, energiebedrijven, it, nederland, Privacy, ransomware, Telecommunicatierecht, toezicht, wetgeving, ziekenhuizen
RIS
Bibtex
Tracking walls, take-it-or-leave-it choices, the GDPR, and the ePrivacy regulation external link
Abstract
On the internet, we encounter take-it-or-leave-it choices regarding our privacy on a daily basis. In Europe, online tracking for targeted advertising generally requires the internet users’ consent to be lawful. Some websites use a tracking wall, a barrier that visitors can only pass if they consent to tracking by third parties. When confronted with such a tracking wall, many people click ‘I agree’ to tracking. A survey that we conducted shows that most people find tracking walls unfair and unacceptable. We analyse under which conditions the ePrivacy Directive and the General Data Protection Regulation allow tracking walls. We provide a list of circumstances to assess when a tracking wall makes consent invalid. We also explore how the EU lawmaker could regulate tracking walls, for instance in the ePrivacy Regulation. It should be seriously considered to ban tracking walls, at least in certain circumstances.
Links
europe, frontpage, GDPR, Privacy, tracking walls
RIS
Bibtex
Unfair Commercial Practices: A Complementary Approach to Privacy Protection external link
Abstract
Millions of European internet users access online platforms where their personal data is being collected, processed, analysed or sold. The existence of some of the largest online platforms is entirely based on data driven business models. In the European Union, the protection of personal data is considered a fundamental right. Under Article 8(3) of the EU Charter of Fundamental Rights, compliance with data protection rules should be subject to control by an independent authority. In the EU, enforcement of privacy rules almost solely takes place by the national data protection authorities. They typically apply sector-specific rules, based on the EU Data Protection Directive. In the United States, the Federal Trade Commission is the primary enforcer of consumers’ (online) privacy interests. The agency’s competence is not based on the protection of fundamental rights, but on the basis that maintenance of a competitive, fair marketplace will provide the right choices for consumers to take. In this Article the US legal framework will be discussed and compared to the EU legal framework, which forms our finding that in the EU rules on unfair commercial practices could be enforced in a similar manner to protect people’s privacy. In the EU, the many frictions concerning the market/consumer-oriented use of personal data form a good reason to actually deal with these frictions in a market/consumer legal framework.
Links
frontpage, Fundamental rights, Online platforms, Personal data, Privacy, unfair commercial practices
RIS
Bibtex
About finding practical solutions (without the GDPR) external link
Links
frontpage, GDPR, Privacy, privacy bridges
RIS
Bibtex
The perfect match? A closer look at the relationship between EU consumer law and data protection law external link
Abstract
In modern markets, many companies offer so-called “free” services and monetize consumer data they collect through those services. This paper argues that consumer law and data protection law can usefully complement each other. Data protection law can also inform the interpretation of consumer law. Using consumer rights, consumers should be able to challenge excessive collection of their personal data. Consumer organizations have used consumer law to tackle data protection infringements. The interplay of data protection law and consumer protection law provides exciting opportunities for a more integrated vision on “data consumer law”.
Consumentenrecht, Consumer law, Data protection law, EU, frontpage, gegevensbescherming, Privacy
RIS
Bibtex
A Roadmap to Enhancing User Control via Privacy Dashboards external link
Abstract
This report presents and draws on multidisciplinary insights into what characterises effective user control over the collection and use of personal data. User controls arise from the interplay of a number of conditions. These are partly technical but also connected to different aspects of user behaviour, the intricacies of design, as well as the internal and external incentives in privacy governance that exist today. Our review of the state of research underscores that devising effective user controls require close collaboration between different disciplines, clear regulatory guidance and scientifically-backed assessments.
frontpage, Privacy
RIS
Bibtex
The freely given consent and the "bundling" provision under the GDPR external link
Abstract
Under European data protection law, consent of the data subject is one of the six grounds for lawful processing of personal data. It is such an important ground that lawmakers considered it necessary to provide a legal definition of consent. One of the conditions under this definition is that it needs to be “freely given.” The General Data Protection Regulation (GDPR) 3 has further expanded on this concept in Article 7(4). It refers to a situation under which consent might not be considered “freely given.” If consent is invalid because it is not freely given, the processing is usually unlawful. Consequently, a legal basis for processing is missing. Therefore, this is an important provision. Yet the wording of this new provision is vague and its scope is unclear. Thus, the question arises as to how Article 7(4) should be applied. In this paper, the authors tease out the assessment criteria for the application of this provision on the basis of its text, structure and history. These criteria will then be applied to hypothetical cases in the final section.
bundling, consent, frontpage, General Data Protection Regulation, Privacy
RIS
Bibtex
Book Review: The Crisis of Presence in Contemporary Culture external link
Links
book review, Data protection, ethics, phenomenology, presence, Privacy, property
RIS
Bibtex
Annotatie bij Hoge Raad 31 maart 2017 (Rabobank / Stichting Restschuld Eerlijk Delen) external link
Abstract
Privacy werknemers bij een kritische publicatie over het bedrijf waar zij werkzaam zijn. Recht op anonimiteit?
anonimiteit, frontpage, Privacy, werknemers