2018
DOI: 10.21552/edpl/2018/1/10
|View full text |Cite
|
Sign up to set email alerts
|

Discussion ∙ How to Enforce the GDPR in a Strategic, Consistent and Ethical Manner?

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1

Citation Types

0
3
0

Year Published

2018
2018
2024
2024

Publication Types

Select...
5
1

Relationship

0
6

Authors

Journals

citations
Cited by 7 publications
(3 citation statements)
references
References 0 publications
0
3
0
Order By: Relevance
“…Defined in Article 5(1)(b) of the General Data Protection Regulation (GDPR), the 'purpose-limitation' 29 is notably seen as being the second principle related to the processing of personal data, which finds its normative expression 30 in the data subject's right to be properly and non-evasively informed on the multitude of purposes regarding the data collecting and processing. Moreover, the purpose-limitation meta-rule relates closely to the first principle of data protection, which relates to the lawfulness, fairness, 31 and transparency 32 of data collecting and processing and which requires that, fundamentally, a specific and legitimate reason is needed for any personal data that is collected based on the data subject's consent, since the personal data can only be used for the specified reasons 33 (obviously, exceptions could be made if further processing is meant for purposes such as archiving in the public interest, scientific or historical research, statistical reasons implying anonymized data, yet not implying pseudonymized data, which still permit individual traceability).…”
Section: Reverberations Of the 'Purpose-limitation' Principlementioning
confidence: 99%
“…Defined in Article 5(1)(b) of the General Data Protection Regulation (GDPR), the 'purpose-limitation' 29 is notably seen as being the second principle related to the processing of personal data, which finds its normative expression 30 in the data subject's right to be properly and non-evasively informed on the multitude of purposes regarding the data collecting and processing. Moreover, the purpose-limitation meta-rule relates closely to the first principle of data protection, which relates to the lawfulness, fairness, 31 and transparency 32 of data collecting and processing and which requires that, fundamentally, a specific and legitimate reason is needed for any personal data that is collected based on the data subject's consent, since the personal data can only be used for the specified reasons 33 (obviously, exceptions could be made if further processing is meant for purposes such as archiving in the public interest, scientific or historical research, statistical reasons implying anonymized data, yet not implying pseudonymized data, which still permit individual traceability).…”
Section: Reverberations Of the 'Purpose-limitation' Principlementioning
confidence: 99%
“…(a) The information age has led to a quantitative explosion in regulated entities under DPAs' oversight, creating a need for deterrence via strict enforcement to establish a culture of compliance (Voss and Bouthinon-Dumas, 2021;Hijmans, 2018;Bignami, 2011;but see Hodges, 2015); (b) European institutions, mainly the European Data Protection Board (EDPB), push for convergence in national enforcement styles to "level the playing field" (Hijmans, 2016a) and ultimately enhance the effectiveness of the EU Charter rights to data protection and privacy (Rijpma, 2020); (c) The GDPR has empowered DPAs to an unprecedented degree, gearing them to strict enforcement actions (Articles 57 & 58(2)) and vesting them with the authority to pose significant administrative fines (Article 83);…”
Section: -The Case Of Data Protectionmentioning
confidence: 99%
“…The information age has led to a quantitative explosion in regulated entities under DPAs' oversight, creating a need for deterrence via strict enforcement to establish a culture of compliance (Voss and Bouthinon-Dumas, 2021;Hijmans, 2018;BIgnami, 2011. But see Hodges, 2015); (b) European institutions, mainly the European Data Protection Board (EDPB), push for convergence in national enforcement styles to "level the playing field" (Hijmans, 2016a) and ultimately enhance the effectiveness of the EU Charter rights to data protection and privacy (Rijpma, 2020); (c) The GDPR has empowered DPAs to an unprecedented degree, gearing them to strict enforcement actions (Articles 57 & 58(2)) and vesting them with the authority to pose significant administrative fines (Article 83);…”
Section: -The Case Of Data Protectionmentioning
confidence: 99%