Selected Issues from the Dark Side of the General Data Protection Regulation

Cvik, Eva Daniela; Pelikánová, Radka MacGregor; Malý, Michal

doi:10.2478/revecp-2018-0020

Cited by 3 publications

(3 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The introduction of GDPR appeared to be challenging for unprepared local municipalities ( 1 , 5 ). The unique and sensitive position of DPO under the GDPR was clearly recognized ( 6 - 8 ).…”

Section: Discussionmentioning

confidence: 99%

Post-GDPR survey of data protection officers in research and non-research institutions in Croatia

Mladinić

Puljak

Koporc

2021

Biochem. med. (Online)

View full text Add to dashboard Cite

Introduction General Data Protection Regulation (GDPR) focuses on important elements of data ethics, including protecting people’s privacy, accountability and transparency. According to the GDPR, certain public institutions are obliged to appoint a Data Protection Officer (DPO). However, there is little publicly available data from national EU surveys on DPOs. This study aimed to examine the scope of work, type of work, and education of DPOs in institutions in Croatia. Materials and methods During 2020-2021, this cross-sectional study surveyed DPOs appointed in Croatia. The survey had 35 items. The questions referred to their appointment, work methods, number and type of cases handled by DPOs, the sources of information they use, their experience and education, level of work independence, contacts with ethics committees, problems experienced, knowledge, suggestions for improvement of their work, changes caused by the GDPR, and sociodemographic information. Results Out of 5671 invited DPOs, 732 (13%) participated in the study. The majority (91%) indicated that they could perform their job independently; they did not have prior experience in data protection before being appointed as DPOs (54%) and that they need additional education in data protection (82%). Conclusions Most DPOs indicated that they had none or minimal prior experience in data protection when they were appointed as DPO, that they would benefit from further education on data protection, and exhibited insufficient knowledge on basic concepts of personal data protection. Requirements for DPO appointments should be clarified; mandatory education and certification of DPOs could be introduced and DPOs encouraged to engage in continuous education.

show abstract

Section: Discussionmentioning

confidence: 99%

Post-GDPR survey of data protection officers in research and non-research institutions in Croatia

Mladinić

Puljak

Koporc

2021

Biochem. med. (Online)

View full text Add to dashboard Cite

show abstract

“…On a more practical level, for example, there is an increasing body of practical guides or implementation guidelines, looking at how organizations will have to move forward to comply and avoid fines or negative publicity (Tankard 2016;Huth 2017;Voigt and Von dem Bussche 2017;Lambrinoudakis 2018). However, there is a lot of criticism remaining (Cvik et al 2018).…”

Section: Introductionmentioning

confidence: 99%

The Role of IS in the Conflicting Interests Regarding GDPR

et al. 2020

View full text Add to dashboard Cite

“…As noted e.g. by Cvik et al (2018), data processors were facing multiple issues concerning accurate and smooth implementation of this new regulation. This is only logical, as the regulation covers many new topics, most of those being highly technical (http://www.privacy-regulation.eu/en/index.htm).…”

Section: Literature Reviewmentioning

confidence: 99%

Reflection of GDPR by the Czech Population

Tahal

Formánek

2020

Management &Amp; Marketing. Challenges for the Knowledge Society

View full text Add to dashboard Cite

Nowadays, personal data is becoming both increasingly relevant and extensively shared over the internet. Individual privacy is often at risk as personal and contact information are a frequent object of commercial transactions. This situation recently triggered the implementation of a new data-protection regulation: General Data Protection Regulation (GDPR). This study analyses privacy protection from the citizens’ and consumers' points of view. The authors apply quantitative methods to primary data sampled from the population of the Czech Republic (aged 15+). Individual willingness to share personal data is evaluated along with the spectrum of situations where such data is requested and along with corresponding GDPR-related individual stances. According to the data analyzed, Czech population perceives GDPR measures as mostly useful yet somewhat bothersome. Also, individuals are not convinced that the regulation could deliver any fundamental changes to processes that involve handling of personal data. In general, respondents feel concerned by the intensification of demands for signing data sharing consents and by similar data processing interactions. However, individual levels of willingness to share various types of personal and contact information are sound and stable.

show abstract

Selected Issues from the Dark Side of the General Data Protection Regulation

Cited by 3 publications

References 33 publications

Post-GDPR survey of data protection officers in research and non-research institutions in Croatia

Post-GDPR survey of data protection officers in research and non-research institutions in Croatia

The Role of IS in the Conflicting Interests Regarding GDPR

Reflection of GDPR by the Czech Population

Contact Info

Product

Resources

About