The Economic Consequences of Data Privacy Regulation: Empirical Evidence from GDPR

Aridor, Guy; Che, Yeon‐Koo; Salz, Tobias

doi:10.2139/ssrn.3522845

Cited by 51 publications

(40 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We add to a growing empirical literature on technical and commercial implications of the GDPR, and relate to theoretical work on its implications for competition policy. This literature spans across disciplines, including industry reports (WhotracksMe, 2018), and academic work in computer science and communication (Dabrowski et al, 2019;Solomos et al, 2019;Hu and Sastry, 2019;Degeling et al, 2018;Libert et al, 2018;Sørensen and Kosta, 2019;Urban et al, 2020), marketing (Johnson and Shriver, 2020;Goldberg et al, 2019;Goddard, 2017), information systems and economics (Godinho de Matos and Adjerid, 2020;Zhuo et al, 2019;Sharma et al, 2019;Lefrere et al, 2019;Jia et al, 2019b,a;Aridor et al, 2020), and law (Gal and Aviv, forthcoming;Geradin et al, 2020).…”

Section: Introductionmentioning

confidence: 99%

European Privacy Law and Global Markets for Data

Peukert

Bechtold²,

Batikas

et al. 2021

Proceedings

View full text Add to dashboard Cite

We demonstrate how privacy law interacts with competition and trade policy in the context of the European General Data Protection Regulation (GDPR). We follow more than 110,000 websites for 18 months to show that websites reduced their connections to web technology providers after the GDPR became effective, especially regarding requests involving personal data. This also holds for websites catering to non-EU audiences and therefore not bound by the GDPR. We further document an increase in market concentration in web technology services after the introduction of the GDPR. While most firms lose market share, the leading firm, Google, significantly increases market share.

show abstract

Section: Introductionmentioning

confidence: 99%

European Privacy Law and Global Markets for Data

Peukert

Bechtold²,

Batikas

et al. 2021

Proceedings

View full text Add to dashboard Cite

show abstract

“…Data processors have also apparently adapted to new GDPR requirements. 27 Disclosure requirements have changed, but as has been well established empirically, people tend to automatically accept such disclosures without reading them. 28 Nicholson Price et al also argue that there's so much ambiguity in the guidance provided by the GDPR that member countries could choose to take no action on certain GDPR requirements, especially in protecting health data.…”

Section: Sharing Health and Financial Information Is Unavoidable; Genmentioning

confidence: 99%

Genetic Data Aren't So Special: Causes and Implications of Reidentification

Kasperbauer¹,

Schwartz²

2020

Hastings Center Report

View full text Add to dashboard Cite

Genetic information is widely thought to pose unique risks of reidentifying individuals. Genetic data reveals a great deal about who we are and, the standard view holds, should consequently be treated differently from other types of data. Contrary to this view, we argue that the dangers of reidentification for genetic and nongenetic data—including health, financial, and consumer information—are more similar than has been recognized. Before different requirements are imposed around sharing genetic information, proponents of the standard view must show that they are in fact necessary. We further argue that the similarities between genetic and nongenetic information have important implications for communicating risks during consent for health care and research. While patients and research participants need to be more aware of pervasive data‐sharing practices, consent forms are the wrong place to provide this education. Instead, health systems should engage with patients throughout patient care to educate them about data‐sharing practices.

show abstract

“…Public information statistics reveal that in the first year of GDPR, regulatory authorities in Europe have made 48 penalties of approximately EUR 51,833,345. Since the second half of 2019 [4], regulatory authorities have issued British Airways, Marriott's hundreds of millions of euros and Austrian Post, Deutsche Wohnen SE, and other fines of tens of millions of euros. Most of the penalties are due to the failure to ensure data security or secure data sharing, which lead to data leakage.…”

Section: Introductionmentioning

confidence: 99%

“…We have designed a PoA consensus algorithm based on a committee endorsement mechanism to ensure data integrity. 4.…”

mentioning

confidence: 99%

A Data Sharing Scheme for GDPR-Compliance Based on Consortium Blockchain

Piao

Cui

2021

Future Internet

View full text Add to dashboard Cite

After the General Data Protection Regulation (GDPR) was introduced, some organizations and big data companies shared data without conducting any privacy protection and compliance authentication, which endangered user data security, and were punished financially for this reason. This study proposes a blockchain-based GDPR compliance data sharing scheme, aiming to promote compliance with regulations and provide a tool for interaction between users and service providers to achieve data security sharing. The zero-knowledge Succinct Non-Interactive Arguments of Knowledge (zk-SNARK) algorithm is adopted for protecting data and ensure that the user’s private data can satisfy the individual requirements of the service provider without exposing user data. The proposed scheme ensures mutual authentication through the Proof of Authority consensus based on the Committee Endorsement Mechanism (CEM-PoA), and prevents nodes from doing evil using the reputation incentive mechanism. Theoretical analysis and performance comparison indicate that the scheme meets the confidentiality, availability, and other indicators. It has superiority in efficiency and privacy protection compared with other schemes.

show abstract

The Economic Consequences of Data Privacy Regulation: Empirical Evidence from GDPR

Cited by 51 publications

References 41 publications

European Privacy Law and Global Markets for Data

European Privacy Law and Global Markets for Data

Genetic Data Aren't So Special: Causes and Implications of Reidentification

A Data Sharing Scheme for GDPR-Compliance Based on Consortium Blockchain

Contact Info

Product

Resources

About