Mirosław Tokarski

DOI: https://doi.org/10.37105/sd.86

2020-11-19

Abstract:The process of establishing normative acts in the European Union does not occur out of nowhere, but in the context of specific social needs. That was the case of the genesis of establishing legal regulations regarding the protection of personal data in the European Union. Socio-economic integration, which resulted from the functioning of internal market in the European Union, has led to a significant increase in cross-border transfers of personal data. It led to situation in which various economic operators or state institutions of the Member States have increasingly processed the personal data of the EU citizens. Within time, these data have become an equally valuable commodity - not to say even more valuable – compared to goods and services (Costa-Cabral, and Lynskey Orla, 2017, p. 11). Making use of personal data on a large scale especially by public and private entities, associations and companies over time has posed a threat to the security of personal data. This has made it necessary to introduce legal protection measures for personal data in the European Union that would eliminate the negative effects of any form of personal data processing. The purpose of this article is to evaluate legal regulations regarding legislative protection of personal data in the European Union against the background of EU Regulation 2016/679 of the European Parliament and the Council with respect to the protection of individuals due to processing personal data, its free movement and repealing Directive 95/46/EC (hereinafter referred to as Regulation 2016/679). Due to initially adopted purpose of the considerations there arose a problem which was formulated in the form of a question: Do the legal measures introduced by the Regulation constitute an effective tool for the protection of personal data in the event of a violation of the law by personal data administrators and entities while processing such data? The presented purpose of the considerations and the research problem determined the order of the analysis.

English Else

Katarzyna Dunaj

DOI: https://doi.org/10.5604/01.3001.0053.8851

2023-09-30

Abstract:The subject of the analysis undertaken in the article is the legislative acquis of the European Union setting standards for the protection of the right to privacy in the area of cybersecurity. The author points out that the source of the legislative activity of the European Union in this area is the conviction about the need to create legal solutions that would meet the challenges related to the development of modern technology in the area of IT services provided on a global scale via the Internet. The most general legal framework is the guarantee of the right to privacy, which has been developed by the international community along with the development of a universal and regional (European) system of human rights protection. Therefore, the EU standards for the protection of the right to privacy in cyberspace are determined by the provisions of the European Convention on Human Rights and the Charter of Fundamental Rights of the European Union. Against the background of these conventions, acts of secondary law of the European Union, which set out detailed instruments for the protection of individual rights, should be considered. These include, in particular, the General Data Protection Regulation (GDPR) and other acts specifying the security of data flow. The acquis of the European Union is a point of reference for national human rights protection systems. In Poland, it is designated by the provisions of the Constitution of 1997.

Law,Computer Science

Montalbano Lydia,Lydia Montalbano

DOI: https://doi.org/10.4236/jss.2021.98031

2021-01-01

Open Journal of Social Sciences

Abstract:Digital advancement is moving at an unprecedented rate as compared to any other time in history. These improvements have effects on economies and societies altering the normal ways people interact and do business online. The process results in the accumulation and possible exposure of user data. The transformation has affected the policies in consumer and data protection law in place, but there is still a lot to gain on the enforcement side in the marketplace. Personal data are a new currency that drives the modern world, playing a central role in the current technological revolution. Consumer behavior patterns are now more predictable due to online ordering and data from IoT devices. Analysis of this collected data has resulted in ever more detailed profiles about individuals, which translates in greatly increasing conversion. This incentivizes software developers to equip their products and services with more and more advanced algorithms that can act on insights-based personal profiles. Usage of these algorithms can significantly influence consumer markets by altering purchasing trends. While it is evident that for example in Europe, today, consumers are increasingly becoming aware of the right to protect personal data, the impact of factors such as secret tracking, psychological profiling, can have consequences that many consumers can’t grasp. Moreover, prevalent market trends are thriving on data, but the process can create struc tural discrimination between consumers based on arbitrary assumptions. European empires during the 16th-century expanded their control by managing critical assets. However, presently, new technological empires are created by controlling the world’s data and deploying advanced AI’s which should be regulated. To establish a common, global framework of understanding, part of this study shall consider the consumer perception concerning tracking and surveillance. The socio-economic impact on society due to the so-called “ filter bubble ” created by these algorithms is subsequently be discussed together with the political and social destabilization that we are witnessing. This paper outlines how consumer laws relating to data protection, especially in Europe, are operationalized and what consumer protection is available within the digital markets. The paper concludes with the steps to systematically protect the fundamental right to privacy in the digital markets. This entails a hybrid approach that includes transparency by design and default, improved enforcement by authorities, and the possibility for consumers to proceed through class actions in order to safeguard their privacy in the existing legal framework.

Tetiana Voloshanivska,Liudmyla Yankova,Oleksandr Tarasenko

DOI: https://doi.org/10.30525/2256-0742/2022-8-4-40-49

2022-11-30

Baltic Journal of Economic Studies

Abstract:Changes that are constantly taking place in the digital economy cause increasing instability of legislation in the field of data protection and security. For example, in Ukraine, under martial law, there is an urgent need to adapt the legal regulation to European data protection standards (in terms of personal data processing). First of all, the correlation between EU law, national law of the EU Member States and national legislation of the EU candidate countries results in the principle of direct effect of EU law. In addition, EU data protection law has become an essential source for EU Member States in regulating artificial intelligence (AI), e-commerce and the Internet of Things (IoT). The article considers the specific topic of the conditions of approximation of international norms and legislation of Ukraine to EU law, trying to answer the questions of personal data protection in the conditions of martial law that have arisen. This work is based on a comparative analysis of the General Data Protection Regulation 2016/679 and internal data protection rules in Ukraine. At present, the research purpose of the article is to reveal the fact that data protection is a specific category of procedural law based on the principles of intellectual property law regarding data access rights and data ownership rights in the digital economy.

M. A. Mikhailov,T. A. Kokodey

DOI: https://doi.org/10.52468/2542-1514.2022.6(3).120-133

2022-09-18

Law Enforcement Review

Abstract:The subject of the study is the legal nature of personal data, as well as a set of legal norms governing relations in the field of their processing and circulation in the Russian Federation and foreign countries. The article uses a comparative method, a system analysis method, as well as a forecasting method. The purpose of the article is to confirm or refute the hypotheses about the further strengthening of the contradictions between the emergence and implementation of new technologies for processing personal data versus ensuring the protection of human rights, as well as the expediency and possibility of using foreign legislative experience in domestic practice to counter these threats and reduce the risks arising from this and damage. Main results, scope. The article examines the legislative experience of legal regulation of the types, scope, and nature of personal data in the People's Republic of China, the United States of America, the Republic of Belarus, and the Russian Federation. At the same time, Chinese legislation most quickly responds to the challenges of the criminal use of biometric technologies, American legal norms are less acceptable for our practice due to the peculiarities of case law, and Belarusian law has only recently entered into force, opening the era of legal regulation in this area. The facts of the use of new technologies (such as deepfake) for the processing of biometric information for criminal purposes and the problems of law enforcement in this area, as well as legal disputes of citizens who have suffered damage from the use of these technologies, are analyzed. It is predicted that it will be impossible to fully ensure the protection of human rights in the context of the emergence of new technologies for processing personal data. The importance of the desire to predict threats to the protection of personal information at the stage of emergence of new technologies for processing personal data in order to neutralize them in a timely manner is indicated. Conclusion. An analysis of the legislation of foreign countries will make it possible to give preference to the Chinese experience, which promptly counteracts the risks of using new technologies for criminal purposes. An analysis of domestic and global law enforcement practice will make it possible to predict the spread of new ways of committing crimes, the misuse of personal data, and vulnerabilities in their storage and protection. At the same time, excessive restrictions on access to data, their processing and their circulation can make it difficult for law enforcement agencies to solve the tasks of ensuring state security and the protection of public order. It requires constant monitoring of threats and risks and timely technical and legal response to their manifestation. The purpose of the study has been achieved, ways to improve legislation in order to protect human rights in the context of the introduction of digital innovations in all spheres of human activity are proposed. Security, combating crime.

V. Kravchuk

DOI: https://doi.org/10.24144/2307-3322.2023.78.2.7

2023-08-31

Abstract:The article analyzes the protection of personal data based on foreign experience. Social networking has been identified as one of the most prominent cultural phenomena to emerge in the Web 2.0 era. They keep users connected and facilitate the exchange of information between them. The European Union has adopted a new personal data protection system called the General Data Protection Regulation (GDPR). Its main goals include providing individuals with tools to control their personal data, implementing modern standards for the protection of personal information, developing the digital space of the European Union to safeguard personal data, ensuring strict compliance by all parties, and providing legal support for the international transfer of personal information. United States legislative documents related to aspects of data protection and privacy were analyzed, namely: California Consumer Privacy Act (CCPA); Children’s Online Privacy Protection Act (COPPA); Health Insurance Portability and Accountability Act (HIPAA); State data breach notification laws. It is noted that China has a comprehensive legal framework that regulates the protection of personal data, and includes the following legal acts: Personal Information Protection Law (PIPL) and Data Security Law (DSL). Conclusions were made that the urgency and importance of protecting personal data in social networks is due to rapid technological progress, the growth of cyber security threats and the spread of these platforms. By protecting personal data, people can maintain privacy, prevent abuse, maintain user trust, reduce risk, and comply with legal obligations. The issue of ensuring mobility and interoperability in social networks gives particular importance to the protection of personal data, as it relates to this particular data, and not just to technology, as it may be in the telecommunications sector. This requires additional thought and measures to ensure privacy and data security. Therefore, when developing legal protection mechanisms for online social networks, it is necessary to take into account and solve problems related to the protection of personal data.

Pavlo Duravkin,Ivan Hafych

DOI: https://doi.org/10.37772/2518-1718-2023-3(43)-12

2023-09-25

Law and innovations

Abstract:Problem setting. In order to build an innovative society, it is necessary to develop legal norms and regulators aimed at protecting privacy and controlling personal data. In addition, the need to ensure effective and reliable protection of personal data in the conditions of rapid technological development, globalization and the growing threat of cybercrime is becoming more urgent. The need for the development of legal norms, the introduction of innovative technologies and the raising of public awareness become important tasks for ensuring privacy and protection of personal data. The study also aims to identify and analyze the main challenges facing the field of personal data protection, such as cybercrime, hacker attacks, globalization and cross borders. Legal norms and regulations aimed at protecting privacy are also analyzed, as well as the potential opportunities of new technologies that can increase the level of protection of personal data. Аnalysis of recent researches and publications. The problems of legal protection of personal data have recently become the subject of research by an increasing number of scientists, both lawyers and representatives of other fields of knowledge. In particular, such scientists as: S. Hlibko, T. Egorova-Lutchenko, K. Yefremova, O. Korvat, V. Kokhan, M. Haustova devote their attention to the study of these issues. etc. Purpose of the research is to develop possible ways of legal protection of personal data in view of today’s challenges related to this issue. The article aims to consider the development of technologies and the growth of the volume of personal data as the main factors affecting the need for effective protection of privacy and security of this data. The article is aimed at expanding the understanding of the problem and providing recommendations for improving the protection of privacy and security of personal data in the future. article’s main body. According to the preamble to the Agreement between Ukraine and the European Union on the participation of Ukraine in the European Union program “Digital Europe” (2021-2027), the important supporting role of digital infrastructure, including in the field of cyber security, is recognized to ensure inextricably linked transformation processes and digital leadership of the European Union. The purpose of concluding the Agreement is to establish mutually beneficial cooperation in order to strengthen and support the deployment of reliable and secure digital capabilities in the Union in the field, including cyber security. It is recognized that mutual participation in each other’s programs for the implementation of digital technologies should ensure mutual benefits for the Parties, while observing a high level of data protection, digital rights, etc. In accordance with paragraph 12 of Article 2 of Annex III to the Agreement, the exchange of information between the European Commission or OLAF and the competent state authorities of Ukraine must take place with due consideration of confidentiality requirements. Personal data included in the exchange of information must be transferred in accordance with the current legal norms on data protection of the Party making the transfer. According to paragraph 49 of the preamble of Regulation (EU) 2021/694 of the European Parliament and of the Council of April 29, 2021 on the establishment of the Digital Europe Program, digital transformation should allow citizens to access, use and securely manage their personal data across borders, regardless of their location or data location. According to point 60 of the preamble, by providing a single set of rules that are directly applicable in the legal systems of the Member States, Regulation (EU) 2016/679 guarantees the free flow of personal data between Member States and strengthens the trust and security of individuals, two indispensable elements of a true Digital Single Market . All actions taken within the framework of the Program, which involve the processing of personal data, must contribute to the smooth implementation of this Regulation, for example, in the field of artificial intelligence and distributed ledger technologies (for example, blockchain). These actions should support the development of digital technologies that meet data protection obligations both by design and by default. In addition, according to paragraph 69 of the preamble, this Regulation respects fundamental rights and adheres to the principles recognized in the Charter of Fundamental Rights of the European Union, in particular regarding the protection of personal data, etc. In the Charter of Fundamental Rights of the European Union (2016/C 202/02) dated June 7, 2016, Chapter II “Freedoms” contains Article 8, which is entitled “Protection of personal data”, according to which it is assumed that everyone has the right to the protection of personal data data concerning him. Such data must be processed fairly for specific purposes and on the basis of the consent of the person concerned or on another legal basis established by law. Everyone has the right to access the data that has been collected about him and the right to correct it. Compliance with these rules is subject to control by an independent body. In addition, Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data establishes rules relating to the protection of natural persons with regard to the processing of personal data, as well as rules, relating to the free movement of personal data, and protects the fundamental rights and freedoms of natural persons and, in particular, their right to protection of personal data. Today in Ukraine, the main legislative act in this area is the Law of June 1, 2010 No. 2997-VI “On the Protection of Personal Data”. Article 11 of the Law of Ukraine “On Information” specifies what information about a natural person (personal data) is. In turn, the legal and organizational bases for ensuring the protection of the vital interests of a person and citizen, society and the state, national interests of Ukraine in cyberspace, the main goals, directions and principles of state policy in the field of cyber security, the powers of state bodies, enterprises, institutions, organizations, individuals and citizens in this area, the basic principles of coordination of their cyber security activities are defined in the Law of Ukraine “On Basic Principles of Cyber Security of Ukraine”. In addition, relations in the field of information protection in information, electronic communication and information and communication systems are regulated by the Law of Ukraine “On the Protection of Information in Information and Communication Systems”. In turn, the Concept of the development of e-governance in Ukraine, as well as the Law of Ukraine “On the National Informatization Program” defines e-governance. In addition, in 2021, the Law of Ukraine “On Public Electronic Registers” was adopted, which defines the State electronic platform for maintaining public electronic registers. On April 18, 2023, by a resolution of the Cabinet of Ministers of Ukraine, the Regulation on the information system “Software platform for the deployment and support of state electronic registers” was approved, as well as the Procedure for using the software “Software platform for the deployment and support of state electronic registers”. conclusions and prospects for the development. The protection of digital personal data requires the development of appropriate technical and regulatory tools, as well as judicial practice of prosecution for violations of the order of their use. It is possible to create a database or registry for private electronic/digital platforms, with the help of which or which would control their activities, including regarding the protection of personal data. At the same time, at the regulatory and legal level, it is necessary to provide that a mandatory condition for the creation and functioning of an Internet platform is its registration in such a database / such a register, and a mandatory condition for registration is confirmation of technical capabilities to ensure the protection of personal data of platform users. It is necessary to define at the regulatory level the list and mechanisms of acquisition of digital rights, their implementation, protection, compensation and responsibility for their violation. The protection of personal data should be considered one of the digital rights of a person and a citizen. The development of digitalization in a legal state must inevitably be accompanied by the development of the legal framework, in particular, the emergence, consolidation, definition and protection of digital rights of individuals and legal entities. Digital rights are a multifaceted category, they become connected and interwoven with other rights defined and established in the norms of different branches of law. The multifaceted nature of the “digital rights” category implies the separation and delimitation of various categories of digital rights, their distribution into appropriate types, for example, “personal digital rights”, “financial digital rights”, etc. It should be quite natural to form a separate element in the general system of law, such as digital law, as a set of legal norms regulating social relations related to the circulation of (including personal) data in digital networks.

English Else

Monika Nowikowska

DOI: https://doi.org/10.1007/978-3-030-78551-2_11

2021-10-28

Abstract:Abstract The dynamic development of technology has led to significant changes in the concept of cyberspace. Currently, it is primarily a virtual space in which we communicate with each other using computers, phones and tablets connected by a network. Cyberspace protection has now become one of the most frequently discussed security-related topics. At a time when information systems allow the collection of huge amounts of information, supervision over data security is one of the key challenges of each country and individual network users. This article describes the principles of personal data protection by national CSIRTs, which are responsible for handling and responding to computer security incidents.

Serge Abiteboul,Julia Stoyanovich

DOI: https://doi.org/10.48550/arXiv.1903.03683

2019-03-09

Abstract:The data revolution continues to transform every sector of science, industry and government. Due to the incredible impact of data-driven technology on society, we are becoming increasingly aware of the imperative to use data and algorithms responsibly -- in accordance with laws and ethical norms. In this article we discuss three recent regulatory frameworks: the European Union's General Data Protection Regulation (GDPR), the New York City Automated Decisions Systems (ADS) Law, and the Net Neutrality principle, that aim to protect the rights of individuals who are impacted by data collection and analysis. These frameworks are prominent examples of a global trend: Governments are starting to recognize the need to regulate data-driven algorithmic technology. Our goal in this paper is to bring these regulatory frameworks to the attention of the data management community, and to underscore the technical challenges they raise and which we, as a community, are well-equipped to address. The main take-away of this article is that legal and ethical norms cannot be incorporated into data-driven systems as an afterthought. Rather, we must think in terms of responsibility by design, viewing it as a systems requirement.

Databases,Computers and Society

DOI: https://doi.org/10.57125/fel.2024.03.25.03

2024-02-14

Abstract:The study describes the aspects of human rights observance in the context of information technology. The relevance of the chosen topic is confirmed by the fact that today the protection of human rights and freedoms is under threat because they are subject to information influences. Against the backdrop of the merger of technology and social life, a pattern has been identified according to which the importance of modernising the way of thinking about human rights has become apparent. The purpose of the study is to examine innovative tools and mechanisms for protecting human rights from the negative impact of information technology, the current state of the problem, and its further development. The methodology includes the use of empirical and theoretical methods. Social transformations are driven by the development of the information society, the gradual transition to a knowledge society. The active use of digital technologies in various spheres of life has actualised the concept of digital human rights and freedoms, as well as the necessity and sufficiency of human and civil rights and freedoms. The article examines the issues of adaptation and integration of the achievements of technocrats' progress. The highly specialised consequences of innovation activities are associated with a number of risks to fundamental human rights, have drawbacks in terms of ethical and moral significance, and require specific legal provisions. Taking into account the evolution of rights in general, the author examines the instruments for ensuring rights and freedoms that can predictably anticipate the need for guarantees and protection. In particular, the creation of the General Data Protection Regulation (GDPR) within the EU, the expansion of the network of cybersecurity structures, and the study of damage in the information space. The conclusions provide prospects for the future development of human rights in the information space.

Adam Madleňák,Marek Švec

DOI: https://doi.org/10.1051/shsconf/202112906005

2021-01-01

SHS Web of Conferences

Abstract:Research background: The adoption of the GDPR Regulation prompted the introduction of a unified regulation on the protection of personal data and highlighted the need to implement security measures relating to information disseminated across businesses operating in several mainly European countries. In practice, the adopted internal standards at the group level are expected to be introduced to the internal environment of individual local subsidiaries. The need to take into account specificities of national legal systems, as well as a specific environment capable of creating a secondary response - a groundswell has also became important. The legal framework of privacy protection in relation to the confidentiality of information disclosed by employers thus represents a fundamental challenge for the interaction between global requirements and local legislation, taking into account the specific assumptions of the business entity concerned. Purpose of the article: The aim of the paper is to describe the range of problems and solutions regarding the process of introducing internal processes of business entities in terms of data security. Moreover, the paper also pays attention to personal data protection legislation. Methods: In an effort to achieve the set goal, the authors used analytical, inductive, deductive and comparative research methods in order to identify areas of problems in relation to intrusion into the privacy of individuals in the online environment and internal communication channels. By synthesising knowledge published in domestic and foreign literature it was possible to draw up the key terminology. Findings & Value added: The experience of the authors in setting up the internal environment of business entities with regard to the issues in question (personal data protection and security of information disclosed in connection with the decision-making power of national regulators) contributes to the knowledge in the given field.

Sylwia Kosznik-Biernacka

DOI: https://doi.org/10.5604/01.3001.0014.5614

2020-12-04

Security Dimensions

Abstract:Article 32 of the EU General Data Protection Regulation imposes the obligation to implement appropriate safeguards to protect personal data. It states that the application of adequate measures is to be preceded by a risk analysis and evaluation. In the current paper, as the main risk factors, probability and consequences were assumed that take into account the basic attributes of information, i.e. confidentiality, integrity and availability. Next, a risk analysis methodology based on the risk matrix is proposed. The issue discussed in the publication is currently valid and still requires careful analysis in order to develop universal standards aimed at establishing certification mechanisms as well as quality labels and markings in terms of personal data protection.

English Else

DOI: https://doi.org/10.1007/978-94-007-5170-5

2013-01-01

Abstract:On 25 January 2012, the European Commission presented its long awaited new “Data protection package”. With this proposal for a drastic revision of the data protection framework in Europe, it is fair to say that we are witnessing a rebirth of European data protection, and perhaps, its passage from an impulsive youth to a more mature state. Technology advances rapidly and mobile devices are significantly changing the landscape. Increasingly, we carry powerful, connected, devices, whose location and activities can be monitored by various stakeholders. Very powerful social network sites emerged in the first half of last decade, processing personal data of many millions of users.  Updating the regulatory framework was imminent and the presentation of the new package will initiate a period of intense debate in which the proposals will be thoroughly commented upon and criticized, and numerous amendments will undoubtedly be proposed.   This volume brings together some 19 chapters offering conceptual analyses, highlighting issues, proposing solutions, and discussing practices regarding privacy and data protection. In the first part of the book, conceptual analyses of concepts such as privacy and anonymity are provided. The second section focuses on the contrasted positions of digital natives and ageing users in the information society. The third section provides four chapters on privacy by design, including discussions on roadmapping and concrete techniques. The fourth section is devoted to surveillance and profiling, with illustrations from the domain of smart metering, self-surveillance and the benefits and risks of profiling. The book concludes with case studies pertaining to communicating privacy in organisations, the fate of a data protection supervisor in one of the EU member states and data protection in social network sites and online media.

Katarzyna Kolasa,W Ken Redekop,Alexander Berler,Vladimir Zah,Carl V Asche

DOI: https://doi.org/10.1007/s40273-020-00927-1

PharmacoEconomics

Abstract:The development of evidence to demonstrate 'value for money' is regarded as an important step in facilitating the search for the optimal allocation of limited resources and has become an essential component in healthcare decision making. Real-world evidence collected from de-identified individuals throughout the continuum of healthcare represents the most valuable source in technology evaluation. However, in the European Union, the value assessment based on real-world data has become challenging as individuals have recently been given the right to have their personal data erased in the case of consent withdrawal or when the data are regarded as being no longer necessary. This act may limit the usefulness of data in the future as it may introduce information bias. Among healthcare stakeholders, this has become an important topic of discussion because it relates to the importance of data on one side and to the need for personal data protection on the other side, especially when it comes to "personal data related to the physical or mental health of a natural person, including the provision of health care services, which reveals information about his or her health status". At the forefront of these discussions are data protection issues as well as the population's trust in digital services. It seems that the new era has begun, where citizens and patients will have the ability to manage their personal or self-generated data. The European Commission has laid the groundwork for this paradigm shift that will steadily emerge in the coming years. To prepare for this change, we believe attention should be given to data security and other rules of data privacy. It has become increasingly important to ensure that individuals are properly introduced into complex environments with multiple sources of Big Data for clinical and behavioral purposes to provide an optimal balance between societal and individual benefits. In this article, a number of issues are considered and discussed, based upon the authors' experience, with the aim of helping the reader better understand the implications of the use of Big Data and the importance of data protection in the coming years.

Graham Pearce,Nicholas Platten

DOI: https://doi.org/10.1111/1468-5965.00138

1998-12-01

Abstract:Actions aimed at exploiting the benefits of information and communication technologies have become a major focus of European Community (EC) policy.The new technologies offer considerable benefits to consumers, businesses and governments, but there is growing concern that their widespread use may threaten the privacy of personal information. Increases in transborder data flows, within the EC and globally, imply that a EC‐wide, and ultimately a global, approach is more appropriate than one based upon national rules. This article examines the evolution of EC personal data protection policies and concludes that, whilst considerable progress has been made towards establishing a regulatory framework, advances in technology and continuing variations in national responses seeking to protect personal privacy, are major obstacles to achieving data protection equivalence, both within the EC and in third countries.

economics,international relations,political science

Joanna Hernik,

DOI: https://doi.org/10.29119/1641-3466.2022.162.14

2022-01-01

Abstract:Purpose: For most products, for example, toys, food, cosmetics, there are regulations in European law that define safety requirements. However, each year, several thousand products potentially dangerous for consumers appear on the market. Producers’ organizations, as well as public institutions and consumer organizations are fighting to keep them as few as possible, yet, different market forces play a role here and they are still on the market. Therefore, consumers should be educated and knowledge about such products should be disseminated. Design/methodology/approach: In the research part, the products deemed unsafe in years 2015-2021 were analyzed. Additionally, the 80 latest alerts on dangerous products were also thoroughly analyzed. Data was collected from The European Commission Safety Gate system, The comparative analysis method was used as well as the documentary analysis. Findings: The aim of this article was to identify the main types of risk to consumers, related to the consumption of non-food products. The conducted analysis shows that it is mainly a risk of injury, poisoning, allergic reaction, as well as chocking and suffocation, but the risks vary greatly depending on the product group. It is significant that dangerous products are often intended for children, therefore the conscious attitude of parents is important. Research limitations/implications: It should be taken into account that the situation may change over time, that may be related to new legal norms, to a change in the economic situation on international markets due to new products, to greater awareness of producers, for example. Therefore this type of research should be discussed in a broader context. Practical implications: The analysis shows the need for an alert system against dangerous products. The results indicate that stereotypes about the ‘safe country of origin’ can change; in practice, therefore, consumers need new knowledge about dangerous products which will help them make informed decisions. Up-to-date knowledge is also needed by the sellers – they can make decisions about cooperation with suppliers that will be more favorable to them. Social implications: The awareness of the presence of dangerous products on the market is important for the health of consumers, but it is also important for producers themselves due to the potential damage that can be caused to consumers and the environment. Keywords: conscious consumption, consumer rights, RAPEX, safety of consumption. Category of the paper: Research paper.

Paulius Jurcys,Marcelo Corrales Compagnucci,Mark Fenwick

2024-07-30

Abstract:The General Data Protection Regulation contains a blanket prohibition on the transfer of personal data outside of the European Economic Area unless strict requirements are met. The rationale for this provision is to protect personal data and data subject rights by restricting data transfers to countries that may not have the same level of protection as the EEA. However, the ubiquitous and permeable character of new technologies such as cloud computing, and the increased inter connectivity between societies, has made international data transfers the norm and not the exception. The Schrems II case and subsequent regulatory developments have further raised the bar for companies to comply with complex and, often, opaque rules. Many firms are, therefore, pursuing technology-based solutions in order to mitigate this new legal risk. These emerging technological alternatives reduce the need for open-ended cross-border transfers and the practical challenges and legal risk that such transfers create after Schrems. This article examines one such alternative, namely a user-held data model. This approach takes advantage of personal data clouds that allows data subjects to store their data locally and in a more decentralised manner, thus decreasing the need for cross-border transfers and offering end-users the possibility of greater control over their data.

Computers and Society

Oluwatosin Reis,Nkechi Emmanuella Eneh,Benedicta Ehimuan,Anthony Anyanwu,Temidayo Olorunsogo,Temitayo Oluwaseun Abrahams

DOI: https://doi.org/10.51594/ijarss.v6i1.733

2024-01-25

International Journal of Applied Research in Social Sciences

Abstract:As the world becomes increasingly interconnected through digital technologies, the protection of individuals' privacy has emerged as a critical concern. This paper conducts a comprehensive global review of privacy legislation and enforcement mechanisms, shedding light on the challenges posed by the digital age. With a focus on the intricate balance between technological advancements and the fundamental right to privacy, the study explores the evolving legal landscape and its implications for individuals, businesses, and governments. The analysis encompasses diverse jurisdictions, highlighting the variations in privacy laws and enforcement approaches across regions. From the European Union's robust General Data Protection Regulation (GDPR) to the nuanced approaches in Asia and the Americas, this review synthesizes the evolving regulatory frameworks. Special attention is given to emerging issues such as the use of artificial intelligence, biometrics, and surveillance technologies, which pose unique challenges to existing privacy paradigms. Moreover, the paper investigates the effectiveness of enforcement mechanisms in ensuring compliance with privacy laws. It examines the role of governmental agencies, regulatory bodies, and international collaborations in addressing cross-border data flows and global privacy challenges. The study also evaluates the impact of recent high-profile privacy incidents on shaping legislative responses and enforcement strategies. By presenting a holistic view of privacy law challenges in the digital age, this research contributes to the ongoing discourse on safeguarding individuals' privacy rights in an era of rapid technological innovation. The findings provide valuable insights for policymakers, legal practitioners, businesses, and individuals seeking a deeper understanding of the evolving dynamics surrounding privacy legislation and enforcement on a global scale. Keywords: Law, Privacy Law, Digital Age, Review, Data Protection.

Svetlana Yu. Golovina,Olesya V. Shcherbakova

DOI: https://doi.org/10.31089/1026-9428-2022-62-5-344-352

2022-06-25

Russian Journal of Occupational Health and Industrial Ecology

Abstract:The course developed by the UN General Assembly to achieve the Sustainable Development Goals in the context of the introduction of new technologies, automation and robotization of production naturally determines the transformation of the approach to the legal regulation of labor protection. At the same time, the established practice of applying labor legislation and statistical data have revealed a number of problems of inefficient interaction between employees and employers on issues of ensuring safe working conditions. The article aims to analyze the current legislation in the field of labor protection from the perspective of the triune essence of labor relations. We have paid special attention to the influence of a combination of biological phenomena, psychological factors and social events on the development of occupational diseases and injuries, ignoring which significantly levels the effectiveness of current requirements and rules in the field of occupational safety. Empirical research consists of several stages. At the first stage the authors have carried out a selection of norms that are novelties in the field of legal regulation of labor protection. Within the framework of the second stage, using systematic, formal-legal and comparative-legal methods, researchers have analyzed these norms from the point of view of the triune essence of the labor legal relationship. Subject of the study is the rights and obligations of employers in the field of labor protection enshrined in legislation and necessary to ensure safe working conditions. At the third stage, we have identified psychological factors and social phenomena that accompany an employee during his life, and not only during working hours. At the last stage, using systematic, formal-legal and comparative-legal methods, experts have analyzed the influence of the combination of these factors and phenomena on the receipt of occupational diseases and injuries by employees. The results of the study show that the current legislation does not take into account that psychological factors and social events can act in a causal relationship with the development of occupational diseases in workers and their occupational injuries. At the same time, there are no legal obstacles for the employer to take into account these determinants when regulating the sphere of labor protection at the local level. Improving professional skills and knowledge in the field of occupational safety, occupational safety culture, the level of accessibility to information about their rights, including in the field of occupational safety, taking into account the social and structural characteristics of conditions mediating the life of workers - all this will increase the effectiveness of legal regulation of the field of occupational safety at the local level. Conclusion. The study concludes that the most important issues remain unaddressed, among which are the creation of a psychologically comfortable working atmosphere, the prevention of professional burnout of employees, the possibility of recognizing professional burnout as an occupational disease with all the consequences that follow from this. In addition, the authors came to the conclusion that, in order to implement the protection of personal data of employees, a more detailed regulation at the legislative level of the process of monitoring by the employer of the labor activity of employees. Ethics. This study did not require the conclusion of the Ethics Committee.

Polonca Kovač,Grega Rudolf

DOI: https://doi.org/10.17573/cepar.2022.1.01

2022-05-30

Central European Public Administration Review

Abstract:Purpose: The primary objective of the present research is to identify the basic tools and restrictions concerning the protection of privacy and personal data in the EU and China as two fundamentally different cultural systems. Based on the socio-cultural analysis of backgrounds, trends and expert assessments, the research aims to examine whether privacy protection standards, such as those provided by the GDPR in the EU, are sufficiently robust to endure the digital age. Two different cultural frameworks have been analysed in order to understand their influence on practical behaviours regarding the democratic safeguards in privacy rights enforcement in the EU compared with China. This is accomplished by comparing social control in the EU and the social credit system in China. Design/Methodology/Approach: Considering the administrative context, a combined qualitative approach is applied, including normative and dogmatic methods, literature analysis, sociological and historical methods, expert interviews, and comparative and axiological methods. Findings: The results of both theoretical and empirical parts of the research suggest that the stricter regulation in the EU compared to China – in the sense of more consistent protection of privacy and personal data as well as transparency rights – can be attributed to its democratic protection of human rights and more definitive regulations, particularly the GDPR. These major differences seem to create an even deeper gap in the future, to be explored scientifically and in practice. The authors conclude that authorities must actively guarantee the rights related to privacy and personal data protection, or else effective governance will lead to a surveillance society and erosion of individuals’ freedom as a valuable civilizational asset. Academic contribution to the field: The research contributes to administrative science by addressing one of the key concepts of modern public governance, namely the collision between the principles of effectiveness and transparency on the one hand and privacy on the other. The use of scientific methods paves the way for further comparisons. Practical Implications: The article provides a concise overview of the relevant literature and an analysis of the rules that underpin the implementation, evaluation and improvement of regulations, especially in the light of ICT development, e.g. in times of the Covid-19 pandemic. Originality/Value: The paper bridges the gap created by the differences in the understanding of privacy and public governance in the field in the EU and China based on cultural differences. The usual general or merely law- or technology-based analyses are upgraded with a combination of various research methods.