{"title":"Reflections on the GDPR Adequacy Assessment and Strategy of Japan: For the Enhancement of Transborder Data Flows","authors":"Takayuki Kato","doi":"10.54648/gplr2020092","DOIUrl":null,"url":null,"abstract":"Japan started the dialogue with the EU Commission in April 2016 to realize free cross-border personal data flows and after thorough discussion, the mutual adequacy certification agreement between the EU and Japan was concluded and became effective in January 2019. While the adequacy agreement is a welcome event, this article examines if the policy which the Japanese government pursued is defensible.\nThis article focuses on the difficulty in comparing the (General Data Protection Regulation) GDPR with data protection law in a third country especially where its tradition and language are greatly different from the EU. It explains this difficulty in terms of the institutional aspect (the creation of an independent organ), the substantive adequacy of data protection law (rights of data subjects and obligations of data controllers) and the adequacy of enforcement of data protection law (administrative, civil and criminal enforcement).\nIt is understandable that the EU takes an adequacy approach for the data protection of their residents, but the time and effort involved in the assessment could be significant. The article suggests that an international agreement or convention could be a preferable option by drawing on the experience of Council of Europe Convention 108 and similar models when we narrow down the issues of data protection to the problem of crossborder data flows in the private sector.\nPersonal Information Protection, Japan, General Data Protection Regulation, Adequacy","PeriodicalId":127582,"journal":{"name":"Global Privacy Law Review","volume":"17 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Global Privacy Law Review","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.54648/gplr2020092","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
Japan started the dialogue with the EU Commission in April 2016 to realize free cross-border personal data flows and after thorough discussion, the mutual adequacy certification agreement between the EU and Japan was concluded and became effective in January 2019. While the adequacy agreement is a welcome event, this article examines if the policy which the Japanese government pursued is defensible.
This article focuses on the difficulty in comparing the (General Data Protection Regulation) GDPR with data protection law in a third country especially where its tradition and language are greatly different from the EU. It explains this difficulty in terms of the institutional aspect (the creation of an independent organ), the substantive adequacy of data protection law (rights of data subjects and obligations of data controllers) and the adequacy of enforcement of data protection law (administrative, civil and criminal enforcement).
It is understandable that the EU takes an adequacy approach for the data protection of their residents, but the time and effort involved in the assessment could be significant. The article suggests that an international agreement or convention could be a preferable option by drawing on the experience of Council of Europe Convention 108 and similar models when we narrow down the issues of data protection to the problem of crossborder data flows in the private sector.
Personal Information Protection, Japan, General Data Protection Regulation, Adequacy
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
