{"title":"Applying the Purpose Limitation Principle in Smart-City Data-Processing Practices: A European Data Protection Law Perspective","authors":"Kamrul Faisal","doi":"10.1080/10811680.2023.2180266","DOIUrl":null,"url":null,"abstract":"Abstract Protection of privacy rights in the context of smart cities is novel, currently underdeveloped, and a hot topic worldwide. This article examines the purpose limitation of European data protection law in the context of smart cities. The “purpose limitation” principle of the General Data Protection Regulation (GDPR) outlines the ways and means of processing personal data to protect individuals’ fundamental right to personal data protection and related risks. The principle, which empowers controller(s) to process data in a controlled manner, requires that controller(s) process personal data only after meeting two fundamental requirements: they must act on the requirements of purpose specification, and they must perform an “incompatibility test” while processing personal data for further purposes. This article aims to outline the permissible limits of the purpose limitation principle to pursue different purposes in the context of smart cities. Indeed, the principle only applies when controllers process personal data in smart cities. With the authority provided by the principle, data controllers may process personal data for primary and secondary purposes. However, processing purposes cannot go beyond defined restrictions. The study, which is conducted within the European legal framework, deploys a multimethod approach to address different parts of the research question.","PeriodicalId":42622,"journal":{"name":"Communication Law and Policy","volume":"28 1","pages":"67 - 97"},"PeriodicalIF":0.2000,"publicationDate":"2023-01-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Communication Law and Policy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1080/10811680.2023.2180266","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"LAW","Score":null,"Total":0}
引用次数: 1
Abstract
Abstract Protection of privacy rights in the context of smart cities is novel, currently underdeveloped, and a hot topic worldwide. This article examines the purpose limitation of European data protection law in the context of smart cities. The “purpose limitation” principle of the General Data Protection Regulation (GDPR) outlines the ways and means of processing personal data to protect individuals’ fundamental right to personal data protection and related risks. The principle, which empowers controller(s) to process data in a controlled manner, requires that controller(s) process personal data only after meeting two fundamental requirements: they must act on the requirements of purpose specification, and they must perform an “incompatibility test” while processing personal data for further purposes. This article aims to outline the permissible limits of the purpose limitation principle to pursue different purposes in the context of smart cities. Indeed, the principle only applies when controllers process personal data in smart cities. With the authority provided by the principle, data controllers may process personal data for primary and secondary purposes. However, processing purposes cannot go beyond defined restrictions. The study, which is conducted within the European legal framework, deploys a multimethod approach to address different parts of the research question.
期刊介绍:
The societal, cultural, economic and political dimensions of communication, including the freedoms of speech and press, are undergoing dramatic global changes. The convergence of the mass media, telecommunications, and computers has raised important questions reflected in analyses of modern communication law, policy, and regulation. Serving as a forum for discussions of these continuing and emerging questions, Communication Law and Policy considers traditional and contemporary problems of freedom of expression and dissemination, including theoretical, conceptual and methodological issues inherent in the special conditions presented by new media and information technologies.