Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0146
Thomas Zerdick
By 25 May 2020 and every four years thereafter, the Commission shall submit a report on the evaluation and review of this Regulation to the European Parliament and to the Council. The reports shall be made public.
{"title":"Article 97 Commission reports","authors":"Thomas Zerdick","doi":"10.1093/OSO/9780198826491.003.0146","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0146","url":null,"abstract":"By 25 May 2020 and every four years thereafter, the Commission shall submit a report on the evaluation and review of this Regulation to the European Parliament and to the Council. The reports shall be made public.","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131691715","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0020
L. Bygrave, Luca Tosoni
Article 4(1) (Definition of ‘personal data’) (see too recital 26); Article 4(13) (Definition of ‘genetic data’) (see too recital 34); Article 4(15) (Definition of ‘data concerning health’) (see also recital 35); Article 9(1) (Special categories of personal data); Article 22(4) (Automated individual decision-making, including profiling) (see also recital 71); Article 35(3)(b) (Data protection impact assessment) (see too recital 91).
{"title":"Article 4(14). Biometric data","authors":"L. Bygrave, Luca Tosoni","doi":"10.1093/OSO/9780198826491.003.0020","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0020","url":null,"abstract":"Article 4(1) (Definition of ‘personal data’) (see too recital 26); Article 4(13) (Definition of ‘genetic data’) (see too recital 34); Article 4(15) (Definition of ‘data concerning health’) (see also recital 35); Article 9(1) (Special categories of personal data); Article 22(4) (Automated individual decision-making, including profiling) (see also recital 71); Article 35(3)(b) (Data protection impact assessment) (see too recital 91).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"130694814","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0100
Ludmila Georgieva, M. Schmidl
Article 4(21) (Definition of a supervisory authority); Article 36 (Advisory and other powers concerning prior consultation, national legislative measures and mandatory prior consultation or authorisation) (see too recital 94); Article 50 (Supervisory authorities to take steps to provide international mutual assistance in enforcement, including through investigative assistance) (see too recital 116); Article 52 (Exercise of powers with complete independence) (see too recital 117); Article 55 (Competence with regard to the exercise of powers, competence over public bodies) (see too recitals 122, 128 and 131); Article 57 (Tasks of supervisory authorities) (see too recitals 122, 123, 132 and 133); Articles 60(2) and 61 (Mutual assistance) (see too recital 133); Article 62 (Joint operations of supervisory authorities, including joint investigations and conferring of powers) (see too recitals 130 and 134); Article 90 (Possibility for Member States to adopt specific rules to set out supervisory authorities’ powers) (see too recital 164).
{"title":"Article 58 Powers","authors":"Ludmila Georgieva, M. Schmidl","doi":"10.1093/OSO/9780198826491.003.0100","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0100","url":null,"abstract":"Article 4(21) (Definition of a supervisory authority); Article 36 (Advisory and other powers concerning prior consultation, national legislative measures and mandatory prior consultation or authorisation) (see too recital 94); Article 50 (Supervisory authorities to take steps to provide international mutual assistance in enforcement, including through investigative assistance) (see too recital 116); Article 52 (Exercise of powers with complete independence) (see too recital 117); Article 55 (Competence with regard to the exercise of powers, competence over public bodies) (see too recitals 122, 128 and 131); Article 57 (Tasks of supervisory authorities) (see too recitals 122, 123, 132 and 133); Articles 60(2) and 61 (Mutual assistance) (see too recital 133); Article 62 (Joint operations of supervisory authorities, including joint investigations and conferring of powers) (see too recitals 130 and 134); Article 90 (Possibility for Member States to adopt specific rules to set out supervisory authorities’ powers) (see too recital 164).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132835817","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0007
L. Bygrave, Luca Tosoni
The principles of data protection should apply to any information concerning an identified or identifiable natural person. Personal data which have undergone pseudonymisation, which could be attributed to a natural person by the use of additional information should be considered to be information on an identifiable natural person. To determine whether a natural person is identifiable, account should be taken of all the means reasonably likely to be used, such as singling out, either by the controller or by another person to identify the natural person directly or indirectly.
{"title":"Article 4(1). Personal data","authors":"L. Bygrave, Luca Tosoni","doi":"10.1093/OSO/9780198826491.003.0007","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0007","url":null,"abstract":"The principles of data protection should apply to any information concerning an identified or identifiable natural person. Personal data which have undergone pseudonymisation, which could be attributed to a natural person by the use of additional information should be considered to be information on an identifiable natural person. To determine whether a natural person is identifiable, account should be taken of all the means reasonably likely to be used, such as singling out, either by the controller or by another person to identify the natural person directly or indirectly.","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"33 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"122031638","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0126
G. G. Fuster
Article 57(1)(f) (Tasks of supervisory authorities); Article 77 (Right to lodge a complaint with a supervisory authority); Article 78 (Right to an effective judicial remedy against a supervisory authority); Article 79 (Right to an effective judicial remedy against a controller or processor); Article 82 (Right to compensation and liability).
{"title":"Article 80 Representation of data subjects","authors":"G. G. Fuster","doi":"10.1093/OSO/9780198826491.003.0126","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0126","url":null,"abstract":"Article 57(1)(f) (Tasks of supervisory authorities); Article 77 (Right to lodge a complaint with a supervisory authority); Article 78 (Right to an effective judicial remedy against a supervisory authority); Article 79 (Right to an effective judicial remedy against a controller or processor); Article 82 (Right to compensation and liability).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"117274223","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/oso/9780198826491.003.0081
R. Leenes
Article 5(2) (Principle of accountability); Article 24(3) (Responsibility of the controller); Article 25(3) (Data protection by design and by default); Article 28(5) (Responsibilities of the processor) (see too recital 81); Article 32(3) (Security of processing); Article 43 (Certification bodies); Article 46(2)(f) (Transfers subject to appropriate safeguards); Article 55 (Competence of the supervisory authorities); Article 56 (Tasks of the supervisory authorities); Articles 57(1)(n)–(q) (Tasks of the supervisory authorities) (see too recital 77); Article 58(h) (Powers of the supervisory authorities); Article 63 (Consistency mechanism); Article 64(1)(c) (Opinion of the Board); Article 70(1)(n)–(q) (Tasks of the Board); Article 93(4)(b) (General conditions for imposing administrative fines).
{"title":"Article 42 Certification","authors":"R. Leenes","doi":"10.1093/oso/9780198826491.003.0081","DOIUrl":"https://doi.org/10.1093/oso/9780198826491.003.0081","url":null,"abstract":"Article 5(2) (Principle of accountability); Article 24(3) (Responsibility of the controller); Article 25(3) (Data protection by design and by default); Article 28(5) (Responsibilities of the processor) (see too recital 81); Article 32(3) (Security of processing); Article 43 (Certification bodies); Article 46(2)(f) (Transfers subject to appropriate safeguards); Article 55 (Competence of the supervisory authorities); Article 56 (Tasks of the supervisory authorities); Articles 57(1)(n)–(q) (Tasks of the supervisory authorities) (see too recital 77); Article 58(h) (Powers of the supervisory authorities); Article 63 (Consistency mechanism); Article 64(1)(c) (Opinion of the Board); Article 70(1)(n)–(q) (Tasks of the Board); Article 93(4)(b) (General conditions for imposing administrative fines).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131055450","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0090
C. Kuner
Recital 6; Article 15(1)(c) (Right to access information about data recipients in third countries); Articles 70(1)(v) and (w) (Board’s tasks to facilitate exchanges with supervisory authorities in third countries and exchanges of knowledge on data protection legislation with supervisory authorities worldwide); Article 96 (Relationship with previously concluded agreements of the EU Member States).
{"title":"Article 50 International cooperation for the protection of personal data","authors":"C. Kuner","doi":"10.1093/OSO/9780198826491.003.0090","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0090","url":null,"abstract":"Recital 6; Article 15(1)(c) (Right to access information about data recipients in third countries); Articles 70(1)(v) and (w) (Board’s tasks to facilitate exchanges with supervisory authorities in third countries and exchanges of knowledge on data protection legislation with supervisory authorities worldwide); Article 96 (Relationship with previously concluded agreements of the EU Member States).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"163 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123135346","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0006
Luca Tosoni, L. Bygrave
For the purposes of this Regulation:� ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a...
{"title":"Article 4 Definitions","authors":"Luca Tosoni, L. Bygrave","doi":"10.1093/OSO/9780198826491.003.0006","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0006","url":null,"abstract":"For the purposes of this Regulation:\u0000 ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a...","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"146 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131840918","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0087
C. Kuner
Recital 6; Articles 13(1)(f) and 14(1)(f) (Information to a data subject); Article 15(1)(c) (Right to access information about data recipients in third countries); Article 23(2)(d) (Member States can restrict individuals’ rights but must provide for safeguards to prevent abuse or unlawful transfer) (see too recital 153); Article 28(3)(a) (Provisions of a data processing agreement stipulating controller’s instructions regarding data transfers); Articles 30(1)(e) and 30(2)(c) (Internal records about data transfers); Article 40(2)(j) (Data transfer codes of conduct); Article 58(3)(j) (Power of supervisory authorities to approve BCRs); Article 64(1)(f) (Opinion of the Board regarding the approval of BCRs); Article 70(1)(c) (Advice by the Board to the Commission regarding the format and procedures for the exchange of information for BCRs); Article 83(5)(c) (Fines for non-compliance with data transfer restrictions).
{"title":"Article 47 Binding corporate rules","authors":"C. Kuner","doi":"10.1093/OSO/9780198826491.003.0087","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0087","url":null,"abstract":"Recital 6; Articles 13(1)(f) and 14(1)(f) (Information to a data subject); Article 15(1)(c) (Right to access information about data recipients in third countries); Article 23(2)(d) (Member States can restrict individuals’ rights but must provide for safeguards to prevent abuse or unlawful transfer) (see too recital 153); Article 28(3)(a) (Provisions of a data processing agreement stipulating controller’s instructions regarding data transfers); Articles 30(1)(e) and 30(2)(c) (Internal records about data transfers); Article 40(2)(j) (Data transfer codes of conduct); Article 58(3)(j) (Power of supervisory authorities to approve BCRs); Article 64(1)(f) (Opinion of the Board regarding the approval of BCRs); Article 70(1)(c) (Advice by the Board to the Commission regarding the format and procedures for the exchange of information for BCRs); Article 83(5)(c) (Fines for non-compliance with data transfer restrictions).","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"52 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131211246","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 2020-02-13DOI: 10.1093/OSO/9780198826491.003.0013
L. Bygrave, Luca Tosoni
Controllers are key actors in the operationalisation of data protection law as they are the primary bearers of the obligations set by such law towards data subjects. Thus, definition of the criteria for attaining the role of controller is essential for understanding the law’s application. As detailed below, the tendency under EU data protection law is to apply these criteria in an expansive and flexible way, thus rendering the threshold for attaining controller status quite low.
{"title":"Article 4(7). Controller","authors":"L. Bygrave, Luca Tosoni","doi":"10.1093/OSO/9780198826491.003.0013","DOIUrl":"https://doi.org/10.1093/OSO/9780198826491.003.0013","url":null,"abstract":"Controllers are key actors in the operationalisation of data protection law as they are the primary bearers of the obligations set by such law towards data subjects. Thus, definition of the criteria for attaining the role of controller is essential for understanding the law’s application. As detailed below, the tendency under EU data protection law is to apply these criteria in an expansive and flexible way, thus rendering the threshold for attaining controller status quite low.","PeriodicalId":412587,"journal":{"name":"The EU General Data Protection Regulation (GDPR)","volume":"206 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-02-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132697234","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: