Journal•ISSN: 0267-3649
Computer Law & Security Review
About: Computer Law & Security Review is an academic journal. The journal publishes majorly in the area(s): Data Protection Act 1998 & The Internet. It has an ISSN identifier of 0267-3649. Over the lifetime, 1249 publication(s) have been published receiving 14686 citation(s).
Topics: Data Protection Act 1998, The Internet, Information privacy, European union, General Data Protection Regulation
Papers published on a yearly basis
Papers
More filters
[...]
TL;DR: The legal position concerning threats to, and protection of, computer security is examined and this will be followed by further sections on crime and privacy.
Abstract: This article considers the financial and proprietary considerations applicable to computer crime, computer security and personal privacy. The failure to take proper precautions in these areas can lead to major operational problems and substantial loss of assets. Developments in the late 1980s, particulary the discovery by the public press of so-called ‘computer viruses’, indicates the need for counsel representing suppliers and users to understand the basic technology involved and the legal implications. Such a report by Robert Bigelow was first published in CLSR in March 1989. He has now updated and revised the text which will be featured in several parts. In the first parts the legal position concerning threats to, and protection of, computer security is examined. This will be followed by further sections on crime and privacy. It is considered that the detailed references to the text will be of particular interest to those researching and advising in the area.
385 citations
TL;DR: The UK Government's White Paper on Competitiveness sets out the role it and business needs to play in improving the UK's position and the great emphasis it puts on the importance of information technology and telecommunications is of interest in the technology field.
Abstract: The UK Government's White Paper on Competitiveness sets out the role it and business needs to play in improving the UK's position. It is of interest in the technology field because of the great emphasis it puts on the importance of information technology and telecommunications.
268 citations
TL;DR: It is found that current regulatory mechanisms do not adequately address privacy and civil liberties concerns because UASs are complex, multimodal surveillance systems that integrate a range of technologies and capabilities.
Abstract: This paper examines how the use of unmanned aircraft systems (UASs) for surveillance in civil applications impacts upon privacy and other civil liberties It argues that, despite the heterogeneity of these systems, the same “usual suspects” – the poor, people of colour and anti-government protesters – are targeted by UAS deployments It discusses how current privacy-related legislation in the US, UK and European Union might apply to UASs We find that current regulatory mechanisms do not adequately address privacy and civil liberties concerns because UASs are complex, multimodal surveillance systems that integrate a range of technologies and capabilities The paper argues for a combination of top-down, legislated requirements and bottom-up impact assessments to adequately address privacy and civil liberties
259 citations
TL;DR: In this article, the privacy and consumer risks that are associated with cloud computing are examined.
Abstract: While vaguely defined, and wide in scope, so-called ‘cloud computing’ has gained considerable attention in recent times. Put simply, it refers to an arrangement under which a user relies on another party to provide access to remote computers and software, whose whereabouts, including their jurisdictional location, are not known nor controllable by the user. In this article, we examine the privacy and consumer risks that are associated with cloud computing.
200 citations
TL;DR: The purposes of this study were to compare the current Data Protection Directive 95/46/EC with theGDPR by systematically analysing their differences and to identify the GDPR's practical implications, specifically for companies that provide services based on personal data.
Abstract: The General Data Protection Regulation (GDPR) will come into force in the European Union (EU) in May 2018 to meet current challenges related to personal data protection and to harmonise data protection across the EU. Although the GDPR is anticipated to benefit companies by offering consistency in data protection activities and liabilities across the EU countries and by enabling more integrated EU-wide data protection policies, it poses new challenges to companies. They are not necessarily prepared for the changes and may lack awareness of the upcoming requirements and the GDPR's coercive measures. The implementation of the GDPR requirements demands substantial financial and human resources, as well as training of employees; hence, companies need guidance to support them in this transition. The purposes of this study were to compare the current Data Protection Directive 95/46/EC with the GDPR by systematically analysing their differences and to identify the GDPR's practical implications, specifically for companies that provide services based on personal data. This study aimed to identify and discuss the changes introduced by the GDPR that would have the most practical relevance to these companies and possibly affect their data management and usage practices. Therefore, a review and a thematic analysis and synthesis of the article-level changes were carried out. Through the analysis, the key practical implications of the changes were identified and classified. As a synthesis of the results, a framework was developed, presenting 12 aspects of these implications and the corresponding guidance on how to prepare for the new requirements. These aspects cover business strategies and practices, as well as organisational and technical measures.
156 citations