scispace - formally typeset
Search or ask a question
JournalISSN: 2364-284X

European Data Protection Law Review 

Q1822344
About: European Data Protection Law Review is an academic journal published by Q1822344. The journal publishes majorly in the area(s): Data Protection Act 1998 & European union. It has an ISSN identifier of 2364-284X. Over the lifetime, 244 publications have been published receiving 1296 citations. The journal is also known as: EDPL (Print) & EDPL (Internet).

Papers published on a yearly basis

Papers
More filters
Journal ArticleDOI
TL;DR: There will be a unified and directly applicable data protection law for the European Union which replaces almost all of the existing Member States’ provisions and which will have to be applied by businesses, individuals, courts and authorities without transposition into national law.
Abstract: Time is running. On 24 May 2018 the General Data Protection Regulation of the EU (GDPR) will apply directly to processing activities of personal data which have a link to the European Union’s territory or market. From this day on a breach of its provisions will be punishable by a sanction of up to 4% of the yearly worldwide turnover in case of an enterprise or up to €100 million in all cases. All Data Protection Authorities (DPAs) will have to impose these sanctions and they will be equipped with a wide range of tasks and powers on top. Binding majority decisions by a newly created European Data Protection Board can force any Member States’ DPA to adopt, change or withdraw a certain measure. From 24 May 24 2018 the fragmented digital market of today and the lack of enforcement in the field of data protection provisions will end. There will be a unified and directly applicable data protection law for the European Union which replaces almost all of the existing Member States’ provisions and which will have to be applied by businesses, individuals, courts and authorities without transposition into national law.

207 citations

Journal ArticleDOI
TL;DR: In this article, the authors argue that smart cities combine the three greatest current threats to personal privacy, with which regulation has so far failed to deal effectively; the Internet of Things(IoT) or "ubiquitous computing"; "Big Data" ; and the Cloud.
Abstract: "Smart cities" are a buzzword of the moment. Although legal interest is growing, most academic responses at least in the EU, are still from the technological, urban studies, environmental and sociological rather than legal, sectors and have primarily laid emphasis on the social, urban, policing and environmental benefits of smart cities, rather than their challenges, in often a rather uncritical fashion . However a growing backlash from the privacy and surveillance sectors warns of the potential threat to personal privacy posed by smart cities . A key issue is the lack of opportunity in an ambient or smart city environment for the giving of meaningful consent to processing of personal data; other crucial issues include the degree to which smart cities collect private data from inevitable public interactions, the "privatisation" of ownership of both infrastructure and data, the repurposing of “big data” drawn from IoT in smart cities and the storage of that data in the Cloud. This paper, drawing on author engagement with smart city development in Glasgow as well as the results of an international conference in the area curated by the author, argues that smart cities combine the three greatest current threats to personal privacy, with which regulation has so far failed to deal effectively; the Internet of Things(IoT) or "ubiquitous computing"; "Big Data" ; and the Cloud. It seeks solutions both from legal institutions such as data protection law and from "code", proposing in particular from the ethos of Privacy by Design, a new "social impact assessment" and new human:computer interactions to promote user autonomy in ambient environments.

79 citations

Journal ArticleDOI
TL;DR: In this paper, the authors examine data protection on blockchains and other forms of distributed ledger technology (DLT) and suggest that in interpreting the GDPR with respect to blockchains, fundamental rights protection and the promotion of innovation, two normative objectives of the European legal order, must be reconciled.
Abstract: This paper examines data protection on blockchains and other forms of distributed ledger technology (‘DLT’). Transactional data stored on a blockchain, whether in plain text, encrypted form or after having undergone a hashing process, constitutes personal data for the purposes of the GDPR. Public keys equally qualify as personal data as a matter of EU data protection law. We examine the consequences flowing from that state of affairs and suggest that in interpreting the GDPR with respect to blockchains, fundamental rights protection and the promotion of innovation, two normative objectives of the European legal order, must be reconciled. This is even more so given that, where designed appropriately, distributed ledgers have the potential to further the GDPR’s objective of data sovereignty.

78 citations

Performance
Metrics
No. of papers from the Journal in previous years
YearPapers
202312
202270
20212
202016
201929
201833