Q2. What is the main principle of the EU data protection framework?
As a rights-based, complaint-driven system6, the framework’s success is reliant upon data subjects enforcing their rights and keeping a check on data controllers.
Q3. What is the purpose of creating categories in relation to any phenomena?
The purpose of creating categories in relation to any phenomena is to reduce the number of discriminations in the world, so that each individual thing does not have a separate label18.
Q4. What is the definition of ‘Derived Data’?
‘Derived data’ are data generated from other data, after which they become new data elements related to a particular individual e.g. a calculation of customer profitability based on the ration between number of visits and items bought.
Q5. What is the benefit of a properly categorised personal data?
Ifpersonal data were appropriately divided into categories that allowed individuals to understand more about the personal data processing simply from knowing which category (or categories) were processed, this could reduce the amount of information currently required to create this understanding.
Q6. What is the definition of ‘observed’ data?
Given the purposes of categorisation in general, in theory, an appropriate categorisation of personal data could provide a number of benefits, increasing the transparency of personal data14 As defined by the OECD Expert Roundtable (see supra), ‘Observed’ data is personal data that is observed by others and recorded in a digital format e.g. cookie data or sensor data.
Q7. What is the key principle of the current EU data protection framework?
A key principle of the currentand future EU data protection framework is purpose limitation (Article 5(1)(b) GDPR and Article 6(1)(b) DPD).
Q8. What is the purpose of categorising personal data?
appropriately categorising personal data has the potential to reduce the amount of information that needs to be provided, removing a disincentive for engaging with this information.
Q9. What is the meaning of the word ‘and in a transparent manner’?
In particular, the increased importance of transparency is signified by the introduction of the words ‘and in a transparent manner’ to the end of the first data protection principle.
Q10. What is the definition of ‘personal data’?
In calling for clarification, the article examines the current approaches to categorisation and concludes that a new approach to categorising personal data is required, through which meaningful information that increases the transparency of data processing can be provided.
Q11. What is the main criticism of the manifestation of the obligation to inform?
One of the key criticisms of the manifestation of the obligation to inform is that it generally results in long and complicated privacy notices, which are never read21.