Publicaties

The Right to Be Forgotten in the Internet Era

Especially after its appearance in the European Commission's recent proposal for a new Data Protection Regulation, the 'right to be forgotten' has provoked quite some criticism. Much of the opponents, however, seem uninformed on the actual scope and meaning of the proposed provision. Additionally, the concept is often confused with the much older 'droit a l'oubli', which finds its rationale in the protection of privacy as a fundamental human right. This text starts by giving an overview of the more traditional droit a l'oubli and how it is applied throughout Europe. Subsequently, the more modern 'right to be forgotten' is analyzed from a normative, market, technological and legal perspective. Finally, this text makes a thorough and critical analysis of the current proposal. Despite its laudable goal, some deficiencies should be resolved. But, in general, the right seems to restore the power balance by giving (back) effective control to individuals over their personal data.

Auteur:
Publié dans:

ICRI Research Paper No. 11, November 2012

Catégorie:

Articles

Année:

2012

Download

Collection and Storage of Personal Data: A Critical View on Current Practices in the Transportation Sector

This paper is based on a 2011 ENISA study that aimed at the analysis of two core principles that can be considered as key manifestations of privacy by design: on the one hand the principle of minimal disclosure (which is also known as the data minimisation principle), and on the other the duration of the storage of personal data (which is also known as conservation principle). It focuses on the data collected for two specific application areas: online ticket booking and purchasing, and the collection and exchange of so-called Passenger Name Record (PNR) data in the European air travel sector and it provides a summary of its findings in relation to the transportation sector across the EU Member States. The analysis shows that it is worrisome to observe that so many systems deployed in real life do not follow a privacy by design approach, and insufficiently consider the data minimisation and data conservation principles. There is a need for these principles to be strengthened in practice, through legislation and governance mechanisms that favour privacy by design, including a clear assessment of privacy impacts and the identification of more privacy conscious implementation alternatives, in order to ensure that the personal data of European citizens is proactively protected, instead of having to modify operational systems only after privacy problems come to light.

Auteur:
Publié dans:

Privacy Technologies and Policy
First Annual Privacy Forum, APF 2012, Limassol, Cyprus, October 10-11, 2012, Revised Selected Papers
Editors: Bart Preneel and Demosthenes Ikonomou

Catégorie:

Articles

Année:

2014

Buy here

Study on Cloud Computing and challenges to Security, Privacy and Trust

In the past year, time.lex worked on a study on Cloud Computing and challenges to Security, Privacy and Trust, examining the legal challenges related to cloud computing. The study was commissioned by the European Commission - DG Information Society, and was executed by time.lex along with our colleagues from RAND Europe and the University of Warwick.

Auteur:
Publié dans:

Autonomous report

Catégorie:

Rapports

Année:

2011

PDF download

Study on the evaluation of the Action Plan for the implementation of the legal framework for electronic public procurement

This study contained an evaluation of the 2004 eProcurement  Action Plan, including specifically a study of the state of eProcurement in all Member States, EEA countries and two candidate countries, along with a critical assessment of the impact and effectiveness of the Action Plan.

The study was conducted jointly by Siemens IT Solutions & Services and time.lex.

Auteur:
Publié dans:

Autonomous report

Catégorie:

Rapports

Année:

2010

PDF download

Study of case law on the circumstances in which IP addresses are considered personal data

This fact finding study for the European Commission - DG INFSO contains an overview of case law within the Member States on the legal qualification of IP addresses as being personal data under the European Data Protection Directive, along with a summary examination of the main deciding factors.

Auteur:
Publié dans:

Autonomous report

Catégorie:

Rapports

Année:

2011

PDF download

Study on data collection and storage in the EU

Given the clear contrast between the importance of the privacy by design principle on the one hand, and the reality of lax data protection practices with many online service providers on the other hand, this report presents an analysis of the relevant legal framework of European Member States on the principles of minimal disclosure and the minimum duration of the storage of personal data. Commissioned by ENISA, the focuses on a limited number of relevant use cases and tries to find out how the aforementioned principles are expressed in concrete legal or regulatory provisions applicable to these cases, and how they are observed in practice. It was drafted by Eleni Kosta, Jos Dumortier and Hans Graux on behalf of time.lex, with the support and guidance of Rodica Tirtea and Demosthenes Ikonomou (ENISA).

Auteur:
Publié dans:

Autonomous report

Catégorie:

Rapports

Année:

2012

PDF download

Legal Regulation of Electronic Health Records: A Comparative Analysis of Europe and the US

Le développement des dossiers médicaux électroniques évoluent rapidement aux États-Unis et en Europe. Différentes approches semblent possibles et ont conduit à des différentes solutions et instruments réglementaires. En Europe, les gouvernements ont été la force motrice derrière le développement et la mise en œuvre des dossiers médicaux électroniques. Par conséquent, de nombreux pays Européens, ont lancé de nouveaux cadres juridiques simultanément avec des structures eHealth initiés par le secteur public. Aux États-Unis, la force motrice n'a, jusqu'à présent, pas été le gouvernement mais le secteur privé, en particulier les compagnies d'assurance et les organismes de soins de santé. Il en est résulté un fort accent sur les renseignements médicaux personnels. Cependant, en 2009, le gouvernement Américain a émi le plus important programme de relance jamais délivré afin d'encourager la mise en place de solutions pour les dossiers médicaux électroniques Dans cette contribution, Griet Verhenneman et Jos Dumortier de time.lex font une analyse critique du cadre juridique et administratif des dossiers de santé électroniques en Europe et aux États-Unis.

Auteur:
Publié dans:

Carlisle George, Diane Whitehouse and Penny Duquenoy eds. eHealth: Legal, Ethical and Governance Challenges, Springer-Verlag, Berlin, 2012, 398

Catégorie:

Livres

Année:

2012

eHealth, eGovernement

L’influence sur la décision du consommateur dans l’appréciation du caractère trompeur d’une publicité

L’influence sur la décision du consommateur dans l’appréciation du caractère trompeur d’une publicité

Auteur:
Publié dans:

Marktpraktijken – Intellectuele eigendom – Mededinging | Pratiques du marché – Propriété intellectuelle – Concurrence, Wolters Kluwer, p. 182-227

Catégorie:

Livres

Année:

2014

Publication