With a set of more than 50 recommendations for the improvement of practical cooperation between data protection authorities, a multi-national research consortium – led by Prof. Dr. Paul De Hert of Vrije Universiteit Brussel – concluded a four-year research initiative in the framework of two projects named “PHAEDRA”. These studies were commissioned and financially supported by the European Union.
“Personal data no longer stay within one country. They are constantly being exchanged between jurisdictions and this elevates risks for both individuals as well as public and private organisations. When something goes wrong – for example a data breach – the consequences are not only often serious, but also these consequences equally often occur in more than one country. Given the importance of information for contemporary economy and national security, an adequate response to tackle this challenge is therefore critically needed. It is a global standard in data protection law that dedicated supervisory authorities have been set up not only to sanction violations of this branch of law, but also to work to prevent these violations from happening. These authorities normally have been busy with matters concerning their own countries. As these days personal data transcend boundaries, these authorities now need to work together efficiently to achieve this double end” – said Prof. De Hert.
Under the framework of the ARCADES research project, for the past 18 months, three European data protection authorities (DPAs) – from Poland, Hungary and Slovenia – as well as the Research Group on Law, Science, Technology & Society (LSTS) at the Vrije Universiteit Brussel (VUB) have looked for best practices in teaching privacy and personal data protection at schools. This common endeavour has resulted in a series of academic reports and articles, three seminars for teachers, three national contests for the best lesson plan and a final conference in Barcelona. The most recent deed, ‘The European Handbook for Teaching Privacy and Data Protection at Schools’, edited by Prof. Dr. Gloria González Fuster (VUB-LSTS) and Dariusz Kloza, LLM (VUB-LSTS & PRIO), was released in July 2016 in four linguistic versions: English, Polish, Hungarian and Slovenian.
The ARCADES Project, concerned with Introducing Data Protection and Privacy at Schools in the European Union, will held its Final Conference in Barcelona on 4 March 2016. The conference is co-hosted by Eticas Research & Consulting and APDCAT (Catalan DPA). The project’s objective is to provide a useful tool for teachers of any EU school wishing to educate children and teenagers about privacy and personal data protection, in the form of a handbook. A joint workshop will be offered by the CNIL (French DPA) to discuss a draft Guide on competitions. The event is free, but registration is required. For further information, please find here the Invitation-ARCADES and the provisional agenda.
‘Knitting together’ by Kristina Alexanderson via Flickr (CC BY-NC-ND 2.0)
Almost as a tradition, the end of February marks each year a visit of VUB-LSTS researchers to the International Legal Informatics Symposium (IRIS) held in Salzburg, Austria. The bilingual, German-English IRIS has been established as the largest and most important academic conference on computers and law in Austria and Central Europe.
This year, Prof. Dr. Paul De Hert, Antonella Galetta and Dariusz (Darek) Kloza will partake in the 19th edition thereof, which will take place on 25-27 February 2016 and which is devoted to the concept of “Networks”.
It is with great pleasure that we announce that the PHAEDRA I project (Improving Practical and Helpful cooperAtion betweEn Data Protection Authorities, 2013-2015) has produced its final publication, constituting also Deliverable D5.3. The project’s final book, titled ‘Enforcing privacy: lessons from current implementations and perspectives for the future‘ and edited by VUB-LSTS researches Prof. Dr. Paul De Hert and Dariusz Kloza, LLM as well as GIODO‘s Paweł Makowski, was released on 6 October 2015. It is an open access publication to be downloaded here.
‘This book is composed of selected interventions made at the final conference of the PHAEDRA project, held on 12 December 2014 in Kraków, Poland. These contributions are preceded by invited comments written by the experts in the field. Each of these papers – in one way or another touching upon various aspects of cooperation between supervisory authorities – contributes to the unambiguous conclusion that the efficiency of such cooperation is an essential element of the effective protection of the fundamental rights to privacy and personal data protection‘ – wrote the editors in the Introduction.
picture by Janis Lanka (@flickr)
On 20 July 2015 the PHAEDRA II project consortium published its first deliverable: Authorities’ views on the impact of the data protection framework reform on their co-operation in the EU, authored by David Barnard-Wills and David Wright (Trilateral Research & Consulting LLP).
This report provides the findings from a series of interviews with senior representatives of EU data protection authorities (DPAs) in April-May 2015. Topics covered in the interviews include the main developments of the General Data Protection Regulation (GDPR), including the consistency mechanisms, one-stop shop, European Data Protection Board (EDPB), and their impact on cooperation between EU DPAs; challenges to co-operation and co-ordination between EU DPAs; cooperation and coordination regarding enforcement and the perspectives of the DPAs on the activities envisaged within the PHAEDRA II project – a repository of key DPA decisions, investigating the feasibility of a common approach to complaint handling, mapping enforcement powers and technology watch activities.
The Centre for the Study of the Sciences and the Humanities (SVT) at the University of Bergen (UiB), Norway, will host a mini-seminar on impact assessments between law and regulation on Monday, 15 June 2015.
picture by johnbullas (@flickr)
This mini-seminar will deal with new uses of impact assessments, for instance dealing with risks to rights and freedoms posed by new digital technologies. It will pose the question of who should get to perform such assessments, drawing upon whose expertise, and how interdisciplinary teams should come together in the making of assessments of future risks. It especially targetes the domains between law and regulatory activities, and asks whether the two are increasingly becoming conflated. The mini-seminar will proceed by brief presentations followed by questions and discussions.
The presentations will draw upon the recently finished EPINET project (Integrated Assessment of Societal Impacts of Emerging Science and Technology from within Epistemic Networks; 2012-2015), of which Kjetil Rommetveit was the lead investigator, and VUB-LSTS researcher Dariusz Kloza’s recently co-authored book on Smart Grid Security.
13:00 – 13:15: Introduction
13:15 – 14:00: Dariusz Kloza (Vrije Universiteit Brussel, VUB): Doing impact assessments in H2020 research projects
14:15 – 15:00: Kjetil Rommetveit (SVT) and Dariusz Kloza (VUB): Data protection impact assessments and the EU’s Better Regulations Package
Further information: http://www.uib.no/en/svt/89368/impact-assessments-between-law-and-regulation