Discover and read the best of Twitter Threads about #eudatap

Most recents (10)

Here is a little thread you need to know about the #GDPR and accountability 👇👇
#eudatap #privacy
Chapters 2, 5 and 9 #GDPR contain the rules for processing personal data. However, 100% compliance with these rules is impossible in practice. #eudatap #privacy
So, during the #GDPR negotiations, the EU Council of Ministers pushed hard on the accountability principle enshired in Chapter 4. They called it "the risk-based approach". #eudatap #privacy
Read 16 tweets
Irish data protection authority: U.S. law doesn't provide remedy for unlawful processing of personal data. There is no way of knowing when or by whom personal data has been accessed.
Irish data protection authority: U.S. legal regime doesn’t legal remedies such as access, erasure or rectification of the data. The Ombudsperson mechanism is not enough to make up for these "deficiencies."
Reminder: The Ombudsperson mechanism is also used for the #PrivacyShield.
Read 91 tweets
Steadily approaching #GDPR anniversary and I see two big & fundamental issues everyone is really struggling with:
1️⃣Lawful grounds for processing
2️⃣DPIAs
One is as old as #EUdataP law itself but the #GDPR has injected new impetus. The other is yet to be learnt properly. Thread⬇️
There are three grounds for processing that get 99% of the attention:
1️⃣Consent seems easy & solid, but it is the most difficult.
2️⃣Contractual necessity is yet to be explored & debated properly.
3️⃣Legitimate interest is seen as the holy grail but remains largely misunderstood.
The standards for valid consent will eventually be settled by #CJEU but it is clear that #GDPR raises the bar well above what has become common practice (think cookie banners & ‘take it or leave it’ approaches). So consent is bound to become the residual option, not the default.
Read 6 tweets
How is & how should #EUDataP of #journalism #media develop under #GDPR? Here are some thoughts based on a talk I gave to @sciencespo and @HECParisLaw late last year. slideshare.net/DavidErdos1/gd…
(1) State law remains highly divergent but the great majority recognise that qualified DP requirements and partial DPA supervision should apply to journalism.
(2) This law, the GDPR itself and the EU Charter all point to a continued, albeit sensitive role, for DPAs here. But these agencies have many other demands and remain highly resource constrained.
Read 6 tweets
@winfriedveil @PrivacyMatters @WieseSvanberg @hartzog It is not me or you who ultimately say #EUDataP is about control or not. We are not talking about an intellectual construct here, but about a fundamental right distinct than privacy, protected at constitutional level in the European Union. A constitutional order which 1/14
@winfriedveil @PrivacyMatters @WieseSvanberg @hartzog is guaranteed by the Court of Justice of the EU, which beautifully laid out in several of its cases what this right is and is not. Look for example at para 48 in Nowak, where the Court explains that data protection principles are “reflected” 2/14
@winfriedveil @PrivacyMatters @WieseSvanberg @hartzog in accountability obligations of the controller & in the rights that are conferred to the person to know about the processing, see the data, to request correction and even to object. Speaking of the right to object, it’s one of clearest manifestations of control in #EUDataP 3/14
Read 14 tweets
Translation Director-General Rytis Martikonis kicks off #TEF2018 here in Brussels. You can follow along on YouTube and @Slidoapp; just use our hashtag.
I‘ll be representing @EUInterpreters, talking about how interpreters use data & technology. (Come say hi!) Hoping to add to the momentum of the upcoming launch of the Knowledge Center. @CathyPe1971 @jhsaseta #1nt #scickci
Our moderator is @AnaGuerberof - kudos and good luck trying to tame hundreds of curious translators over two days! 😉 #xl8
Read 31 tweets
1. Good piece on where business is up to on #GDPR & personalisation: linkedin.com/pulse/personal… However, #ePrivacy Directive sets out cookie consent req unless "strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested"
2. There is significant EU case law on "strict necessity", as well as some on "explicit" & "specific" consent. It does not really suggest a "take-it-or-leave-it" rather than opt-in approach to additional "services"/"intrusions" (depending on your perspective) is OK/"debatable".
3. Rather it strongly points to such an approach being NOT legally OK. That may be inconvenient to #ecommerce & even v silly on the part of #EUDataP. However, those factors alone cannot change the meaning of v specifically crafted law, albeit law widely bent (or ignored) online.
Read 5 tweets
When people agonise about being ‘ready’ for #GDPR, think about this: How can anyone be ready when we are all still debating which lawful grounds for processing (consent/contractual necessity/legitimate interests) apply to some of the most common uses of data? 1/4
Aside from obvious cases, determining the lawful ground for processing is a critical aspect of #EUdataP which is extremely difficult to get right, because it rests on the correct legal interpretation of complex concepts like ‘consent’, ‘necessity’ & ‘rights and freedoms’ 2/4
But since under #GDPR you have to reveal which lawful ground you rely on, everyone is taking a view which may or may not be right in the end. We simply don’t know with 100% certainty and it will take years of enforcement and court decisions to know for sure. 3/4
Read 4 tweets
Back in Brussels 🇪🇺 after 3 weeks in DC & NYC 🇺🇸

High on my 'To do' list:

Catching up on avalanche of news on #CambridgeAnalyticaFiles.
Starting here:

‘I made Steve Bannon’s psychological warfare tool.’

Meet @chrisinsilico, the data war whistleblower.

#CambridgeAnalyticaFiles #CambridgeAnalytica
#InformationWarfare #BigTech #BigData

theguardian.com/news/2018/mar/…
Read & follow @carolecadwalla for outstanding reporting on the big, dark tangled web of Brexit, Trump, Russia -- and how Facebook, Cambridge Analytica, WikiLeaks, Bannon, the Mercers, are involved.

#CambridgeAnalyticaFiles #BigTech #BigData

theguardian.com/news/series/ca…
Read 19 tweets
Wide debate on #eprivacy right now. I see a lot of misunderstandings, let me clarify a few things (& further info: bit.ly/2i99Kd5)
Should I not be asked before my emails are accessed and used? Don't you think the same? Is this asking too much? #eprivacy
New #eprivacy rules = more flexibility for all businesses to process communication data w/ user consent. Under current rules #telecoms can't
Read 5 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!