Loading…
The security of personal data under the GDPR: a harmonized duty or a shared responsibility?
‘Personal data’1 play a central role in today’s society. Technological advancements have created new ways to collect, use and disseminate these data. The ‘processing’ of the data frequently crosses borders.2 The important role of personal data and the international dimension of the processing necess...
Saved in:
| Published in: | International data privacy law 2017-08, Vol.7 (3), p.165-178 |
|---|---|
| Main Author: | |
| Format: | Article |
| Language: | English |
| Subjects: | |
| Citations: | Items that cite this one |
| Online Access: | Get full text |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| cited_by | cdi_FETCH-LOGICAL-c378t-1b853289ac34b9d62e7f5ba55d48e9f74240f075a6df2561ba7c13c5a21913ca3 |
|---|---|
| cites | |
| container_end_page | 178 |
| container_issue | 3 |
| container_start_page | 165 |
| container_title | International data privacy law |
| container_volume | 7 |
| creator | Wolters, P. T. J. |
| description | ‘Personal data’1 play a central role in today’s society. Technological advancements have created new ways to collect, use and disseminate these data. The ‘processing’ of the data frequently crosses borders.2 The important role of personal data and the international dimension of the processing necessitate an adequate protection.3 To strengthen this protection, the European Parliament and the Council have adopted Regulation 2016/679/EU of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data [2016] OJ L119/1 (General Data Protection Regulation, ‘GDPR’).4 Pursuant to Article 99, the Regulation will apply from 25 May 2018. It creates several obligations for the ‘controller’ and the ‘processor’ and rights for the ‘data subject’. This article proceeds as follows. Section ‘The case of the international energy company’ sketches a fictional case that shows that the security of personal data depends on many different actors. Sections ‘The international energy company’ through ‘The developer of the firewall’ give an overview of the obligations of these parties. This overview shows that the duty to secure personal data can be based on a patchwork of different European and national rules. In Section ‘Synthesis’, I analyse several factors that influence the harmonization of the duty. The last section will present a conclusion. |
| doi_str_mv | 10.1093/idpl/ipx008 |
| format | article |
| fullrecord | <record><control><sourceid>gale_proqu</sourceid><recordid>TN_cdi_proquest_journals_2056425867</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><galeid>A519404803</galeid><oup_id>10.1093/idpl/ipx008</oup_id><sourcerecordid>A519404803</sourcerecordid><originalsourceid>FETCH-LOGICAL-c378t-1b853289ac34b9d62e7f5ba55d48e9f74240f075a6df2561ba7c13c5a21913ca3</originalsourceid><addsrcrecordid>eNp9kEtLAzEUhQdRsGhX_oGA4EZq85zJuJFStQoFRerKRcjkYVOmkzGZAeuvN2UK7rybczl898A9WXaB4A2CJZk63dZT135DyI-yEYaUTiiE6Piwk7Kkp9k4xg1Mw1jBCRllH6u1AdGoPrhuB7wFrQnRN7IGWnYS9I02AXSJWdy_vt0CCdYybH3jfowGut-fhGTG5CYjmNj6JrrK1Snt7jw7sbKOZnzQs-z98WE1f5osXxbP89lyokjBuwmqOCOYl1IRWpU6x6awrJKMacpNaQuKKbSwYDLXFrMcVbJQiCgmMSqTSnKWXQ65bfBfvYmd2Pg-pB-iwJDlFDOeF3_Up6yNcI31XZBq66ISM4ZKCimHJFHXA6WCjzEYK9rgtjLsBIJiX7PY1yyGmhN9NdC-b_8FfwFfE3yb</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2056425867</pqid></control><display><type>article</type><title>The security of personal data under the GDPR: a harmonized duty or a shared responsibility?</title><source>ABI/INFORM Collection</source><source>Oxford Journals Online</source><creator>Wolters, P. T. J.</creator><creatorcontrib>Wolters, P. T. J.</creatorcontrib><description>‘Personal data’1 play a central role in today’s society. Technological advancements have created new ways to collect, use and disseminate these data. The ‘processing’ of the data frequently crosses borders.2 The important role of personal data and the international dimension of the processing necessitate an adequate protection.3 To strengthen this protection, the European Parliament and the Council have adopted Regulation 2016/679/EU of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data [2016] OJ L119/1 (General Data Protection Regulation, ‘GDPR’).4 Pursuant to Article 99, the Regulation will apply from 25 May 2018. It creates several obligations for the ‘controller’ and the ‘processor’ and rights for the ‘data subject’. This article proceeds as follows. Section ‘The case of the international energy company’ sketches a fictional case that shows that the security of personal data depends on many different actors. Sections ‘The international energy company’ through ‘The developer of the firewall’ give an overview of the obligations of these parties. This overview shows that the duty to secure personal data can be based on a patchwork of different European and national rules. In Section ‘Synthesis’, I analyse several factors that influence the harmonization of the duty. The last section will present a conclusion.</description><identifier>ISSN: 2044-3994</identifier><identifier>EISSN: 2044-4001</identifier><identifier>DOI: 10.1093/idpl/ipx008</identifier><language>eng</language><publisher>Oxford: Oxford University Press</publisher><subject>Computer privacy ; Cooperation ; Councils ; Data security ; Evaluation ; General Data Protection Regulation ; Harmonization of laws ; International aspects ; Laws, regulations and rules ; Personal information ; Technological change</subject><ispartof>International data privacy law, 2017-08, Vol.7 (3), p.165-178</ispartof><rights>The Author 2017. Published by Oxford University Press. All rights reserved. For Permissions, please email: journals.permissions@oup.com 2017</rights><rights>COPYRIGHT 2017 Oxford University Press</rights><rights>Copyright Oxford Publishing Limited(England) Aug 2017</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c378t-1b853289ac34b9d62e7f5ba55d48e9f74240f075a6df2561ba7c13c5a21913ca3</citedby></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://www.proquest.com/docview/2056425867?pq-origsite=primo$$EHTML$$P50$$Gproquest$$H</linktohtml><link.rule.ids>314,780,784,11688,27924,27925,36060,44363</link.rule.ids></links><search><creatorcontrib>Wolters, P. T. J.</creatorcontrib><title>The security of personal data under the GDPR: a harmonized duty or a shared responsibility?</title><title>International data privacy law</title><description>‘Personal data’1 play a central role in today’s society. Technological advancements have created new ways to collect, use and disseminate these data. The ‘processing’ of the data frequently crosses borders.2 The important role of personal data and the international dimension of the processing necessitate an adequate protection.3 To strengthen this protection, the European Parliament and the Council have adopted Regulation 2016/679/EU of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data [2016] OJ L119/1 (General Data Protection Regulation, ‘GDPR’).4 Pursuant to Article 99, the Regulation will apply from 25 May 2018. It creates several obligations for the ‘controller’ and the ‘processor’ and rights for the ‘data subject’. This article proceeds as follows. Section ‘The case of the international energy company’ sketches a fictional case that shows that the security of personal data depends on many different actors. Sections ‘The international energy company’ through ‘The developer of the firewall’ give an overview of the obligations of these parties. This overview shows that the duty to secure personal data can be based on a patchwork of different European and national rules. In Section ‘Synthesis’, I analyse several factors that influence the harmonization of the duty. The last section will present a conclusion.</description><subject>Computer privacy</subject><subject>Cooperation</subject><subject>Councils</subject><subject>Data security</subject><subject>Evaluation</subject><subject>General Data Protection Regulation</subject><subject>Harmonization of laws</subject><subject>International aspects</subject><subject>Laws, regulations and rules</subject><subject>Personal information</subject><subject>Technological change</subject><issn>2044-3994</issn><issn>2044-4001</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2017</creationdate><recordtype>article</recordtype><sourceid>M0C</sourceid><recordid>eNp9kEtLAzEUhQdRsGhX_oGA4EZq85zJuJFStQoFRerKRcjkYVOmkzGZAeuvN2UK7rybczl898A9WXaB4A2CJZk63dZT135DyI-yEYaUTiiE6Piwk7Kkp9k4xg1Mw1jBCRllH6u1AdGoPrhuB7wFrQnRN7IGWnYS9I02AXSJWdy_vt0CCdYybH3jfowGut-fhGTG5CYjmNj6JrrK1Snt7jw7sbKOZnzQs-z98WE1f5osXxbP89lyokjBuwmqOCOYl1IRWpU6x6awrJKMacpNaQuKKbSwYDLXFrMcVbJQiCgmMSqTSnKWXQ65bfBfvYmd2Pg-pB-iwJDlFDOeF3_Up6yNcI31XZBq66ISM4ZKCimHJFHXA6WCjzEYK9rgtjLsBIJiX7PY1yyGmhN9NdC-b_8FfwFfE3yb</recordid><startdate>20170801</startdate><enddate>20170801</enddate><creator>Wolters, P. T. J.</creator><general>Oxford University Press</general><general>Oxford Publishing Limited (England)</general><scope>AAYXX</scope><scope>CITATION</scope><scope>ILT</scope><scope>3V.</scope><scope>7WY</scope><scope>7WZ</scope><scope>7XB</scope><scope>87Z</scope><scope>8FK</scope><scope>8FL</scope><scope>8G5</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BEZIV</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>EHMNL</scope><scope>FRNLG</scope><scope>F~G</scope><scope>GNUQQ</scope><scope>GUQSH</scope><scope>K60</scope><scope>K6~</scope><scope>L.-</scope><scope>M0C</scope><scope>M2O</scope><scope>MBDVC</scope><scope>PADUT</scope><scope>PQBIZ</scope><scope>PQBZA</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PYYUZ</scope><scope>Q9U</scope><scope>S0X</scope></search><sort><creationdate>20170801</creationdate><title>The security of personal data under the GDPR: a harmonized duty or a shared responsibility?</title><author>Wolters, P. T. J.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c378t-1b853289ac34b9d62e7f5ba55d48e9f74240f075a6df2561ba7c13c5a21913ca3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2017</creationdate><topic>Computer privacy</topic><topic>Cooperation</topic><topic>Councils</topic><topic>Data security</topic><topic>Evaluation</topic><topic>General Data Protection Regulation</topic><topic>Harmonization of laws</topic><topic>International aspects</topic><topic>Laws, regulations and rules</topic><topic>Personal information</topic><topic>Technological change</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Wolters, P. T. J.</creatorcontrib><collection>CrossRef</collection><collection>Gale OneFile: LegalTrac</collection><collection>ProQuest Central (Corporate)</collection><collection>ABI/INFORM Collection</collection><collection>ABI/INFORM Global (PDF only)</collection><collection>ProQuest Central (purchase pre-March 2016)</collection><collection>ABI/INFORM Collection</collection><collection>ProQuest Central (Alumni) (purchase pre-March 2016)</collection><collection>ABI/INFORM Collection (Alumni Edition)</collection><collection>Research Library (Alumni Edition)</collection><collection>ProQuest Central (Alumni)</collection><collection>ProQuest Central</collection><collection>ProQuest Central Essentials</collection><collection>ProQuest Central</collection><collection>Business Premium Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>UK & Ireland Database</collection><collection>Business Premium Collection (Alumni)</collection><collection>ABI/INFORM Global (Corporate)</collection><collection>ProQuest Central Student</collection><collection>Research Library Prep</collection><collection>ProQuest Business Collection (Alumni Edition)</collection><collection>ProQuest Business Collection</collection><collection>ABI/INFORM Professional Advanced</collection><collection>ABI/INFORM Collection</collection><collection>ProQuest_Research Library</collection><collection>Research Library (Corporate)</collection><collection>Research Library China</collection><collection>ProQuest One Business</collection><collection>ProQuest One Business (Alumni)</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ABI/INFORM Collection China</collection><collection>ProQuest Central Basic</collection><collection>SIRS Editorial</collection><jtitle>International data privacy law</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Wolters, P. T. J.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>The security of personal data under the GDPR: a harmonized duty or a shared responsibility?</atitle><jtitle>International data privacy law</jtitle><date>2017-08-01</date><risdate>2017</risdate><volume>7</volume><issue>3</issue><spage>165</spage><epage>178</epage><pages>165-178</pages><issn>2044-3994</issn><eissn>2044-4001</eissn><abstract>‘Personal data’1 play a central role in today’s society. Technological advancements have created new ways to collect, use and disseminate these data. The ‘processing’ of the data frequently crosses borders.2 The important role of personal data and the international dimension of the processing necessitate an adequate protection.3 To strengthen this protection, the European Parliament and the Council have adopted Regulation 2016/679/EU of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data [2016] OJ L119/1 (General Data Protection Regulation, ‘GDPR’).4 Pursuant to Article 99, the Regulation will apply from 25 May 2018. It creates several obligations for the ‘controller’ and the ‘processor’ and rights for the ‘data subject’. This article proceeds as follows. Section ‘The case of the international energy company’ sketches a fictional case that shows that the security of personal data depends on many different actors. Sections ‘The international energy company’ through ‘The developer of the firewall’ give an overview of the obligations of these parties. This overview shows that the duty to secure personal data can be based on a patchwork of different European and national rules. In Section ‘Synthesis’, I analyse several factors that influence the harmonization of the duty. The last section will present a conclusion.</abstract><cop>Oxford</cop><pub>Oxford University Press</pub><doi>10.1093/idpl/ipx008</doi><tpages>14</tpages></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 2044-3994 |
| ispartof | International data privacy law, 2017-08, Vol.7 (3), p.165-178 |
| issn | 2044-3994 2044-4001 |
| language | eng |
| recordid | cdi_proquest_journals_2056425867 |
| source | ABI/INFORM Collection; Oxford Journals Online |
| subjects | Computer privacy Cooperation Councils Data security Evaluation General Data Protection Regulation Harmonization of laws International aspects Laws, regulations and rules Personal information Technological change |
| title | The security of personal data under the GDPR: a harmonized duty or a shared responsibility? |
| url | http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-27T02%3A40%3A31IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-gale_proqu&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=The%20security%20of%20personal%20data%20under%20the%20GDPR:%20a%20harmonized%20duty%20or%20a%20shared%20responsibility?&rft.jtitle=International%20data%20privacy%20law&rft.au=Wolters,%20P.%20T.%20J.&rft.date=2017-08-01&rft.volume=7&rft.issue=3&rft.spage=165&rft.epage=178&rft.pages=165-178&rft.issn=2044-3994&rft.eissn=2044-4001&rft_id=info:doi/10.1093/idpl/ipx008&rft_dat=%3Cgale_proqu%3EA519404803%3C/gale_proqu%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-c378t-1b853289ac34b9d62e7f5ba55d48e9f74240f075a6df2561ba7c13c5a21913ca3%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_pqid=2056425867&rft_id=info:pmid/&rft_galeid=A519404803&rft_oup_id=10.1093/idpl/ipx008&rfr_iscdi=true |