Is the Definition of Personal Data Flawed? Hyperlink as Personal Data (Processing)

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14220%2F17%3A00096866" target="_blank" >RIV/00216224:14220/17:00096866 - isvavai.cz</a>

Výsledek na webu

—

DOI - Digital Object Identifier

—

Jazyk výsledku

angličtina

Název v původním jazyce

Is the Definition of Personal Data Flawed? Hyperlink as Personal Data (Processing)

Popis výsledku v původním jazyce

The recent course of interpretation of the European directive on personal data 95/46/EC by the Court of Justice of the European Union, as well as opinions of Working Party 29, show that the Directive should be interpreted in the strictest way, so the right to privacy of the European citizens is not impaired. This opinion is proclaimed very strongly due to the underlying philosophy of the Directive, which is the prevention of possible harm. Very large application scope of the Directive is the cornerstone of this approach. It is ensured by very open definition of “personal data”, the key element of the whole personal data protection system. From the analytical point of view, the most interesting questions arise on the interpretational edges of the concept, where it might seem that it is illogical to apply the provisions. Strict application of the law might not be possible in such borderline situations because the data controller might be in a situation when it is in practice impossible to fulfil all legal duties. The hypothesis of the chapter is that current definitions of “personal data” and “personal data processing” are too broad. Therefore, sometimes it is impossible to fulfil the duties of the data controller, but data protection authorities do not enforce such cases. This approach is consequently undermining the whole system. In the first part the paper analyses European legal data protection regime, the legislative, judicatory and expert opinions on the possible scope of “personal data” as is defined in the European Directive 95/46/EC and General Data Protection Regulation. It also discusses concepts of subjective and objective approach to the personal data definition. In the second part, the chapter offers a case study of different situations in which a hyperlink might or might not serve as personal data in the meaning of the Directive. In the final part of the Chapter are offered two possible solutions to the presented problem.

Název v anglickém jazyce

Is the Definition of Personal Data Flawed? Hyperlink as Personal Data (Processing)

Popis výsledku anglicky

The recent course of interpretation of the European directive on personal data 95/46/EC by the Court of Justice of the European Union, as well as opinions of Working Party 29, show that the Directive should be interpreted in the strictest way, so the right to privacy of the European citizens is not impaired. This opinion is proclaimed very strongly due to the underlying philosophy of the Directive, which is the prevention of possible harm. Very large application scope of the Directive is the cornerstone of this approach. It is ensured by very open definition of “personal data”, the key element of the whole personal data protection system. From the analytical point of view, the most interesting questions arise on the interpretational edges of the concept, where it might seem that it is illogical to apply the provisions. Strict application of the law might not be possible in such borderline situations because the data controller might be in a situation when it is in practice impossible to fulfil all legal duties. The hypothesis of the chapter is that current definitions of “personal data” and “personal data processing” are too broad. Therefore, sometimes it is impossible to fulfil the duties of the data controller, but data protection authorities do not enforce such cases. This approach is consequently undermining the whole system. In the first part the paper analyses European legal data protection regime, the legislative, judicatory and expert opinions on the possible scope of “personal data” as is defined in the European Directive 95/46/EC and General Data Protection Regulation. It also discusses concepts of subjective and objective approach to the personal data definition. In the second part, the chapter offers a case study of different situations in which a hyperlink might or might not serve as personal data in the meaning of the Directive. In the final part of the Chapter are offered two possible solutions to the presented problem.

Druh

C - Kapitola v odborné knize

CEP obor

—

OECD FORD obor

50501 - Law

Projekt

—

Návaznosti

S - Specificky vyzkum na vysokych skolach

Rok uplatnění

2017

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název knihy nebo sborníku

Trans-Atlantic Data Privacy Relations as a Challenge for Democracy

ISBN

9781780684345

Počet stran výsledku

16

Strana od-do

331-346

Počet stran knihy

568

Název nakladatele

Intersentia

Místo vydání

Cambridge

Kód UT WoS kapitoly

—