How To Create An Inclusive Global Information Society
|
|
- Timothy Greer
- 3 years ago
- Views:
Transcription
1 Legal frameworks for information societies Preconditions for information exchange (2) Steven Segaert Main topics 1. What law is relevant to the existing of information societies? What can you expect to find? 2. How to take into account, and use, law? October 7-8, 2008 Tirana 2 Legal framework of information societies What is this information society? What kind of law applies to information societies? Is it special? Why? What do we need to regulate? October 7-8, 2008 Tirana 3 1
2 Information society... Our starting point is the commonplace observation that we are in a period of intense social change. Numerous writers have argued that the West is currently experiencing a profound shift from an industrial society to a post-industrial, Information Society. Some argue that the shift has affected people's ability to make sense of the rapid changes in which society is immersed. These changes contrast with commonly understood ways of seeing the world and with our taken-for-granted ways of understanding such familiar terms as "information", "location", and "knowledge". An inclusive global information society is one where all persons, without distinction, are empowered freely to create, receive, share and utilize information and knowledge for their economic, social, cultural and political development. (WSIS) A society where communication and information technologies influence the everyday lives of most of its members. Helped by the advance of the Internet and a 'wired' culture, technology is used for a wide range of personal, social, educational and business activities, and to transmit receive and exchange digital data rapidly between places despite great distances. In an information society, information is as powerful a resource as the manufacturing and agricultural industries were in previous eras. Also known as the knowledge economy, digital era or information superhighway. October 7-8, 2008 Tirana 4 Information society... An information society is a society in which the creation, distribution, diffusion, use, integration and manipulation of information is a significant economic, political, and cultural activity. The knowledge economy is its economic counterpart whereby wealth is created through the economic exploitation of understanding. Specific to this kind of society is the central position information technology has for production, economy, and society at large. Information society is seen as the successor to industrial society. (Wikipedia) October 7-8, 2008 Tirana 5 Information society... October 7-8, 2008 Tirana 6 2
3 Why do we need law? Law is instrumental: it needs to facilitate societal developments while protecting us from the state and from ourselves Law can not create, nor should it dictate, reality. The information society is a reality. Law should enable it to develop; not impede it... October 7-8, 2008 Tirana 7 What needs to be regulated? 1 Common resources and infrastructure 2 The flow of information 3 Protect the new environment October 7-8, 2008 Tirana 8 Common resources and infrastructure Spectrum, airwaves, networks,... are all limited; allowing it to be monopolized is unfair and hampers development Telecommunications Act, Cable Distribution Act, etc. To create favourable conditions for development To regulate the use of limited resources through purposeful planning To establish the requirements for telecommunications networks and provision of services To install a level of state supervision to market players October 7-8, 2008 Tirana 9 3
4 The flow of information October 7-8, 2008 Tirana 10 Historical trend... The flow of information 1. State secrets acts 2. Freedom of information laws In the OECD: 20% in % in % in 2000 (24/30 countries) 3. Protection of the individual 4. Copyright and patent laws as protection of property rights October 7-8, 2008 Tirana 11 Freedom of information You can expect to find... A constitutional provision on right to information A Public Information Act Goal: to provide everyone and anyone with access to public information... and to create possibilities for the public to monitor the performance of public duties October 7-8, 2008 Tirana 12 4
5 Freedom of information What is public information? Information which is recorded and documented in execution of public power as directed by laws and other legal acts (irrespective of the way it is recorded and documented, the medium or the location) October 7-8, 2008 Tirana 13 Freedom of information Who is the owner of public information? State and local government Public legal persons Private legal persons, if... they execute public tasks receive public funds or have a natural monopoly October 7-8, 2008 Tirana 14 Freedom of information Obligations as an owner of public information? The owner of public information is obliged to grant access... in the quickest and easiests manner... while protecting private data. Access should not cost anything extra (the law can contain charges for the carrier, not for the information) Everybody has the right to contest a restriction on access to information October 7-8, 2008 Tirana 15 5
6 Freedom of information Exceptions (when is access not to be granted) When openness ruins the possibility of work, Puts something into danger, Puts someone groundlessly into danger, Or there are obligations to the contrary from a higher level (international agreements, constitution) Even then: time limit to restrictions October 7-8, 2008 Tirana 16 Freedom of information Active measures and good practices? Not always found in Freedom of Information laws. e.g. Law can have a list of obligatory online content Law can provide that you have to have a website, or join a portal site Law can tell you to publish a document register, what is kept and why, and the rules to get access October 7-8, 2008 Tirana 17 Freedom of information Active measures and good practices? Still a good idea to organise a humane process yourself... Register a request only if you cannot satisfy it immediately Move requests from official to official (one entry point for requests) Answer immediately or within a very short timeframe Tell people clearly where they can complain October 7-8, 2008 Tirana 18 6
7 October 7-8, 2008 Tirana 19 Your organisation... Way too much work! We can t let all that information go public, surely?! How much will all that cost? Don t tell people what we do; they won t understand it anyway... Ok, I got it. Give us three years, we will make it then! Journalists would have a field day... October 7-8, 2008 Tirana 20 Freedom of information Radical? No it is necessary! Controversial? Only until implemented... Success comes from working together Training and awareness-building is necessary for all: civil servants, politicians, citizens and even journalists October 7-8, 2008 Tirana 21 7
8 Protection of personal data Personal data? personal data shall mean any information relating to an identified or identifiable natural person ( Data Subject ); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity. (Directive 95/46/EC, 24/10/1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data) broad definition; technology neutral October 7-8, 2008 Tirana 22 Protection of personal data Sensitive personal data? A subset of personal data; separately defined; more conditions are set for processing to be legal (usually the consent of the person involved is required). EC Directive: personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, and the processing of data concerning health or sex life... but the definition can be larger in your own law. Rule: no processing, with exceptions October 7-8, 2008 Tirana 23 For who? Protection of personal data All legal entities (public or private) that control personal data The individual or the legal person who controls and is responsible for the keeping and use of personal information on computer or in structured manual files. October 7-8, 2008 Tirana 24 8
9 Protection of personal data Personal data should not be processed at all, except when certain conditions are met... Transparency The data subject must be informed; the controller must provide its contact data, the prupose of processing, the recipients of the data and all other relevant information required to ensure the processing is fair. The data subject can access, demand rectification, deletion or blocking if the conditions are not met. October 7-8, 2008 Tirana 25 Protection of personal data Personal data should not be processed at all, except when certain conditions are met... Legitimate purpose Personal data can only be processed for specified explicit and legitimate purposes, and for nothing else. There are certain conditions to be fulfilled before personal data can be processed. When it involves sensitive personal data, extra restrictions apply. October 7-8, 2008 Tirana 26 Protection of personal data Personal data should not be processed at all, except when certain conditions are met... Proportionality Process only insofar as it is adequate, relevant and not excessive in relation to the purposes. Data must be kept accurate and up to date. Don t keep it longer than needed. Decisions with legal or otherwise significant effects may not be taken only on the automated processing of data. A form of appeal is to be provided. October 7-8, 2008 Tirana 27 9
10 Protection of personal data Supervisory authority Must be an independent body that monitors, advises and starts legal procedures when the rules are broken. A controller of data must notify the supervisory authority before he starts to process data who controls what data is kept in a public register. October 7-8, 2008 Tirana 28 Protection of personal data Still... Personal data may only be transferred to third countries IF that country provides an adequate level of protection. Rules also apply whenever the controller uses equipment situated in the EU, or processes data in the EU. October 7-8, 2008 Tirana 29 What can you do? Protection of personal data Adhere to the principles, even if you don t have to - they are valid and make sense Check your own situation (incl. your own laws) Plus: add the information used to come to a decision to all decisions you communicate... October 7-8, 2008 Tirana 30 10
11 Database act What should be done in order to build and maintain government databases? 2-level management Chief processors: the politically responsable Authorised processors: technically responsable Classification of data or classification of databases? October 7-8, 2008 Tirana 31 3 Protect the new environment Development needs to be facilitated Certain interests need to be protected October 7-8, 2008 Tirana 32 Digital signature law Issues and needs: You can hardly put a handwritten signature on an electronic document... What is an original document when you only have elctronic copies? Solution: look at what a signature does Identifies the signer The signer takes ownership / responsability of the document October 7-8, 2008 Tirana 33 11
12 Digital signature law Issues and needs: You can hardly put a handwritten signature on an electronic document... What is an original document when you only have elctronic copies? False issues emerge... October 7-8, 2008 Tirana 34 Digital signature law Identifies the signer The signer takes ownership / responsability of the document October 7-8, 2008 Tirana 35 Digital signature law Digital signatures are equivalent to handwritten ones, if... Uniquely identifies the signer Authenticates the signed document Allows to set a sequence of events October 7-8, 2008 Tirana 36 12
13 Digital signature law Equivalent = you must accept it (might mean you have to adapt your law) Technology-neutral When a certification authority adheres to the rules, you must trust him! Signing is not encrypting! Also machines and entities can use digital signatures October 7-8, 2008 Tirana 37 Other useful acts Identity documents act (EID?) Information society services act ISP liability, spam legislation, conditions for providing services online Re-use of public information by businesses Cyber-crime provisions Charter of electronic rights Provide standards for public e-service delivery (possibility to access services online, right to be involved in decision making processes,...) October 7-8, 2008 Tirana 38 Some conclusions Law does not create an information society... but impeding laws can hamper it Society without law is not realistic No need to re-invent, but also no use to copy using the principles is usually the best idea Eu integration can inspire Inaction is worse than not getting it perfect straight away The order of enacting is of little importance October 7-8, 2008 Tirana 39 13
14 More information (lots of it) October 7-8, 2008 Tirana 40 Thank you! Time for a break... Steven Segaert E-Governance Academy steven@ega.ee October 7-8, 2008 Tirana 41 14
Data Protection A Guide for Users
Data Protection A Guide for Users EUROPEAN PARLIAMENT Contents Contents 3 Introduction 4 Data protection standards making a difference in the European Parliament 5 Data protection the actors 6 Data protection
More informationData Protection. Processing and Transfer of Personal Data in Kvaerner. Binding Corporate Rules Public Document
Data Protection Processing and Transfer of Personal Data in Kvaerner Binding Corporate Rules Public Document 1 of 19 1 / 19 Table of contents 1 Introduction... 4 1.1 Scope... 4 1.2 Definitions... 4 1.2.1
More informationProposal of regulation Com 2012 11/4 Directive 95/46/EC Conclusion
Page 1 sur 155 Proposal of regulation Com 2012 11/4 Directive 95/46/EC Conclusion Legal nature of the instrument Règlement Directive Directly applicable act in internal law 91 articles 34 articles Art.
More informationEDPS - European Data Protection Supervisor CEPD - Contrôleur européen de la protection des données
EDPS - European Data Protection Supervisor CEPD - Contrôleur européen de la protection des données Opinion on a notification for prior checking received from the Data Protection Officer of the Court of
More informationHow To Protect Your Data In European Law
Corporate Data Protection Code of Conduct for the Protection of the Individual s Right to Privacy in the Handling of Personal Data within the Deutsche Telekom Group 2010 / 04 We make ICT strategies work
More informationData Protection Policy
Data Protection Policy CONTENTS Introduction...2 1. Statement of Intent...2 2. Fair Processing or Privacy Statement...3 3. Data Uses and Processes...4 4. Data Quality and Integrity...4 5. Technical and
More informationGuidelines on Data Protection. Draft. Version 3.1. Published by
Guidelines on Data Protection Draft Version 3.1 Published by National Information Technology Development Agency (NITDA) September 2013 Table of Contents Section One... 2 1.1 Preamble... 2 1.2 Authority...
More informationData Protection Guidance
53 September 2010 Management Circular No. 53 Glasgow City Council Education Services Wheatley House 25 Cochrane Street Merchant City GLASGOW G1 1HL To Heads of all Educational Establishments Data Protection
More information10 DATABASE PRACTICE
10 DATABASE PRACTICE Background Marketers must comply with all relevant data protection legislation. Guidance on that legislation is available from the Information Commissioner's Office. Although data
More informationDATA PROTECTION POLICY
Reference number Approved by Information Management and Technology Board Date approved 14 th May 2012 Version 1.1 Last revised N/A Review date May 2015 Category Information Assurance Owner Data Protection
More informationCROATIAN PARLIAMENT 1364
CROATIAN PARLIAMENT 1364 Pursuant to Article 88 of the Constitution of the Republic of Croatia, I hereby pass the DECISION PROMULGATING THE ACT ON PERSONAL DATA PROTECTION I hereby promulgate the Act on
More informationPRESIDENT S DECISION No. 40. of 27 August 2013. Regarding Data Protection at the European University Institute. (EUI Data Protection Policy)
PRESIDENT S DECISION No. 40 of 27 August 2013 Regarding Data Protection at the European University Institute (EUI Data Protection Policy) THE PRESIDENT OF THE EUROPEAN UNIVERSITY INSTITUTE, Having regard
More informationA common sense guide to the Data Protection Act 1998 for volunteers
A common sense guide to the Data Protection Act 1998 for volunteers Why is it necessary? The Data Protection Act 1998 is a law introduced to control the way information held about individuals is handled
More informationLEGISLATION COMMITTEE OF THE CROATIAN PARLIAMENT
LEGISLATION COMMITTEE OF THE CROATIAN PARLIAMENT 2300 Pursuant to its authority from Article 59 of the Rules of Procedure of the Croatian Parliament, the Legislation Committee determined the revised text
More informationInformation Security Policy. Appendix B. Secure Transfer of Information
Information Security Policy Appendix B Secure Transfer of Information Author: Data Protection and Information Security Officer. Version: 0.7 Date: March 2008 Document Control Information Document ID Document
More informationMONMOUTHSHIRE COUNTY COUNCIL DATA PROTECTION POLICY
MONMOUTHSHIRE COUNTY COUNCIL DATA PROTECTION POLICY Page 1 of 16 Contents Policy Information 3 Introduction 4 Responsibilities 7 Confidentiality 9 Data recording and storage 11 Subject Access 12 Transparency
More informationEUROPEAN ECONOMIC AREA JOINT PARLIAMENTARY COMMITTEE. REPORT on E-Commerce and EEA legislation
EUROPEAN ECONOMIC AREA 30 November 2000 Brussels JOINT PARLIAMENTARY COMMITTEE REPORT on E-Commerce and EEA legislation Co-rapporteurs: Ms. Marjo Matikainen-Kallstöm (EPP-ED, Finland) Mr. Vilhjálmur Egilsson
More informationData Protection Standard
Data Protection Standard Processing and Transfer of Personal Data in Aker Solutions (Binding Corporate Rules) Aker Solutions www.akersolutions.com Table of contents 1 Introduction... 3 1.1 Scope... 3 1.2
More informationData protection compliance checklist
Data protection compliance checklist What is this checklist for? This checklist is drawn up on the basis of analysis of the relevant provisions of European law. Although European law aims at harmonizing
More informationBinding Corporate Rules ( BCR ) Summary of Third Party Rights
Binding Corporate Rules ( BCR ) Summary of Third Party Rights This document contains in its Sections 3 9 all provision of the Binding Corporate Rules (BCR) for Siemens Group Companies and Other Adopting
More informationA step-by-step guide to making a complaint about health and social care
A step-by-step guide to making a complaint about health and social care www.healthwatchhampshire.co.uk Step by step Page 3 Are you concerned about something that is happening now? Do you need to make a
More informationData Protection Act 1998 The Data Protection Policy for the Borough Council of King's Lynn & West Norfolk
Data Protection Act 1998 The for the Borough Council of King's Lynn & West Norfolk 1 Contents Introduction 3 1. Statement of Intent 4 2. Fair Obtaining I Processing 5 3. Data Uses and Processes 6 4. Data
More informationCHAPTER I GENERAL PROVISIONS
Proposal for a regulation of the European Parliament and of the Council on the protection of individual with regard to the processing of personal data and on the free movement of such data (General Data
More informationDeclaration of Internet Rights Preamble
Declaration of Internet Rights Preamble The Internet has played a decisive role in redefining public and private space, structuring relationships between people and between people and institutions. It
More informationComments and proposals on the Chapter II of the General Data Protection Regulation
Comments and proposals on the Chapter II of the General Data Protection Regulation Ahead of the trialogue negotiations in September, EDRi, Access, Panoptykon Bits of Freedom, FIPR and Privacy International
More informationGUIDE TO THE ISLE OF MAN DATA PROTECTION ACT. CONTENTS PREFACE 1 1. Background 2 2. Data Protections Principles 3 3. Notification Requirements 4
GUIDE TO THE ISLE OF MAN DATA PROTECTION ACT CONTENTS PREFACE 1 1. Background 2 2. Data Protections Principles 3 3. Notification Requirements 4 PREFACE The following provides general guidance on data protection
More informationOffice of the Data Protection Commissioner of The Bahamas. Data Protection (Privacy of Personal Information) Act, 2003. A Guide for Data Controllers
Office of the Data Protection Commissioner of The Bahamas Data Protection (Privacy of Personal Information) Act, 2003 A Guide for Data Controllers 1 Acknowledgement Some of the information contained in
More informationPersonal Data Act (1998:204);
Personal Data Act (1998:204); issued 29 April 1998. Be it enacted as follows. General provisions Purpose of this Act Section 1 The purpose of this Act is to protect people against the violation of their
More informationInformation Governance Policy
Information Governance Policy 1 Introduction Healthwatch Rutland (HWR) needs to collect and use certain types of information about the Data Subjects who come into contact with it in order to carry on its
More informationGuidelines on Executive Order on Information and Consent Required in Case of Storing and Accessing Information in End-User Terminal Equipment
Guidelines on Executive Order on Information and Consent Required in Case of Storing and Accessing Information in End-User Terminal Equipment ("Cookie Order") 2nd version, April 2013 Preface...3 1. Introduction...5
More informationInternational Covenant on Economic, Social and Cultural Rights
International Covenant on Economic, Social and Cultural Rights Adopted and opened for signature, ratification and accession by General Assembly resolution 2200A (XXI) of 16 December 1966 entry into force
More informationPretty Good Privacy (PGP)
Pretty Good Privacy (PGP) Contents...1 Abstract...2 Introduction...3 The importance of the cryptography...4 The idea about how (PGP) works...5 Legal issues surrounding (PGP)...6 The implementation and
More informationORGANIC LAW 15/1999 of 13 December on the Protection of Personal Data
THIS IS AN UNOFFICIAL TRANSLATION PLEASE NOTE THAT THE ONLY LEGALLY BINDING TEXT IS THAT PUBLISHED IN THE SPANISH OFFICIAL JOURNAL (BOE 298, 14 DECEMBER 1999) ORGANIC LAW 15/1999 of 13 December on the
More informationPRIVACY AND DATA SECURITY MODULE
"This project has been funded under the fourth AAL call, AAL-2011-4. This publication [communication] reflects the views only of the author, and the Commission cannot be held responsible for any use which
More informationAlign Technology. Data Protection Binding Corporate Rules Controller Policy. 2014 Align Technology, Inc. All rights reserved.
Align Technology Data Protection Binding Corporate Rules Controller Policy Contents INTRODUCTION 3 PART I: BACKGROUND AND ACTIONS 4 PART II: CONTROLLER OBLIGATIONS 6 PART III: APPENDICES 13 2 P a g e INTRODUCTION
More informationCode of Practice: Mental Health Act 1983
Code of Practice: Mental Health Act 1983 Easy Read version What is in this booklet About this booklet About the Mental Health Act About the Code of Practice Why the Code of Practice needs to change How
More informationCOUNCIL OF THE EUROPEAN UNION. Brussels, 31 May 2013 10227/13 ADD 1. Interinstitutional File: 2012/0011 (COD)
COUNCIL OF THE EUROPEAN UNION Brussels, 31 May 2013 Interinstitutional File: 2012/0011 (COD) 10227/13 ADD 1 DATAPROTECT 72 JAI 438 MI 469 DRS 104 DAPIX 86 FREMP 77 COMIX 339 CODEC 1257 ADDENDUM TO NOTE
More informationEUROPEAN PARLIAMENT 2009-2014. Committee on Industry, Research and Energy. of the Committee on Industry, Research and Energy
EUROPEAN PARLIAMT 2009-2014 Committee on Industry, Research and Energy 2012/0011(COD) 26.02.2013 OPINION of the Committee on Industry, Research and Energy for the Committee on Civil Liberties, Justice
More informationCorporate ICT & Data Management. Data Protection Policy
90 Corporate ICT & Data Management Data Protection Policy Classification: Unclassified Date Created: January 2012 Date Reviewed January Version: 2.0 Author: Owner: Data Protection Policy V2 1 Version Control
More informationLegal Status of Qualified Electronic Signatures in Europe
Legal Status of Qualified Electronic Signatures in Europe Jos Dumortier Professor of Law - K.U.Leuven Lawfort Of Counsel - Bar of Brussels jos.dumortier@lawfort.be Abstract It is a common misunderstanding
More informationPrivacy Policy for Data Collected by Blue State Digital s Clients
Privacy Policy for Data Collected by Blue State Digital s Clients Blue State Digital LLC. ("Blue State Digital", BSD or "we") provides various services to nonprofits and business entities ("Clients"),
More informationACCEPTABLE USE OF COMPUTERS IN WILTSHIRE LIBRARIES
ACCEPTABLE USE OF COMPUTERS IN WILTSHIRE LIBRARIES Policy Statement Introduction 1. Wiltshire Libraries provide access to the Internet and other computer facilities to support the educational, recreational
More informationThe Manitowoc Company, Inc.
The Manitowoc Company, Inc. DATA PROTECTION POLICY 11FitzPatrick & Associates 4/5/04 1 Proprietary Material Version 4.0 CONTENTS PART 1 - Policy Statement PART 2 - Processing Personal Data PART 3 - Organisational
More informationAccess Control Policy
Version 3.0 This policy maybe updated at anytime (without notice) to ensure changes to the HSE s organisation structure and/or business practices are properly reflected in the policy. Please ensure you
More informationon the Proposal for a Regulation of the European Parliament and of the Council laying
Opinion of the European Data Protection Supervisor on the Proposal for a Regulation of the European Parliament and of the Council laying down measures concerning the European single market for electronic
More informationThe OPEN Manifesto Future City Principles
November 2013 The OPEN Manifesto Future City Principles 2 OPEN Manifesto The Open Manifesto paves the way for a more responsive city that adapts to the needs of its citizens. The success of Glasgow s Open
More informationUnsolicited Electronic Messages Act 2007
Unsolicited Electronic Messages Act 2007 Prohibiting Spam and promoting good business practice This guide provides practical information so businesses can ensure they meet the requirements of the Unsolicited
More informationProtection. Code of Practice. of Personal Data RPC001147_EN_D_19
Protection of Personal Data RPC001147_EN_D_19 Table of Contents Data Protection Rules Foreword From the Data Protection Commissioner Introduction From the Chairman Data Protection Rules Responsibility
More informationUniversity of Limerick Data Protection Compliance Regulations June 2015
University of Limerick Data Protection Compliance Regulations June 2015 1. Purpose of Data Protection Compliance Regulations 1.1 The purpose of these Compliance Regulations is to assist University of Limerick
More informationBinding Corporate Rules Privacy (BCRP) personal Telekom Group rights in the handling of personal data within the Deutsche Telekom Group
Binding Corporate Rules Privacy (BCRP) Binding Corporate corporate Rules rules Privacy for (BCRP) the protection of personal Telekom Group rights in the handling of personal data within the Deutsche Telekom
More informationUnderstand your role
The CARE CERTIFICATE Understand your role What you need to know THE CARE CERTIFICATE WORKBOOK Standard Your role - Tasks, Behaviours and Standards of work Your role will have a job description. This tells
More informationPersonal information, for purposes of this Policy, includes any information which relates to an identified or an identifiable person.
PART I: INTRODUCTION AND BACKGROUND Purpose This Data Protection Binding Corporate Rules Policy ( Policy ) establishes the approach of Fluor to compliance with European data protection law and specifically
More informationPrinciples and standards in Independent Advocacy organisations and groups
advocacy 2 0 0 0 Principles and standards in Independent Advocacy organisations and groups Advocacy 2000 January 2002 We would like to acknowledge that the Scottish Executive partly funded the editing
More informationComparison of the Parliament and Council text on the General Data Protection Regulation
Comparison of the Parliament and Council text on the General Data Protection Regulation General comments The Council text and the Parliament text are both based on the Commission's proposal and as such
More informationActs 11 : 1-18 Sermon
Acts 11 : 1-18 Sermon Imagine a church being riven apart by different personalities leading different groups each trying to pull it in different directions. Imagine a church whose future is threatened
More informationCorporate Guidelines for Subsidiaries (in Third Countries ) *) for the Protection of Personal Data
Corporate Guidelines for Subsidiaries (in Third Countries ) *) for the Protection of Personal Data *) For the purposes of these Corporate Guidelines, Third Countries are all those countries, which do not
More information26.3.2014 A7-0365/133
26.3.2014 A7-0365/133 Amendment 133 Amalia Sartori on behalf of the Committee on Industry, Research and Energy Report A7-0365/2013 Marita Ulvskog Electronic identification and trust services for electronic
More informationLAW FOR PROTECTION OF PERSONAL DATA
LAW FOR PROTECTION OF PERSONAL DATA Prom. SG. 1/4 Jan 2002, amend. SG. 70/10 Aug 2004, amend. SG. 93/19 Oct 2004, amend. SG. 43/20 May 2005, amend. SG. 103/23 Dec 2005, amend. SG. 30/11 Apr 2006, amend.
More informationHaving regard to the Treaty on the Functioning of the European Union, and in particular Article 114 thereof,
28.8.2014 Official Journal of the European Union L 257/73 REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 July 2014 on electronic identification and trust services for electronic
More informationEmployment Rights and Responsibilities
Employment Rights and Responsibilities As you work through this section, you will need to be clear about your own understanding of your occupation, the industry in which you work and the sector in which
More informationMODEL CHILD PROTECTION POLICY
Fact Series Child Protection Policy (Model) version 2.2 July 2009 MODEL CHILD PROTECTION POLICY NODA Headquarters regularly receives requests from affiliated societies for advice about implementing a Child
More informationDIFC LAW NO. 1 OF 2007
DATA PROTECTION LAW DIFC LAW NO. 1 OF 2007 Consolidated Version (December 2012) Amended by Data Protection Law Amendment Law DIFC Law No. 5 of 2012 CONTENTS PART 1: GENERAL... 4 1. Title... 4 2. Legislative
More informationMake and register your lasting power of attorney a guide
LP12 Make and register your lasting power of attorney a guide Financial decisions including: running your bank and savings accounts making or selling investments paying your bills buying or selling your
More informationEU Employment Law Euro Info Centre December 2006
EU Employment Law Euro Info Centre December 2006 CONTENTS EU Employment Law 2 1. Anti-discrimination 2 2 2 2. Equal treatment of men and women in the workplace 3 3 3 3. Fixed and part time work including
More informationWorking to achieve team goals
Working to achieve team goals Do you have targets to achieve? Does your team work together to achieve them? Targets can help to motivate a team to achieve more than members thought possible. A lot of organisations
More informationData Protection Policy
1 Data Protection Policy Version 1: June 2014 1 2 Contents 1. Introduction 3 2. Policy Statement 3 3. Purpose of the Data Protection Act 1998 3 4. The principles of the Data Protection Act 1998 4 5 The
More informationProcessor Binding Corporate Rules (BCRs), for intra-group transfers of personal data to non EEA countries
Processor Binding Corporate Rules (BCRs), for intra-group transfers of personal data to non EEA countries Sopra HR Software as a Data Processor Sopra HR Software, 2014 / Ref. : 20141120-101114-m 1/32 1.
More informationFEDERATION OF EUROPEAN DIRECT MARKETING EUROPEAN CODE OF PRACTICE FOR THE USE OF PERSONAL DATA IN DIRECT MARKETING
EXPLANATORY MEMORANDUM FEDERATION OF EUROPEAN DIRECT MARKETING EUROPEAN CODE OF PRACTICE FOR THE USE OF PERSONAL DATA IN DIRECT MARKETING FEDMA represents the direct marketing sector at the European level.
More informationON MUTUAL COOPERATION AND THE EXCHANGE OF INFORMATION RELATED TO THE OVERSIGHT OF AUDITORS
Mr. Ryutaro Hatanaka Commissioner Financial Services Agency Government of Japan 3-2-1 Kasumigaseki Chiyoda-ku, Tokyo Japan 100-8967 Dr. Kunio Chiyoda Chairman Certified Public Accountants and Auditing
More informationComments and proposals on the Chapter IV of the General Data Protection Regulation
Comments and proposals on the Chapter IV of the General Data Protection Regulation Ahead of the trialogue negotiations later this month, EDRi, Access, Panoptykon Bits of Freedom, FIPR and Privacy International
More informationTITLE: INFORMATION SYSTEMS RESOURCES NUMBER: PRO 7-06. REFERENCE: Board Rule 2.16 PAGE 1 OF 6
LAKE-SUMTER COMMUNITY COLLEGE ADMINISTRATIVE PROCEDURE TITLE: INFORMATION SYSTEMS RESOURCES NUMBER: PRO 7-06 REFERENCE: Board Rule 2.16 PAGE 1 OF 6 1. General Information a. LSCC Information Systems (IS)
More informationMatthias Hauss- SRC Security Research & Consulting GmbH October 2011. PCI DSS Requirements in the Context of European Data Protection Law
Matthias Hauss- SRC Security Research & Consulting GmbH October 2011 PCI DSS Requirements in the Context of European Data Protection Law About SRC Two pillars: Card-based Payment Systems and IT security
More informationComments and proposals on the Chapter III of the General Data Protection Regulation
Comments and proposals on the Chapter III of the General Data Protection Regulation Ahead of the trialogue negotiations in September, EDRi, Access, Panoptykon, Bits of Freedom, FIPR and Privacy International
More informationThe Romanian Parliament adopts the present law. Chapter I: General Provisions
Law No. 677/2001 on the Protection of Individuals with Regard to the Processing of Personal Data and the Free Movement of Such Data, amended and completed The Romanian Parliament adopts the present law.
More informationEvaluation of the Work Choice Specialist Disability Employment Programme. Technical appendices
Evaluation of the Work Choice Specialist Disability Employment Programme Technical appendices July 2013 Research Report No 846 Technical appendices A report of research carried out by Inclusion on behalf
More informationEffective complaint handling
This guide sets out key information for state sector agencies about developing and operating an effective complaints process. It also provides information about the Ombudsman s role, as an independent,
More informationThe Data Protection Landscape. Before and after GDPR: General Data Protection Regulation
The Data Protection Landscape Before and after GDPR: General Data Protection Regulation Data Protection regulations across Europe Current regulations & guidance European Directives 95/46/EC (Data Protection)
More informationDublin City University
Dublin City University Data Protection Policy Data Protection Policy Contents Purpose... 1 Scope... 1 Data Protection Principles... 1 Disclosure of Personal Data... 2 Summary of Responsibilities... 3 Rights
More informationEIGHT STEPS TO AN OPEN INTERNET
EIGHT STEPS TO AN OPEN INTERNET Access www.accessnow.org @accessnow European Digital Rights www.edri.org @EDRi_org Contents 1 Learning from past mistakes - why create another termination monopoly?...3
More informationUNIVERSITY OF ST ANDREWS. EMAIL POLICY November 2005
UNIVERSITY OF ST ANDREWS EMAIL POLICY November 2005 I Introduction 1. Email is an important method of communication for University business, and carries the same weight as paper-based communications. The
More informationHow health and care services should support people whose behaviour is very difficult.
How health and care services should support people whose behaviour is very difficult. This is an EasyRead version of: Positive and Proactive Care: reducing the need for restrictive interventions. What
More informationScottish Rowing Data Protection Policy
Revision Approved by the Board August 2010 1. Introduction As individuals, we want to know that personal information about ourselves is handled properly, and we and others have specific rights in this
More informationData Protection Acts 1988 and 2003: Informal Consolidation
Page 1 of 55 Data Protection Acts 1988 and 2003: Informal Consolidation IMPORTANT NOTICE This document is an informal consolidation of the Data Protection Acts 1988 and 2003, prepared by the Office of
More informationHERTSMERE BOROUGH COUNCIL
HERTSMERE BOROUGH COUNCIL DATA PROTECTION POLICY October 2007 1 1. Introduction Hertsmere Borough Council ( the Council ) is fully committed to compliance with the requirements of the Data Protection Act
More informationFood Safety Enforcement Policy
Food Safety Enforcement Policy Food Safety Enforcement Policy Introduction As a statutory Food Authority this document sets out what businesses or other persons being regulated can expect from us in relation
More informationSo the security measures you put in place should seek to ensure that:
Guidelines This guideline offers an overview of what the Data Protection Act requires in terms of information security and aims to help you decide how to manage the security of the personal data you hold.
More informationComplaints Policy. Complaints Policy. Page 1
Complaints Policy Page 1 Complaints Policy Policy ref no: CCG 006/14 Author (inc job Kat Tucker Complaints & FOI Manager title) Date Approved 25 November 2014 Approved by CCG Governing Body Date of next
More informationGUILFORD PUBLIC SCHOOLS ACCEPTABLE USE POLICY
GUILFORD PUBLIC SCHOOLS ACCEPTABLE USE POLICY Telecommunications is radically changing the way the world accesses information. A computer network, linked to the Internet, an international computer network
More informationRecording and Using Images of Children
Children s Services Recording and Using Images of Children Information and Guidance Photographs Video Websites Webcams Produced by Sefton Council Children s Services for use in Sefton schools September
More informationon the transfer of personal data from the European Union
on the transfer of personal data from the European Union BCRsseptembre 2008.doc 1 TABLE OF CONTENTS I. PRELIMINARY REMARKS 3 II. DEFINITIONS 3 III. DELEGATED DATA PROTECTION MANAGER 4 IV. MICHELIN GROUP
More informationGENERAL ELECTRIC COMPANY EMPLOYMENT DATA PROTECTION STANDARDS
GENERAL ELECTRIC COMPANY EMPLOYMENT DATA PROTECTION STANDARDS December 2005 2 GENERAL ELECTRIC COMPANY EMPLOYMENT DATA PROTECTION STANDARDS I. OBJECTIVE... 1 II. SCOPE... 1 III. APPLICATION OF LOCAL LAWS...
More informationStandard conditions of the Electricity Distribution Licence
Gas and Electricity Markets Authority ELECTRICITY ACT 1989 Standard conditions of the Electricity Distribution Licence Statutory Consultation: 29 April 2008 SECTION A: STANDARD CONDITIONS FOR ALL ELECTRICITY
More informationQualified Electronic Signatures Act (SFS 2000:832)
Qualified Electronic Signatures Act (SFS 2000:832) The following is hereby enacted 1 Introductory provision 1 The purpose of this Act is to facilitate the use of electronic signatures, through provisions
More informationResearch Data Storage Facility Terms of Use
Research Data Storage Facility Terms of Use By signing up to these Terms of Use, you are agreeing to abide by the terms of the University Policy for the use of the Research Data Storage Facility. 1. Definition
More informationCCG: IG06: Records Management Policy and Strategy
Corporate CCG: IG06: Records Management Policy and Strategy Version Number Date Issued Review Date V3 08/01/2016 01/01/2018 Prepared By: Consultation Process: Senior Governance Manager, NECS CCG Head of
More informationELECTRONIC SIGNATURES AND ACTS IN ELECTRONIC TOOLS USED IN PUBLIC PROCUREMENT MICHAELA POREMSKÁ *
M. Poremská: Electronic Signatures and Acts in Public Procurement 147 ELECTRONIC SIGNATURES AND ACTS IN ELECTRONIC TOOLS USED IN PUBLIC PROCUREMENT by MICHAELA POREMSKÁ * The contribution analyses a specific
More informationREGULATION (EU) No XXX/2016 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL
REGULATION (EU) No XXX/2016 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General
More informationSUBJECT ACCESS REQUEST PROCEDURE
SUBJECT ACCESS REQUEST PROCEDURE Document History Document Reference: Document Purpose: IG31 This procedure sets out the responsibility for staff when receiving requests for information provided under
More informationLONDON SCHOOL OF MARKETING LEARNING AGREEMENT ONLINE OR BLENDED LEARNING ( DISTANCE LEARNING )
LONDON SCHOOL OF MARKETING LEARNING AGREEMENT ONLINE OR BLENDED LEARNING ( DISTANCE LEARNING ) In order to ensure success in distance learning courses, students must understand and comply with certain
More information