Data protection and privacy in the era of outstanding digitization

From EuroDIG Wiki
Jump to: navigation, search

Please use your own words to describe this session. You may use external references, websites or publications as a source of information or inspiration, if you decide to quote them, please clearly specify the source.


Session teaser

The Workshop will address data protection and privacy in the era of the Cloud, implications of EU regulations and the right to be forgotten in a context of outstanding digitization.

Session description

The world has changed significantly since the Cloud computing revealed its full potential. Alongside with all the positives aspects of the Cloud our society is facing a rather important issue concerning data protection of individuals and businesses.

Some of the major concerns of individuals and business using the cloud are:

• How is my data protected?

• How is my data used?

• Where is my data, and who has access to it?

• What does the cloud provider do in response to government demands for customer data?

The applicable legal framework shall ensure stability and predictability in terms of data protection, cyber security and data transfer outside EU. Furthermore according to the EU directive (and the national data protection laws) the processing of special categories of personal data is subject to stricter requirements - special categories of personal data: racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, and the processing of data concerning health or sex life.

On the other hand IPv6’s huge increase in address space is an important factor in the development of the Internet of Things. With that much number of IPs, humans may easily assign an IP address to every "thing" on the planet. An increase in the number of smart nodes, as well as the amount of upstream data the nodes generate, is expected to raise new concerns about data privacy, data sovereignty and security.

Workshop 7 will address all of the above hot topics and more, if you’re interested in debating Data protection in the era of Cloud computing, Big Data and Internet of Things you shall definitely consider joining the session.

Keywords

Data protection, Data portability, Data transfers, Big data, The right to be forgotten, Human rights, Data protection regulations, IoT, Privacy

Format

The format of the Workshop 7 will be Roundtable Discussion.

The workshop will begin with a short introduction of each participant followed by introduction of the main topic and its challenges. During the workshop a Twitter hashtag will be used in order to involve everyone following the event.

Follow-up session on Workshop 7 will take place where the outcomes will be presented.

Further reading

Aticle 29 Working Party Statements on Cloud Computing

EU Data protection directive

Guidelines to help EU businesses use the Cloud

People

  • Focal Point: Radoslav Rizov
  • Org team: Frederic Donck, Mariya Hristova, Stanimir Nenov, Nikola Penchev, Iva Todorov, Ventsislav Popov, Alexander Blagoev,
  • Key participants|Panelists:
  • PhD Nevin Feti - Advisor of the President of Republic of Bulgaria, awarded doctorate for dissertation on the conclusion and execution of contracts with access to classified information, lecturer in the civil law overview course at the Law Faculty of Sofia University St. Kliment Ohridski. A longtime lecturer at the National Institute of Justice regarding the protection of classified information.
  • Radoslav Rizov - EU Funding and Public Procurement Expert, Microsoft Bulgaria
  • Iva Todorova - Government and Regulatory Affairs Executive, IBM Bulgaria
  • Nikola Penchev - Director, Pravatami.bg
  • Stanimir Nenov - Product Manager Pravatami.bg
  • Maarten Botterman - Director, GNKS Consult
  • Alexander Blagoev - Head of legal department of National Institute for Public Procurements
  • Murad Kasim - Project Manager at 159ltd.com
  • Radoslav Nikolov - Public Sector Account Executive, Microsoft Bulgaria
  • Moderator: Radoslav Rizov
  • Reporter: Tsvetelina Dimitrova
  • Remote moderator: Alexander Blagoev

Current discussion

See the discussion tab on the upper left side of this page

Mailing list

Contact: ws7@eurodig.org

Video record

Video record

Final report

  • Data protection is not set up to stop the social life, because the social life is impossible without exchanging personal data, what data protection authorities shall do is set the standards which every controller and processor should follow in order to process the data in a proper manner. At the end of the day the people have the right to give or refuse consent to the controller or the processor.
  • Eventually “the right to be forgotten” shall be considered as “the right to be de-indexed” since the links are removed but the original source still exists and may be accessed via other search engines not complying with the obligation of the ECJ.
  • Theoretically it may not be the best idea to leave search engines themselves the task of deciding whether to delete information or not with regards to “the right to be forgotten” claims, because currently the decisions are based on vague, ambiguous and unclear criteria.
  • It is reasonable to consider encryption and firewalls methods in order to protect the data gathered by devices connected to the internet. Internet of things shall be explored in a safe and secure manner with regards to privacy.
  • Society needs more transparency on data that is collected by both the government and the businesses.

Session twitter hashtag

Hashtag: #eurodigws7