GDPR Implementation – Blind spots, opportunities, and the way forward – WS 02 2019

From EuroDIG Wiki
Revision as of 11:35, 31 May 2019 by CollinK (talk | contribs)
Jump to navigation Jump to search

Consolidated programme 2019 overview

Title: GDPR Implementation – Blind spots, opportunities, and the way forward

Proposals assigned to this session: ID 10, 27, 38, 66, 70, 72, 79, 102, 107, 129, 145, 176, 179list of all proposals as pdf

You are invited to become a member of the session Org Team! By joining an Org Team you agree to that your name and affiliation will be published at the respective wiki page of the session for transparency reasons. Please subscribe to the session mailing list and answer the email that will be send to you requesting your confirmation of subscription.

Session teaser

The General Data Protection Regulation is known around the world, but how effective has the regulation been? What’s been the impact on citizens in the European Union, neighboring countries, and around the world? This discussion-based workshop will bring stakeholders together to take stock on these and other issues one year after the GDPR came into force.

Session description

PART I: Application of GDPR to different technologies and communities

Technologies

- Proposal 70 – Blockchain, Privacy, and GDPR - Coordination with the other Blockchain EuroDIG session to avoid overlap and build on their session

Communities

Proposal 129 – Application to non-resident communities Proposal 179 – measures to better protect children have resulted in fragmentation of legal bases for processing childrens’ data across Europe Just because GDPR grants these rights people might not be aware of them and hence have hard time in exercising them


PART II: Evaluating the Impact of GDPR

EU Countries

- Discussion question: To what extent do data protection laws protect us or do they rather fulfill social roles?

  • Lack of transparency/awareness around the obligations of GDPR
  • Proposal 66 – Right to informational self-determination and the GDPR
  • Proposal 107 – improving privacy resilience in information societies

- How do we measure impact?

  • Corporate side: human rights impact assessments, etc.
  • Government side: how are they evaluating impact?

Non-EU Countries

- After discussion on impact of GDPR in EU countries (see RDR’s results), focus on ripple effect for countries which are not necessarily covered by GDPR - Discussion on consequences of GDPR not only on EU countries but also other neighboring countries

  • Council of Europe Convention 108 and its relation to GDPR

  • Resulting imbalance between EU member states and CoE member states
  • Proposal 79 – Impact on trade and business partners in Africa and elsewhere

- Ranking Digital Rights: GDPR was a component of their latest report, could speak to areas where GDPR could be strengthened in terms of users rights + fragmentation of GDPR application (for example, Yandex in Russia)


Part III: New tools for protecting privacy and other rights

Legislation

- Proposal 145 – EU ePrivacy Regulation - Idea about enhanced GDPR expert certification

  • Many people say they are GDPR experts and can help with the compliance but in reality this is not always the case
  • Would like to have a list of certified experts on GDPR, particularly in non-EU countries

Corporate Due Diligence Mechanisms

  • UNGPs, Human Rights Impact Assessments


Format

Fishbowl: a moderated in-the-round style driven by substantial conversations and interactions between discussants.


Further reading


People

Focal Point

  • Collin Kurre, Article 19

Organising Team (Org Team)

  • Meri Baghdasaryan, YOUthDIG
  • Zoey Barthelemy
  • Raphael Beauregard-Lacroix
  • Amy Brouillette
  • Ayden Férdeline, Technology Policy Fellow, Mozilla
  • Matthias M. Hudobnik
  • Fotjon Kosta, Coordinator of Albania IGF
  • Kristina Olausson, ETNO - European Telecommunications Network Operators' Association
  • Oksana Prykhodko
  • Marina Shentsova, Independent researcher on digital rights protection
  • Bart van den Bergh
  • Michelle van Min
  • Veszna Wessenauer, Ranking Digital Rights

Key Participants

  • Peter Kimpian, Data Protections unit at the Cooncil of Europe (confirmed)
  • Elena Plexida, Senior Director for Government and IGO engagement at ICANN (confirmed)
  • Marianne Franklin, Professor at Goldsmiths / Internet Rights & Principles Coalition (confirmed)
  • Athina Fragkouli, Legal Counsel at RIPE NCC (tbc)
  • Dainis Lukasevics, GDPR Project Manager at Lattelecom (tbc)
  • Albanian Information and Data Protection Commissioner’s Office (tbc)
  • Business and Human Rights Resource Centre (tbc)

Moderators

  • Collin Kurre, ARTICLE 19
  • Veszna Wessenauer, Ranking Digital Rights

Remote Moderator

Trained remote moderators will be assigned on the spot by the EuroDIG secretariat to each session.

Reporter

  • Ana Maria Correa, Geneva Internet Platform

Reporters will be assigned by the EuroDIG secretariat in cooperation with the Geneva Internet Platform. The Reporter takes notes during the session and formulates 3 (max. 5) bullet points at the end of each session that:

  • are summarised on a slide and presented to the audience at the end of each session
  • relate to the particular session and to European Internet governance policy
  • are forward looking and propose goals and activities that can be initiated after EuroDIG (recommendations)
  • are in (rough) consensus with the audience

Planning calls, minutes, and current discussion

WS2 Org Team Coordination Calls:

  • CALL 1: 11 April @ 1700 CEST. Initial session structure planning.
  • CALL 2: 10 May @ 1700 CEST. Primary objective is identifying people to approach as Key Participants.
  • CALL 3: TBD - 4 or 5 June (see discussion on list)

Running session organization notes: https://docs.google.com/document/d/1pqT4kSuGH6uttYKgHUYX-A4XVnD2I0iiROjAbBT8ufE/edit?usp=sharing

Link to join planning calls: https://article19.zoom.us/j/375471312

See the discussion tab on the upper left side of this page to have a look at the current discussion around this workshop's content.

Messages

A short summary of the session will be provided by the Reporter.

Video record

Will be provided here after the event.

Transcript

Will be provided here after the event.