Privacy - Page 11 of 33

Tracking walls, take-it-or-leave-it choices, the GDPR, and the ePrivacy regulation external link

Zuiderveen Borgesius, F., Kruikemeier, S., Boerman, S.C. & Helberger, N.

European Data Protection Law Review, vol. 2017, num: 3, pp: 353-368, 2017

Abstract

On the internet, we encounter take-it-or-leave-it choices regarding our privacy on a daily basis. In Europe, online tracking for targeted advertising generally requires the internet users’ consent to be lawful. Some websites use a tracking wall, a barrier that visitors can only pass if they consent to tracking by third parties. When confronted with such a tracking wall, many people click ‘I agree’ to tracking. A survey that we conducted shows that most people find tracking walls unfair and unacceptable. We analyse under which conditions the ePrivacy Directive and the General Data Protection Regulation allow tracking walls. We provide a list of circumstances to assess when a tracking wall makes consent invalid. We also explore how the EU lawmaker could regulate tracking walls, for instance in the ePrivacy Regulation. It should be seriously considered to ban tracking walls, at least in certain circumstances.

Bibtex

Article{Borgesius2017b,
	title = {Tracking walls, take-it-or-leave-it choices, the GDPR, and the ePrivacy regulation},
	author = {Zuiderveen Borgesius, F. and Kruikemeier, S. and Boerman, S.C. and Helberger, N.},
	url = {https://www.ivir.nl/publicaties/download/EDPL_2017_03.pdf},
	doi = {https://doi.org/https://doi.org/10.21552/edpl/2017/3/9},
	year = {1019},
	date = {2017-10-19},
	journal = {European Data Protection Law Review},
	volume = {2017},
	number = {3},
	pages = {353-368},
	abstract = {On the internet, we encounter take-it-or-leave-it choices regarding our privacy on a daily basis. In Europe, online tracking for targeted advertising generally requires the internet users’ consent to be lawful. Some websites use a tracking wall, a barrier that visitors can only pass if they consent to tracking by third parties. When confronted with such a tracking wall, many people click ‘I agree’ to tracking. A survey that we conducted shows that most people find tracking walls unfair and unacceptable. We analyse under which conditions the ePrivacy Directive and the General Data Protection Regulation allow tracking walls. We provide a list of circumstances to assess when a tracking wall makes consent invalid. We also explore how the EU lawmaker could regulate tracking walls, for instance in the ePrivacy Regulation. It should be seriously considered to ban tracking walls, at least in certain circumstances.},
	keywords = {europe, frontpage, GDPR, Privacy, tracking walls},
}

Unfair Commercial Practices: A Complementary Approach to Privacy Protection external link

van Eijk, N., Hoofnagle, C.J. & Kannekens, E.

European Data Protection Law Review, vol. 2017, num: 3, pp: 325-337, 2017

Abstract

Millions of European internet users access online platforms where their personal data is being collected, processed, analysed or sold. The existence of some of the largest online platforms is entirely based on data driven business models. In the European Union, the protection of personal data is considered a fundamental right. Under Article 8(3) of the EU Charter of Fundamental Rights, compliance with data protection rules should be subject to control by an independent authority. In the EU, enforcement of privacy rules almost solely takes place by the national data protection authorities. They typically apply sector-specific rules, based on the EU Data Protection Directive. In the United States, the Federal Trade Commission is the primary enforcer of consumers’ (online) privacy interests. The agency’s competence is not based on the protection of fundamental rights, but on the basis that maintenance of a competitive, fair marketplace will provide the right choices for consumers to take. In this Article the US legal framework will be discussed and compared to the EU legal framework, which forms our finding that in the EU rules on unfair commercial practices could be enforced in a similar manner to protect people’s privacy. In the EU, the many frictions concerning the market/consumer-oriented use of personal data form a good reason to actually deal with these frictions in a market/consumer legal framework.

Bibtex

Article{vanEijk2017b,
	title = {Unfair Commercial Practices: A Complementary Approach to Privacy Protection},
	author = {van Eijk, N. and Hoofnagle, C.J. and Kannekens, E.},
	url = {https://www.ivir.nl/publicaties/download/edpl_2017_03.pdf},
	doi = {https://doi.org/https://doi.org/10.21552/edpl/2017/3/7},
	year = {1019},
	date = {2017-10-19},
	journal = {European Data Protection Law Review},
	volume = {2017},
	number = {3},
	pages = {325-337},
	abstract = {Millions of European internet users access online platforms where their personal data is being collected, processed, analysed or sold. The existence of some of the largest online platforms is entirely based on data driven business models. In the European Union, the protection of personal data is considered a fundamental right. Under Article 8(3) of the EU Charter of Fundamental Rights, compliance with data protection rules should be subject to control by an independent authority. In the EU, enforcement of privacy rules almost solely takes place by the national data protection authorities. They typically apply sector-specific rules, based on the EU Data Protection Directive. In the United States, the Federal Trade Commission is the primary enforcer of consumers’ (online) privacy interests. The agency’s competence is not based on the protection of fundamental rights, but on the basis that maintenance of a competitive, fair marketplace will provide the right choices for consumers to take. In this Article the US legal framework will be discussed and compared to the EU legal framework, which forms our finding that in the EU rules on unfair commercial practices could be enforced in a similar manner to protect people’s privacy. In the EU, the many frictions concerning the market/consumer-oriented use of personal data form a good reason to actually deal with these frictions in a market/consumer legal framework.},
	keywords = {frontpage, Fundamental rights, Online platforms, Personal data, Privacy, unfair commercial practices},
}

About finding practical solutions (without the GDPR) external link

van Eijk, N.

European Data Protection Law Review, vol. 2017, num: 3, pp: 310-312, 2017

Bibtex

Article{vanEijk2017b,
	title = {About finding practical solutions (without the GDPR)},
	author = {van Eijk, N.},
	url = {https://www.ivir.nl/publicaties/download/edpl_2017_03_foreword.pdf},
	doi = {https://doi.org/https://doi.org/10.21552/edpl/2017/3/5},
	year = {1019},
	date = {2017-10-19},
	journal = {European Data Protection Law Review},
	volume = {2017},
	number = {3},
	pages = {310-312},
	keywords = {frontpage, GDPR, Privacy, privacy bridges},
}

The perfect match? A closer look at the relationship between EU consumer law and data protection law external link

Helberger, N., Zuiderveen Borgesius, F. & Reyna, A.

Common Market Law Review, vol. 2017, num: 5, pp: 1427-1466, 2017

Abstract

In modern markets, many companies offer so-called “free” services and monetize consumer data they collect through those services. This paper argues that consumer law and data protection law can usefully complement each other. Data protection law can also inform the interpretation of consumer law. Using consumer rights, consumers should be able to challenge excessive collection of their personal data. Consumer organizations have used consumer law to tackle data protection infringements. The interplay of data protection law and consumer protection law provides exciting opportunities for a more integrated vision on “data consumer law”.

Bibtex

Article{Helberger2017b,
	title = {The perfect match? A closer look at the relationship between EU consumer law and data protection law},
	author = {Helberger, N. and Zuiderveen Borgesius, F. and Reyna, A.},
	url = {https://www.ivir.nl/publicaties/download/CMLR_2017_5.pdf},
	year = {1006},
	date = {2017-10-06},
	journal = {Common Market Law Review},
	volume = {2017},
	number = {5},
	pages = {1427-1466},
	abstract = {In modern markets, many companies offer so-called “free” services and monetize consumer data they collect through those services. This paper argues that consumer law and data protection law can usefully complement each other. Data protection law can also inform the interpretation of consumer law. Using consumer rights, consumers should be able to challenge excessive collection of their personal data. Consumer organizations have used consumer law to tackle data protection infringements. The interplay of data protection law and consumer protection law provides exciting opportunities for a more integrated vision on “data consumer law”.},
	keywords = {Consumentenrecht, Consumer law, Data protection law, EU, frontpage, gegevensbescherming, Privacy},
}

A Roadmap to Enhancing User Control via Privacy Dashboards external link

Irion, K., Yakovleva, S., van Hoboken, J. & Thompson, M.

2017

Abstract

This report presents and draws on multidisciplinary insights into what characterises effective user control over the collection and use of personal data. User controls arise from the interplay of a number of conditions. These are partly technical but also connected to different aspects of user behaviour, the intricacies of design, as well as the internal and external incentives in privacy governance that exist today. Our review of the state of research underscores that devising effective user controls require close collaboration between different disciplines, clear regulatory guidance and scientifically-backed assessments.

Bibtex

Report{Irion2017b,
	title = {A Roadmap to Enhancing User Control via Privacy Dashboards},
	author = {Irion, K. and Yakovleva, S. and van Hoboken, J. and Thompson, M.},
	url = {https://www.ivir.nl/publicaties/download/PrivacyBridgesUserControls2017.pdf},
	year = {0926},
	date = {2017-09-26},
	abstract = {This report presents and draws on multidisciplinary insights into what characterises effective user control over the collection and use of personal data. User controls arise from the interplay of a number of conditions. These are partly technical but also connected to different aspects of user behaviour, the intricacies of design, as well as the internal and external incentives in privacy governance that exist today. Our review of the state of research underscores that devising effective user controls require close collaboration between different disciplines, clear regulatory guidance and scientifically-backed assessments.},
	keywords = {frontpage, Privacy},
}

The freely given consent and the "bundling" provision under the GDPR external link

Kostić, B. & Vargas Penagos, E.

Computerrecht, vol. 2017, num: 4, pp: 217-222, 2017

Abstract

Under European data protection law, consent of the data subject is one of the six grounds for lawful processing of personal data. It is such an important ground that lawmakers considered it necessary to provide a legal definition of consent. One of the conditions under this definition is that it needs to be “freely given.” The General Data Protection Regulation (GDPR) 3 has further expanded on this concept in Article 7(4). It refers to a situation under which consent might not be considered “freely given.” If consent is invalid because it is not freely given, the processing is usually unlawful. Consequently, a legal basis for processing is missing. Therefore, this is an important provision. Yet the wording of this new provision is vague and its scope is unclear. Thus, the question arises as to how Article 7(4) should be applied. In this paper, the authors tease out the assessment criteria for the application of this provision on the basis of its text, structure and history. These criteria will then be applied to hypothetical cases in the final section.

Bibtex

Article{Kostić2017,
	title = {The freely given consent and the "bundling" provision under the GDPR},
	author = {Kostić, B. and Vargas Penagos, E.},
	url = {https://www.ivir.nl/publicaties/download/Computerrecht_2017_4.pdf},
	year = {0915},
	date = {2017-09-15},
	journal = {Computerrecht},
	volume = {2017},
	number = {4},
	pages = {217-222},
	abstract = {Under European data protection law, consent of the data subject is one of the six grounds for lawful processing of personal data. It is such an important ground that lawmakers considered it necessary to provide a legal definition of consent. One of the conditions under this definition is that it needs to be “freely given.” The General Data Protection Regulation (GDPR) 3 has further expanded on this concept in Article 7(4). It refers to a situation under which consent might not be considered “freely given.” If consent is invalid because it is not freely given, the processing is usually unlawful. Consequently, a legal basis for processing is missing. Therefore, this is an important provision. Yet the wording of this new provision is vague and its scope is unclear. Thus, the question arises as to how Article 7(4) should be applied. In this paper, the authors tease out the assessment criteria for the application of this provision on the basis of its text, structure and history. These criteria will then be applied to hypothetical cases in the final section.},
	keywords = {bundling, consent, frontpage, General Data Protection Regulation, Privacy},
}

Book Review: The Crisis of Presence in Contemporary Culture external link

Sax, M.

European Data Protection Law Review, vol. 3, num: 2, pp: 293-296, 2017

Bibtex

Article{Sax2017,
	title = {Book Review: The Crisis of Presence in Contemporary Culture},
	author = {Sax, M.},
	url = {https://edpl.lexxion.eu/article/EDPL/2017/2/27},
	doi = {https://doi.org/https://doi.org/10.21552/edpl/2017/2/27},
	year = {0801},
	date = {2017-08-01},
	journal = {European Data Protection Law Review},
	volume = {3},
	number = {2},
	pages = {293-296},
	keywords = {book review, Data protection, ethics, phenomenology, presence, Privacy, property},
}

Annotatie bij Hoge Raad 31 maart 2017 (Rabobank / Stichting Restschuld Eerlijk Delen) external link

Dommering, E.

Nederlandse Jurisprudentie, vol. 2017, num: 26/27, pp: 3827-3829, 2017

Bibtex

Article{Dommering2017b,
	title = {Annotatie bij Hoge Raad 31 maart 2017 (Rabobank / Stichting Restschuld Eerlijk Delen)},
	author = {Dommering, E.},
	url = {https://www.ivir.nl/publicaties/download/Annotatie_NJ_2017_238.pdf},
	year = {0711},
	date = {2017-07-11},
	journal = {Nederlandse Jurisprudentie},
	volume = {2017},
	number = {26/27},
	pages = {3827-3829},
	abstract = {Privacy werknemers bij een kritische publicatie over het bedrijf waar zij werkzaam zijn. Recht op anonimiteit?},
	keywords = {anonimiteit, frontpage, Privacy, werknemers},
}

Annotatie bij Hoge Raad 24 februari 2017 (X / Google Netherlands) external link

Zuiderveen Borgesius, F. & Kulk, S.

Computerrecht, vol. 2017, num: 3, pp: 167-169, 2017

Bibtex

Article{Borgesius2017b,
	title = {Annotatie bij Hoge Raad 24 februari 2017 (X / Google Netherlands)},
	author = {Zuiderveen Borgesius, F. and Kulk, S.},
	url = {https://www.ivir.nl/publicaties/download/Annotatie_Computerrecht_2017_3.pdf},
	year = {0629},
	date = {2017-06-29},
	journal = {Computerrecht},
	volume = {2017},
	number = {3},
	pages = {167-169},
	abstract = {In zijn arrest laat de Hoge Raad zich uit over hoe de rechten op privacy en gegevensbescherming zich verhouden tot het recht op vrijheid van meningsuiting.},
	keywords = {annotatie, frontpage, gegevensbescherming, Privacy, Vrijheid van meningsuiting},
}

Annotatie bij Hof van Justitie EU 19 oktober 2016 (Breyer / Duitsland) external link

van Eijk, N.

Tijdschrift voor Consumentenrecht en handelspraktijken, vol. 2017, num: 3, pp: 130-132, 2017

Bibtex

Article{vanEijk2017b,
	title = {Annotatie bij Hof van Justitie EU 19 oktober 2016 (Breyer / Duitsland)},
	author = {van Eijk, N.},
	url = {https://www.ivir.nl/publicaties/download/Annotatie_TvCH_2017_3.pdf},
	year = {0629},
	date = {2017-06-29},
	journal = {Tijdschrift voor Consumentenrecht en handelspraktijken},
	volume = {2017},
	number = {3},
	pages = {130-132},
	keywords = {C-582/14, frontpage, internetprotocoladressen, onlinemediadiensten, Privacy, Richtlijn 95/46/EG, verwerking van persoonsgegevens},
}

Keyword: Privacy

Abstract

Links

Bibtex

Abstract

Links

Bibtex

Abstract

Links

Bibtex

Links

Bibtex

Abstract

Links

Bibtex

Abstract

Links

Bibtex

Links

Bibtex