Keyword: Privacy

Mobile Privacy and Business-to-Platform Dependencies: An Analysis of SEC Disclosures external link

Fahy, R., van Hoboken, J. & van Eijk, N.
Journal of Business & Technology Law , vol. 14, num: 1, 2019

Abstract

This Article systematically examines the dependence of mobile apps on mobile platforms for the collection and use of personal information through an analysis of Securities and Exchange Commission (SEC) filings of mobile app companies. The Article uses these disclosures to find systematic evidence of how app business models are shaped by the governance of user data by mobile platforms, in order to reflect on the role of platforms in privacy regulation more generally. The analysis of SEC filings documented in the Article produces new and unique insights into the data practices and data-related aspects of the business models of popular mobile apps and shows the value of SEC filings for privacy law and policy research more generally. The discussion of SEC filings and privacy builds on regulatory developments in SEC disclosures and cybersecurity of the last decade. The Article also connects to recent regulatory developments in the U.S. and Europe, including the General Data Protection Regulation, the proposals for a new ePrivacy Regulation and a Regulation of fairness in business-to-platform relations.

Privacy

Bibtex

Article{Fahy2019e, title = {Mobile Privacy and Business-to-Platform Dependencies: An Analysis of SEC Disclosures}, author = {Fahy, R. and van Hoboken, J. and van Eijk, N.}, url = {https://digitalcommons.law.umaryland.edu/jbtl/vol14/iss1/4/}, year = {0206}, date = {2019-02-06}, journal = {Journal of Business & Technology Law }, volume = {14}, number = {1}, pages = {}, abstract = {This Article systematically examines the dependence of mobile apps on mobile platforms for the collection and use of personal information through an analysis of Securities and Exchange Commission (SEC) filings of mobile app companies. The Article uses these disclosures to find systematic evidence of how app business models are shaped by the governance of user data by mobile platforms, in order to reflect on the role of platforms in privacy regulation more generally. The analysis of SEC filings documented in the Article produces new and unique insights into the data practices and data-related aspects of the business models of popular mobile apps and shows the value of SEC filings for privacy law and policy research more generally. The discussion of SEC filings and privacy builds on regulatory developments in SEC disclosures and cybersecurity of the last decade. The Article also connects to recent regulatory developments in the U.S. and Europe, including the General Data Protection Regulation, the proposals for a new ePrivacy Regulation and a Regulation of fairness in business-to-platform relations.}, keywords = {Privacy}, }

The Golden Age of Personal Data: How to Regulate an Enabling Fundamental Right? external link

Oostveen, M. & Irion, K.
In: Bakhoum M., Conde Gallego B., Mackenrodt MO., Surblytė-Namavičienė G. (eds) Personal Data in Competition, Consumer Protection and Intellectual Property Law. MPI Studies on Intellectual Property and Competition Law, vol 28. Springer, Berlin, Heidelberg, 1120

Abstract

New technologies, purposes and applications to process individuals’ personal data are being developed on a massive scale. But we have not only entered the ‘golden age of personal data’ in terms of its exploitation: ours is also the ‘golden age of personal data’ in terms of regulation of its use. Understood as an enabling right, the architecture of EU data protection law is capable of protecting against many of the negative short- and long-term effects of contemporary data processing. Against the backdrop of big data applications, we evaluate how the implementation of privacy and data protection rules protect against the short- and long-term effects of contemporary data processing. We conclude that from the perspective of protecting individual fundamental rights and freedoms, it would be worthwhile to explore alternative (legal) approaches instead of relying on EU data protection law alone to cope with contemporary data processing.

automated decision making, Big data, Data protection, frontpage, General Data Protection Regulation, Privacy, profiling

Bibtex

Chapter{Oostveen2018, title = {The Golden Age of Personal Data: How to Regulate an Enabling Fundamental Right?}, author = {Oostveen, M. and Irion, K.}, url = {https://link.springer.com/chapter/10.1007/978-3-662-57646-5_2}, year = {1120}, date = {2018-11-20}, abstract = {New technologies, purposes and applications to process individuals’ personal data are being developed on a massive scale. But we have not only entered the ‘golden age of personal data’ in terms of its exploitation: ours is also the ‘golden age of personal data’ in terms of regulation of its use. Understood as an enabling right, the architecture of EU data protection law is capable of protecting against many of the negative short- and long-term effects of contemporary data processing. Against the backdrop of big data applications, we evaluate how the implementation of privacy and data protection rules protect against the short- and long-term effects of contemporary data processing. We conclude that from the perspective of protecting individual fundamental rights and freedoms, it would be worthwhile to explore alternative (legal) approaches instead of relying on EU data protection law alone to cope with contemporary data processing.}, keywords = {automated decision making, Big data, Data protection, frontpage, General Data Protection Regulation, Privacy, profiling}, }

The right to protection of personal data: the new posterchild of European Union citizenship? external link

Irion, K. & Granger, M.-P.
Edward Elgar Publishing, 1031

Abstract

In this chapter we argue that the right to data protection is the posterchild of EU citizenship in the digital era. We start by providing a brief overview of the gradual construction of the right to personal data protection in the EU. We then identify a range of actors who have played a particular role in the building process, including EU citizens themselves. Next, we review the current legal ‘architecture’ of the right to the protection of personal data and discuss whether it could serve as a model for the future development of EU citizenship, notwithstanding remaining challenges at the level of national implementation and public and private compliance with EU rules. Finally, we reflect on the future of the right to data protection, and its contribution to the development of EU citizenship as a legal regime.

citizenship, EU law, frontpage, GDPR, Privacy

Bibtex

Chapter{Irion2018c, title = {The right to protection of personal data: the new posterchild of European Union citizenship?}, author = {Irion, K. and Granger, M.-P.}, url = {https://www.ivir.nl/publicaties/download/The-right-to-protection-of-personal-data-prepub.pdf}, doi = {https://doi.org/10.4337/9781788113441.00019}, year = {1031}, date = {2018-10-31}, abstract = {In this chapter we argue that the right to data protection is the posterchild of EU citizenship in the digital era. We start by providing a brief overview of the gradual construction of the right to personal data protection in the EU. We then identify a range of actors who have played a particular role in the building process, including EU citizens themselves. Next, we review the current legal ‘architecture’ of the right to the protection of personal data and discuss whether it could serve as a model for the future development of EU citizenship, notwithstanding remaining challenges at the level of national implementation and public and private compliance with EU rules. Finally, we reflect on the future of the right to data protection, and its contribution to the development of EU citizenship as a legal regime.}, keywords = {citizenship, EU law, frontpage, GDPR, Privacy}, }

Het privacy-argument tegen de Dopamine Machine external link

van Daalen, O.
Privacy & Informatierecht, vol. 2018, num: 2, pp: 39-41, 2018

Abstract

De kinderen van Apple-baas Steve Jobs mochten geen iPad gebruiken. 1 Maar Jobs was niet de enige. Veel techies in Silicon Valley zijn zich bewust van de verslavende effecten van IT – ze hebben de producten namelijk zelf ontwikkeld. En nu steeds meer spijtoptanten oproepen tot regulering van onlinediensten zoals Facebook, vraag ik me af: welke rol kan het privacyrecht daarbij spelen?

onlinediensten, Privacy, Regulering

Bibtex

Article{vanDaalen2018b, title = {Het privacy-argument tegen de Dopamine Machine}, author = {van Daalen, O.}, url = {https://www.ivir.nl/publicaties/download/PrivacyInformatie_2018_2.pdf}, year = {1012}, date = {2018-10-12}, journal = {Privacy & Informatierecht}, volume = {2018}, number = {2}, pages = {39-41}, abstract = {De kinderen van Apple-baas Steve Jobs mochten geen iPad gebruiken. 1 Maar Jobs was niet de enige. Veel techies in Silicon Valley zijn zich bewust van de verslavende effecten van IT – ze hebben de producten namelijk zelf ontwikkeld. En nu steeds meer spijtoptanten oproepen tot regulering van onlinediensten zoals Facebook, vraag ik me af: welke rol kan het privacyrecht daarbij spelen?}, keywords = {onlinediensten, Privacy, Regulering}, }

Maatschappelijk belang onderbelicht in nieuwe Europese privacyregels external link

Arnbak, A.
Het Financieele Dagblad, vol. 2018, 2018

Privacy

Bibtex

Article{Arnbak2018h, title = {Maatschappelijk belang onderbelicht in nieuwe Europese privacyregels}, author = {Arnbak, A.}, url = {https://axelarnbak.nl/2018/06/18/49e-fd-column-maatschappelijk-belang-onderbelicht-in-nieuwe-europese-privacyregels/}, year = {0614}, date = {2018-06-14}, journal = {Het Financieele Dagblad}, volume = {2018}, pages = {}, keywords = {Privacy}, }

Nieuwe privacregels AVG bieden kansen voor innovatieve data-analyse external link

Arnbak, A.
Het Financieele Dagblad, vol. 2018, 2018

AVG, Privacy

Bibtex

Article{Arnbak2018g, title = {Nieuwe privacregels AVG bieden kansen voor innovatieve data-analyse}, author = {Arnbak, A.}, url = {https://axelarnbak.nl/2018/05/17/48e-fd-column-nieuwe-privacyregels-avg-bieden-kansen-voor-innovatieve-data-analyse/}, year = {0517}, date = {2018-05-17}, journal = {Het Financieele Dagblad}, volume = {2018}, pages = {}, keywords = {AVG, Privacy}, }

The European Union General Data Protection Regulation: What It Is And What It Means external link

Hoofnagle, C.J., van der Sloot, B. & Zuiderveen Borgesius, F.
Information & Communications Technology Law, vol. 2019, 2019

Abstract

This article introduces U.S. lawyers and academics to the normative foundations, attributes, and strategic approach to regulating personal data advanced by the European Union’s General Data Protection Regulation (“GDPR”). We explain the genesis of the GDPR, which is best understood as an extension and refinement of existing requirements imposed by the 1995 Data Protection Directive; describe the GDPR’s approach and provisions; and make predictions about the GDPR’s short and medium-term implications. The GDPR is the most consequential regulatory development in information policy in a generation. The GDPR brings personal data into a detailed and protective regulatory regime, which will influence personal data usage worldwide. Understood properly, the GDPR encourages firms to develop information governance frameworks, to in-house data use, and to keep humans in the loop in decision making. Companies with direct relationships with consumers have strategic advantages under the GDPR, compared to third party advertising firms on the internet. To reach these objectives, the GDPR uses big sticks, structural elements that make proving violations easier, but only a few carrots. The GDPR will complicate and restrain some information-intensive business models. But the GDPR will also enable approaches previously impossible under less-protective approaches.

Consumer Privacy, Data protection, European Union, frontpage, General Data Protection Regulation, Privacy

Bibtex

Article{Hoofnagle2018, title = {The European Union General Data Protection Regulation: What It Is And What It Means}, author = {Hoofnagle, C.J. and van der Sloot, B. and Zuiderveen Borgesius, F.}, url = {https://www.tandfonline.com/doi/full/10.1080/13600834.2019.1573501}, year = {0212}, date = {2019-02-12}, journal = {Information & Communications Technology Law}, volume = {2019}, pages = {}, abstract = {This article introduces U.S. lawyers and academics to the normative foundations, attributes, and strategic approach to regulating personal data advanced by the European Union’s General Data Protection Regulation (“GDPR”). We explain the genesis of the GDPR, which is best understood as an extension and refinement of existing requirements imposed by the 1995 Data Protection Directive; describe the GDPR’s approach and provisions; and make predictions about the GDPR’s short and medium-term implications. The GDPR is the most consequential regulatory development in information policy in a generation. The GDPR brings personal data into a detailed and protective regulatory regime, which will influence personal data usage worldwide. Understood properly, the GDPR encourages firms to develop information governance frameworks, to in-house data use, and to keep humans in the loop in decision making. Companies with direct relationships with consumers have strategic advantages under the GDPR, compared to third party advertising firms on the internet. To reach these objectives, the GDPR uses big sticks, structural elements that make proving violations easier, but only a few carrots. The GDPR will complicate and restrain some information-intensive business models. But the GDPR will also enable approaches previously impossible under less-protective approaches.}, keywords = {Consumer Privacy, Data protection, European Union, frontpage, General Data Protection Regulation, Privacy}, }

Annotatie bij Hof van Justitie EU 20 december 2017 (Nowak / Data Protection Commissioner) external link

Dommering, E.
Nederlandse Jurisprudentie, vol. 2018, num: 314, pp: 4793-4795, 2018

Annotaties, bescherming persoonsgegevens, frontpage, nederlandse jurisprudentie, Privacy

Bibtex

Article{Dommering2018j, title = {Annotatie bij Hof van Justitie EU 20 december 2017 (Nowak / Data Protection Commissioner)}, author = {Dommering, E.}, url = {https://www.ivir.nl/publicaties/download/Annotatie_NJ_2018_314.pdf}, year = {0913}, date = {2018-09-13}, journal = {Nederlandse Jurisprudentie}, volume = {2018}, number = {314}, pages = {4793-4795}, keywords = {Annotaties, bescherming persoonsgegevens, frontpage, nederlandse jurisprudentie, Privacy}, }

Privacy from an Ethical Perspective external link

Sax, M.
The Handbook of Privacy Studies: An Interdisciplinary Introduction, Amsterdam University Press, 0831, pp: 143-172, ISBN: 9789462988095

ethics, Privacy

Bibtex

Chapter{Sax2018b, title = {Privacy from an Ethical Perspective}, author = {Sax, M.}, url = {https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3299047}, year = {0831}, date = {2018-08-31}, keywords = {ethics, Privacy}, }

How Should Facebook and Other Companies Protect Privacy While Letting People Share Their Information Between Apps and Services? external link

van Eijk, N.
2018

Abstract

Blogpost part of a series on data portability and interoperability.

data portability, Facebook, frontpage, interoperabiliteit, Privacy

Bibtex

Online publication{vanEijk2018i, title = {How Should Facebook and Other Companies Protect Privacy While Letting People Share Their Information Between Apps and Services?}, author = {van Eijk, N.}, url = {https://newsroom.fb.com/news/2018/08/guest-post-nico-van-eijk/}, year = {0807}, date = {2018-08-07}, abstract = {Blogpost part of a series on data portability and interoperability.}, keywords = {data portability, Facebook, frontpage, interoperabiliteit, Privacy}, }