Keyword: Grondrechten

Online Price Discrimination and Data Protection Law external link

Zuiderveen Borgesius, F.
2015

Abstract

Online shops can offer each website customer a different price – a practice called first degree price discrimination, or personalised pricing. An online shop can recognise a customer, for instance through a cookie, and categorise the customer as a rich or a poor person. The shop could, for instance, charge rich people higher prices. From an economic perspective, there are good arguments in favour of price discrimination. But many regard price discrimination as unfair or manipulative. This paper examines whether European data protection law applies to personalised pricing. Data protection law applies if personal data are processed. This paper argues that personalised pricing generally entails the processing of personal data. Therefore, data protection law generally applies to personalised pricing. That conclusion has several implications. For instance, data protection law requires a company to inform people about the purpose of processing their personal data. A company must inform customers if it personalises prices.

Consumer law, cookies, Data protection law, discrimination, Grondrechten, Personal data, personalised prices, Price discrimination, Privacy, tracking

Bibtex

Article{nokey, title = {Online Price Discrimination and Data Protection Law}, author = {Zuiderveen Borgesius, F.}, url = {http://papers.ssrn.com/sol3/papers.cfm?abstract_id=2652665}, year = {0901}, date = {2015-09-01}, abstract = {Online shops can offer each website customer a different price – a practice called first degree price discrimination, or personalised pricing. An online shop can recognise a customer, for instance through a cookie, and categorise the customer as a rich or a poor person. The shop could, for instance, charge rich people higher prices. From an economic perspective, there are good arguments in favour of price discrimination. But many regard price discrimination as unfair or manipulative. This paper examines whether European data protection law applies to personalised pricing. Data protection law applies if personal data are processed. This paper argues that personalised pricing generally entails the processing of personal data. Therefore, data protection law generally applies to personalised pricing. That conclusion has several implications. For instance, data protection law requires a company to inform people about the purpose of processing their personal data. A company must inform customers if it personalises prices.}, keywords = {Consumer law, cookies, Data protection law, discrimination, Grondrechten, Personal data, personalised prices, Price discrimination, Privacy, tracking}, }

Your Digital Home Is No Longer Your Castle: How cloud computing transforms the (legal) relationship between individuals and their personal records external link

2015

Bescherming van communicatie, Grondrechten, Protection of communication

Bibtex

Presentation{nokey, title = {Your Digital Home Is No Longer Your Castle: How cloud computing transforms the (legal) relationship between individuals and their personal records}, author = {}, url = {http://www.ivir.nl/publicaties/download/1614.pdf}, year = {0901}, date = {2015-09-01}, keywords = {Bescherming van communicatie, Grondrechten, Protection of communication}, }

Access to Personal Data and the Right to Good Governance during Asylum Procedures after the CJEU’s YS and M. and S. judgment (C-141/12 and C-372/12) external link

Zuiderveen Borgesius, F.
European Journal of Migration and Law, pp: 259-272., 2015

Abstract

In the YS. and M. and S. judgment, the Court of Justice of the European Union ruled on three procedures in which Dutch judges asked for clarification on the right of asylum seekers to have access to the documents regarding the decision on asylum applications. The judgment is relevant for interpreting the concept of personal data and the scope of the right of access under the Data Protection Directive, and the right to good administration in the eu Charter of Fundamental Rights. At first glance, the judgment seems disappointing from the viewpoint of individual rights. Nevertheless, in our view the judgment provides sufficient grounds for effective access rights to the minutes in future asylum cases.

access to information, asylum procedure, Charter of Fundamental Rights of the European Union, Data protection, effective remedies, Grondrechten, peronal data, Privacy

Bibtex

Article{nokey, title = {Access to Personal Data and the Right to Good Governance during Asylum Procedures after the CJEU’s YS and M. and S. judgment (C-141/12 and C-372/12)}, author = {Zuiderveen Borgesius, F.}, url = {http://booksandjournals.brillonline.com/content/journals/10.1163/15718166-12342080}, year = {0710}, date = {2015-07-10}, journal = {European Journal of Migration and Law}, abstract = {In the YS. and M. and S. judgment, the Court of Justice of the European Union ruled on three procedures in which Dutch judges asked for clarification on the right of asylum seekers to have access to the documents regarding the decision on asylum applications. The judgment is relevant for interpreting the concept of personal data and the scope of the right of access under the Data Protection Directive, and the right to good administration in the eu Charter of Fundamental Rights. At first glance, the judgment seems disappointing from the viewpoint of individual rights. Nevertheless, in our view the judgment provides sufficient grounds for effective access rights to the minutes in future asylum cases.}, keywords = {access to information, asylum procedure, Charter of Fundamental Rights of the European Union, Data protection, effective remedies, Grondrechten, peronal data, Privacy}, }

Your Digital Home is No Longer Your Castle: How Cloud Computing Transforms the (Legal) Relationship between Individuals and Their Personal Records external link

Irion, K.
International Journal of Law and Information Technology, vol. 23, num: 4, pp: 348-371., 2015

Abstract

In line with the overall trend individuals’ personal affairs, too, are composed of digital records to an increasing amount. At about the same time, the era of local storage in end user equipment is about to give way to remote computing where data resides on third party equipment (cloud computing). Once information, and even the most personal one, is no longer stored on personal equipment the relationship between individual users and their digital assets belonging to them is becoming increasingly abstract. This contribution focuses on the implications of cloud computing for individuals’ unpublicized digital records. The question to be answered is whether - taken together - the progressing virtualization and the disruption of physical control produce a backslide for individual positions of rights. The paper introduces the legal treatment of users’ digital personal records and how a technical transformation in combination with disparate legal protection and prevailing commercial practices are bound to impact the distribution of rights and obligations.

cloud computing, Consumer law, control, EU law, Grondrechten, Privacy, security

Bibtex

Article{nokey, title = {Your Digital Home is No Longer Your Castle: How Cloud Computing Transforms the (Legal) Relationship between Individuals and Their Personal Records}, author = {Irion, K.}, url = {http://www.ivir.nl/publicaties/download/1584.pdf}, doi = {https://doi.org/10.1093/ijlit/eav015}, year = {0929}, date = {2015-09-29}, journal = {International Journal of Law and Information Technology}, volume = {23}, number = {4}, pages = {348-371.}, abstract = {In line with the overall trend individuals’ personal affairs, too, are composed of digital records to an increasing amount. At about the same time, the era of local storage in end user equipment is about to give way to remote computing where data resides on third party equipment (cloud computing). Once information, and even the most personal one, is no longer stored on personal equipment the relationship between individual users and their digital assets belonging to them is becoming increasingly abstract. This contribution focuses on the implications of cloud computing for individuals’ unpublicized digital records. The question to be answered is whether - taken together - the progressing virtualization and the disruption of physical control produce a backslide for individual positions of rights. The paper introduces the legal treatment of users’ digital personal records and how a technical transformation in combination with disparate legal protection and prevailing commercial practices are bound to impact the distribution of rights and obligations.}, keywords = {cloud computing, Consumer law, control, EU law, Grondrechten, Privacy, security}, }

Personal data processing for behavioural targeting: which legal basis? external link

Zuiderveen Borgesius, F.
International Data Privacy Law, 2015

Abstract

Key Points:
The European Union Charter of Fundamental Rights only allows personal data processing if a data controller has a legal basis for the processing.
This paper argues that, in most circumstances, the only available legal basis for the processing of personal data for behavioural targeting is the data subject's unambiguous consent.
Furthermore, the paper argues that the cookie consent requirement from the e-Privacy Directive does not provide a legal basis for the processing of personal data.
Therefore, even if companies could use an opt-out system to comply with the e-Privacy Directive's consent requirement for using a tracking cookie, they would generally have to obtain the data subject's unambiguous consent if they process personal data for behavioural targeting.

behavioural targeting, Grondrechten, Personal data, Privacy

Bibtex

Article{nokey, title = {Personal data processing for behavioural targeting: which legal basis?}, author = {Zuiderveen Borgesius, F.}, url = {http://idpl.oxfordjournals.org/content/early/2015/06/23/idpl.ipv011.abstract?keytype=ref&ijkey=vlrPCGCUMXW8kAz}, year = {0625}, date = {2015-06-25}, journal = {International Data Privacy Law}, abstract = {Key Points: The European Union Charter of Fundamental Rights only allows personal data processing if a data controller has a legal basis for the processing. This paper argues that, in most circumstances, the only available legal basis for the processing of personal data for behavioural targeting is the data subject's unambiguous consent. Furthermore, the paper argues that the cookie consent requirement from the e-Privacy Directive does not provide a legal basis for the processing of personal data. Therefore, even if companies could use an opt-out system to comply with the e-Privacy Directive's consent requirement for using a tracking cookie, they would generally have to obtain the data subject's unambiguous consent if they process personal data for behavioural targeting.}, keywords = {behavioural targeting, Grondrechten, Personal data, Privacy}, }

De implicaties van het Google Spain-arrest voor de vrijheid van meningsuiting external link

Zuiderveen Borgesius, F. & Kulk, S.
NJCM-Bulletin, num: 1, pp: 3-19., 2015

Abstract

In deze bijdrage wordt het Google Spain-arrest van het Hof van Justitie van de Europese Unie besproken, evenals de ontwikkelingen na het arrest. Centraal staat de vraag naar de gevolgen van het arrest voor de vrijheid van meningsuiting. De auteurs betogen dat het Hof onvoldoende aandacht schenkt aan de vrijheid van meningsuiting.

Grondrechten, Internet, Persoonsgegevens, Privacy, recht om vergeten te worden, Vrijheid van meningsuiting, zoekmachines

Bibtex

Article{nokey, title = {De implicaties van het Google Spain-arrest voor de vrijheid van meningsuiting}, author = {Zuiderveen Borgesius, F. and Kulk, S.}, url = {http://www.ivir.nl/publicaties/download/1566.pdf}, year = {0604}, date = {2015-06-04}, journal = {NJCM-Bulletin}, number = {1}, abstract = {In deze bijdrage wordt het Google Spain-arrest van het Hof van Justitie van de Europese Unie besproken, evenals de ontwikkelingen na het arrest. Centraal staat de vraag naar de gevolgen van het arrest voor de vrijheid van meningsuiting. De auteurs betogen dat het Hof onvoldoende aandacht schenkt aan de vrijheid van meningsuiting.}, keywords = {Grondrechten, Internet, Persoonsgegevens, Privacy, recht om vergeten te worden, Vrijheid van meningsuiting, zoekmachines}, }