Publications

Top Keywords

Persoonlijke PIMS: privacyfort of luchtkasteel? external link

Janssen, H.
Privacy & Informatie, num: 5, pp: 214-225, 2021

Abstract

Persoonsgegevens worden thans veelal op ondoorzichtige wijze, buiten de controle van de betrokkenen verwerkt. Persoonlijke informatiebeheersystemen (PIMS) willen betrokkenen technologische toepassingen aanreiken, die hun meer controle geven over de verwerking van hun persoonsgegevens. PIMS presenteren zich als alternatief voor de huidige, ‘gecentraliseerde’ wijze van gegevensverwerking, waarbij (grote) organisaties persoonsgegevens op meestal ondoorzichtige wijze verzamelen, analyseren en doorgeven aan derden. PIMS bieden betrokkenen technische instrumenten waarmee zij zelf kunnen controleren en bepalen wanneer en aan wie zijn hun gegevens overdragen, en/of analyses over hun gegevens kunnen laten uitvoeren. Hoewel argumenten voor deze ‘decentralisatie’ aantrekkelijk klinken, rijzen vragen over de mate waarin PIMS de problemen met de huidige gegevensverwerking effectief kunnen bestrijden. In dit artikel ligt de focus bij de vraag in hoeverre deze PIMS de machtsongelijkheid tussen betrokkenen en grote organisaties daadwerkelijk kunnen bestrijden, die als gevolg van de huidige gegevensverwerkingspraktijk zijn ontstaan. PIMS kunnen enig inzicht in en controle over gegevensverwerking bieden, maar desondanks zal de machtsongelijkheid grotendeels blijven voortbestaan.

AVG, controle, empowerment, frontpage, gedecentraliseerde techniek, machtsongelijkheid, overdraagbaarheid van gegevens, persoonlijk informatiebeheersysteem (PIMS), Privacy, privacy zelf-management, rechten van betrokkenen, verwerkingsgrondslagen

Bibtex

Article{Janssen2021c, title = {Persoonlijke PIMS: privacyfort of luchtkasteel?}, author = {Janssen, H.}, year = {1028}, date = {2021-10-28}, journal = {Privacy & Informatie}, number = {5}, abstract = {Persoonsgegevens worden thans veelal op ondoorzichtige wijze, buiten de controle van de betrokkenen verwerkt. Persoonlijke informatiebeheersystemen (PIMS) willen betrokkenen technologische toepassingen aanreiken, die hun meer controle geven over de verwerking van hun persoonsgegevens. PIMS presenteren zich als alternatief voor de huidige, ‘gecentraliseerde’ wijze van gegevensverwerking, waarbij (grote) organisaties persoonsgegevens op meestal ondoorzichtige wijze verzamelen, analyseren en doorgeven aan derden. PIMS bieden betrokkenen technische instrumenten waarmee zij zelf kunnen controleren en bepalen wanneer en aan wie zijn hun gegevens overdragen, en/of analyses over hun gegevens kunnen laten uitvoeren. Hoewel argumenten voor deze ‘decentralisatie’ aantrekkelijk klinken, rijzen vragen over de mate waarin PIMS de problemen met de huidige gegevensverwerking effectief kunnen bestrijden. In dit artikel ligt de focus bij de vraag in hoeverre deze PIMS de machtsongelijkheid tussen betrokkenen en grote organisaties daadwerkelijk kunnen bestrijden, die als gevolg van de huidige gegevensverwerkingspraktijk zijn ontstaan. PIMS kunnen enig inzicht in en controle over gegevensverwerking bieden, maar desondanks zal de machtsongelijkheid grotendeels blijven voortbestaan.}, keywords = {AVG, controle, empowerment, frontpage, gedecentraliseerde techniek, machtsongelijkheid, overdraagbaarheid van gegevens, persoonlijk informatiebeheersysteem (PIMS), Privacy, privacy zelf-management, rechten van betrokkenen, verwerkingsgrondslagen}, }

Protecting Works of Fact: Copyright, Freedom of Expression and Information Law external link

Dommering, E. & Hugenholtz, P.
Kluwer Law International, 0101, Series: Information Law Series, ISBN: 9065445676

Auteursrecht, Informatierecht, Kluwer Information Law Series, Vrijheid van meningsuiting

Bibtex

Book{nokey, title = {Protecting Works of Fact: Copyright, Freedom of Expression and Information Law}, author = {Dommering, E. and Hugenholtz, P.}, year = {0101}, date = {1991-01-01}, volume = {1}, pages = {}, keywords = {Auteursrecht, Informatierecht, Kluwer Information Law Series, Vrijheid van meningsuiting}, }

Copyright, Limitations and the Three-step test. An Analysis of the Three-Step Test in International and EC Copyright Law external link

Senftleben, M.
2004

Auteursrecht, Kluwer Information Law Series

Bibtex

PhD Thesis{nokey, title = {Copyright, Limitations and the Three-step test. An Analysis of the Three-Step Test in International and EC Copyright Law}, author = {Senftleben, M.}, url = {https://hdl.handle.net/11245/1.224623}, year = {0217}, date = {2004-02-17}, keywords = {Auteursrecht, Kluwer Information Law Series}, }

Putting Data Protection by Design on the Blockchain external link

Giannopoulou, A.
European Data Protection Law Review, vol. 7, num: 3, pp: 388-399, 2021

Abstract

The principle of data protection by design, as it is enshrined in article 25 of the GDPR, is difficult to apply in blockchains. This article will assess how the reliance on asymmetric encryption and other privacy enhancing technological architectures -necessary in a blockchain-based system- approach both user control and data protection by design compliance from the single scope of anonymization and unlinkability. Data subjects’ rights, accountability, and the potential shortcomings of applied technological constraints are thus sidelined. Ultimately, this limited understanding of technological privacy, acts as a misguiding set of principles for technological co-regulation through standardisation in blockchains. The standardization of these choices without a holistic analysis of data protection by design imperatives could ultimately weaken the position of data subjects, whose trust in the technological protections of personal data might prove to be relatively misplaced.

anonymity, blockchain, Data Protection by Design, encryption, EU General Data Protection Regulation, frontpage, Privacy

Bibtex

Article{Giannopoulou2021, title = {Putting Data Protection by Design on the Blockchain}, author = {Giannopoulou, A.}, doi = {https://doi.org/10.21552/edpl/2021/3/7}, year = {1022}, date = {2021-10-22}, journal = {European Data Protection Law Review}, volume = {7}, number = {3}, pages = {388-399}, abstract = {The principle of data protection by design, as it is enshrined in article 25 of the GDPR, is difficult to apply in blockchains. This article will assess how the reliance on asymmetric encryption and other privacy enhancing technological architectures -necessary in a blockchain-based system- approach both user control and data protection by design compliance from the single scope of anonymization and unlinkability. Data subjects’ rights, accountability, and the potential shortcomings of applied technological constraints are thus sidelined. Ultimately, this limited understanding of technological privacy, acts as a misguiding set of principles for technological co-regulation through standardisation in blockchains. The standardization of these choices without a holistic analysis of data protection by design imperatives could ultimately weaken the position of data subjects, whose trust in the technological protections of personal data might prove to be relatively misplaced.}, keywords = {anonymity, blockchain, Data Protection by Design, encryption, EU General Data Protection Regulation, frontpage, Privacy}, }

Editorial independence in an automated media system external link

Drunen, M. van
Internet Policy Review, vol. 10, num: 3, 2021

Abstract

The media has increasingly grown to rely on automated decision-making to produce and distribute news. This trend challenges our understanding of editorial independence by transforming the role of human editorial judgment and creating new dependencies on external software and data providers, engineers, and platforms. Recent policy initiatives such as the EU’s Media Action Plan and Digital Services Act are now beginning to revisit the way law can enable the media to act independently in the context of new technological tools and actors. Fully understanding and addressing the challenges automation poses to editorial independence, however, first requires better normative insight into the functions editorial independence performs in European media policy. This article provides a normative framework of editorial independence’s functions in European media policy and uses it to explore the new challenges posed by the automation of editorial decision-making.

automated decision making, frontpage, Mediarecht, onafhankelijkheid

Bibtex

Article{nokey, title = {Editorial independence in an automated media system}, author = {Drunen, M. van}, url = {https://policyreview.info/articles/analysis/editorial-independence-automated-media-system}, doi = {https://doi.org/10.14763/2021.3.1569}, year = {0913}, date = {2021-09-13}, journal = {Internet Policy Review}, volume = {10}, number = {3}, pages = {}, abstract = {The media has increasingly grown to rely on automated decision-making to produce and distribute news. This trend challenges our understanding of editorial independence by transforming the role of human editorial judgment and creating new dependencies on external software and data providers, engineers, and platforms. Recent policy initiatives such as the EU’s Media Action Plan and Digital Services Act are now beginning to revisit the way law can enable the media to act independently in the context of new technological tools and actors. Fully understanding and addressing the challenges automation poses to editorial independence, however, first requires better normative insight into the functions editorial independence performs in European media policy. This article provides a normative framework of editorial independence’s functions in European media policy and uses it to explore the new challenges posed by the automation of editorial decision-making.}, keywords = {automated decision making, frontpage, Mediarecht, onafhankelijkheid}, }

Personal data ordering in context: the interaction of meso-level data governance regimes with macro frameworks external link

Bodó, B., Irion, K., Janssen, H. & Giannopoulou, A.
Internet Policy Review, vol. 10, num: 3, 2021

Abstract

The technological infrastructures enabling the collection, processing, and trading of data have fuelled a rapid innovation of data governance models. We differentiate between macro, meso, and micro level models, which correspond to major political blocks; societal-, industry-, or community level systems, and individual approaches, respectively. We focus on meso-level models, which coalesce around: (1) organisations prioritising their own interests over interests of other stakeholders; (2) organisations offering technological and legal tools aiming to empower individuals; (3) community-based data intermediaries fostering collective rights and interests. In this article we assess these meso-level models, and discuss their interaction with the macro-level legal frameworks that have evolved in the US, the EU, and China. The legal landscape has largely remained inconsistent and fragmented, with enforcement struggling to keep up with the latest developments. We argue, first, that the success of meso-logics is largely defined by global economic competition, and, second, that these meso-logics may potentially put the EU’s macro-level framework with its mixed internal market and fundamental rights-oriented model under pressure. We conclude that, given the relative absence of a strong macro level-framework and an intensive competition of governance models at meso-level, it may be challenging to avoid compromises to the European macro framework.

Data governance, Data intermediaries, Data ordering, Data sovereignty, GDPR

Bibtex

Article{Bodó2021b, title = {Personal data ordering in context: the interaction of meso-level data governance regimes with macro frameworks}, author = {Bodó, B. and Irion, K. and Janssen, H. and Giannopoulou, A.}, url = {https://policyreview.info/articles/analysis/personal-data-ordering-context-interaction-meso-level-data-governance-regimes}, doi = {https://doi.org/10.14763/2021.3.1581}, year = {1011}, date = {2021-10-11}, journal = {Internet Policy Review}, volume = {10}, number = {3}, pages = {}, abstract = {The technological infrastructures enabling the collection, processing, and trading of data have fuelled a rapid innovation of data governance models. We differentiate between macro, meso, and micro level models, which correspond to major political blocks; societal-, industry-, or community level systems, and individual approaches, respectively. We focus on meso-level models, which coalesce around: (1) organisations prioritising their own interests over interests of other stakeholders; (2) organisations offering technological and legal tools aiming to empower individuals; (3) community-based data intermediaries fostering collective rights and interests. In this article we assess these meso-level models, and discuss their interaction with the macro-level legal frameworks that have evolved in the US, the EU, and China. The legal landscape has largely remained inconsistent and fragmented, with enforcement struggling to keep up with the latest developments. We argue, first, that the success of meso-logics is largely defined by global economic competition, and, second, that these meso-logics may potentially put the EU’s macro-level framework with its mixed internal market and fundamental rights-oriented model under pressure. We conclude that, given the relative absence of a strong macro level-framework and an intensive competition of governance models at meso-level, it may be challenging to avoid compromises to the European macro framework.}, keywords = {Data governance, Data intermediaries, Data ordering, Data sovereignty, GDPR}, }

Governing “European values” inside data flows: : interdisciplinary perspectives external link

Irion, K., Kolk, A., Buri, M. & Milan, S.
Internet Policy Review, vol. 10, num: 3, 2021

Abstract

This editorial introduces ten research articles, which form part of this special issue, exploring the governance of “European values” inside data flows. Protecting fundamental human rights and critical public interests that undergird European societies in a global digital ecosystem poses complex challenges, especially because the United States and China are leading in novel technologies. We envision a research agenda calling upon different disciplines to further identify and understand European values that can adequately perform under conditions of transnational data flows.

Artificial intelligence, Data flows, Data governance, Digital connectivity, European Union, European values, Human rights, Internet governance, Personal data protection, Public policy, Societal values

Bibtex

Article{Irion2021e, title = {Governing “European values” inside data flows: : interdisciplinary perspectives}, author = {Irion, K. and Kolk, A. and Buri, M. and Milan, S.}, url = {https://policyreview.info/european-values}, doi = {https://doi.org/10.14763/2021.3.1582}, year = {1011}, date = {2021-10-11}, journal = {Internet Policy Review}, volume = {10}, number = {3}, pages = {}, abstract = {This editorial introduces ten research articles, which form part of this special issue, exploring the governance of “European values” inside data flows. Protecting fundamental human rights and critical public interests that undergird European societies in a global digital ecosystem poses complex challenges, especially because the United States and China are leading in novel technologies. We envision a research agenda calling upon different disciplines to further identify and understand European values that can adequately perform under conditions of transnational data flows.}, keywords = {Artificial intelligence, Data flows, Data governance, Digital connectivity, European Union, European values, Human rights, Internet governance, Personal data protection, Public policy, Societal values}, }

Between Empowerment and Manipulation: The Ethics and Regulation of For-Profit Health Apps external link

Sax, M.
Wolters Kluwer, 0930, Series: Information Law Series, ISBN: 9789403537917

Consumer law, health apps, Kluwer Information Law Series, manipulation, unfair commercial practices

Bibtex

Book{Sax2021f, title = {Between Empowerment and Manipulation: The Ethics and Regulation of For-Profit Health Apps}, author = {Sax, M.}, url = {https://www.ivir.nl/sax_info_47-2/}, year = {0930}, date = {2021-09-30}, keywords = {Consumer law, health apps, Kluwer Information Law Series, manipulation, unfair commercial practices}, }

EU copyright law round up – third trimester of 2021 external link

Trapova, A. & Quintais, J.
Kluwer Copyright Blog, 2021

Auteursrecht, frontpage

Bibtex

Online publication{Trapova2021c, title = {EU copyright law round up – third trimester of 2021}, author = {Trapova, A. and Quintais, J.}, url = {http://copyrightblog.kluweriplaw.com/2021/10/07/eu-copyright-law-round-up-third-trimester-of-2021/}, year = {1007}, date = {2021-10-07}, journal = {Kluwer Copyright Blog}, keywords = {Auteursrecht, frontpage}, }

Copyright and Artificial Creation: Does EU Copyright Law Protect AI-Assisted Output? external link

Hugenholtz, P. & Quintais, J.
IIC - International Review of Intellectual Property and Competition Law , vol. 52, num: 9, pp: 1190-1216, 2021

Abstract

This article queries whether and to what extent works produced with the aid of AI systems – AI-assisted output – are protected under EU copyright standards. We carry out a doctrinal legal analysis to scrutinise the concepts of “work”, “originality” and “creative freedom”, as well as the notion of authorship, as set forth in the EU copyright acquis and developed in the case-law of the Court of Justice. On this basis, we develop a four-step test to assess whether AI-assisted output qualifies as an original work of authorship under EU law, and how the existing rules on authorship may apply. Our conclusion is that current EU copyright rules are generally suitable and sufficiently flexible to deal with the challenges posed by AI-assisted output.

Artificial intelligence, Auteursrecht, frontpage

Bibtex

Article{Hugenholtz2021d, title = {Copyright and Artificial Creation: Does EU Copyright Law Protect AI-Assisted Output?}, author = {Hugenholtz, P. and Quintais, J.}, url = {https://link.springer.com/article/10.1007/s40319-021-01115-0}, doi = {https://doi.org/https://doi.org/10.1007/s40319-021-01115-0}, year = {1007}, date = {2021-10-07}, journal = {IIC - International Review of Intellectual Property and Competition Law }, volume = {52}, number = {9}, pages = {1190-1216}, abstract = {This article queries whether and to what extent works produced with the aid of AI systems – AI-assisted output – are protected under EU copyright standards. We carry out a doctrinal legal analysis to scrutinise the concepts of “work”, “originality” and “creative freedom”, as well as the notion of authorship, as set forth in the EU copyright acquis and developed in the case-law of the Court of Justice. On this basis, we develop a four-step test to assess whether AI-assisted output qualifies as an original work of authorship under EU law, and how the existing rules on authorship may apply. Our conclusion is that current EU copyright rules are generally suitable and sufficiently flexible to deal with the challenges posed by AI-assisted output.}, keywords = {Artificial intelligence, Auteursrecht, frontpage}, }