Data Protection Authorities and Information Technology

Raab, Charles D.; Székely, Iván

doi:10.2139/ssrn.2994898

Cited by 3 publications

(6 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…55 Therefore, the existence of this body is vital because it can obtain and disseminate adequate knowledge about new technological developments in personal data protection practices to ensure security both now and in the future. 56 A concrete example is the EU in anticipating surveillance in the form of contact tracing applications that at the beginning of the emergence of the 2) Data Protection Officer (DPO) When implemented, the system at each data controller is assisted by an official acting as a personal data protection officer to perform electronic identification and electronic authentication when reporting and updating personal data. 60 A DPO is an official appointed and employed in a public agency or company to oversee regulations on personal data protection.…”

Section: B the Formulation On Development Of Indonesia's Personal Data Protection Law In The Futurementioning

confidence: 99%

Analysis Principles of Personal Data Protection on COVID-19 Digital Contact Tracing Application: PeduliLindungi Case Study

Pratama

Pati

2021

LeSRev

View full text Add to dashboard Cite

This article aims to review the application of the principle of personal data protection as part of privacy rights in the PeduliLindungi application considering that on the one hand, the PeduliLindungi application helps the government to reduce the spread of the COVID-19 virus. But on the other hand, there is a threat of misuse of personal data in the future. This background article is based on the use of the PeduliLindungi application, which was initially used to track the spread of the virus during the COVID-19 pandemic. But it seems that the public will increasingly use its use in the future, especially now that it has begun to be planned as an e-wallet and started integrating with several other applications. This article reveals that there has been a dual role by the Ministry of Communication and Informatics as a supervisor and controller of personal data in Indonesia so that it has implications for the PeduliLindungi application that has not fully applied the principles of personal data protection when collecting, processing, and storing personal data. For the future, a comprehensive legal development drive is needed related to the protection of personal data. There is a personal data protection agency and Data Protection Officer (DPO) to more strongly enforce the principles of personal data protection.

show abstract

Section: B the Formulation On Development Of Indonesia's Personal Data Protection Law In The Futurementioning

confidence: 99%

Analysis Principles of Personal Data Protection on COVID-19 Digital Contact Tracing Application: PeduliLindungi Case Study

Pratama

Pati

2021

LeSRev

View full text Add to dashboard Cite

show abstract

“…The rationale for examining only post-communist societies is that they share cultural experiences of communism as a political system. Other researchers have studied the more general conditions for carrying out data protection in Europe (e.g., Raab and Szekely 2017). Future research could build on this study and compare post-communist societies with other post-authoritarian societies.…”

Section: Conclusion: Data Protection As a Historical Endeavor?mentioning

confidence: 96%

“…Data protection authorities are independent regulatory bodies that have a mandate to monitor and supervise the enforcement of data protection laws. They supervise the use of personal data, inform the public about privacy and surveillance, rectify illegal surveillance practices, and handle complaints (Jóri 2015;Raab and Szekely 2017). Among other duties, they give opinions on legal texts, provide advice and recommendations regarding data protection, publish guidelines relating to data protection laws, and cooperate with similar authorities in other countries.…”

Section: Data Protection In Post-communist Societiesmentioning

confidence: 99%

“…Among other duties, they give opinions on legal texts, provide advice and recommendations regarding data protection, publish guidelines relating to data protection laws, and cooperate with similar authorities in other countries. The diversity of their activities makes it important that DPAs possess comprehensive knowledge on data protection in their countries, although Raab and Szekely (2017) have shown that they rarely do so. On the contrary, DPAs typically do not have sufficient resources to manage the wealth of responsibilities placed on them by data protection regulations.…”

Section: Data Protection In Post-communist Societiesmentioning

confidence: 99%

“…Research into the role of DPAs does not specifically address post-communist countries. Rather, it occasionally touches upon these countries as part of a larger comparative study (Raab and Szekely 2017;Schütz 2012). To date, the historical aspect of data protection remains unexplored, which is unfortunate in light of the ongoing shift to more authoritarian politics discussed above.…”

Section: Data Protection In Post-communist Societiesmentioning

confidence: 99%

See 2 more Smart Citations

“Now We Are Struggling at Least”: Change & Continuity of Surveillance in Post-Communist Societies from the Perspective of Data Protection Authorities

Svenonius

Tarasova

2021

View full text Add to dashboard Cite

This article presents the results of an interview study carried out with sixteen data-protection authorities in Central and Eastern Europe. The study focuses on the way that data protection authorities reason about the past. The theoretical argument advanced in the text is that data protection in a post-communist context bears a specific historical significance due to the recent experiences with the extensive, coercive state surveillance that was systematized under the communist regimes. The article focuses on the institutional role conceptions of data protection authorities—a theoretical concept that denotes perceptions of the role of an organization within the larger institutional environment. High-level officials from data protection authorities in sixteen countries were interviewed about change and continuity in surveillance. The results show that historical reflectivity is not a dominant feature of the leadership of contemporary data protection authorities and that different countries differ considerably. The respondents least able or willing to discuss the topics of change and continuity are in societies with recent high-level surveillance scandals, such as Bulgaria and North Macedonia.

show abstract

Varieties of enforcement strategies post-GDPR: a fuzzy-set qualitative comparative analysis (fsQCA) across data protection authorities

Sivan‐Sevilla

2022

Journal of European Public Policy

View full text Add to dashboard Cite

This study explores the divergence in data protection enforcement strategies among national agencies. Whereas the literature on cross-national enforcement practices is scarce, this study develops a scale for data protection enforcement strategies and measures and compares enforcement choices across agencies. Based on survey responses from 18 DPAs, interviews with DPA employees, and secondary sources on GPDR implementation, the paper clusters DPAs based on enforcement strategies, analyzes cross-national variations, and investigates misalignments between strategy and actions. Using Fuzzy-Set Qualitative Comparative Analysis, the paper tests how bureaucratic and political contextsorganizational capacities, budget sources, and issue saliencyimpact enforcement choices. Almost half of studied DPAs reflect high deterrence by their strategy, but for many of them, lack of resources and expertise inhibits the translation of strategy into practice. This study provides a starting point for understanding the national impacts of Europeanization post-GDPR, adding empirical support for theorizing about enforcement across the EU.

show abstract

Data Protection Authorities and Information Technology

Cited by 3 publications

References 7 publications

Analysis Principles of Personal Data Protection on COVID-19 Digital Contact Tracing Application: PeduliLindungi Case Study

Analysis Principles of Personal Data Protection on COVID-19 Digital Contact Tracing Application: PeduliLindungi Case Study

“Now We Are Struggling at Least”: Change & Continuity of Surveillance in Post-Communist Societies from the Perspective of Data Protection Authorities

Varieties of enforcement strategies post-GDPR: a fuzzy-set qualitative comparative analysis (fsQCA) across data protection authorities

Contact Info

Product

Resources

About