GDPR Implications for ediscovery from a legal and technical point of view
|
|
- Edgar Chase
- 6 years ago
- Views:
Transcription
1 GDPR Implications for ediscovery from a legal and technical point of view Friday Paul Lavery, Partner, McCann FitzGerald Ireland Meribeth Banaschik, Partner, Ernst & Young Germany mccannfitzgerald.com
2 Topics Introduction ediscovery Platforms ediscovery Legal Implications of GDPR Tactical and technical considerations
3 What makes GDPR challenging? The EU General Data Protection Regulation (GDPR) protects personal data that is collected or processed by organizations established in the EU or soliciting business from EU residents. GDPR will tighten the current Data Privacy Directive, and make cross-border ediscovery more complex by the way it regulates how data is collected, processed and reviewed. GDPR will have profound effects on global organizations and their ability to process and transfer data in the context of investigation and litigation. A key aspect of GDPR, the right to be forgotten, also spells out some serious implications for data collection and hold. GDPR s potentially significant penalties - can be up to 4% of total global revenues or 20 million euro (whichever is greater) are intended to increase compliance.
4 ediscovery Legal Implications of GDPR General Data Protection Regulation replaces existing law 0n 25 May 2018 Increases obligations on controllers and processors evolution of rights and obligations, but a revolution in respect of administrative compliance burden and sanctions for non-compliance Irish Data Protection Bill
5 Key Data Protection Terminology Personal data relates to identifiable living individuals (not anonymised data) Data - Applies to Electronic Data and Manual Data Manual Data Must form part of a relevant filing system Processing widely defined includes any obtaining, recording, keeping, consulting, using, disclosing access to, use of, disclosure, erasing or destruction of data
6 Main Legal Implications
7 Fair And Transparent Processing Articles 5(1)(a), 13 and 14 Data Subject must be made aware: Controller holds personal information about him/her Purposes for which information kept Disclosures of data Certain other details (additional to those required under existing law) Data protection notices
8 Making Processing Legitimate Duty to legitimise processing (Article 6) Justify on one of the following grounds: consent of data subject legal obligation (non-contractual) legitimate interests
9 Special Categories of Data e.g. health data Controller must satisfy one of the following grounds (Article 9): explicit consent of data subject obtaining legal advice/legal proceedings or the establishment, exercise or defence of legal claims processing necessary for reasons of substantial public interest on the basis of Union or member state law
10 Notice and legitimising conditions potential issues Is it reasonably practicable to notify all data subjects? Is it possible to satisfy legitimising conditions? Potential exemption where processing required by law (i) court ordered discovery or (ii) parties reach agreement on discovery
11 Use of third party service provider Where Service provider hosts the data on its platform they act as data processor Requirement under Article 28, GDPR to have contract between controller and processor Use only processors providing sufficient security guarantees Requirement to have contract with processor which includes various provisions (more detailed than required under existing law), including: processing in accordance with instructions; Security measures; Confidentiality obligations Audits and inspections Notification of data security incidents Return or deletion of data on expiry of processing services
12 Transfers Abroad Will data be hosted outside EEA or subject to remote access from location outside EEA? Prohibition on Transfer of Personal Data outside European Economic Area (EU, Iceland, Norway and Liechtenstein) unless recipient country ensures adequate protection Andorra, Argentina, Canada, Faroe Islands, Guernsey, Isle of Man, Israel, Jersey, New Zealand, Switzerland and Uruguay found to have adequate protection.
13 Transfers Abroad cont d Prohibition will not apply, amongst other things, if: data subject consent - impractical transfer necessary for purpose of obtaining legal advice or for legal proceedings data transfer agreement, in the form approved by the European Commission main option Privacy shield (if transfer is to United States)
14 Data Security Appropriate security measures must be taken against unauthorised access to, alteration, disclosure or destruction of personal data state of the art and cost of implementing security measures severity for rights and freedoms of data subjects that might result from unauthorised disclosure Potential measures pseudonymisation, encryption, ability to ensure confidentiality of systems, ability to restore availability and access to personal data, regular testing of security measures Access solely on need to know basis
15 Other relevant GDPR Obligations Data Minimisation (Article 5(1)(c)): Data should be adequate, relevant and not excessive Keep only the minimum amount of personal data needed for the purpose for which it is being processed Avoid keeping irrelevant or excessive data Will the system and search criteria for collating data be sufficiently developed to ensure that only data which is relevant, proportionate and not excessive is collected?
16 Record Retention/Deletion and Anonymisation Obligation not to keep personal data for any longer than is necessary Deletion when hosting on ediscovery platform no longer required
17 Other potential considerations Subject Access Rights Right to be forgotten Privacy Impact Assessment pre to deciding on the ediscovery Platform?
18 Privacy Impact Assessments Description of envisaged processing operations and purposes of processing? What personal data will be required Consider data protection obligations and how to comply with such obligations Is all of the personal data required? Is there a potential impact on privacy? What measures can be taken to further protect privacy?
19 Tactical considerations A concerted effort by applying good information governance hygiene, gaining insight via early case assessment, streamlining procedures and processes and utilizing technologies can help ease the pain of GDPR compliance in carrying out international discovery efforts. Some tactical considerations that can help you manage the new challenges and complexities brought by GDPR are: (1) Update or develop your discovery protocols to incorporate new procedures or controls to help manage compliance with GDPR. Consider working with privacy counsel to develop standard collection, processing and review protocols to have consistent procedures that fit the majority of your discovery needs. (2) Perform data mapping exercise to understand your data, if you haven t done so. Understanding your data is not only important for proactive GDPR compliance, it is also important to enable your legal teams to quickly respond to investigation and litigation matters.
20 Tactical considerations (3) Whenever possible, collect, filter and review data in the local country and cull the data set to only the most responsive. (4) Embed steps to identify and categorize personal data during data collection. The information will help you assess the impact of GDPR on the discovery effort. (5) Assess the scope of personal data during early case assessment. The early understanding of the impact will help you to anticipate the challenges ahead and plan your production schedule accordingly. (6) Develop a phased production scheduled by the data s risk profile and relevance to the matter. Begin with the most relevant data and with the least risk, such as public data or data not subject to GDPR. In doing so, you can limit the production of personal data by adding it as needed in the subsequent production phases. (7) Anonymize or pseudo-anonymize personal information that is subject to data transfer clauses of GDPR. There are many off-the-shelf technologies that can be quickly learned and applied.
21 Questions?
EXIN Privacy and Data Protection Foundation. Preparation Guide. Edition
EXIN Privacy and Data Protection Foundation Preparation Guide Edition 201701 Content 1. Overview 3 2. Exam requirements 5 3. List of Basic Concepts 9 4. Literature 15 2 1. Overview EXIN Privacy and Data
More informationIET Guidelines for Volunteers: Data Protection
SERIAL NO: Issue No: 3.0 IET Guidelines for Volunteers: Protection Effective Date Approved by Author February 2012 Executive Committee Richard Best Date of Last Review Reviewed By Date of Next Review February
More informationThis policy sets out how Legacy Foresight and its Associates will seek to ensure compliance with the legislation.
Privacy Notice August 2018 Introduction The General Data Protection Regulation (GDPR) is European wide data protection legislation that requires organisations working with individuals based in the European
More informationEuropean Union General Data Protection Regulation Effects on Research
European Union General Data Protection Regulation Effects on Research Mark Barnes Partner, Ropes & Gray LLP Co-Director, Multi-Regional Clinical Trials Center of Brigham and Women s Hospital and Harvard
More informationMinistry of Justice: Call for Evidence on EU Data Protection Proposals
Ministry of Justice: Call for Evidence on EU Data Protection Proposals Response by the Wellcome Trust KEY POINTS It is essential that Article 83 and associated derogations are maintained as the Regulation
More informationThe GDPR and Upcoming mhealth Code of Conduct. Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD)
The GDPR and Upcoming mhealth Code of Conduct Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD) EU General Data Protection Regulation (May 2018) First major reform in 20 years 25 th May 2018 no
More informationGDPR Awareness. Kevin Styles. Certified Information Privacy Professional - Europe Member of International Association of Privacy professionals
GDPR Awareness Kevin Styles Certified Information Privacy Professional - Europe Member of International Association of Privacy professionals Introduction Privacy and data protection are fundamental rights
More informationWhat does the revision of the OECD Privacy Guidelines mean for businesses?
m lex A B E X T R A What does the revision of the OECD Privacy Guidelines mean for businesses? The Organization for Economic Cooperation and Development ( OECD ) has long recognized the importance of privacy
More informationBiometric Data, Deidentification. E. Kindt Cost1206 Training school 2017
Biometric Data, Deidentification and the GDPR E. Kindt Cost1206 Training school 2017 Overview Introduction 1. Definition of biometric data 2. Biometric data as a new category of sensitive data 3. De-identification
More informationPrivacy Policy SOP-031
SOP-031 Version: 2.0 Effective Date: 18-Nov-2013 Table of Contents 1. DOCUMENT HISTORY...3 2. APPROVAL STATEMENT...3 3. PURPOSE...4 4. SCOPE...4 5. ABBREVIATIONS...5 6. PROCEDURES...5 6.1 COLLECTION OF
More informationThe EU's new data protection regime Key implications for marketers and adtech service providers Nick Johnson and Stephen Groom 11 February 2016
The EU's new data protection regime Key implications for marketers and adtech service providers Nick Johnson and Stephen Groom 11 February 2016 General Data Protection Regulation ("GDPR") timeline 24.10.95
More informationST. MARY in the MARSH PARISH COUNCIL
ST. MARY in the MARSH PARISH COUNCIL DATA PROTECTION POLICY 1. THE MEANING OF PERSONAL DATA (a). Personal data is any data that relates to a living person who can be recognised from that data. Data exists
More informationFirst Components Ltd, Savigny Oddie Ltd, & Datum Engineering Ltd. is pleased to provide the following
Privacy Notice Introduction This document refers to personal data, which is defined as information concerning any living person (a natural person who hereafter will be called the Data Subject) that is
More informationINTERNATIONAL. Building and Implementing an Information Governance Program in a Changing Legal Landscape
Building and Implementing an Information Governance Program in a Changing Legal Landscape Building and Implementing an Information Governance Program in a Changing Legal Landscape Hon. Andrew J. Peck March
More informationICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate?
Information Commissioner s Office ICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate? 16 May 2018 V. 1.0 Final 1 Contents
More informationPrivacy Procedure SOP-031. Version: 04.01
SOP-031 Version: 04.01 Effective Date: 01-Mar-2017 Table of Contents 1. DOCUMENT HISTORY... 3 2. APPROVAL STATEMENT... 3 3. PURPOSE... 4 4. SCOPE... 4 5. ABBREVIATIONS... 4 6. PROCEDURES... 5 6.1 COLLECTION
More informationThe General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation
The General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation ENCePP Plenary Meeting- London, 22/11/2016 Alessandro Spina Data Protection Officer, EMA An agency
More informationCommonwealth Data Forum. Giovanni Buttarelli
21 February 2018 Commonwealth Data Forum Giovanni Buttarelli Thank you, Michael, for your kind introduction. Thank you also to the Commonwealth Telecommunications Organisation and the Government of Gibraltar
More informationTechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV
Tech EUROPE TechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV Brussels, 14 January 2014 TechAmerica Europe represents
More informationEnd-to-End Privacy Accountability
End-to-End Privacy Accountability Denis Butin 1 and Daniel Le Métayer 2 1 TU Darmstadt 2 Inria, Université de Lyon TELERISE, 18 May 2015 1 / 17 Defining Accountability 2 / 17 Is Accountability Needed?
More informationPrivacy Impact Assessment on use of CCTV
Appendix 2 Privacy Impact Assessment on use of CCTV CCTV is currently in the majority of the Council s leisure facilities, however this needs to be extended to areas not currently covered by CCTV. Background
More informationRobert Bond Partner, Commercial/IP/IT
Using Privacy Impact Assessments Effectively robert.bond@bristows.com Robert Bond Partner, Commercial/IP/IT BA (Hons) Law, Wolverhampton University Qualified as a Solicitor 1979 Qualified as a Notary Public
More informationIAB Europe Guidance THE DEFINITION OF PERSONAL DATA. IAB Europe GDPR Implementation Working Group WHITE PAPER
IAB Europe Guidance WHITE PAPER THE DEFINITION OF PERSONAL DATA Five Practical Steps to help companies comply with the E-Privacy Working Directive Paper 02/2017 IAB Europe GDPR Implementation Working Group
More informationInteraction btw. the GDPR and Clinical Trials Regulation
Interaction btw. the GDPR and Clinical Trials Marjut Salokannel SaReCo Oslo, Clinical Trials (CTR) approved in 2014 and will most likely come into effect as of Oct. 2018 all information btw. the parties
More informationThe new GDPR legislative changes & solutions for online marketing
TRUSTED PRIVACY The new GDPR legislative changes & solutions for online marketing IAB Forum 2016 29/30th of November 2016, Milano Prof. Dr. Christoph Bauer, GmbH Who we are and what we do Your partner
More informationediscovery and Digital Evidence Online Course
ediscovery and Digital Evidence Online Course The Convergence Between Law & Technology Instructor: Michael R. Arkfeld Dates February 26, 2014 to April 16, 2014 Day and Time of Online Sessions Wednesday
More informationEU-GDPR The General Data Protection Regulation
EU-GDPR The General Data Protection Regulation Lucas Heymans, Higher Education Applications Product Strategy EMEA Safe Harbor Statement The following is intended to outline our general product direction.
More informationPRIVACY ANALYTICS WHITE PAPER
PRIVACY ANALYTICS WHITE PAPER European Legal Requirements for Use of Anonymized Health Data for Research Purposes by a Data Controller with Access to the Original (Identified) Data Sets Mike Hintze Khaled
More informationhttps://www.icann.org/en/system/files/files/interim-models-gdpr-compliance-12jan18-en.pdf 2
ARTICLE 29 Data Protection Working Party Brussels, 11 April 2018 Mr Göran Marby President and CEO of the Board of Directors Internet Corporation for Assigned Names and Numbers (ICANN) 12025 Waterfront
More informationHong Kong Personal Data Protection Regulatory Framework From Compliance to Accountability
Legal Week s Corporate Counsel Forum 2016 Renaissance Harbour View Hotel 23 June 2016 Hong Kong Personal Data Protection Regulatory Framework From Compliance to Accountability Stephen Kai-yi Wong Privacy
More informationInterest Balancing Test Assessment on the processing of the copies of data subjects driving licences for the MOL Limo service
1 Legitimate interest of the controller or a third party: General description of the processing environment Users can commence the registration required for using the MOL LIMO service in the Mobile Application
More informationLegal Aspects of the Internet of Things. Richard Kemp June 2017
Legal Aspects of the Internet of Things Richard Kemp June 2017 LEGAL ASPECTS OF THE INTERNET OF THINGS TABLE OF CONTENTS Para Heading Page A. INTRODUCTION... 1 1. What is the Internet of Things?... 1 2.
More informationCCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: Safeguarding Policy Data Protection Policy
CCTV Policy Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Located: Safeguarding Policy Data Protection Policy Review Date May 2019 Our Mission To provide the very best
More informationOur position. ICDPPC declaration on ethics and data protection in artificial intelligence
ICDPPC declaration on ethics and data protection in artificial intelligence AmCham EU speaks for American companies committed to Europe on trade, investment and competitiveness issues. It aims to ensure
More informationProposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL
EUROPEAN COMMISSION Brussels, 13.6.2013 COM(2013) 316 final 2013/0165 (COD) Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL concerning type-approval requirements for the deployment
More informationClient s Statement of Rights & Responsibilities*
Client s Statement of Rights & Responsibilities* Notification to Clients of Their Rights and Responsibilities Preamble Good communication is essential to an effective attorney-client relationship. A lawyer
More informationclarification to bring legal certainty to these issues have been voiced in various position papers and statements.
ESR Statement on the European Commission s proposal for a Regulation on the protection of individuals with regard to the processing of personal data on the free movement of such data (General Data Protection
More informationOcean Energy Europe Privacy Policy
Ocean Energy Europe Privacy Policy 1. General 1.1 This is the privacy policy of Ocean Energy Europe AISBL, a non-profit association with registered offices in Belgium at 1040 Brussels, Rue d Arlon 63,
More informationJustice Select Committee: Inquiry on EU Data Protection Framework Proposals
Justice Select Committee: Inquiry on EU Data Protection Framework Proposals Response by the Wellcome Trust KEY POINTS The Government must make the protection of research one of their priorities in negotiations
More informationInteractive Retainer Letter
Interactive Retainer Letter General Notes on Retainer Agreements (Non-Contingency) Retainer letters are recommended practice in Alberta for non-contingency retainers. The Code of Conduct makes reference
More informationICC POSITION ON LEGITIMATE INTERESTS
ICC POSITION ON LEGITIMATE INTERESTS POLICY STATEMENT Prepared by the ICC Commission on the Digital Economy Summary and highlights This statement outlines the International Chamber of Commerce s (ICC)
More informationCCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: T:Drive. Safeguarding Policy Data Protection Policy
CCTV Policy Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Safeguarding Policy Data Protection Policy Located: T:Drive Review Date May 2019 Our Mission To provide the
More informationGuidelines for the Stage of Implementation - Self-Assessment Activity
GUIDELINES FOR PRIVACY AND INFORMATION MANAGEMENT (PIM) PROGRAM SELF-ASSESSMENT ACTIVITY Guidelines for the Stage of Implementation - Self-Assessment Activity PURPOSE This tool is for the use of school
More informationBig Data and Personal Data Protection Challenges and Opportunities
Big Data and Personal Data Protection Challenges and Opportunities 11 September 2018 CIRET pre-conference Workshop luca.belli@fgv.br @1lucabelli 1. Big Data: Big Legal Uncertainty? 2. Principles of Data
More informationFiscal 2007 Environmental Technology Verification Pilot Program Implementation Guidelines
Fifth Edition Fiscal 2007 Environmental Technology Verification Pilot Program Implementation Guidelines April 2007 Ministry of the Environment, Japan First Edition: June 2003 Second Edition: May 2004 Third
More informationNymity Demonstrating Compliance Manual: A Structured Approach to Privacy Management Accountability
A Structured Approach to Privacy Management Accountability Copyright 2016 by Nymity Inc. All rights reserved. All text, images, logos, trademarks and information contained in this document are the intellectual
More informationSwedish Proposal for Research Data Act
Swedish Proposal for Research Data Act XXXII Nordic Conference on Legal Informatics November 13-15 2017 Cecilia Magnusson Sjöberg, Professor Faculty of Law Stockholm University Today s presentation about
More informationHL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR)
HL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR) Alexander Mense - University of Applied Sciences Vienna Bernd Blobel - Medical Faculty,
More informationD2. Results of the feasibility analysis
European Commission Eurostat/G6 Contract No. 50721.2013.002-2013.169 Analysis of methodologies for using the Internet for the collection of information society and other statistics D2. Results of the feasibility
More informationTHE EUROPEAN DATA PROTECTION SUPERVISOR, Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,
Opinion of the EDPS on the proposal for a Regulation of the European Parliament and of the Council concerning type-approval requirements for the deployment of the ecall system and amending Directive 2007/46/EC
More informationPrivacy Law in Canada: Obligations and Risks in the Cyber Age Dina L. Maxwell Associate Lawyer
Privacy Law in Canada: Obligations and Risks in the Cyber Age Dina L. Maxwell Associate Lawyer Blaney McMurtry LLP - 2 Queen Street East, Suite 1500 - Toronto, Canada www.blaney.com Overview Private Sector
More informationEmployees, contractors and other personnel of KKR should note that a separate privacy notice will be made available to them.
Version 18 May 2018 PRIVACY NOTICE FOR EU RESIDENTS KKR respects your privacy and is committed to protecting your personal information. This privacy notice will inform you as to how we look after your
More informationThe Ethics of Artificial Intelligence
The Ethics of Artificial Intelligence Prepared by David L. Gordon Office of the General Counsel Jackson Lewis P.C. (404) 586-1845 GordonD@jacksonlewis.com Rebecca L. Ambrose Office of the General Counsel
More informationEuropean Charter for Access to Research Infrastructures - DRAFT
13 May 2014 European Charter for Access to Research Infrastructures PREAMBLE - DRAFT Research Infrastructures are at the heart of the knowledge triangle of research, education and innovation and therefore
More informationTHE UNIVERSITY OF AUCKLAND INTELLECTUAL PROPERTY CREATED BY STAFF AND STUDENTS POLICY Organisation & Governance
THE UNIVERSITY OF AUCKLAND INTELLECTUAL PROPERTY CREATED BY STAFF AND STUDENTS POLICY Organisation & Governance 1. INTRODUCTION AND OBJECTIVES 1.1 This policy seeks to establish a framework for managing
More informationARTICLE 29 Data Protection Working Party
ARTICLE 29 Data Protection Working Party Brussels, 10 April 2017 Hans Graux Project editor of the draft Code of Conduct on privacy for mobile health applications By e-mail: hans.graux@timelex.eu Dear Mr
More informationISO/TR TECHNICAL REPORT. Intelligent transport systems System architecture Privacy aspects in ITS standards and systems
TECHNICAL REPORT ISO/TR 12859 First edition 2009-06-01 Intelligent transport systems System architecture Privacy aspects in ITS standards and systems Systèmes intelligents de transport Architecture de
More informationDEVELOPMENTS IN EU MDD & IVDD SOFTWARE REGULATION
Objectives DEVELOPMENTS IN EU MDD & IVDD SOFTWARE REGULATION Some brief remarks on data protection Current regulation of medical devices software Overview of EU medical devices directives revision process
More informationDiana Gordick, Ph.D. 150 E Ponce de Leon, Suite 350 Decatur, GA Health Insurance Portability and Accountability Act (HIPAA)
Diana Gordick, Ph.D. 150 E Ponce de Leon, Suite 350 Decatur, GA 30030 Health Insurance Portability and Accountability Act (HIPAA) NOTICE OF PRIVACY PRACTICES I. COMMITMENT TO YOUR PRIVACY: DIANA GORDICK,
More informationWireless Sensor Networks and Privacy
Wireless Sensor Networks and Privacy UbiSec & Sens Workshop Aachen 7.2.2008 Agenda ULD who we are and what we do Privacy and Data Protection concept and terminology Privacy and Security technologies a
More informationHaving regard to the Treaty establishing the European Community, and in particular its Article 286,
Opinion of the European Data Protection Supervisor on the Communication from the Commission on an Action Plan for the Deployment of Intelligent Transport Systems in Europe and the accompanying Proposal
More informationBSA COMMENTS ON DRAFT PERSONAL DATA PROTECTION ACT
Permanent Secretary The Ministry of Digital Economy and Society 120 Moo 3, 6-9 floor, The Government Complex Commemorating His Majesty, Chaeng Watthana, Thung Song Hong, Laksi, Bangkok 10210 February 6,
More informationUser Privacy in Health Monitoring Wearables
User Privacy in Health Monitoring Wearables Requirements stemming from current and proposed European Union legislation Kiril Kalev, Jernej Mavrič, Sophie Pijnenburg, Anouk de Ruijter Tilburg Institute
More informationCommittee on Development. for the Committee on the Environment, Public Health and Food Safety
EUROPEAN PARLIAMT 2009-2014 Committee on Development 28.3.2013 2012/0278(COD) DRAFT OPINION of the Committee on Development for the Committee on the Environment, Public Health and Food Safety on the proposal
More informationENTSO-E Draft Network Code on High Voltage Direct Current Connections and DCconnected
ENTSO-E Draft Network Code on High Voltage Direct Current Connections and DCconnected Power Park Modules 30 April 2014 Notice This document reflects the work done by ENTSO-E in line with ACER s framework
More informationABF SYSTEM REGULATIONS
ABF SYSTEM REGULATIONS 1. INTRODUCTION 1.1 General Systems are classified according to the characteristics of their opening and overcalling structures, and will be identified by colour coding. In determining
More informationOffice for Nuclear Regulation
Office for Nuclear Regulation Redgrave Court Merton Road Bootle Merseyside L20 7HS www.hse.gov.uk/nuclear PROJECT ASSESSMENT REPORT Report Identifier: ONR-Policy-all-PAR-11-001 Revision: 2 Project: Implementation
More informationAustralian Census 2016 and Privacy Impact Assessment (PIA)
http://www.privacy.org.au Secretary@privacy.org.au http://www.privacy.org.au/about/contacts.html 12 February 2016 Mr David Kalisch Australian Statistician Australian Bureau of Statistics Locked Bag 10,
More informationGet Compliant and Stay Compliant with Department of Labor (DOL) Final Rule Fiduciary Regulations. White Paper
Get Compliant and Stay Compliant with Department of Labor (DOL) Final Rule Fiduciary Regulations White Paper Get Compliant and Stay Compliant with the New Department of Labor (DOL) Final Rule Fiduciary
More informationTERMS AND CONDITIONS. for the use of the IMDS Advanced Interface by IMDS-AI using companies
TERMS AND CONDITIONS for the use of the IMDS Advanced Interface by IMDS-AI using companies Introduction The IMDS Advanced Interface Service (hereinafter also referred to as the IMDS-AI ) was developed
More information12 April Fifth World Congress for Freedom of Scientific research. Speech by. Giovanni Buttarelli
12 April 2018 Fifth World Congress for Freedom of Scientific research Speech by Giovanni Buttarelli Good morning ladies and gentlemen. It is my real pleasure to contribute to such a prestigious event today.
More informationConsultation on the licensing of spectrum in the 800 MHz and 900 MHz bands
Consultation on the licensing of spectrum in the 800 MHz and 900 MHz bands 22 October 2015 Contents 1. Introduction... 3 1.1 Request for spectrum in the 800MHz and 900MHz bands... 3 1.2 Consultation structure...
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY in connection with the processing of personal data regarding the development and testing of AI applications at AImotive Kft. TABLE OF CONTENTS 1. Introduction and the purpose and
More informationPreparing for the new Regulations for healthcare providers
Preparing for the new Regulations for healthcare providers Cathal Brennan, Medical Device Assessor HPRA Information Day on Medical Devices 23 rd October 2014 Brussels, 26.9.2012 COM(2012) 542 final 2012/0266
More informationBritish Columbia s Environmental Assessment Process
British Columbia s Environmental Assessment Process Seminar #2 Guide for Aboriginal Groups and the General Public on the BC Environmental Assessment Process February 23, 2016 Paul Craven About the BC Environmental
More informationLoyola University Maryland Provisional Policies and Procedures for Intellectual Property, Copyrights, and Patents
Loyola University Maryland Provisional Policies and Procedures for Intellectual Property, Copyrights, and Patents Approved by Loyola Conference on May 2, 2006 Introduction In the course of fulfilling the
More informationShould privacy impact assessments be mandatory? David Wright Trilateral Research & Consulting 17 Sept 2009
Should privacy impact assessments be mandatory? David Wright Trilateral Research & Consulting 17 Sept 2009 1 Today s presentation Databases solving one problem & creating another What is a privacy impact
More informationThe concept of transfer of data under European data protection law
The concept of transfer of data under European data protection law In the context of transborder data flows Candidate number: 8026 Submission deadline: 01.12.2015 Number of words: 17 454 Table of contents
More informationThe Game Changer: Privacy by Design
WHITE PAPER Dr. Ann Cavoukian, Privacy by Design Centre of Excellence, on leading with privacy by design The Game Changer: Privacy by Design Data Security: Cost of Taking the Reactive Approach CONTENTS
More information2018 / Photography & Video Bell Lane Primary School & Children s Centre
2018 / 2019 Photography & Video Use @ Bell Lane Primary School & Children s Centre Bell Lane Primary School & Children s Centre Responsible: Headteacher & Governing Body Last reviewed: Summer 2018 Review
More informationPickens Savings and Loan Association, F.A. Online Banking Agreement
Pickens Savings and Loan Association, F.A. Online Banking Agreement INTERNET BANKING TERMS AND CONDITIONS AGREEMENT This Agreement describes your rights and obligations as a user of the Online Banking
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Privacy framework
INTERNATIONAL STANDARD ISO/IEC 29100 First edition 2011-12-15 Information technology Security techniques Privacy framework Technologies de l'information Techniques de sécurité Cadre privé Reference number
More informationDr Nicholas J. Gervassis University of Plymouth THE EMERGING UK DATA PROTECTION FRAMEWORK AND BEYOND
Dr Nicholas J. Gervassis University of Plymouth THE EMERGING UK DATA PROTECTION FRAMEWORK AND BEYOND PRIVACY DATA PROTECTION Organisation for Economic Cooperation and Development (OECD) Guidelines on the
More information(Non-legislative acts) DECISIONS
4.12.2010 Official Journal of the European Union L 319/1 II (Non-legislative acts) DECISIONS COMMISSION DECISION of 9 November 2010 on modules for the procedures for assessment of conformity, suitability
More informationHBM4EU project. Information, Invitation and Informed Consent Lisbeth E. Knudsen, Berit A. Faber. Information and recruitment of participants
HBM4EU project Information, Invitation and Informed Consent Lisbeth E. Knudsen, Berit A. Faber Information and recruitment of participants 1 st HBM4EU Training School 2018 B01-Ethics, Session 3: Information
More informationSession 1, Part 2: Emerging issues in e-commerce Australian experiences of privacy and consumer protection regulation
2013/ SOM3/CTI/WKSP1/007 Australian Experiences of Privacy and Consumer Protection Regulation Submitted by: Australia Workshop on Building and Enhancing FTA Negotiation Skills on e-commerce Medan, Indonesia
More informationGUIDELINES ON PRIVACY BY DESIGN AND PRIVACY IMPACT ASSESSMENT
Document 2.1.4-7 GUIDELINES ON PRIVACY BY DESIGN AND PRIVACY IMPACT ASSESSMENT Component 2 Activity 2.1.4-4 Draft version - November 2011 The content of this report is the sole responsibility of Human
More informationDNVGL-CG-0214 Edition September 2016
CLASS GUIDELINE DNVGL-CG-0214 Edition September 2016 The content of this service document is the subject of intellectual property rights reserved by ("DNV GL"). The user accepts that it is prohibited by
More informationF98-3 Intellectual/Creative Property
F98-3 (A.S. 1041) Page 1 of 7 F98-3 Intellectual/Creative Property Legislative History: At its meeting of October 5, 1998, the Academic Senate approved the following policy recommendation presented by
More informationCOUNCIL OF THE EUROPEAN UNION. Brussels, 19 May 2014 (OR. en) 9879/14 Interinstitutional File: 2013/0165 (COD) ENT 123 MI 428 CODEC 1299
COUNCIL OF THE EUROPEAN UNION Brussels, 19 May 2014 (OR. en) 9879/14 Interinstitutional File: 2013/0165 (COD) T 123 MI 428 CODEC 1299 NOTE From: To: General Secretariat of the Council Council No. prev.
More informationDetails of the Proposal
Details of the Proposal Draft Model to Address the GDPR submitted by Coalition for Online Accountability This document addresses how the proposed model submitted by the Coalition for Online Accountability
More informationWhy patents DO matter to YOUR business
Why patents DO matter to YOUR business Robynne Sanders & Eliza Mallon DLA Piper 18 March 2015 Overview This session will cover: how to identify when patent protection should be obtained to protect your
More informationclarify the roles of the Department and minerals industry in consultation; and
Procedures for Crown Consultation with Aboriginal Communities on Mineral Exploration Mineral Resources Division, Manitoba Science, Technology, Energy and Mines The Government of Manitoba recognizes it
More informationPolish Science Database (BWNP)
Warsaw, 24 May 2018 POLISH SCIENCE DATABASE Mandatory information to be provided under Articles 13 and 14 of the GDPR PERSONAL DATA OF SCHOLARS AND INDIVIDUALS SUBMITTING SUCH DATA FOR THE Polish Science
More informationTowards Code of Conduct on Processing of Personal Data for Purposes of Scientific Research in the Area of Health
Towards Code of Conduct on Processing of Personal Data for Purposes of Scientific Research in the Area of Health 19/4/2017 BBMRI-ERIC WHAT HAPPENED SO FAR? 2 2015-2016 Holding a Day of Action on the draft
More informationInteractive Workshop on Data Protection Impact Assessment
Interactive Workshop on Data Protection Impact Assessment A Hands On Tour of the GDPR s Most Practical Tool IFIP Summer School 2017 Felix Bieker, Michael Friedewald and Marit Hansen Workshop Structure
More informationFP7 Cooperation Programme - Theme 6 Environment (including climate change) Tentative Work Programme 2011
FP7 Cooperation Programme - Theme 6 Environment (including climate change) Tentative Work Programme 2011 European Commission Research DG Michele Galatola Unit I.3 Environmental Technologies and Pollution
More informationPolicy on Patents (CA)
RESEARCH Effective Date: Date Revised: N/A Supersedes: N/A Related Policies: Policy on Copyright (CA) Responsible Office/Department: Center for Research Innovation (CRI) Keywords: Patent, Intellectual
More informationCONSENT IN THE TIME OF BIG DATA. Richard Austin February 1, 2017
CONSENT IN THE TIME OF BIG DATA Richard Austin February 1, 2017 1 Agenda 1. Introduction 2. The Big Data Lifecycle 3. Privacy Protection The Existing Landscape 4. The Appropriate Response? 22 1. Introduction
More informationAn overview of the changing data privacy landscape in India
www.pwc.in [ ] An overview of the changing data privacy landscape in India January 2018 Executive Summary 3 Technology as an enabler for compliance 3 Introduction 5 1. Scope and exemptions 6 Table of contents
More information