Chapter 1 Origins and Development of European Data Protection Law Flashcards
What gave rise to the need for European data protection law
although rules and legal frameworks existed to protect individual personal information in privacy, tort, secrecy and confidentiality existed. Additional controls were needed to regulate the automated storage of PI and cross-border trade.
What is the UDHR?
Universal Declaration of Human Rights.
When and by whom was the UDHR adopted?
10 December 1948, by the General Assembly of the UN.
What does Article 12 of the UDHR enshrine?
the right to privacy and the protection of the law from interference of said right:
no one shall be subjected to arbitrary interference with his privacy, family, home or correspondence no attacks upon his honour and reputation. everyone has the right to the protection of the law against such interference or attacks.
What dos Article 19 of the UDHR enshrine?
the right to freedom of expression through any media frontiers:
everyone has the right to freedom of opinion and expression; this right includes freedom to hold opinions without interference and to seek, receive and impart information and ideas through any media and regardless of frontiers.
What does Article 29(2) of the UDHR enshrine?
A reconciliation of Articles 12 and 19:
in the exercise of his rights and freedoms, everyone shall be subject only to such limitations as are determined by law solely for the purpose of securing due recognition and respect for the rights and freedoms of others and of meeting the just requirements of morality, public order and general welfare in a democratic society.
What is the ECHR?
European Convention on Human Rights
What is the ECtHR?
European Court of Human Rights, later restructured into the Court of Human Rights
When was the ECHR adopted?
3 September 1953 by member states of the Council of Europe.
What does Article 8 of the ECHR enshrine?
right to privacy, family life, home and correspondence:
Everyone has the right to respect for his private and family life, his home and his correspondence.
There shall be no interference by a public authority with the exercise of this right except such as is in accordance with the law and is necessary in a democratic society in the interests of national security, public safety or the economic well-being of the country, for the prevention of disorder or crime, for the protection of health or morals, or for the protection of the rights and freedoms of others
What does Article 10(1) of the ECHR enshrine?
the right to freedom of expression:
Everyone has the right to freedom of expression. This right shall include freedom to hold opinions and to receive and impart information and ideas without interference by public authority and regardless of frontiers
What does Article 10(2) of the ECHR enshrine?
qualifies the right to freedom of expression:
The exercise of these freedoms, since it carries with it duties and responsibilities, may be subject to such formalities, conditions, restrictions or penalties as are prescribed by law and are necessary in a democratic society, in the interests of national security, territorial integrity or public safety, for the prevention of disorder or crime, for the protection of health or morals, for the protection of the reputation or the rights of others, for preventing the disclosure of information received in confidence, or for maintaining the authority and impartiality of the judiciary.
Which seven countries led the charge in implementing legislation aimed at controlling the use of PI by government agencies and large companies?
Austria, Denmark, France, Germany, Luxembourg, Norway, and Sweden
What is PI?
Personal Information.
What is Recommendation 509 on human rights and modern scientific and technological developments?
published with the intent to protect the right to privacy enshrined in article 8 of the ECHR in light of emerging technology
Resolutions 73/22 and 74/29
establishment of principles for the protection of personal data in automated databanks in pvt and public sectors. emerged due to diverging national legislation.
Who created the OECD guidelines on the protection of privacy and transborder flows of personal data?
Council of Europe
who created the CoE convention for the protection of individuals with regard to automated processing of personal data?
Council of Europe
when were the OECD guidelines established
23 September 1980
What is the other name for the ‘Council of Europe convention for the protection of individuals with regard to automated processing of personal data’?
Convention 108
what are the OECD Guidelines?
intended to govern the transborder flow of data and the protection of PI and privacy, with an aim to balance protection of rights to privacy and freedoms of expression without hindering trade and the free flow of data across borders.
What principles are outlined in the OECD Guidelines
Collection Limitation
Data Quality
Purpose specification
Use limitation
security safeguards
openness
individual participation
accountability
What is the OECD Guideline approach to private and public sectors
does not differentiate between the two
Does the OECD Guidelines differentiate between how the PI was gathered?
No, both electronic and other means are covered by the OECD.