chapter 12

Question 1

International Covenant on Civil and Political Rights

Answer 1

recognises the right to privacy on the global level.

Question 2

tort law

Answer 2

protects US citizens against direct and obvious violations of privacy.

Question 3

Fourth Amendment (US Constitution)

Answer 3

protects citizens against unreasonable searches and seizures by the government.

Question 4

reasonable expectation of privacy

Answer 4

the government may not in principle interfere with privacy when a citizen has reasonable expectation to be private, unless it is authorised by special means. the Supreme Court first applies a subjective test, and then the objective test. private areas are eg. someone’s home or office. public areas are not protected under the Fourth Amendment.

Question 5

subjective test

Answer 5

test to establish whether the individual involved feels that his privacy is violated.

Question 6

objective test

Answer 6

test that reviews what society in general would think about whether an individual’s privacy is violated.

Question 7

Fourteenth Amendment

Answer 7

recognises the right to liberty, which encompasses privacy aspects in the sphere of family life and self determination. eg. the court has declared state laws unconstitutional that violated the right to choose the type of school you prefer, the free choice to use contraception or not, etc.

Question 8

state constitutions

Answer 8

a general right to privacy is recognised in the Constitution of some US States.

Question 9

Federal laws

Answer 9

regulate some aspects of privacy further. it also regulated topic by topic, instead of a general approach. it regulates both public and private law aspects but always in separate acts.

Question 10

Privacy Act (1974)

Answer 10

basically requires government employees to collect only the private data of citizens when it is proportionate to its legitimate goal. this includes that the government should obtain the data preferably from citizens and only use it when absolutely necessary.

Question 11

privacy of communication

Answer 11

includes that the content of email correspondence is private, but not always with public affairs or in employment.

Question 12

Patriot Act (2001)

Answer 12

includes that in case of suspected terrorism, the posibilities to gather digital communication are much broader.

Question 13

Electronic Communications Privacy Act

Answer 13

includes a prohibition to install pen registers or tap and trace devices without a courts permit. Internet Service Providers are excepted when it is necessary to protect the provider or users from unlawful or abusive use.

Question 14

intrusion on seclusion

Answer 14

applies when someone intentionally intrudes the privacy of someone else.

Question 15

appropriation/right of publicity

Answer 15

applies when someone uses someone else’s name or likeliness without permission for commercial purposes.

Question 16

public disclosure

Answer 16

applies when someone publicly discloses private fact of someone else.

Question 17

defamation/tort of false light

Answer 17

the inflicting of harm on someone’s reputation by spreading false statements.

Question 18

Regulation 2016/679

Answer 18

regulates the privacy protection of individuals in private legal relations. it only protects personal data.

Question 19

Directive 2016/680

Answer 19

regulates the privacy protection in public legal relations.

Question 20

personal data

Answer 20

any information relating to an identified or identifiable natural person.

Question 21

direct identification

Answer 21

usually the name of an individual is involved.

Question 22

indirect identification

Answer 22

when data ultimately leads to the identification of a person, eg. when a combination of data can only lead to one individual.

Question 23

‘processing’

Answer 23

Regulation 2016/679 only applies if one uses the data in some way. this is defined as an operation that is performed on personal data.

Question 24

controller

Answer 24

the one (natural or legal person) who determines the purposes and means of the processing of personal data. this is the one who the Regulation for the majort part holds accountable.

Question 25

processor

Answer 25

the one (natural or legal person) who actually processes the personal data on behalf of the controller.

Question 26

recipient

Answer 26

the one (natural or legal person) to whom the personal data is disclosed.

Question 27

principle of lawfulness, fairness, and transparency

Answer 27

means that data procession should at all times by in compliance with European and domestic legislation. it also means that a data subject should be made aware of the data processing, and understand what will happen with the personal data.

Question 28

principle of purpose limitation

Answer 28

means that data is collected for specified, explicit, and legitimate purposes. data should be processed for vague purposes. also, data should not be further processedin a manner that is incompatible with this legitimate purpose.

Question 29

principle of data minimisation/principle of proportionality

Answer 29

implies that the processed data should be adequate, relevant, and limited to what is necessary. processing should also be proportionate to the legitimate goal.

Question 30

principle of accuracy

Answer 30

means that personal data which is processed should be accurate, and when necessary, kept up to date.

Question 31

principle of storage limitation

Answer 31

means that the data must be kept in a form which permits identification of data subjects for no longer than is necessary for the purpose.

Question 32

principle of integrity and confidentiality

Answer 32

means that the personal data must be processed in a manner that ensures appropriate security of the personal data.

Question 33

principle of accountability

Answer 33

basically means that at any time, the controller is responsible for the data processing, and liable for any violations of privacy laws.

Question 34

click-wrap agreement

Answer 34

when a data subject gives consent actively by eg. ticking the box on a website.

Question 35

browse-wrap agreement

Answer 35

when consent is assumed when a consumer visits a website or makes use of a service.

Question 36

safe harbour principles

Answer 36

enable US companies to process personal data of EU citizens in line with EU privacy laws.