Search results for "GDPR"
showing 10 items of 21 documents
Glosa do wyroku Naczelnego Sądu Administracyjnego z dnia 25 maja 2022 r., sygn. akt III OSK 2273/21
2023
Glosowany wyrok dotyczy dwóch istotnych zagadnień związanych ze stosowaniem przez jednostki organizacyjne Kościoła katolickiego na terytorium Rzeczypospolitej Polskiej auto- nomicznych, szczegółowych zasad ochrony osób fizycznych w związku z przetwarzaniem ich danych. Pierwsze odnosi się do możliwości dalszego stosowania tychże autonomicznych, szczegółowych zasad po wejściu w życie RODO. Drugie – zdolności powołania i statusu niezależnego odrębnego organu nadzorczego – Kościelnego Inspektora Ochrony Danych. Aprobując stanowisko zawarte w wyroku NSA, w glosie przedstawiono argumenty przemawiające za tym, że w momencie wejścia w życie RODO w Kościele katolickim istniała regulacja dotyczącą pr…
Internet e tutela dei dati personali: il consenso ai cookie
2020
The article tackles the issue of protection of personal data of internet users through the usage of cookies by digital content and service providers. It analyses the European legislative framework and, in particular, the General Data Protection Regulation, the so called E-Privacy Directive and the new Directive concerning the supply of digital content and services. The contribution debates the role of individual consent in this field and the interaction with the rules and the remedies provided by European Consumer Law, such as the Unfair Commercial Practices Directive, in order to protect user's personal data in the evolution of data-driven economy.
Application of the Article 28 (3) of the General Data Protection Regulation in contemporary Software as a Service (“SaaS”) business.
2019
For the purposes of this thesis, regulatory requirements associated with the Data Processing Agreement (DPA) are subject to interpretation in the context of SaaS delivery models widely adopted by prominent SaaS providers. In addition, the author argues that, multiple parties processing personal data leads to problems in determining the correct processing role. Thereby, parties may struggle in meeting the requirements of Article 28 (3) of the General Data Protection Regulation (GDPR). Failure to ensure that processing is covered by the proper DPA is regarded as an infringement of the GDPR. For that reason, the thesis seeks to stress out complications associated with structuring DPA’s and pro…
Egzekwowanie stosowania przepisów RODO przez organy nadzorcze wybranych krajów Unii Europejskiej
2021
Założeniem niniejszej pracy jest chęć przybliżenia i analizy, jak w poszczególnych krajach członkowskich Unii Europejskiej (tj. w Niemczech i Francji) doregulowane zostały przepisy Rozporządzenia ogólnego o ochronie danych osobowych, ze szczególnym uwzględnieniem zasad funkcjonowania organów nadzorczych i, w konsekwencji powyższego wykazanie, czy poziom ochrony danych osobowych podmiotów danych jest spójny we wszystkich krajach członkowskich
Protection of Patient Data in Digital Oral and General Health Care: A Scoping Review with Respect to the Current Regulations
2023
The use of digital health technologies, including telemedicine and teledentistry, has become a necessity in healthcare due to the SARS-CoV-19 pandemic. These technologies allow for the reduction of the workload of healthcare providers and the improvement of patient outcomes in cases of remote monitoring, diagnosis, and communication. While there are no doubtful benefits, there are some counterparts, such as concerns about clinical risks, data security, and privacy protection. This paper aims to review the regulations regarding the use of digital health apps and software in healthcare. This scoping review followed the PRISMA-ScR guidelines and the five-step framework of Arksey and O’Malley. …
Is My Office 365 GDPR Compliant? : Security Issues in Authentication and Administration
2018
The General Data Protection Regulation, commonly referred as GDPR, will be enforced in all European Union countries in May 2018. GDPR sets requirements for processing EU citizens’ personal data regardless of the physical location of the organisation processing the data. Over 40 percent of European organisations are using Office 365. Microsoft claims that Office 365 service is GDPR compliant, and has provided tools to help Office 365 customers to ensure their GDPR compliancy. In this paper, we present some security issues related to the very foundation of Office 365 service, namely Azure Active Directory and administrative tools, and assess their GDPR compliancy. Our findings reveal that per…
The challenge of personal data protection in the era of digital economy
2018
The actual impact and effectiveness of the GDPR that comes into effect on May 25, 2018 will only be evident in the course of next years. Today, however it is crucial to understand how will the GDPR change the EU data protection playfield and if the new regulation is capable to address growing personal data and privacy challenges emerging from further digitalisation in the long term. The research question of this paper is: How capable and effective is the newly adopted EU data protection legislation to address the growing future privacy and data protection concerns associated with expansion of the Digital Economy?
Expectations And Mindsets Related To GDPR
2022
The aim of this qualitative case study is to examine the initial expectations and assumptions related to General Data Protection Regulation (GDPR) of the European Union from the perspectives of selected Finnish organizations: what were the initial expectations of GDPR, how were they adapted/refined over time, and what was the impact on organizational planning and resourcing. There are no precise earlier studies on the subject. The research question was: What were the organizations’ initial expectations of GDPR - and how have they affected the efforts made? GDPR can be described as an input that forms images, preconceptions and views among other things, through various active and passive c…
Personas datu nosūtīšanas un pienācīgas drošības jēdzienu tvērums vispārīgās datu aizsardzības regulas kontekstā
2019
Personas dati tiek uzskatīt par jauno “zeltu”. Savukārt, šī ekonomiskā labuma pilnvērtīga apgūšana mūsdienu pasaulē nav iedomājama bez datu nosūtīšanas. Līdz ar to personas datu aizsardzības regulējuma attīstība un lielāku sodu piemērošana pārkāpumu gadījumā no valsts puses ir tikai loģisks solis, lai aizsargātu fizisku personu tiesības un intereses no pārmērīgas personu datu apstrādes komersantu interesēs. Darba mērķis ir noteikt “datu nosūtīšanas” un “pienācīgas aizsardzības” jēdzienu tvērumu VDAR kontekstā. Pētījuma ietvaros tiks atklātas datu nosūtīšanas regulējuma problēmas, kā arī apkopoti kritēriji, lai datu apstrādi varētu uzskatīt par pienācīgi aizsargātu.
Building Situational Awareness of GDPR
2023
Because previous academic research does not comment sufficiently on how the relevant content of the European Union (EU) General Data Protection Regulation (GDPR has been properly communicated to the organisations, or how the situational awareness (SA) of GDPR has been built in the organisations, this qualitative empirical research was regarded as a valuable approach for gathering authentic research material on the practical bases of this phenomena. The aim of this empirical case study (CS) is to develop a picture of what processes organisations use to build SA of the GDPR requirements. To guide the CS, we asked how the SA for decision-making was constructed and how it was perceived in organ…