MVV1368K Privacy and Personal Data
Personal data protection online II – Rights of the data subject, Duties of the data controller and processor (Míšek)
PRESENTATION
Obligatory reading
Voluntary reading
Official documents
Obligatory reading
- Solove, Daniel J., Privacy Self-Management and the Consent Dilemma (Rochester, NY: Social Science Research Network, 4 November 2012)
- Bartolini, Cesare, and Lawrence Siry, ‘The Right to Be Forgotten in the Light of the Consent of the Data Subject’, Computer Law & Security Review, 32 (2016), 218–37
- Zanfir, Gabriela, ‘Tracing the Right to Be Forgotten in the Short History of Data Protection Law: The "New Clothes″ of an Old Right’, in Reforming European Data Protection Law, ed. by Serge Gutwirth, Ronald Leenes, and Paul de Hert (Dordrecht: Springer Netherlands, 2015), pp. 227–49. The book is in the library of the Faculty of Law.
- Korenhof, Paulan, Jef Ausloos, Ivan Szekely, Meg Ambrose, Giovanni Sartor, and Ronald Leenes, ‘Timing the Right to Be Forgotten: A Study into “Time” as a Factor in Deciding About Retention or Erasure of Data’, in Reforming European Data Protection Law, ed. by Serge Gutwirth, Ronald Leenes, and Paul de Hert, Law, Governance and Technology Series, 20 (Dordrecht: Springer Netherlands, 2015), pp. 171–201
- Macenaite, Milda, and Eleni Kosta, ‘Consent for Processing Children’s Personal Data in the EU: Following in US Footsteps?’, Information & Communications Technology Law, 26 (2017), 146–97
Voluntary reading
- Borgesius, Frederik Zuiderveen, ‘Informed Consent: We Can Do Better to Defend Privacy’, IEEE Security and Privacy, 13 (2015), 103–7
- Borgesius, Frederik Zuiderveen, Consent to Behavioural Targeting in European Law - What Are the Policy Implications of Insights from Behavioural Economics? (Rochester, NY: Social Science Research Network, 27 July 2013)
- Stenning, Ashley, ‘Gone But Not Forgotten: Recognizing the Right to Be Forgotten in the U.S. to Lessen the Impacts of Data Breaches’, San Diego International Law Journal, 18 (2016), 129–60.
- Míšek, Jakub, ‘Consent to Personal Data Processing – The Panacea or The Dead End?’, Masaryk University Journal of Law and Technology, Masaryk University, 8 (2014), 69–83
Official documents
- Article 29 Data Protection Working Party, Opinion 6/2014 on the "Notion of legitimate interests of the data controller under Article 7 of Directive 95/46/EC" - WP 217 (9.4.2015)
- Article 29 Data Protection Working Party, Guidelines on Consent under Regulation 2016/679, WP259rev01
- Article 29 Data Protection Working Party, Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679, WP 248rev.01