CrimProf Blog

Editor: Kevin Cole
Univ. of San Diego School of Law

Monday, December 4, 2023

Wodi on EU Data Protection

Alex Wodi has posted The EU General Data Protection Regulation (GDPR): Five Years After and the Future of Data Privacy Protection in Review (July - Oct. 2023) on SSRN. Here is the abstract:

The General Data Protection Regulation (GDPR), which came into effect in 2018, is one of the most recognisable international pieces of legislation for data privacy and protection. Since its inception the GDPR has elevated data privacy and protection in stature within the EU and globally. The GDPR not only applies to the EU and residents of the EU but its provisions relating to international data transfer have implications for foreign and domestic companies seeking to transfer the personal data of EU citizens to and from the EEA. Many countries’ data protection laws are modelled after the GDPR. In this paper we examine the successes and challenges of five years of GDPR and take a snapshot of what the future holds for the ground-breaking legislation; and the data privacy and security continuum.

We shall also examine, inter alia, the guiding principles of the GDPR vis-Ă -vis the collection, use, retention and disclosure of personal data; the obligations of data controllers and data processors in respect of the handling and processing of data; the rights of data subjects; International data transfers and data flows; Adequacy Decisions; the use of BCRs and SCCs for data transfers; derogations for specific situations; the Safe Harbor Program and Privacy Shield; Schrems I and II; the new EU-US Data Privacy Framework; Privacy by Design; Data Protection Impact Assessment; Privacy Enhancing Technologies; and Enforcement Actions by Data Protection Authorities (DPAs) in the EU.

| Permalink


Post a comment