Privacy management practices in the proposed EU regulation

International Data Privacy Law

Volumn 4, Issue 4, 2014, Pages 290-297

  Weber, Rolf H ^a  

^a UNIVERSITY OF ZURICH   (Switzerland)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 85027678722     PISSN: 20443994     EISSN: 20444001     Source Type: Journal    
DOI: 10.1093/idpl/ipu018     Document Type: Conference Paper

References (17)

1. See Viviane Reding, Today's Justice Council-A Council of Progress, June 2014,http://europa.eu/rapid/press-release_SPEECH-14-431_en.htm..
2. Rolf H Weber, 'Can Data Protection be Improved through Privacy Impact Assessments', iJusletter IT 12 September 2012, No. 4.
3. See Ann Cavoukian, 'Privacy by Design, The 7 Foundational Principles', available at:,http://www.privacybydesign.ca/content/uploads/2009/08/ 7foundationalprinciples.pdf .
4. See also Russell R Densmore (ed.), Privacy Program Management (Portsmouth: IAPP Publication, 2013), 121-2.
5. See NYMITY, Implementing and Demonstrating Accountability, Privacy Accountability Management Framework, Hong Kong February 2014, 39-53.
6. Office of the Privacy Commissioner for Personal Data Hong Kong, Privacy Management Programme. A Best Practice Guide, February 2014.
7. Office of the Privacy Commissioner for Personal Data Hong Kong (n 6), 4-5.
8. See also Gehan Gunasekara, 'Paddling in Unison or Just Paddling? International Trends in Reforming Information Privacy Law' (2014) 22 International Journal of Law and Information Technology 141, 163-4;
9. Peter P Swire and Kenesa Ahmad, Foundations of Information Privacy and Data Protection (International Association of Privacy Professionals, Portsmouth 2012), 14.
10. See for example Douglas Crawford-Brown, Joos Pauwelyn, and Kelly Smith, 'Environmental Risk, Precaution, and Scientific Rationality in the Context of WTO/NAFTA Trade Rules' (2004) 24 Risk Analysis 461, 465.
11. Article 29 Data Protection Working Party, Opinion 9/2011 on the revised Industry Proposal for a Privacy and Data Protection Impact Assessment Framework for RFID Applications, WP 180.
12. David Wrights and Kush Wadhwa, 'Introducing a Privacy Impact Assessment Policy in the EU Member States' (2013) 3/1 International Data Privacy Law, 20.
13. Paul de Hert, Dariusz Kloza, and David Wright, Recommendations for a privacy impact assessment framework for the European Union. Deliverable D3 of the PIAF project (A Privacy Impact Assessment Framework for data protection and privacy rights, 2012), published by,http://piafproject.eu/ ref/PIAF_D3_final.pdf. accessed 22 August 2014.
14. Raphael Gellert and Dariusz Kloza, 'Can Privacy Impact Assessment Mitigate Civil Liability? A Precautionary Approach', in Schweighofer and Kummer (eds), Transformation jurisitscher Sprache (Salzburg: Iris, 2012), 497, 504.
15. See for example the UK Information Commissioner's Office code of practice on privacy impact assessments,http://ico.org.uk/for_ organisations/data_protection/topic_guides/~/media/documents/library/ Data_Protection/Practical_application/pia-code-of-practice-final-draft. pdf. accessed 22 August 2014.
16. David Wright, Rachel Finn, and Rowena Rodrigues, 'A Comparative Analysis of Privacy Impact Assessment in Six Countries' (2013) 9/1 Journal of Contemporary European Research 162.
17. The Spanish Data Protection Authority also published a guidance document in March 2014 on PIA,http://www.agpd.es/portalwebAGPD/ canaldocumentacion/publicaciones/common/Guias/GuiaEIPDPBorrador. pdf. accessed 22 August 2014.