The General Data Protection Regulation in plain language / Bart van der Sloot.

Format:

Book

Author/Creator:

Sloot, Bart van der, author.

Language:

English

Subjects (All):

Data protection--Government policy--European Union countries.

Data protection.

Data protection--Law and legislation--European Union countries.

Data protection--Law and legislation.

Internet--Security measures.

Government policy.

Data protection--Government policy.

European Union countries.

Internet--Security measures--Government policy--European Union countries.

Internet.

Business enterprises--Computer networks--Security measures.

Business enterprises.

European Parliament. General Data Protection Regulation.

European Parliament.

Physical Description:

173, 34 unnumbered pages ; 22 cm

Place of Publication:

Amsterdam : Amsterdam University Press, [2020]

Summary:

The General Data Protection Regulation in Plain Language' is a guide for anyone interested in the much-discussed rules of the General Data Protection Regulation. In this legislation, which came into force in 2018, the European Union meticulously describes what you can and cannot do with data about other people. Violating these rules can lead to a fine of up to 20 million euros. This book sets out the most important obligations of individuals and organisations that process data about others. These include taking technical security measures, carrying out an impact assessment and registering all data-processing procedures within an organisation. It also discusses the rights of citizens whose data are processed, such as the right to be forgotten, the right to information and the right to data portability.

Contents:

Machine generated contents note: 1. Introduction

1.1. The who, what, where, when and why of the GDPR

1.2. When is the GDPR relevant?

1.3. Why is it important to respect the GDPR?

1.4. Ten misconceptions about the GDPR

1.5. Conclusion

2. When does the GDPR apply and to whom?

2.1. When personal data...

2.2. ...Are processed, ...

2.3. ...The EU has regulatory competence, ...

2.4. ...And no exception applies

2.5. The GDPR applies to the data controller and, where relevant, the data processor

2.6. Conclusion

3. What are the basic data protection principles?

3.1. Necessity, proportionality and subsidiarity

3.2. The Fair Information Principles

3.3. Legitimate processing of personal data

3.4. Legitimate processing of special categories of personal data

3.5. Legitimate transfer of personal data to parties in countries outside the EU

3.6. Conclusion

4. What are the duties of a data controller?

4.1. Documentation

4.2. Data Protection Policy

4.3. Data protection by design and by default

4.4. Informing the general public

4.5. Informing the data subject

4.6. Data Protection Impact Assessment

4.7. Data Protection Officer

4.8. Organisational security measures

4.9. Technical security measures

4.10. Data breach notification

4.11. Conclusion

5. What are the rights of a data subject?

5.1. The right to information

5.2. The right to access

5.3. The right to copy

5.4. The right to data portability

5.5. The right to rectification and completion

5.6. The right to erasure (right to be forgotten)

5.7. The right not to be subject to automated decisionmaking

5.8. The right to object

5.9. The right to restrict

5.10. The right to file a complaint

5.11. Conclusion

6. How is the GDPR monitored and enforced?

6.1. Codes of conduct

6.2. Certification mechanisms

6.3. The national supervisory authority

6.4. The lead supervisory authority

6.5. The European Data Protection Board

6.6. The European Commission

6.7. Implementing acts

6.8. Court judgments

6.9. Sanctions imposed by the national supervisory authority

6.10. Sanctions imposed by a court

6.11. Conclusion

7. Summary of recitals and articles per section

7.1. Chapter 1

7.2. Chapter 2

7.3. Chapter 3

7.4. Chapter 4

7.5. Chapter 5.

ISBN:

9789463726511

9463726519

OCLC:

1141222303