Pan-European personal data breaches: Mapping of current practices and recommendations to facilitate cooperation among Data Protection Authorities. Issue 4 (August 2017)
- Record Type:
- Journal Article
- Title:
- Pan-European personal data breaches: Mapping of current practices and recommendations to facilitate cooperation among Data Protection Authorities. Issue 4 (August 2017)
- Main Title:
- Pan-European personal data breaches: Mapping of current practices and recommendations to facilitate cooperation among Data Protection Authorities
- Authors:
- Malatras, Apostolos
Sanchez, Ignacio
Beslay, Laurent
Coisel, Iwen
Vakalis, Ioannis
D'Acquisto, Giuseppe
Sanchez, Manuel Garcia
Grall, Matthieu
Hansen, Marit
Zorkadis, Vasilios - Abstract:
- Abstract: The emergence of frequent personal data breaches of a cross-border and even pan-European dimension coupled with the current lack of harmonized and systematic approaches to tackle them have motivated the need for further research leading to possible improvement of those cooperation challenges. In this respect, we report here on the organization, execution and analysis of the 1st Pan-European Personal Data Breaches Exercise that was conducted at the end of 2015 by the Directorate-General Joint Research Centre in collaboration with the Directorate-General for Justice and Consumers of the European Commission and the Data Protection Authorities of seven EU Member States. This cyber-exercise aimed at promoting and improving collaboration between Member States when cross-border incidents of personal data breaches occur, by serving as training exercise, mapping existing procedures and by helping identify best practices to handle such incidents. This scientific initiative constitutes a direct support of the recently adopted General Data Protection Regulation. Analysis of results led to some very interesting findings. In particular, communication issues were the ones that were highlighted as the most important ones. There is an evident lack of a global communication list of competent officers from Data Protection Authorities and this hinders cooperation. Moreover, there are no established current practices on handling such incidents and accordingly their management is stillAbstract: The emergence of frequent personal data breaches of a cross-border and even pan-European dimension coupled with the current lack of harmonized and systematic approaches to tackle them have motivated the need for further research leading to possible improvement of those cooperation challenges. In this respect, we report here on the organization, execution and analysis of the 1st Pan-European Personal Data Breaches Exercise that was conducted at the end of 2015 by the Directorate-General Joint Research Centre in collaboration with the Directorate-General for Justice and Consumers of the European Commission and the Data Protection Authorities of seven EU Member States. This cyber-exercise aimed at promoting and improving collaboration between Member States when cross-border incidents of personal data breaches occur, by serving as training exercise, mapping existing procedures and by helping identify best practices to handle such incidents. This scientific initiative constitutes a direct support of the recently adopted General Data Protection Regulation. Analysis of results led to some very interesting findings. In particular, communication issues were the ones that were highlighted as the most important ones. There is an evident lack of a global communication list of competent officers from Data Protection Authorities and this hinders cooperation. Moreover, there are no established current practices on handling such incidents and accordingly their management is still performed in an ad hoc manner. The outcome of the exercise illustrated the need for putting in place systematic procedures, as well as tools and frameworks to support communication and interaction between all interested stakeholders. … (more)
- Is Part Of:
- Computer law & security review. Volume 33:Issue 4(2017)
- Journal:
- Computer law & security review
- Issue:
- Volume 33:Issue 4(2017)
- Issue Display:
- Volume 33, Issue 4 (2017)
- Year:
- 2017
- Volume:
- 33
- Issue:
- 4
- Issue Sort Value:
- 2017-0033-0004-0000
- Page Start:
- 458
- Page End:
- 469
- Publication Date:
- 2017-08
- Subjects:
- Personal data breaches -- Data protection -- Cross-border -- Pan-European -- Privacy -- Cyber-exercise -- Cooperation -- General Data Protection Regulation
Computers -- Law and legislation -- Periodicals
Computer security -- Law and legislation -- Periodicals
Electronic commerce -- Law and legislation -- Periodicals
Data protection -- Law and legislation -- Periodicals
Computer security -- Law and legislation
Computers -- Law and legislation
Data protection -- Law and legislation
Electronic commerce -- Law and legislation
Periodicals
343.0999 - Journal URLs:
- http://www.elsevier.com/journals ↗
- DOI:
- 10.1016/j.clsr.2017.03.013 ↗
- Languages:
- English
- ISSNs:
- 2212-473X
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 4766.xml