Includes bibliographical references (pages 305-312) and index.
Contents:
Introduction: Privacy in the Internet age; technology and threats to privacy. Definitions of the right to privacy; protection of personal data as one aspect of this right; legal foundations of the right to privacy in European Union law; scope of the right to privacy in European Union case law -- Scope of protection of personal data and key definitions -- Key principles of personal data processing -- Legal bases for the processing of personal data -- Processing of personal data of employees -- Sensitive data and criminal records -- The obligation to provide information on data processing : privacy notices -- The rights of access, rectification, erasure ("right to be forgotten"), restriction of processing, data portability, and objection to processing for direct marketing and profiling (subject access requests, data subject rights) -- Data controller and joint controllers; data processor; processor selection -- Data protection by design and by default; appropriateness of data security measures in the context of risk-based approaches; records of personal data processing activities; authority to process data; notification of a personal subject; data protection impact assessment; consultation of effects on data protection with a supervisory authority; codes of conduct and certification -- Data protection officer (DPO) -- Transferring personal data to non-EU/EEA countries -- Privacy in the Internet age; technology and threats to privacy.
This resource is supported by the Institute of Museum and Library Services under the provisions of the Library Services and Technology Act as administered by State Library of Iowa.