The book draws a novel approach to data privacy (or data protection) regulations by presenting a solution to the problem of lack of individual control over personal data. It combines economic, technical, and legal perspectives to show how to reinforce individual autonomy and, at the same time, to increase the competitiveness of data economy.

"This publication seeks to identify the relationship between freedom of expression and Internet privacy, assessing where they support or compete with each other in different circumstances. The book maps out the issues in the current regulatory landscape of Internet privacy from the viewpoint of freedom of expression. It provides an overview of legal protection, self-regulatory guidelines, normative challenges, and case studies relating to the topic. With this publication UNESCO aims to provide its Member States and other stakeholders, national and international, with a useful reference tool containing up-to-date and sharp information on emerging issues relevant to both developed and developing countries. Multiple stakeholders, preferably in dialogue, can use it in their own spheres of operation, adapting where appropriate from the range of experiences as recorded in these pages. The publication also supplies additional sources of reference for interested readers to use to further investigate each of the subjects highlighted. The publication explores a range of issues, such as: (1) threats to privacy that have developed through the Internet, (2) international legal standards on privacy and responses to these emerging issues, (3) complex intersections between the rights to privacy and freedom of expression, (4) UNESCO recommendations to states and corporations for better practice, (5) overview of literature, background material and tools on international and national policy and practice on privacy and freedom of expression on the Internet. In the coming years, UNESCO will specifically seek to disseminate information about good practices and international collaboration concerning the points of intersection between freedom of expression and privacy. Research on safeguarding the principle of freedom of expression in Internet policy across a range of issues will continue to be part of UNESCO's normative mandate and technical advice to stakeholders."--Publisher's description

Since the second edition (2010) of this invaluable book – primary texts with expert article-by-article commentary on European data protection, e-commerce and information technology (IT) regulation, including analysis of case law – there has been a marked shift in regulatory focus. It can be said that, without knowing it, EU citizens have migrated from an information society to a digital single market to a data-driven economy. This thoroughly revised and updated third edition pinpoints, in a crystal-clear format, the meaning and application of currently relevant provisions enacted at the European and Member State levels, allowing practitioners and other interested parties to grasp the exact status of such laws, whether in force, under construction, controversial or proposed. Material has been rearranged and brought into line with the vibrant and constantly shifting elements in this field, with detailed attention to developments (most new to this edition) in such issues as the following: · cybersecurity; · privacy rights; · supply of digital content; · consumer rights in electronic commerce; · Geo-blocking; · open Internet; · contractual rules for online sale of (tangible) goods; · competition law in the IT sectors; · consumer online dispute resolution; · electronic signatures; and · reuse of public sector information. There is a completely new section on electronic identification, trust and security regulation, defining the trend towards an effective e-commerce framework protecting consumers and businesses accessing content or buying goods and services online. The contributors offer a very useful and practical review and analysis of the instruments, taking into account the fluidity and the transiency of the regulation of these very dynamic phenomena. This book will be quickly taken up by the myriad professionals – lawyers, officials and academics – engaged with data protection, e-commerce and IT on a daily basis.

Every day, societal demand grows for some form of control or supervision over something that appears inherently beyond governance: the Internet. The gulf between community aspiration and the perceived limits on government capacity forces each entity, industry, and regulator to conduct a thorough and painstaking search for an appropriate solution. The resolution to this dilemma requires the innovation of regulatory design for the Internet. Without flexibility and responsiveness, traditional law and regulation cannot adequately address the transnational, intangible, and ever changing Internet space. Attempts at Internet regulation generally have moved away from direct legal control and toward more flexible variations of what can be termed ?self-regulation.? This ground-breaking book by two leading authorities in this new field of law concerns the mushrooming growth of institutions and systems of self-regulation on the Internet. Internet self-regulation involves many issues, including e-commerce, technical protocols, and domain names management, but most public concern and debate has been over illegal and harmful content on the Internet. Self-Regulation and the Internet examines how self-regulatory entities for content relate to other quasi-legal and state institutions, what powers are accorded to or seized by self-regulatory institutions, and how the use of self-regulation can contribute to the more effective and more efficient realization of both economic and societal goals. This book offers: a general and theoretical examination of self-regulation, focusing on codes of conduct; approaches to the methodology and process for adopting such codes; descriptions and evaluations of technical devices as self-regulatory tools; and an analysis of Internet self-regulation in a converged and digital environment. The analysis encompasses a wide spectrum, from technical matters of filters and transmission streams to such important legal issues as the possible meanings of such terms as ?illegal and harmful.? Crucial topics include ISP service agreements, anti-spam measures, regulation of hate speech, digital television, defining a common language for metainformation, and a great deal more. The geographic scope is global, with numerous detailed references to developments in Europe, North America, Asia, and Australia. The breadth and depth of this analysis, and the vast quantity of information that underpins it, give this book an authoritative preeminence not to be found elsewhere. In the coming years, as the material it examines continues to grow and change in ever more dramatic ways, it will be turned to again and again for its invaluable insights and recommendations.

The increasing use of personal information in Internet-based applications has created privacy concerns worldwide. This has led to awareness among policy makers in several countries of the desirability of harmonizing privacy laws. The greatest challenge to privacy legislation from an international perspective arises because, while the Internet is virtually borderless, legislative approaches differ from country to country. This paper presents a functional comparison between current privacy law in the European Union (EU) and in the United States (U.S.), as such laws relate to regulation of websites and online service providers. In addition, similarities and differences between the 2002 EU Directive 2002/58/EC, Directive on Privacy and Electronic Communications, which has been adopted by the EU but not yet implemented, and the proposed U.S. Online Privacy Protection Act, are illuminated. Employing a qualitative approach, we use the Fair Information Practices to organize discussion of comparisons and contrasts between U.S. and EU privacy laws. Our investigation of this topic leads us to conclude that the right to privacy is more strictly protected in the EU than in the U.S. The Online Privacy Protection Act, recently introduced as a bill in Congress, has the potential to significantly affect commercial practices in the U.S. and move the U.S. towards current EU privacy protection laws. This analysis benefits managers as well as security professionals since the results can be used as guidelines in ensuring that an organization's website practices are consistent with requirements imposed by countries with which they exchange information. It also provides information that can guide organizations as they prepare for potential privacy legislation.

This book identifies and explains the different national approaches to data protection – the legal regulation of the collection, storage, transmission and use of information concerning identified or identifiable individuals – and determines the extent to which they could be harmonised in the foreseeable future. In recent years, data protection has become a major concern in many countries, as well as at supranational and international levels. In fact, the emergence of computing technologies that allow lower-cost processing of increasing amounts of information, associated with the advent and exponential use of the Internet and other communication networks and the widespread liberalization of the trans-border flow of information have enabled the large-scale collection and processing of personal data, not only for scientific or commercial uses, but also for political uses. A growing number of governmental and private organizations now possess and use data processing in order to determine, predict and influence individual behavior in all fields of human activity. This inevitably entails new risks, from the perspective of individual privacy, but also other fundamental rights, such as the right not to be discriminated against, fair competition between commercial enterprises and the proper functioning of democratic institutions. These phenomena have not been ignored from a legal point of view: at the national, supranational and international levels, an increasing number of regulatory instruments – including the European Union’s General Data Protection Regulation applicable as of 25 May 2018 – have been adopted with the purpose of preventing personal data misuse. Nevertheless, distinct national approaches still prevail in this domain, notably those that separate the comprehensive and detailed protective rules adopted in Europe since the 1995 Directive on the processing of personal data from the more fragmented and liberal attitude of American courts and legislators in this respect. In a globalized world, in which personal data can instantly circulate and be used simultaneously in communications networks that are ubiquitous by nature, these different national and regional approaches are a major source of legal conflict.

This book is about enforcing privacy and data protection. It demonstrates different approaches – regulatory, legal and technological – to enforcing privacy. If regulators do not enforce laws or regulations or codes or do not have the resources, political support or wherewithal to enforce them, they effectively eviscerate and make meaningless such laws or regulations or codes, no matter how laudable or well-intentioned. In some cases, however, the mere existence of such laws or regulations, combined with a credible threat to invoke them, is sufficient for regulatory purposes. But the threat has to be credible. As some of the authors in this book make clear – it is a theme that runs throughout this book – “carrots” and “soft law” need to be backed up by “sticks” and “hard law”. The authors of this book view privacy enforcement as an activity that goes beyond regulatory enforcement, however. In some sense, enforcing privacy is a task that befalls to all of us. Privacy advocates and members of the public can play an important role in combatting the continuing intrusions upon privacy by governments, intelligence agencies and big companies. Contributors to this book - including regulators, privacy advocates, academics, SMEs, a Member of the European Parliament, lawyers and a technology researcher – share their views in the one and only book on Enforcing Privacy.

Analysing the legal issues concerning online and Internet privacy, this book covers the historical developments leading to the current state of the law and the relevant legal actions that have helped to shape it. Examined are the leading lawsuits that have asserted invasion of privacy on the Internet, the comparison of the state of the law in the United States with that of its principal trading partners around the world, and enforcement activity by the Federal Trade Commission. Also covered are proposals for new legislation and precedents for drafting a privacy policy that conforms to standards required by United States and international law.

Internet Privacy Rights analyses the current threats to our online autonomy and privacy and proposes a new model for the gathering, retention and use of personal data. Key to the model is the development of specific privacy rights: a right to roam the internet with privacy, a right to monitor the monitors, a right to delete personal data and a right to create, assert and protect an online identity. These rights could help in the formulation of more effective and appropriate legislation, and shape more privacy-friendly business models. The conclusion examines how the internet might look with these rights in place and whether such an internet could be sustainable from both a governmental and a business perspective.