1 / 22

Zaštita ličnih podataka Iskustva iz Republike Slovenije

Zaštita ličnih podataka Iskustva iz Republike Slovenije. Podgorica, 7.2.2010 Nataša Pirc Musar Information Commissioner. Access to public information v. Data protection Can one body handel both ?. Situation in Slovenia What we do and how we do it?.

kaori
Download Presentation

Zaštita ličnih podataka Iskustva iz Republike Slovenije

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Zaštita ličnih podatakaIskustva iz Republike Slovenije Podgorica, 7.2.2010 Nataša Pirc Musar InformationCommissioner

  2. Access to publicinformation v. Dataprotection Can one bodyhandelboth?

  3. Situation in SloveniaWhat we do and how we do it?

  4. Trust in the Information Commissioner(public poll Jan 2010)

  5. Trust in supervisory authorities(public poll Oct 2010) INFORMATION COMMISSIONER OMBUDSMAN POLICE GEN. DIRECTOR STATE PROSECUTOR DOES NOT TRUST / TRUSTS

  6. Situation in SloveniaFormal supervisory procedures

  7. Informacijski povjerenik • Poverenica, 3 zamjenika i vođa inspektora • 32 zaposlenih • 18 na zaštiti osobnih podataka, 10 na pristupu informacijama, 4 u administraciji • 9 (11) inspektora • Aktivan od 31.12.2005 (ujedinjenje Poverenika i Inspekcije za lične podatke) • Snažne komeptencije po Zakonu o inspekcijskom nadzoru • Predlog za zatvaranje rukovalaca (ako ne plate kaznu), • Novčane kazne, • Podnošenje prijave krivičnog djela, • Ulaz u kancelarije, pregled kompjutera...

  8. Inspection procedures

  9. Structure of procedures (2006-2009)

  10. Misdemeanour procedures (2009)

  11. Misdemeanour procedures (2009) • 2009: 163 violation procedures • Publicsector: 41 • Privatesector: 70 • Naturalpersons: 52 • 59warnings • 93 decisions • 67 cautions • 26fines • 12 paymentorders • 21 appeals to the court • Fines: • Legal person.: 4.170 to 12.510 EUR • Responsible person: 830 to 2.080 EUR • Largest fine: • 112.000 EUR for datacontroller • 20.000 EUR for responsible person

  12. Data subject’s access • 2009: 70 demands • 2008: 43 demands • Some interesting cases, e.g. access to retained traffic data on telephone calls Number of requests (complaints) for access to individual’s own data

  13. Situation in SloveniaAwareness raising toolbox

  14. Opinions • 2009:1334 requestsforopinion • 2008: 853requests for opinion • On-line publication (2000 + opinions) • Mainareas: • Offcial procedures – judicial, administrative and police procedures (67), • Employmentrelationships(64), • Transfer ofpersonaldatabetweendatacontrollers(45), • Internet related(43), • Healthdata(33),

  15. Guidelines

  16. Identity theft – self assesment testadapted from NOR DPA original

  17. Facebook profile

  18. Data protectionThe challenges

  19. Data protection challenges • Location privacy • Google Street View, Google Earth – what is next? • Probably other angles between vertical and horizontal pictures, higher frequency and perhaps “real-time view-it-all?” • Drivers’ privacy • Electronic toll collection and other location-based services • Personal profiles and behavioural marketing • Personalized, customized ads • All media covered: internet, print, (digital TV)! • Smart videosurveillance, audience measurement… • Changing attitudes towards privacy • DPA’s awareness raising toolbox • Can we influence it al all? • REAL concern when statemets are made such as: • “Privacy as a social norm is a matter of past!” by____, CEO of______ • “If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place.” by____, CEO of______

  20. Data protection challenges cont. • Worklapce privacy • Many complaints • Draft bill prepared • Identity theft • Abuse of publicly available data • Abuse of private data • Data business • Interconnection of databases • Outsourcing of personal data / cloud computing • Digital dataveillance • e.g. automated analysis of computer and telephone network traffic (i.e. Data retention ...) • Creation of extensive personal profiles and activity histories; can be used for many reasons – can lead to errosion of privacy • Let’s have a closer look at some of them …

  21. “The problem with the nothing to hide argumentis with its underlying assumption thatprivacy is about hiding bad things.“ Daniel Solove

  22. Thank you for your attention! IC website in English www.ic-rs.si

More Related