Show simple item record

dc.contributor.authorErdos, Daviden
dc.date.accessioned2017-04-28T13:48:54Z
dc.date.available2017-04-28T13:48:54Z
dc.date.issued2017-06en
dc.identifier.issn0267-3649
dc.identifier.urihttps://www.repository.cam.ac.uk/handle/1810/263883
dc.description.abstractStatutory Data Protection Authorities (DPAs) who act as the guardians of data protection across the European Economic Area (EEA) have faced unprecedented interpretative challenges as a result of the explosion of indeterminate publication by individuals in the form of blogs, social networking and other online forums. Through both a questionnaire and systematic review of EEA DPA websites, this article finds that these regulators have generally adopted a strict interpretation of the law here, although considerable internal variation is also present. Almost all see data protection as engaged, around half argue that publication in the general social networking context requires data subject consent and even when individual publication is targeted towards the collective public many DPAs demonstrate some reluctance to apply the special expressive purposes (aka the journalistic) derogation. This article argues for an alternative tripartite approach under the forthcoming Regulation which accommodates the competing free expression rights and also the limited capabilities reasonably to be expected of private individuals on a sounder and more consistent basis. The law's personal exemption should cover individual publication so long as this does not pose a serious prima facie risk to privacy or other fundamental data protection rights. The special expressive purposes derogation should protect individuals who are disseminating a message to the collective public without discrimination. Finally, the Regulation's new freedom of expression clause should ensure that individual publication which principally instantiates self-expression is subject only to the core of data protection's substantive and supervisory provisions.
dc.description.sponsorshipI am very grateful for the British Academy which provided funding under their small grant scheme (grant number SG112737).
dc.language.isoenen
dc.publisherElsevier
dc.subjectbloggingen
dc.subjectdata protectionen
dc.subjectcitizen journalismen
dc.subjectdefamationen
dc.subjectfreedom of expressionen
dc.subjectonline abuseen
dc.subjectpersonal exemptionen
dc.subjectprivacyen
dc.subjectsocial mediaen
dc.titleBeyond ‘having a domestic'? Regulatory interpretation of European Data Protection Law and individual publicationen
dc.typeArticle
prism.endingPage297
prism.issueIdentifier3en
prism.publicationDate2017en
prism.publicationNameComputer Law & Security Reviewen
prism.startingPage275
prism.volume33en
dc.identifier.doi10.17863/CAM.9261
dcterms.dateAccepted2017-02-06en
rioxxterms.versionofrecord10.1016/j.clsr.2017.03.010en
rioxxterms.versionAMen
rioxxterms.licenseref.urihttp://creativecommons.org/licenses/by-nc-nd/4.0/en
rioxxterms.licenseref.startdate2017-06en
dc.contributor.orcidErdos, David [0000-0001-7615-5736]
rioxxterms.typeJournal Article/Reviewen
cam.issuedOnline2017-04-21en
rioxxterms.freetoread.startdate2018-04-21


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record