M.Marusic Dzlp E Society En

648 views

Published on

Published in: Technology, Travel
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
648
On SlideShare
0
From Embeds
0
Number of Embeds
18
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

M.Marusic Dzlp E Society En

  1. 1. Online personal data protection Marijana Marusic , Director of the Directorate for Personal Data Protection Skopje, November 29, 2007
  2. 2. СОДРЖИНА BASIC PRINCIPLES AUTHORIZED ORGANS RIGHTS OF THE PERSONAL DATA SUBJECT PERSONAL DATA 1 RIGHT TO PERSONAL DATA PROTECTION IN THE REPUBLIC OF MACEDONIA 2 3 4 5
  3. 3. СОДРЖИНА TECHNICAL AND ORGANIZATIONAL MEASURES FOR PROVIDING PERSONAL DATA PROTECTION 6 IMPLEMENTATION OF THE LAW 7 PRIVACY ON THE INTERNET WEBSITES OF THE STATE ORGANS IN THE REPUBLIC OF MACEDONIA 8 PUBLISHING PERSONAL DATA ON THE INTERNET 9 COMMUNICATION TRAFFIC DATA 10
  4. 4. PERSONAL DATA <ul><li>Personal data – any information in relation to an identified person or a person that can be identified . </li></ul><ul><ul><ul><li>Name and surname ; </li></ul></ul></ul><ul><ul><ul><li>Address ; </li></ul></ul></ul><ul><ul><ul><li>Personal Identification Number ; </li></ul></ul></ul><ul><ul><ul><li>Telephone number ; </li></ul></ul></ul><ul><ul><ul><li>e-mail ( regardless of whether it is private or business ); </li></ul></ul></ul><ul><ul><ul><li>IP address ( regardless of whether it is a static or dynamic IP address ); </li></ul></ul></ul><ul><ul><ul><li>account -и на различни web сервиси и итн. </li></ul></ul></ul><ul><li>Not all personal data have the same level of protection . </li></ul><ul><li>There exist “sensitive” personal data that are specially protected : </li></ul><ul><ul><li>Personal data revealing racial and ethnic origin, political orientation , religion , trade union membership , health condition or sexual life are a special category of personal data . </li></ul></ul><ul><ul><li>The personal identification number is highly protected as well, since it is a universal identifier of the citizen and can be processed only with the previously obtained consent of the personal data subject or under the terms established by the law. </li></ul></ul>
  5. 5. THE RIGHT TO PERSONAL DATA PROTECTION IN THE REPUBLIC OF MACEDONIA <ul><li>The right to personal data protection, as a fundamental human right and citizen right is guaranteed with the Constitution of the Republic of Macedonia (Article 18) which guarantees the safety and privacy of personal data . </li></ul><ul><li>Law on personal data protection ( Official Gazette of RM 7/05), defines the legal and institutional framework for personal data protection in the Republic of Macedonia . </li></ul><ul><li>Convention No. 108/81 for protection of the natural persons with reference to the automatic personal data processing , Council of Europe. </li></ul>
  6. 6. BASIC PRINCIPLES <ul><ul><li>Personal data to be processed in accordance with the law ; </li></ul></ul><ul><ul><li>Personal data to be collected for concrete, clear and legally defined goals ; </li></ul></ul><ul><ul><li>Personal data that are collected , to be appropriate , relevant and not too extensive in regard to the goals for which they are collected and processed ; </li></ul></ul><ul><ul><li>Personal data should be accurate and updated ; </li></ul></ul><ul><ul><li>Personal data should not be kept longer than the time necessary for accomplishing the goals for which the data have been collected for further processing . </li></ul></ul>
  7. 7. RIGHTS OF THE PERSONAL DATA SUBJECT <ul><ul><li>Right to be informed </li></ul></ul><ul><ul><li>Right to access </li></ul></ul><ul><ul><li>Right to correction and removal </li></ul></ul>
  8. 8. AUTHORIZED ORGANS <ul><li>Controller ; </li></ul><ul><li>Directorate ( upon the requests for establishing violation of the right to personal data protection ) </li></ul><ul><ul><li>- I degree – Commission , II degree – director ; </li></ul></ul><ul><li>Administrative Court of the Republic of Macedonia ( upon an administrative suit against a final decision of the Directorate ); </li></ul><ul><li>Principal Courts ( for damages ) </li></ul>
  9. 9. TECHNICAL AND ORGANIZATIONAL MEASURES FOR PROVIDING PERSONAL DATA PROTECTION <ul><li>The controller must apply appropriate technical and organizational measures for personal data protection, such as : </li></ul><ul><ul><li>preventing accidental or illegal destruction of the data ; </li></ul></ul><ul><ul><li>preventing unauthorized : </li></ul></ul><ul><ul><ul><li>altering , </li></ul></ul></ul><ul><ul><ul><li>spreading or </li></ul></ul></ul><ul><ul><ul><li>access to personal data </li></ul></ul></ul>
  10. 10. IMPLEMENTING THE LAW <ul><li>CONDUCTING ADMINISTRATIVE SUPERVISION OVER THE LAWFULNESS OF THE ACTIVITIES UNDERTAKEN DURING THE PERSONAL DATA PROCESSING AND THEIR PROTECTION ; </li></ul><ul><li>ACTING UPON CITIZENS’ REQUESTS ; </li></ul><ul><li>PROVIDING OPINIONS, ASSESSMENTS AND RECOMMENDATIONS </li></ul><ul><li>RAISING THE PUBLIC AWARENESS </li></ul>Извор ДЗЛП
  11. 11. PRIVACY ON THE INTERNET WEBSITES OF THE STATE ORGANS IN THE REPUBLIC OF MACEDONIA
  12. 12. <ul><li>Internet websites are means through which personal data of the users can be collected and their habits can be monitored, thus performing profiling. </li></ul>
  13. 13. A review of the websites of all the ministries and part of the local self-government units was performed for the purposes of this presentation
  14. 14. <ul><li>There is no Privacy Policy or similar document on the reviewed websites , that would inform the citizens about the processing of their personal data collected when they surf the internet websites (there is a copyright notice) ; </li></ul><ul><li>Some of the websites have an option for subscribing to an e-newsletter , but there is no option for unsubscribing ; </li></ul><ul><li>There is no information about what happens with the e-mail of the persons that register/subscribe ; </li></ul><ul><li>There is a contact form , but there is no information on whether the questions that are being asked are confidential; although name, surname, e-mail address and telephone are required. </li></ul>These are the conclusions from the review of the websites:
  15. 15. Personal data of citizens of the Republic of Macedonia are published on some of the internet websites ; It is necessary to establish a balance between the need for transparent work of the state organs and the protection of the right to privacy of the citizens ; The right to privacy on the internet websites must be guaranteed to the citizens, in order that they would use the e-Government services .
  16. 16. Personal data publishing on the internet (1) <ul><li>The publishing of personal data on the internet must be in accordance with the Law on personal data protection </li></ul><ul><ul><li>In most of the cases, prior consent is needed from the personal data subject ; </li></ul></ul><ul><ul><li>Special consent is needed for the special personal data categories ; </li></ul></ul>
  17. 17. Personal data publishing on the internet (2) <ul><ul><li>- It is necessary to guarantee the right to access, correction and removal of personal data. </li></ul></ul><ul><li>- Information on the controller </li></ul><ul><li>- Purpose of processing </li></ul>
  18. 18. Personal data publishing on the internet (3) <ul><li>The publishing of personal data on the internet represents personal data processing in accordance with the Law on personal data protection ; </li></ul><ul><li>The publishing of personal data on the internet means transfer of data in third countries ; </li></ul><ul><li>The freedom of expression cannot always be a justification for publishing personal data on the internet . </li></ul>
  19. 19. Communication traffic data <ul><li>The IP address is personal data ; </li></ul><ul><li>Internet traffic data : </li></ul><ul><ul><li>Date and time of internet user login ; </li></ul></ul><ul><ul><li>List of websites visited by the internet user ; </li></ul></ul><ul><li>If it is no longer needed, the traffic data should be immediately erased or rendered anonymous , </li></ul><ul><li>Law on electronic communications ( Article 112). </li></ul>
  20. 20. <ul><li>Thank you for your attention </li></ul><ul><li>Marijana Marusic </li></ul><ul><li>[email_address] </li></ul><ul><li>Тел : ++ 389 (2) 32 44 760 </li></ul><ul><li>Факс : ++ 389 (2) 32 44 766 </li></ul>

×