Privacy on SNS

493 views

Published on

Privacy on Social Network Sites, 03.11.2011, UIA, Miami

Published in: Technology, News & Politics
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
493
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
10
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • Privacy on SNS

    1. 1. Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    2. 2. PRIVACY IN SOCIAL NETWORK SITES 55th UIA Miami Congress - November 3rd, 2011 Comission on Right’s of the digital person Marc GallardoGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    3. 3. SUMMARYGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    4. 4. SUMMARY1. INTRODUCTION2. CONCEPT & TYPES & MAIN THREATS3. EU LEGAL FRAMEWORK4. REVIEW OF SOME PRINCIPLES5. LAW APPLICABLE6. CONCLUSION Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    5. 5. “CHANGE OF PARADIGM”Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    6. 6. “CHANGE OF PARADIGM”Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    7. 7. SOCIAL NETWORK SITES (SNS) EU: Information Society Services Web 2.0 service. SNS Subcategories: Generalist or leisure SNS Proffesional SNSGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    8. 8. SNS OPERATE IN 3PHASES:(common threats)1. Registration: - opacity of private policies - complicated legal or technical jargon - collecting too much data - no information about secondary uses - privacy policies pre-set by default are the less protective for users - no age verification systems - identity thief2. Usage: - invisible data processing (cookies, ip...) - user acting as a data collector - weakness of sns security measures - Rights on access, rectification & refusal3. Deletion: - data not eliminated & “hotel california effect” in a on line environment such as SNS Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    9. 9. ROLES INVOLVEDIN SNS SNS Providers Data Collector Application Providers Data Subject Users of SNS Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    10. 10. EU LEGALFRAMEWORK(data protection perspective) ECHR (Art. 8): DP as a “Fundamental Right”. General Data Protection Directive (95/46/EC) e-Privacy Directive (2002/58/EC as ammended by Directive 2009/136/EC) Data Retention Directive (2006/24/EC) Electronic Commerce Directive (2000/31/EC) National laws implementing the said Directives. Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    11. 11. EU GENERAL BASIC RULESFOR SNS PROVIDERS Register personal data files before DP Authorities Inform users, inter alia, on their identity and purposes for which they process personal data Process data according with data quality principle Process data under a legal ground (e.g. consent) Adopt technical and organisational mesures to ensure security and confidentiality of the information Guarantee exercise of users’ rights of access, rectification, cancellation and object. Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    12. 12. REVISING DATA PROTECTIONPRINCIPLES: CONSENTREQUIREMENTS Freely Given Specific WP187: Opinion 15/2011, 13.07.2011 Informed on the definition of consent WP163: Opinion 5/2009, 12.06.2009 on online social networking Unambiguous Express ¿Other legal grounds? Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    13. 13. REVISING DATA PROTECTIONPRINCIPLES: CONSENTREQUIREMENTS Storage of cookies or similar devices and subsequent use of any information will have to comply with art. 5(3) of e-Privacy Directive Need for users’ informed prior consent Consent by means of browser settings do not meet the requirements of art. 5(3) specially because major browsers allow all cookies as a default setting Prior “opt-in” consent is more in line with art. 5(3) Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    14. 14. REVISING DATA PROTECTIONPRINCIPLES: ¿USER OF ANSNS AS DATA CONTROLLER? When a SNS user publishes data concerning third parties without their consent (video, picture, etc.) Not acting in the course of a purely personal activity (household exemption) The ECJ Lindquist standard as a possible criterion Decisions of Spanish Data Protection Agency (AEPD) on unlawful treatment of data in SNS. Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    15. 15. REVISING DATAPROTECTION PRINCIPLES:MINORS OF AGE Particularly vulnerable group. In Spain some specific rules apply to the treatment of data affecting minors of age (art. 13 RD 1720/2007) Recommendations issued by AEPD (since 2010) International and EU iniciatives (Montevideo Memorandum, Safer Internet Program and Self- Regulation fostered by EU Commission) Gran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    16. 16. APPLICABLE LAW Facebook (Delaware) Art. 4 Directive 95/46 (relevant connection) Google+ (California) Establishment Linkedin (California) + Activities Twitter (California) (or) My Space (New York) Instruments or MeansGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    17. 17. CONCLUSION SNS poses serious risks for Privacy Full compliance to current EU legislation is required (EU based SNS & not EU based SNS under certain circumstances) Law revision + Self-Regulation Systems Responsible and safe useGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com
    18. 18. THANK YOUGran Vía de les Corts Catalanes, 702 Pral. 1ª Barcelona 08010 || t. 34 93.265.58.42 f.34 93.265.52.90 || info@alliantabogados.com www.alliantabogados.com

    ×