Presentation held by Mr. Giorgi Gabrielashvili within the Regional Workshop on Georgia's anti-corruption and public service delivery reforms (22-24 September 2011).
GDPR, DPAs and the Journalistic Media: Walking the Regulatory TightropeDavid Erdos
How is and should the future of data protection regulation of the journalistic media develop under the GDPR? State law in this area remains highly divergent but the great majority do recognise that qualified data protection requirements and partial regulatory supervision should apply here. This points to a continuing, albeit sensitive, role for DPAs. But these authorities have many other demands and remain highly resource constrained. It is argued that a co-regulatory synergy between self- and statutory regulation provide the best mechanism to elucidate the necessary detailed balanced standards and for monitoring these. DPAs should develop a strategic approach including through according greater deference to self-regulatory bodies which take data protection standards and this balancing task seriously. The codes of conduct and monitoring provisions in articles 40 and 41 of the GDPR may be deployed directly here or at least provide a guide for a sui generis approach, with the new European Data Protection Board playing a facilitative rather than a controlling role.
N.B. These slides are based on a talk I gave at a joint HEC Paris Law Department and Science Po Law School seminar on 30 November 2018. I am grateful for the feedback I received there.
N.N.B. Please note that the chart in Slide Six unfortunately failed to display that as of Autumn 2018 approximately 40% of statutory data protection laws enacted by EEA jurisdictions still subject journalism to full DPA supervision.
Presentation held by Mr. Giorgi Gabrielashvili within the Regional Workshop on Georgia's anti-corruption and public service delivery reforms (22-24 September 2011).
GDPR, DPAs and the Journalistic Media: Walking the Regulatory TightropeDavid Erdos
How is and should the future of data protection regulation of the journalistic media develop under the GDPR? State law in this area remains highly divergent but the great majority do recognise that qualified data protection requirements and partial regulatory supervision should apply here. This points to a continuing, albeit sensitive, role for DPAs. But these authorities have many other demands and remain highly resource constrained. It is argued that a co-regulatory synergy between self- and statutory regulation provide the best mechanism to elucidate the necessary detailed balanced standards and for monitoring these. DPAs should develop a strategic approach including through according greater deference to self-regulatory bodies which take data protection standards and this balancing task seriously. The codes of conduct and monitoring provisions in articles 40 and 41 of the GDPR may be deployed directly here or at least provide a guide for a sui generis approach, with the new European Data Protection Board playing a facilitative rather than a controlling role.
N.B. These slides are based on a talk I gave at a joint HEC Paris Law Department and Science Po Law School seminar on 30 November 2018. I am grateful for the feedback I received there.
N.N.B. Please note that the chart in Slide Six unfortunately failed to display that as of Autumn 2018 approximately 40% of statutory data protection laws enacted by EEA jurisdictions still subject journalism to full DPA supervision.
Presentation by Dietrick Düner, DG GROW, European Commission, at seminar 2, held on 18 March 2021, which addresses digital government principles and building blocks. This 2nd event takes place in the framework of a series of three webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Practical recommendations on the draft-law Uzbekistan/Unesco 06042013 10072013Jarmo Koponen
Practice of access to information. Finland has a long tradition of open access to government files, starting from the Worlds oldest freedom of information law that was enacted in 1766, when Finland was part of Sweden. The draft Law is clearly about the transparency and publicity of the ACTIVITIES of officials, not DOCUMENTS only. Having a broader scope is good. (Specialist Heikki Kuutti, senior researcher in Journalism at the Department of Communication,University of Jyväskylä.)
The UK and EU Personal Data Regime After Brexit: Another Switzerland?David Erdos
These slides provide an overview of the personal data relationship between the UK and EU after Brexit. Under the Trade and Cooperation Agreement, the UK will have the closest connection with the EU here outside the European Economic Area and Switzerland. This is especially clear in the area of justice and security where there is very extensive provision for data exchange based on common standards. However, in the general area of data protection the framework only points to mutual adequacy. Even with the evolving formulation of this as “essential equivalence”, significant flexibility is retained and this may ultimately result in more substantive divergence than EU-Switzerland given the UK’s more distinct data protection approach. Common bona fide implementation of the Council of Europe’s Data Protection Convention 108+ may provide a good lodestar in the medium term and I very tentatively map out what this may could mean for default standards in the UK related to sensitive data and integrity and also specific substantive restrictions to ensure a more graduated approach and reconciliation with other competing rights.
Presentation by Alenka Zuzek, Ministry of Public Administration, Slovenia, at seminar 2, held on 18 March 2021, which addresses digital government principles and building blocks. This 2nd event takes place in the framework of a series of three webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
The presentation was held by Mr. Oleg Petrov, TTL, Moldova Governance eTransformation Project, during a workshop on the role of Open Government Data (OGD) in developing countries organized by the World Bank and the World Wide Web Foundation in the US. (October 2011)
Presentation by Mihkel Lauk at seminar 1 held on 4 March 2021, which addresses life-events in public service delivery: what and how? This event takes place in the framework of a series of webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Presentation about Estonian-Finland common future: cross-border and shared services. Thanks to colleagues in Estonian Government Office and Information System Authority who provided information and some slides.
Transparency and Open Public Data on Greek Local Authorities. Why we are goin...FOTIOS ZYGOULIS
Transparency and Open Public Data on Greek Local Authorities. Why we are going to fail in the implementation of European Funds processes and reengineering.
Presentation by Hans Arents at seminar 1 held on 4 March 2021, which addresses life-events in public service delivery: what and how? This event takes place in the framework of a series of webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Data Protection and Academic Research: The New GDPR FrameworkDavid Erdos
These slides provide an overview of the new data protection framework for academic research under the GDPR, situating this within the broader context of ethical review. After outlining the broad scope and default duties of the GDPR, the slides look at the critical issue of distinguishing processing for “academic purposes” - common in humanities and social studies – from processing only for “research” – common in the biomedical and other “hard” sciences. Whilst the former is subject to wide and liberal derogations akin to journalism, the latter is subject to mandatory safeguards and limited (and often further safeguarded) derogations. The implications of all this for ensuring lawful processing is outlined focusing on purposes specification, transparency, legal vires, data export and discipline duties as regards processors and co-controllers. It is finally noted that article 23 of the GDPR could permit further flexibility in future through secondary legislation.
Talk by Dr Ciarán Mc Mahon at Facebook Dublin, as part of Cyber Security Month, October 2016.
Information security consciousness: What you need to know about the psychology of online defence
The aim of this talk is to deepdive the psychology of cybersecurity, in order to give attendees a more profound insight into their everday security routines. If you’d like to know how to re-wire your brain to make your cybersecurity habits more efficient and more enlightend, then this is the talk for you.
Presentation by Dietrick Düner, DG GROW, European Commission, at seminar 2, held on 18 March 2021, which addresses digital government principles and building blocks. This 2nd event takes place in the framework of a series of three webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Practical recommendations on the draft-law Uzbekistan/Unesco 06042013 10072013Jarmo Koponen
Practice of access to information. Finland has a long tradition of open access to government files, starting from the Worlds oldest freedom of information law that was enacted in 1766, when Finland was part of Sweden. The draft Law is clearly about the transparency and publicity of the ACTIVITIES of officials, not DOCUMENTS only. Having a broader scope is good. (Specialist Heikki Kuutti, senior researcher in Journalism at the Department of Communication,University of Jyväskylä.)
The UK and EU Personal Data Regime After Brexit: Another Switzerland?David Erdos
These slides provide an overview of the personal data relationship between the UK and EU after Brexit. Under the Trade and Cooperation Agreement, the UK will have the closest connection with the EU here outside the European Economic Area and Switzerland. This is especially clear in the area of justice and security where there is very extensive provision for data exchange based on common standards. However, in the general area of data protection the framework only points to mutual adequacy. Even with the evolving formulation of this as “essential equivalence”, significant flexibility is retained and this may ultimately result in more substantive divergence than EU-Switzerland given the UK’s more distinct data protection approach. Common bona fide implementation of the Council of Europe’s Data Protection Convention 108+ may provide a good lodestar in the medium term and I very tentatively map out what this may could mean for default standards in the UK related to sensitive data and integrity and also specific substantive restrictions to ensure a more graduated approach and reconciliation with other competing rights.
Presentation by Alenka Zuzek, Ministry of Public Administration, Slovenia, at seminar 2, held on 18 March 2021, which addresses digital government principles and building blocks. This 2nd event takes place in the framework of a series of three webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
The presentation was held by Mr. Oleg Petrov, TTL, Moldova Governance eTransformation Project, during a workshop on the role of Open Government Data (OGD) in developing countries organized by the World Bank and the World Wide Web Foundation in the US. (October 2011)
Presentation by Mihkel Lauk at seminar 1 held on 4 March 2021, which addresses life-events in public service delivery: what and how? This event takes place in the framework of a series of webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Presentation about Estonian-Finland common future: cross-border and shared services. Thanks to colleagues in Estonian Government Office and Information System Authority who provided information and some slides.
Transparency and Open Public Data on Greek Local Authorities. Why we are goin...FOTIOS ZYGOULIS
Transparency and Open Public Data on Greek Local Authorities. Why we are going to fail in the implementation of European Funds processes and reengineering.
Presentation by Hans Arents at seminar 1 held on 4 March 2021, which addresses life-events in public service delivery: what and how? This event takes place in the framework of a series of webinars organised by the SIGMA Programme, a joint initiative of the OECD and EU, principally financed by the EU, on the role of life events in end-to-end public service delivery.
Data Protection and Academic Research: The New GDPR FrameworkDavid Erdos
These slides provide an overview of the new data protection framework for academic research under the GDPR, situating this within the broader context of ethical review. After outlining the broad scope and default duties of the GDPR, the slides look at the critical issue of distinguishing processing for “academic purposes” - common in humanities and social studies – from processing only for “research” – common in the biomedical and other “hard” sciences. Whilst the former is subject to wide and liberal derogations akin to journalism, the latter is subject to mandatory safeguards and limited (and often further safeguarded) derogations. The implications of all this for ensuring lawful processing is outlined focusing on purposes specification, transparency, legal vires, data export and discipline duties as regards processors and co-controllers. It is finally noted that article 23 of the GDPR could permit further flexibility in future through secondary legislation.
Talk by Dr Ciarán Mc Mahon at Facebook Dublin, as part of Cyber Security Month, October 2016.
Information security consciousness: What you need to know about the psychology of online defence
The aim of this talk is to deepdive the psychology of cybersecurity, in order to give attendees a more profound insight into their everday security routines. If you’d like to know how to re-wire your brain to make your cybersecurity habits more efficient and more enlightend, then this is the talk for you.
Increasing Sophistication - The Cyberpsychology of Online Fraud and PhishingCiarán Mc Mahon
The cybersecurity environment is becoming increasingly aggressive, with Cybercrime as a Service blurring the distinction between Advanced Persistent Threats and minor criminality. Financial institutions need to understand the human factors of the online environments in which both they and their consumers operate. Cybercriminals are growing in sophistication and intelligence, so in order to protect the public, we must understand and appreciate the psychology of the victims of fraud and phishing.
Appreciating Contradications: The Cyberpsychology of Information SecurityCiarán Mc Mahon
Information security is at a critical juncture. How do we solve the weakest link - human psychology? Insight from cyberpsychology into leadership, power and persuasion are essential. These slides are from Dr Ciarán Mc Mahon's keynote at (ISC)² Security Congress EMEA, Sofitel Munich, October 2015
From Connected To Self-Driving - Securing the Automotive RevolutionAlexander Schellong
Presentation held at Cybersecure Car 2015. Main argument is that we need to move from discussing specific car security to discussing the security of the future automotive ecosystem.
Open Data overview presented at IDA Ireland's Artificial Intelligence #AI_Island meeting http://www.idaireland.com/newsroom/Publications/Artificial-Intelligence
Nigel Shadbolt- The challenges and transformational benefits of opening up data in a new world of transparency and future government policy.
Beyond 2010 Conference Keynote Address.
The presentation analyses the open data movement across the world and in India. The current experiments in benchmarking open data initiatives are also briefly mentioned.
Open Data and Transparency may be the most powerful levers of 21st century public policy. They present multiple opportunities offering benefit to the public sector, individuals, businesses and the UK as a whole. Open Data enables accountability; it improves outcomes and productivity in key services through informed comparison; it transforms social relationships – empowering individuals and communities; and it drives dynamic economic growth.
One story indicates how open data and transparency can help to transform a service: Five years ago, Sir Bruce Keogh, then a cardiac surgeon in Birmingham, convinced his fellow cardiac surgeons to publish their individual patient mortality rates. Five years later, death rates have fallen. Sir Keogh’s work demonstrates how transparency compliments the work of our public service professionals, improves public service quality and performance, and saves lives.
But making data open is not enough, we will also establish mechanisms to promote and collate feedback from those actually using the data. And we will use this feedback to improve our services and ensure they respond to real needs.
The UK Government new Transparency Strategy: “Making Open Data Real” was published on 4th August and is open for public consultation until 27 October 2011 at www.data.gov.uk/openda.... This, together with the UK’s existing strong record on Transparency and Open Data, means that our focus will fall on the Open Government Partnership grand challenges of:
* Improving Public Services; and
* More Effectively Managing Public Resources.
We will consult publicly on this country action plan primarily via existing fora, including the Public Sector Transparency Board; the Local Public Data Panel and the Transparency Sector Boards that are currently being established. These bodies already advise the Government on wider transparency and Open Data issues. In addition, we will also convene and consult with a wider group of stakeholders to consider the country plan specifically.
http://www.opengovpartnership.org/countries/united-kingdom
http://www.data.gov.uk/opendataconsultation
Opening the Gates: Will Open Data Initiatives Make Local Governments in the P...Open Data Research Network
A research poster presented as part of the Exploring the Emerging Impacts of Open Data in Developing Countries project at the Research Sharing Event in Berlin, 15th July 2014. For more see http://www.opendataresearch.org/emergingimpacts/
Presentation given at the Open Government Data Camp in Warsaw October 2011. It discusses how Norway is approaching the task of opening up and reusing more public sector data. It also gives a detailed run through of DIFIs data hotel
Similar to Open Government and Information Integrity (20)
2. Successful Open Government, including
Open Data (proactive disclosure) and FOI
(reactive disclosure), rests to a large extent
on reliable and accessible evidence of
government decisions, actions and
transactions derived from official
government records.
3. FOI: ‘Freedom of Information legislation is
only as good as the quality of the records
and other information to which it provides
access. Access rights are of limited value if
information cannot be found when requested
or, when found, cannot be relied upon as
authoritative.’
UK Lord Chancellor’s Code of Practice on the Management
of Records (Section 46 of the Freedom on Information Act
2000)
4. Open Data: ‘People assume that good
economic data is there, but if it is not, work
is flawed or not possible. Data should come
from records – the veracity of the data
depends upon the record. The quality of the
records management system makes you
trust or doubt data.’
Bill Dorotinsky, World Bank Sector Manager, Public Sector
and Institutional Reform, Europe and Central Asia/ Co-
Leader, Global Expert Team
5. The Open Government movement is
beginning to recognise the crucial
significance of reliable and trustworthy
evidence as a basis for:
•ensuring data integrity
•detecting abuse
•holding public servants legally accountable
•enabling citizens and the press to monitor
the workings of government.
6. In many countries, government records are
not managed to meet international
standards, and in some countries, even
basic records controls are not in place,
particularly where the use of digital
technologies has outpaced government
capacity to manage digital records.
In these cases, there will not be a strong
basis for FOI or Open Data.
7. The opposite is true in Norway, where the
Government’s deep commitment to making
reliable evidence available to support
transparency and accountability illustrates
what can be achieved. Under its FOI Act,
Norway has developed the ability to capture
the content and context of central
government agency records, protect the
integrity of this information over time and
make it easily available to citizens and the
press.
8. The Electronic Public Records (OEP) system
enables central government agencies to
publicise their public records online, thereby
achieving proactive and reactive disclosure.
Public record data is stored in a searchable
database that users search to locate records
that interest them. They submit requests to
view the records via OEP; the agencies
responsible for the records process requests
and reply to users directly.
9. Norway’s system is capable of:
•capturing and providing access to trusted
data and digital records in a secure trusted
environment
•linking active and inactive datasets to hard
copy or digital records to provide context
and the means to interrelate data
•supporting migration to new software and
hardware environments to support ongoing
access.
11. Why OEP?
• OEP aims to make the
Norwegian
public sector more open
and accessible to citizens.
• OEP aims to make the
implementation of the
principle of public access
more efficient.
Agency for Public Management
17.12.12
and eGovernment (Difi)
12. www.oep.no
• Joint publicizing of
records from the central
government on the
Internet
• Used by the Prime
Ministers office, ministries,
County governors and all
agencies
• Regulated in the Freedom
of Information Act
17.12.12 Agency for Public Management
and eGovernment (Difi)
18. Cases
17.12.12 Agency for Public Management
and eGovernment (Difi)
19. Recieving information
• Documents can be
received by e-mail, fax
or regular mail
• Information requests
are normally
processed in 2-3 days
• The service is free of
charge
• You can remain
anonymous
17.12.12 Agency for Public Management
and eGovernment (Difi)
20. Some key figures
•105 government agencies publish their
journal in OEP
•There are published more than 5 million
registry entries in OEP
•OEP has communicated about 380 000
information request in 275 000 different
registry entries since May 2010
•15 000 of these registry entries have three
or more information requests
Agency for Public Management
17.12.12
and eGovernment (Difi)
22. End user
Agency for Public Management
17.12.12
and eGovernment (Difi)
23. End users (II)
Agency for Public Management
17.12.12
and eGovernment (Difi)
24. Publizicing documents in OEP
• Difi is considering
how to expand OEP, in
order to give access to
documents directly from the service.
• Can contribute to increase openness by
making documents more
accessible, and make the government more
efficient as there will be less information requests
than today.
Agency for Public Management
17.12.12
and eGovernment (Difi)
25. User survey OEP 2011
• Content suppliers say that the introduction
of OEP has led to an increase in
information requests.
• Functionality for full-text publication is
requested by end users, archive
employees and government
administration.
17.12.12 Agency for Public Management
and eGovernment (Difi)
26. Recommendations
• Public authorities have a responsibility to
facilitate an open and informed public
debate, Norwegian Constituion § 100 sixt section.
• The public administration shall as far as
possible be available online, The government's
digitalization program.
• Public agencies shall at all times make the
information available, without the need for
information requests, Government
communication policy.
17.12.12 Agency for Public Management
and eGovernment (Difi)
27. Evaluation
An automated solution for full-text publicizing in
the administrative and archival system, will
greatly streamline the work to publish full-text
documents compared with the current solution.
It is therefore favorable to use OEP as a
channel to disseminate public documents of
general interest. This can help make the
administration more open and transparent.
Especially if agencies actively use OEP as part
of their communication strategy.
17.12.12 Agency for Public Management
and eGovernment (Difi)
Editor's Notes
Statistics from OEP show that in many cases several requests are inquired for access to the same document / case.
The report has identified the different effects of introducing an automated solution for full text publication of documents in the OEP, but has not quantified the costs. It is thus not clear whether agencies that take the solution in use will achieve efficiency gains. This will depend on many factors, including the amount of resources required for quality assurance and control in terms of resource savings associated with the processing of information requests. This will vary from agency to agency including the basis of the types of cases the business processes, what types of cases they choose to publish, and the extent of transparency requirements the organization receives.