Balancing Data Subjects’ Rights and Public Interest Research
Research output: Contribution to journal › Journal article › Research › peer-review
Standard
Balancing Data Subjects’ Rights and Public Interest Research. / Bell, Jessica; Aidinlis, Stergios; Smith, Hannah Louise; Mourby, Miranda ; Gowans, Heather ; Wallace, Susan; Kaye, Jane.
In: European Data Protection Law Review, Vol. 5, No. 1, 2019, p. 43-53.Research output: Contribution to journal › Journal article › Research › peer-review
Harvard
APA
Vancouver
Author
Bibtex
}
RIS
TY - JOUR
T1 - Balancing Data Subjects’ Rights and Public Interest Research
AU - Bell, Jessica
AU - Aidinlis, Stergios
AU - Smith, Hannah Louise
AU - Mourby, Miranda
AU - Gowans, Heather
AU - Wallace, Susan
AU - Kaye, Jane
PY - 2019
Y1 - 2019
N2 - The EU General Data Protection Regulation (‘GDPR’) seeks to balance the public interest in research with privacy rights of individuals, in particular, through research exemptions and safeguards set out in Article 89. While this affords Member States limited opportunities to modify the application of the GDPR at a national level, including for data processing that is necessary for the performance of a task carried out in the public interest, it is necessary for national approaches to conform with Article 89 safeguards where appropriate. One development of interest to the research community in the UK is a statutory power for public authorities to disclose administrative data for research under the Digital Economy Act 2017 (DEA). This article uses the DEA as a case study for analysis of the GDPR provisions governing processing of data for research purposes—including de-identification—and draws on human rights norms and jurisprudence to interpret the broad requirement for ‘appropriate safeguards’ for the ‘rights and freedoms of the data subject’ under Article 89. This analysis is important for data controllers seeking to meet their obligations under the UK framework and for those in other EU Member States considering the development of similar national provisions for data processing for research purposes.
AB - The EU General Data Protection Regulation (‘GDPR’) seeks to balance the public interest in research with privacy rights of individuals, in particular, through research exemptions and safeguards set out in Article 89. While this affords Member States limited opportunities to modify the application of the GDPR at a national level, including for data processing that is necessary for the performance of a task carried out in the public interest, it is necessary for national approaches to conform with Article 89 safeguards where appropriate. One development of interest to the research community in the UK is a statutory power for public authorities to disclose administrative data for research under the Digital Economy Act 2017 (DEA). This article uses the DEA as a case study for analysis of the GDPR provisions governing processing of data for research purposes—including de-identification—and draws on human rights norms and jurisprudence to interpret the broad requirement for ‘appropriate safeguards’ for the ‘rights and freedoms of the data subject’ under Article 89. This analysis is important for data controllers seeking to meet their obligations under the UK framework and for those in other EU Member States considering the development of similar national provisions for data processing for research purposes.
U2 - 10.21552/edpl/2019/1/8
DO - 10.21552/edpl/2019/1/8
M3 - Journal article
VL - 5
SP - 43
EP - 53
JO - European Data Protection Law Review
JF - European Data Protection Law Review
SN - 2364-2831
IS - 1
ER -
ID: 392146071