The Data Protection Impact Assessment, or: How the General Data Protection Regulation May Still Come to Foster Ethically Responsible Data Processing

4 Pages Posted: 27 Nov 2015

See all articles by Claudia Quelle

Claudia Quelle

Tilburg University - Tilburg Institute for Law, Technology, and Society (TILT)

Date Written: November 25, 2015

Abstract

The General Data Protection Regulation will make it mandatory for data controllers to conduct a data protection impact assessment (DPIA). This short comment argues that, given the formulations of this requirement in the proposed versions of the upcoming regulation, the DPIA could take shape as requiring a broad ethical/rights assessment which is overseen by a regulatory agency. As such, the data protection impact assessment could prove valuable as a regulatory instrument to steer controllers to respect the fundamental rights of individuals above and beyond what data protection law strictly requires.

Keywords: General Data Protection Regulation, Data Protection Impact Assessment, Privacy Impact Assessment, fundamental rights

Suggested Citation

Quelle, Claudia, The Data Protection Impact Assessment, or: How the General Data Protection Regulation May Still Come to Foster Ethically Responsible Data Processing (November 25, 2015). Available at SSRN: https://ssrn.com/abstract=2695398 or http://dx.doi.org/10.2139/ssrn.2695398

Claudia Quelle (Contact Author)

Tilburg University - Tilburg Institute for Law, Technology, and Society (TILT) ( email )

Tilburg
Netherlands

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
495
Abstract Views
1,708
Rank
124,419
PlumX Metrics