About the Book
This book presents the proceedings of the Privacy Symposium 2024. The book features a collection of high-quality research works and professional perspectives on personal data protection and emerging technologies. Gathering legal and technology expertise, it provides cutting-edge perspective on international data protection regulations convergence, as well as data protection compliance of emerging technologies, such as artificial intelligence, e-health, blockchain, edge computing, Internet of Things, V2X, and smart grid. Papers encompass various topics, including international law and comparative law in data protection and compliance, cross-border data transfer, emerging technologies and data protection compliance, data protection by design, technology for compliance and data protection, data protection good practices across industries and verticals, cybersecurity and data protection, assessment and certification of data protection compliance, and data subject rights implementation.
Table of Contents:
Part 1 Sharing and Caring for Data Subjects.- Chapter 1 When laws are inadequate: Enabling compliant health data transfers between South Africa and the EU.- Chapter 2 The European Commission's adequacy decisions' content as a guide for applying the adequacy assessment criteria.- Part 2 Acting smart around Artificial Intelligence.- Chapter 3 Towards the effective extraterritorial enforcement of the AI Act.- Chapter 4 Exploring Legal Bases for AI Training under the GDPR.- Part 3 What the GDPR left unsolved.- Chapter 5 Is it Personal data? Solving the gordian knot of anonymisation.- Chapter 6 The “Meta-moth-phosis" of Data Portability: Observing the Transformation of Data Portability through a Comparative Analysis of Definitions Across European Legal Frameworks.- Part 4 Humans as Data Sources: Implications of Data Collection at Places where we are most Vulnerable.- Chapter 7 Who are the Users of Smart Homes? Surveillance in Domestic IoT Contexts.- Part 5 Do we understand what happens to our Data?.- Chapter 8 Towards Cross-Provider Analysis of Transparency Information for Data Protection.- Chapter 9 Analysis of Transparency and User-relevancy of DTC Company Policies.
About the Author :
Jaap-Henk Hoepman (1966) is currently a guest professor at the PriSec - Privacy and Security group of Karlstad University, Sweden. He is also an associate professor at the Digital Security group of the Radboud University, Nijmegen, the Netherlands, working for the iHub, the interdisciplinary research hub on Digitalization and Society. He studies privacy by design and privacy friendly protocols for identity management and the Internet of Things. He speaks on these topics at national and international congresses and publishes papers in (inter)national journals. He also appears in the media as security and privacy expert, and writes about his research in the popular press. He is actively involved in the public debate concerning security and privacy in our society. In October 2021 his book Privacy Is Hard and Seven Other Myths. Achieving Privacy through Careful Design appeared at MIT Press. In his free time he enjoys making and composing music, designing graphics, cooking, and practising Okinawan Goju Ryu karate-do.
Meiko Jensen is a senior lecturer in the PriSec - Privacy and Security group at Karlstad University, Sweden. He is also a member of the Ad-Hoc Working Group on Data Protection Engineering at ENISA, the European Cybersecurity Agency, and a lecturer and trainer for companies on various topics, including privacy engineering, cloud security, ethical hacking, and data protection basics. His research focus is on privacy engineering, specifically on implementing data subject rights and data protection impact assessments according to GDPR into real-world IT systems. Meiko received his Ph.D. on the topic of cloud security from the Horst Görtz Institute for IT-Security at Ruhr-University Bochum in Germany, and a title of full professor from Kiel University of Applied Sciences, Germany. Meiko is a renowned expert on privacy engineering and legal compliance, and an active contributor to the ongoing debates around the European data strategy and data spaces implementation.
Maria Grazia Porcedda is tenured Assistant Professor in Information Technology Law and a Fellow of Trinity College Dublin, Ireland. She carries out research on cybercrime, cybersecurity, data protection, privacy, surveillance and systemic factors that shape IT law. Maria Grazia's monograph 'Cybersecurity, Privacy and Data Protection in EU Law' (Hart Publishing 2023) is the first major work on this topic. Maria Grazia's research is sponsored by Enterprise Ireland, the Society of Legal Scholars, a Provost's PhD Project Award on cybersecurity and cybercrime law in Ireland and the EU MSCA DN HARNESS (from 2025). She is a Collaborator with the ADAPT SFI Research Centre for AI-driven Digital Content Technology, a member of the European Data Protection Board's Support Pool of Experts and the External Pool of Experts at Hsbooster.eu; she serves on Horizon Europe VIGILANT's ethical advisory board. Maria Grazia trained at the EDPS and the OECD and previously worked at the University of Leeds, the European University Institute (where she gained her PhD) and the University of Namur (CRIDs).
Stefan Schiffner is currently lecturing Computer Networks at the University of Münster. He has been a post-doctoral researcher at University of Luxembourg, an expert in information security at the European Union's Cyber Security Agency (ENISA), and a post-doctoral researcher at TU Darmstadt, where he led a team of researchers on the topics of privacy and trust within the Telekooperation group. He holds a Ph.D. from KU Leuven (Topic: models for online privacy, trust and reputation) and the Degree of Diplom Informatiker from TU Dresden. His research interests focus on secure information technologies and their policy implications. This includes specifically Privacy Enhancing Technologies, computational trust, "by Design" Paradigms, and maturity and market readiness of technologies. A computer scientist by training, Stefan is an advocate for the free use of cryptographic techniques and anonymisation tools as means for individuals to exercise their right to privacy and freedom of speech.
Sébastien Ziegler serves as Chair of the Europrivacy International Board of Experts in Data Protection, as President of the IoT Forum and IoT Lab, as well as Rapporteur on Research and Emerging Technologies for the Internet of Things and for Smart Cities at the International Telecommunication Union (SG20). Sébastien has a PhD in Management from the Faculty of Economy and Management of the University of Geneva, with a focus on Information Management Systems. He has an MBA in international administration (HEC Geneva), a Master in Science on Environment, and is graduated in International Relations (IHEI), with complementary executive education at Harvard (HBS), Stanford University, UC Berkeley and EPFL. He has served as Co-Director of the Master in Advanced Studies on the Internet of Things at the University of Geneva and has coordinated several European research projects related to personal data protection and emerging technologies. He is certified expert and lead auditor for ISO/IEC 27001, Europrivacy and EuroPriSe certifications.
