GDPR

Feb 03 2021

Addressing Cross-Border Spillovers in Data Policy: The Need for a Global Approach

Global debates about data governance standards have primarily reflected the priorities and needs of rich countries, with less wealthy countries left in the role of “standards takers.” More needs to be done to ensure that digital governance policies pursued by the world’s largest economies do not create unintended consequences that make it harder for other countries to support a strong domestic digital economy and participate in the global digital economy. This is a joint blog post by Michael Pisa, Center for Global Development, WPF’s Pam Dixon, and Benno Ndulu, Oxford Professor.

Aug 05 2020

Africa’s Rising Leadership in Privacy: breaking new ground before and during the COVID-19 crisis

Numerous African countries, having passed new privacy laws during and after the time the GDPR was being negotiated, have broken new ground by advancing privacy thought in new and important ways which stretch past the boundaries of the GDPR and contextualize privacy for African contexts. The COVID-19 crisis represents a major test of some of the new data governance systems.

Apr 16 2018

WPF moderating seminar on GDPR & biometrics in Brussels, Belgium

WPF executive director Pam Dixon will be moderating a seminar to be held by the Biometrics Institute in Brussels, Belgium on 17 April on the topic of implications and implementation of the GDPR. The event will be held at the Office of the Spanish National Research Council, 7th Floor, Room 3, Rue du Trône 62,

Aug 29 2017

A Failure to Do No Harm: India’s Aadhaar biometric ID program

WPF has conducted original research on India’s Aadhaar, a national biometric ID system, including field research in India during 2010-2014. WPF has published the original research in a peer-reviewed journal, Nature-Springer, and in Harvard-based Journal of Technology Science. The research found that systemic challenges to data protection and privacy exist in the Aadhaar system, challenges which do have potential remedies. Key lessons can be learned for both the US and the EU as biometric systems grow in popularity.

Apr 06 2016

Report — US – EU Privacy Shield Analysis: Winners and Losers

This substance of this analysis is about the new EU-US Privacy Shield, with contextual background and an analysis of how this new proposal compares to the old EU-US Safe Harbor agreement. The analysis includes a discussion of winners and losers in Privacy Shield, and discusses its potential future.

National IDs Around the World — Interactive map

About this Data Visualization: This interactive map displays the presence...
Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

This comprehensive report and proposed bill text is focused on the Privacy Act of 1974, an important and early Federal privacy law that applies to the government sector and some contractors. The Privacy Act was written for the 1970s information era -- an era that was characterized by the use of mainframe computers and filing cabinets. Today's digital information era looks much different than the '70s: smart phones are smarter than the old mainframes, and documents are now routinely digitized and stored and perhaps even analyzed in the cloud, among many other changes. The report focuses on why the Privacy Act needs an update that will bring it into this century, and how that could look and work. This work was written by Robert Gellman, and informed by a two-year multi-stakeholder process.
COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

The COVID-19 pandemic strained the U.S. health ecosystem in numerous ways, including putting pressure on the HIPAA privacy and security rules. The Department of Health and Human Services adjusted the privacy and security rules for the pandemic through the use of statutory and administrative HIPAA waivers. While some of the adjustments are appropriate for the emergency circumstances, there are also some meaningful and potentially unwelcome privacy and security consequences. At an appropriate time, the use of HIPAA waivers as a response to health care emergencies needs a thorough review. This report sets out the facts, identifies the issues, and proposes a roadmap for change.