SlideShare une entreprise Scribd logo

Data protection in smart cities application of the EU GDPR

Maria Stefanouli
Maria Stefanouli

Urban growth, combined with the development of digital technology, has led to the recent boom of smart cities worldwide. Smart cities make use of all available information and communications technology in the built environment to control their operation and in this way to enhance the quality of life and to drive economic growth. This phenomenon also raises legal issues regarding data protection. The key questions that smart cities already face concern the rights and treatment of data. Currently, further to the Data Protection Directive 95/46/EC, each Member State of the EU has in place its own legislation to govern data protection. This translates into a lack of harmonisation within the European Union, which does not contribute towards uniting even more the various Member States. This is something that the introduction of the EU General Data Protection Regulation 2016/679 (GDPR) on 25 May 2018 aims to change, as it shall be directly applicable as is and shall not require different legislation in each country, thus requiring all smart cities and related businesses throughout the EU to ensure their treatment of data complies with the same set of provisions. Therefore, since smart cities are the cities of the future and legal compliance shall be a cornerstone of their operation, the objective of this paper is to examine the relationship between smart cities and data protection under the emerging common EU legal framework and the effect it has upon them.

Droit
1  sur  19
Télécharger pour lire hors ligne
4th Conference on Sustainable Urban Mobility – CSUM2018 24-25 May, 2018, Skiathos Island, Greece Sponsors: Media Sponsor: With the support of: Data Protection in Smart Cities: Application of the EU GDPR Maria Stefanouli & Chris Economou
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Introduction Information and technological revolution Smart devices and Internet of Things Huge volume data exchange Smart cities – great production of data Concerns for the respect and the protection of privacy
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Data Protection Directive 95/46/EC • Aim:  harmonize the different European frameworks on this area,  protect individuals in personal data processing situations. • Did not achieve harmonization, as it is only a Directive. • By all accounts, it is outdated and redundant.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR EU General Data Protection Regulation 2016/679 • Simply known as “GDPR”. • Will replace Directive 95/46/EC on 25 May 2018. • Looks to the future: open inclusive wording, clearer rules & solid requirements. • Overall, improves data protection. • As a Regulation, offers harmonization. • Such good news that even UK will adopt its principles.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (1/5) • Greater geographical coverage:  EU-based controllers/processors carrying out processing outside EU.  Controllers/processors outside EU processing data regarding goods/services provided to EU data subjects.  Controllers/processors outside EU monitoring the behavior of EU data subjects. • New and improved definitions: e.g. pseudonymization and location data.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (2/5) • Processors will also be covered, aside from controllers.  Both are liable for damage.  In cases of joint controllers/processors, each one is held liable for the entire damage. • Must provide transparency of processing. • Need to demonstrate compliance. • Provide easy access to understandable information regarding processing and controller/processor.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (3/5) • Data Protection by Design and by Default  Designing and constructing systems with privacy in mind. • Notification of:  supervisor authority of any breach to any personal data (within 72 hours from becoming aware of the breach),  concerned data subject (however, exceptions exist, e.g. if data lost poses no risk),  the controller of any data breach, by the processor.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (4/5) • Data Protection Impact Assessment  Must be carried out prior to risky operations in order to evaluate those cases better. • Consultation with supervisory authority needed only if:  the Data Protection Impact Assessment shows that a high risk is present,  the supervisory authority requests it.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (5/5) • Data Protection Officer  Liaises with supervisory authority and advises on compliance.  Required to have one if: ― processing is carried out which requires regular and systematic monitoring of data subjects, ― special categories of data processed, ― the processing is carried out by a public body. • Increased fines: max €20 million 4% of the annual global turnover
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR SMART CITIES 75% of European population lives in urban areas Transition from the digital city to the smart city Smart cities: Cities which widely use Information and Communication Technology (ICT)
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR SMART CITIES The data derived from smart cities: Big Data, high volume, variety, velocity and value Various smart transportation services are delivered (provision of real time and multi-modal public transportation information, smart traffic lights, intelligent traffic management etc.) Commuting is a real challenge of smart transportation Smart mobility initiatives well presented in non- Nordic Northern Europe, Spain, Hungary, Romania and Italy
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (1/6)
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (2/6) • Keep processing to the minimum necessary.  Decide exactly what data is needed, whether it is within the scope of the GDPR and in what format it will be stored.  Pros: savings in storage, speedier use and easier and more complex analysis. Smart card/pass: biometric data (photograph, height), Smart traffic lights & real time driving guidance: only location data. • Purchase/develop/amend measures and systems according to Privacy by Design and Default. Smart systems: invest in new systems designed with privacy in mind and as a default
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (3/6) • Develop processes to:  quickly find any breach,  find what has been damaged,  find which user has been affected,  notify affected user/supervisory authority/controller,  identify potentially risky situations,  effectively undertake Data Protection Impact Assessments. Smart card/pass: required Data Protection Impact Assessments because of sensitive personal data. • Provide training through seminars and exercises.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (4/6) • Draft/revise codes of conduct. • Join organizations promoting data security, which will start emerging. • Seek seals of approval, certificates and advice from relevant organizations. Data Protection Officer certification. • Decide on the appointment of a Data Protection Officer. Smart traffic lights and real-time driving guidance: Data Protection officer since processing involves systematic monitoring (usually by a public body such as the municipality). Same for smart card/pass
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (5/6) • Data subjects:  Adopt processes so they have easy access to data held, e.g. dedicated section.  Draft data so it is understandable to them.  Adopt processes so they can exercise their rights. Easy application to organization handling smart cards/passes requesting erasure, quick procedure to erase upon request. • If consent is required, it should be fully informed consent.  Fully inform data subject.  Have easy consent form to be completed. During issuance of smart card/pass, consent should be requested and provided.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (6/6) • Review/draft contracts with processors to ensure GDPR compliance. Smart traffic lights: the municipality (controller) assigns processing to outside agency and reviews/drafts contracts accordingly. • Document all systems/procedures/incidents. Electronic application for each request for erasure or guide as to what to do in a breach. • If data is to be transferred outside EU, additional safeguards should be in place. Safeguards: who will carry out an audit beforehand and what will be taken into account, possible authorization by supervisory authority and who/when will request it.
Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Conclusions Each of the big cities needs to leverage smart technology solutions Great amount of produced and shared data raise an increasing focus on privacy protection The GDPR will affect every organization that controls or processes data, as well as the data subjects Smart city services have to comply with the GDPR The GDPR increases obligations for entities that process personal data, but it also aims to encourage a Digital Single Market across the EU The GDPR plans to promote innovation, as long as organizations use the suitable shields.
Contact Details Maria Stefanouli, MSc Civil Engineer, PhD student UTH  mstefanouli@gmail.com Chris Economou, LL.M, Lawyer  chris.economou@outlook.com If you are interested to read more papers: https://www.researchgate.net/profile/Maria_Stefanouli/publications

Recommandé

Three pillars for building a Smart Data Ecosystem: Trust, Security and Privacy
Three pillars for building a Smart Data Ecosystem: Trust, Security and PrivacyThree pillars for building a Smart Data Ecosystem: Trust, Security and Privacy
Three pillars for building a Smart Data Ecosystem: Trust, Security and PrivacyBig Data Value Association
 
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...Market into context - Three pillars for building a Smart Data Ecosystem: Trus...
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...Big Data Value Association
 
Using cloud services: Compliance with the Security Requirements of the Spanis...
Using cloud services: Compliance with the Security Requirements of the Spanis...Using cloud services: Compliance with the Security Requirements of the Spanis...
Using cloud services: Compliance with the Security Requirements of the Spanis...Miguel A. Amutio
 
Business Boost Webinars - Introduction to SmartAgriHubs
Business Boost Webinars - Introduction to SmartAgriHubsBusiness Boost Webinars - Introduction to SmartAgriHubs
Business Boost Webinars - Introduction to SmartAgriHubsFIWARE
 
Collabor8 Utrecht 2013
Collabor8 Utrecht 2013Collabor8 Utrecht 2013
Collabor8 Utrecht 2013Bram Elewaut
 
Fintech and Insurance case studies digitally transforming Europe's future
Fintech and Insurance case studies digitally transforming Europe's futureFintech and Insurance case studies digitally transforming Europe's future
Fintech and Insurance case studies digitally transforming Europe's futureBig Data Value Association
 
FIWARE Tech Summit - Alastria: Towards Economy 4.0
FIWARE Tech Summit - Alastria: Towards Economy 4.0FIWARE Tech Summit - Alastria: Towards Economy 4.0
FIWARE Tech Summit - Alastria: Towards Economy 4.0FIWARE
 
Big data minute privacy
Big data minute privacyBig data minute privacy
Big data minute privacyGuyVanderSande
 

Recommandé

Three pillars for building a Smart Data Ecosystem: Trust, Security and Privacy
Three pillars for building a Smart Data Ecosystem: Trust, Security and PrivacyThree pillars for building a Smart Data Ecosystem: Trust, Security and Privacy
Three pillars for building a Smart Data Ecosystem: Trust, Security and PrivacyBig Data Value Association
 
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...Market into context - Three pillars for building a Smart Data Ecosystem: Trus...
Market into context - Three pillars for building a Smart Data Ecosystem: Trus...Big Data Value Association
 
Using cloud services: Compliance with the Security Requirements of the Spanis...
Using cloud services: Compliance with the Security Requirements of the Spanis...Using cloud services: Compliance with the Security Requirements of the Spanis...
Using cloud services: Compliance with the Security Requirements of the Spanis...Miguel A. Amutio
 
Business Boost Webinars - Introduction to SmartAgriHubs
Business Boost Webinars - Introduction to SmartAgriHubsBusiness Boost Webinars - Introduction to SmartAgriHubs
Business Boost Webinars - Introduction to SmartAgriHubsFIWARE
 
Collabor8 Utrecht 2013
Collabor8 Utrecht 2013Collabor8 Utrecht 2013
Collabor8 Utrecht 2013Bram Elewaut
 
Fintech and Insurance case studies digitally transforming Europe's future
Fintech and Insurance case studies digitally transforming Europe's futureFintech and Insurance case studies digitally transforming Europe's future
Fintech and Insurance case studies digitally transforming Europe's futureBig Data Value Association
 
FIWARE Tech Summit - Alastria: Towards Economy 4.0
FIWARE Tech Summit - Alastria: Towards Economy 4.0FIWARE Tech Summit - Alastria: Towards Economy 4.0
FIWARE Tech Summit - Alastria: Towards Economy 4.0FIWARE
 
Big data minute privacy
Big data minute privacyBig data minute privacy
Big data minute privacyGuyVanderSande
 
FIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring BusinessFIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring BusinessFIWARE
 
FIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubsFIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubsFIWARE
 
The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...Bart Van Den Brande
 
Tackling the Challenge of Identity Management | Simon Boxall | April 2014
Tackling the Challenge of Identity Management | Simon Boxall | April 2014Tackling the Challenge of Identity Management | Simon Boxall | April 2014
Tackling the Challenge of Identity Management | Simon Boxall | April 2014Department for Communities and Local Government Local Digital Campaign
 
Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Citiesdanielpwardmbd
 
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing DataFIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing DataFIWARE
 
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...FIWARE
 
FIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDKFIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDKFIWARE
 
EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain Soren Gigler
 
Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups Soren Gigler
 
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...FIWARE
 
Digital Transformation: Future Implimentation
Digital Transformation: Future ImplimentationDigital Transformation: Future Implimentation
Digital Transformation: Future ImplimentationMuller Gracio Manalu
 
Privacy Management for Smart Cities
Privacy Management for Smart CitiesPrivacy Management for Smart Cities
Privacy Management for Smart CitiesOpen & Agile Smart Cities
 
Road to Secure and Intelligent Customs
Road to Secure and Intelligent CustomsRoad to Secure and Intelligent Customs
Road to Secure and Intelligent Customsrobertzeldy
 
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130FinTech Belgium
 
Iti
ItiIti
Itiijfcst journal
 
Webinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t dataWebinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t dataXoriant Corporation
 
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020FIWARE
 
Iti
ItiIti
Itiijfcst journal
 
Peter Schouwstra en Hans Popken
Peter Schouwstra en Hans PopkenPeter Schouwstra en Hans Popken
Peter Schouwstra en Hans Popkenbcined
 
Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri ATMOSPHERE .
 
What is GDPR?
What is GDPR?What is GDPR?
What is GDPR?Faidepro
 

Contenu connexe

Tendances

FIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring BusinessFIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring BusinessFIWARE
 
FIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubsFIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubsFIWARE
 
The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...Bart Van Den Brande
 
Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Citiesdanielpwardmbd
 
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing DataFIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing DataFIWARE
 
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...FIWARE
 
FIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDKFIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDKFIWARE
 
EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain Soren Gigler
 
Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups Soren Gigler
 
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...FIWARE
 
Digital Transformation: Future Implimentation
Digital Transformation: Future ImplimentationDigital Transformation: Future Implimentation
Digital Transformation: Future ImplimentationMuller Gracio Manalu
 
Road to Secure and Intelligent Customs
Road to Secure and Intelligent CustomsRoad to Secure and Intelligent Customs
Road to Secure and Intelligent Customsrobertzeldy
 
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130FinTech Belgium
 
Webinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t dataWebinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t dataXoriant Corporation
 
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020FIWARE
 
Peter Schouwstra en Hans Popken
Peter Schouwstra en Hans PopkenPeter Schouwstra en Hans Popken
Peter Schouwstra en Hans Popkenbcined
 

Tendances (20)

FIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring BusinessFIWARE Tech Summit - Tecnalia: Inspiring Business
FIWARE Tech Summit - Tecnalia: Inspiring Business
 
FIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubsFIWARE Global Summit - Smart AgriHubs
FIWARE Global Summit - Smart AgriHubs
 
The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...The somewhat awkward marriage between digital marketing and data protection (...
The somewhat awkward marriage between digital marketing and data protection (...
 
Tackling the Challenge of Identity Management | Simon Boxall | April 2014
Tackling the Challenge of Identity Management | Simon Boxall | April 2014Tackling the Challenge of Identity Management | Simon Boxall | April 2014
Tackling the Challenge of Identity Management | Simon Boxall | April 2014
 
Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Cities
 
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing DataFIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
FIWARE Tech Summit - Industrial Data Space - a New Idea For Sharing Data
 
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
FIWARE Global Summit - Digitanimal: “FIWARE Enabled Products Go Live in the F...
 
FIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDKFIWARE Tech Summit - Smart Cities – SmartSDK
FIWARE Tech Summit - Smart Cities – SmartSDK
 
EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain EU Investment Programs in AI and Blockchain
EU Investment Programs in AI and Blockchain
 
Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups Digital innovations -Empowering digital ecosystems and startups
Digital innovations -Empowering digital ecosystems and startups
 
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
FIWARE Tech Summit - How to Enable Industrial Data Platforms: Regulations, In...
 
Digital Transformation: Future Implimentation
Digital Transformation: Future ImplimentationDigital Transformation: Future Implimentation
Digital Transformation: Future Implimentation
 
Privacy Management for Smart Cities
Privacy Management for Smart CitiesPrivacy Management for Smart Cities
Privacy Management for Smart Cities
 
Road to Secure and Intelligent Customs
Road to Secure and Intelligent CustomsRoad to Secure and Intelligent Customs
Road to Secure and Intelligent Customs
 
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
DFS21_Main Stage_Maria Staszkiewicz_EDFA_211130
 
Iti
ItiIti
Iti
 
Webinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t dataWebinar: Unlocking the potential of io t data
Webinar: Unlocking the potential of io t data
 
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
FIWARE Tech Summit - Digitizing Agriculture: The Case of IoF2020
 
Iti
ItiIti
Iti
 
Peter Schouwstra en Hans Popken
Peter Schouwstra en Hans PopkenPeter Schouwstra en Hans Popken
Peter Schouwstra en Hans Popken
 

Similaire à Data protection in smart cities application of the EU GDPR

Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri ATMOSPHERE .
 
What is GDPR?
What is GDPR?What is GDPR?
What is GDPR?Faidepro
 
Keep your data safe and be compliant via a 360° approach
Keep your data safe and be compliant via a 360° approachKeep your data safe and be compliant via a 360° approach
Keep your data safe and be compliant via a 360° approachNagib Aouini
 
IntellectEU - InsurTech Innovation Award 2022
IntellectEU - InsurTech Innovation Award 2022IntellectEU - InsurTech Innovation Award 2022
IntellectEU - InsurTech Innovation Award 2022The Digital Insurer
 
Ipswitch and cordery on the road " All you need to know about GDPR but are t...
Ipswitch and cordery on the road " All you need to know about GDPR but are t...Ipswitch and cordery on the road " All you need to know about GDPR but are t...
Ipswitch and cordery on the road " All you need to know about GDPR but are t...Sébastien Roques
 
Overview of privacy and data protection considerations - DEVELOP.
Overview of privacy and data protection considerations - DEVELOP.Overview of privacy and data protection considerations - DEVELOP.
Overview of privacy and data protection considerations - DEVELOP.Trilateral Research
 
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...Symantec
 
Protecting Data Privacy in Analytics and Machine Learning
Protecting Data Privacy in Analytics and Machine LearningProtecting Data Privacy in Analytics and Machine Learning
Protecting Data Privacy in Analytics and Machine LearningUlf Mattsson
 
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0ITCamp
 
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdpr
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdprIsaca atlanta ulf mattsson - do you have a roadmap for eu gdpr
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdprUlf Mattsson
 
ICT 2018 Smart Parking (University of Murcia, OdinS)
ICT 2018 Smart Parking (University of Murcia, OdinS)ICT 2018 Smart Parking (University of Murcia, OdinS)
ICT 2018 Smart Parking (University of Murcia, OdinS)IoTCrawler
 
SC7 Workshop 3: Big Data Value -Big Data and SC7-
SC7 Workshop 3: Big Data Value -Big Data and SC7-SC7 Workshop 3: Big Data Value -Big Data and SC7-
SC7 Workshop 3: Big Data Value -Big Data and SC7-BigData_Europe
 
Mcis 2018 DEFeND Project
Mcis 2018 DEFeND Project Mcis 2018 DEFeND Project
Mcis 2018 DEFeND Project DEFeND Project
 
GDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can HelpGDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can HelpJason Lackey
 
CWIN17 New-York / earning the currency of trust
CWIN17 New-York / earning the currency of trustCWIN17 New-York / earning the currency of trust
CWIN17 New-York / earning the currency of trustCapgemini
 
VMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide DeckVMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide DeckKyle Davies
 
Digital economy and law keynote by Jude Umeh
Digital economy and law keynote by Jude UmehDigital economy and law keynote by Jude Umeh
Digital economy and law keynote by Jude UmehJude Umeh
 
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital Security
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital SecurityHorizon2020 appels 2018-2019 SG, Cybersecurity & Digital Security
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital SecurityAgence du Numérique (AdN)
 
Be careful what you wish for: the great Data Protection law reform - Lilian E...
Be careful what you wish for: the great Data Protection law reform - Lilian E...Be careful what you wish for: the great Data Protection law reform - Lilian E...
Be careful what you wish for: the great Data Protection law reform - Lilian E...IISPEastMids
 

Similaire à Data protection in smart cities application of the EU GDPR (20)

Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri Cyberwatching - Niccolo Zazzeri
Cyberwatching - Niccolo Zazzeri
 
What is GDPR?
What is GDPR?What is GDPR?
What is GDPR?
 
Keep your data safe and be compliant via a 360° approach
Keep your data safe and be compliant via a 360° approachKeep your data safe and be compliant via a 360° approach
Keep your data safe and be compliant via a 360° approach
 
IntellectEU - InsurTech Innovation Award 2022
IntellectEU - InsurTech Innovation Award 2022IntellectEU - InsurTech Innovation Award 2022
IntellectEU - InsurTech Innovation Award 2022
 
Ipswitch and cordery on the road " All you need to know about GDPR but are t...
Ipswitch and cordery on the road " All you need to know about GDPR but are t...Ipswitch and cordery on the road " All you need to know about GDPR but are t...
Ipswitch and cordery on the road " All you need to know about GDPR but are t...
 
Overview of privacy and data protection considerations - DEVELOP.
Overview of privacy and data protection considerations - DEVELOP.Overview of privacy and data protection considerations - DEVELOP.
Overview of privacy and data protection considerations - DEVELOP.
 
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...
Symantec Webinar Part 5 of 6 GDPR Compliance, the Operational Impact of Cross...
 
Protecting Data Privacy in Analytics and Machine Learning
Protecting Data Privacy in Analytics and Machine LearningProtecting Data Privacy in Analytics and Machine Learning
Protecting Data Privacy in Analytics and Machine Learning
 
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0
ITCamp 2018 - Cristiana Fernbach - GDPR compliance in the industry 4.0
 
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdpr
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdprIsaca atlanta ulf mattsson - do you have a roadmap for eu gdpr
Isaca atlanta ulf mattsson - do you have a roadmap for eu gdpr
 
ICT 2018 Smart Parking (University of Murcia, OdinS)
ICT 2018 Smart Parking (University of Murcia, OdinS)ICT 2018 Smart Parking (University of Murcia, OdinS)
ICT 2018 Smart Parking (University of Murcia, OdinS)
 
GDPR (En) JM Tyszka
GDPR (En) JM TyszkaGDPR (En) JM Tyszka
GDPR (En) JM Tyszka
 
SC7 Workshop 3: Big Data Value -Big Data and SC7-
SC7 Workshop 3: Big Data Value -Big Data and SC7-SC7 Workshop 3: Big Data Value -Big Data and SC7-
SC7 Workshop 3: Big Data Value -Big Data and SC7-
 
Mcis 2018 DEFeND Project
Mcis 2018 DEFeND Project Mcis 2018 DEFeND Project
Mcis 2018 DEFeND Project
 
GDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can HelpGDPR and NIS Compliance - How HyTrust Can Help
GDPR and NIS Compliance - How HyTrust Can Help
 
CWIN17 New-York / earning the currency of trust
CWIN17 New-York / earning the currency of trustCWIN17 New-York / earning the currency of trust
CWIN17 New-York / earning the currency of trust
 
VMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide DeckVMTN6642E - GDPR Slide Deck
VMTN6642E - GDPR Slide Deck
 
Digital economy and law keynote by Jude Umeh
Digital economy and law keynote by Jude UmehDigital economy and law keynote by Jude Umeh
Digital economy and law keynote by Jude Umeh
 
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital Security
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital SecurityHorizon2020 appels 2018-2019 SG, Cybersecurity & Digital Security
Horizon2020 appels 2018-2019 SG, Cybersecurity & Digital Security
 
Be careful what you wish for: the great Data Protection law reform - Lilian E...
Be careful what you wish for: the great Data Protection law reform - Lilian E...Be careful what you wish for: the great Data Protection law reform - Lilian E...
Be careful what you wish for: the great Data Protection law reform - Lilian E...
 

Dernier

Hungarian legislation made by Robert Miklos
Hungarian legislation made by Robert MiklosHungarian legislation made by Robert Miklos
Hungarian legislation made by Robert Miklosbeduinpower135
 
RA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxRA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxJFSB1
 
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment Case
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment CaseTown of Haverhill's Summary Judgment Motion for Declaratory Judgment Case
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment CaseRich Bergeron
 
Right to life and personal liberty under article 21
Right to life and personal liberty under article 21Right to life and personal liberty under article 21
Right to life and personal liberty under article 21vasanthakumarsk17
 
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesAre There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesChesley Lawyer
 
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...Rich Bergeron
 
citizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicablecitizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicableSaraSantiago44
 
Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.2020000445musaib
 
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxThe Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxgurcharnsinghlecengl
 
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxSarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxAnto Jebin
 
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsTown of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsRich Bergeron
 
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSTHE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSRoshniSingh312153
 
1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in SalesMelvinPernez2
 
Labour legislations in India and its history
Labour legislations in India and its historyLabour legislations in India and its history
Labour legislations in India and its historyprasannamurthy6
 
Illinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideIllinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideillinoisworknet11
 
Guide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxGuide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxjennysansano2
 
Grey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxGrey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxBharatMunjal4
 
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Rich Bergeron
 
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksUnderstanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksFinlaw Associates
 
Choosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasChoosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasBrandy Austin
 

Dernier (20)

Hungarian legislation made by Robert Miklos
Hungarian legislation made by Robert MiklosHungarian legislation made by Robert Miklos
Hungarian legislation made by Robert Miklos
 
RA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxRA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptx
 
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment Case
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment CaseTown of Haverhill's Summary Judgment Motion for Declaratory Judgment Case
Town of Haverhill's Summary Judgment Motion for Declaratory Judgment Case
 
Right to life and personal liberty under article 21
Right to life and personal liberty under article 21Right to life and personal liberty under article 21
Right to life and personal liberty under article 21
 
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesAre There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
 
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...
Town of Haverhill's Statement of Material Facts For Declaratory Judgment Moti...
 
citizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicablecitizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicable
 
Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.
 
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxThe Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
 
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxSarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
 
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsTown of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
 
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSTHE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
 
1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales
 
Labour legislations in India and its history
Labour legislations in India and its historyLabour legislations in India and its history
Labour legislations in India and its history
 
Illinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideIllinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guide
 
Guide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxGuide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docx
 
Grey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxGrey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptx
 
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
 
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksUnderstanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
 
Choosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasChoosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in Texas
 

Data protection in smart cities application of the EU GDPR

  • 1. 4th Conference on Sustainable Urban Mobility – CSUM2018 24-25 May, 2018, Skiathos Island, Greece Sponsors: Media Sponsor: With the support of: Data Protection in Smart Cities: Application of the EU GDPR Maria Stefanouli & Chris Economou
  • 2. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Introduction Information and technological revolution Smart devices and Internet of Things Huge volume data exchange Smart cities – great production of data Concerns for the respect and the protection of privacy
  • 3. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Data Protection Directive 95/46/EC • Aim:  harmonize the different European frameworks on this area,  protect individuals in personal data processing situations. • Did not achieve harmonization, as it is only a Directive. • By all accounts, it is outdated and redundant.
  • 4. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR EU General Data Protection Regulation 2016/679 • Simply known as “GDPR”. • Will replace Directive 95/46/EC on 25 May 2018. • Looks to the future: open inclusive wording, clearer rules & solid requirements. • Overall, improves data protection. • As a Regulation, offers harmonization. • Such good news that even UK will adopt its principles.
  • 5. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (1/5) • Greater geographical coverage:  EU-based controllers/processors carrying out processing outside EU.  Controllers/processors outside EU processing data regarding goods/services provided to EU data subjects.  Controllers/processors outside EU monitoring the behavior of EU data subjects. • New and improved definitions: e.g. pseudonymization and location data.
  • 6. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (2/5) • Processors will also be covered, aside from controllers.  Both are liable for damage.  In cases of joint controllers/processors, each one is held liable for the entire damage. • Must provide transparency of processing. • Need to demonstrate compliance. • Provide easy access to understandable information regarding processing and controller/processor.
  • 7. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (3/5) • Data Protection by Design and by Default  Designing and constructing systems with privacy in mind. • Notification of:  supervisor authority of any breach to any personal data (within 72 hours from becoming aware of the breach),  concerned data subject (however, exceptions exist, e.g. if data lost poses no risk),  the controller of any data breach, by the processor.
  • 8. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (4/5) • Data Protection Impact Assessment  Must be carried out prior to risky operations in order to evaluate those cases better. • Consultation with supervisory authority needed only if:  the Data Protection Impact Assessment shows that a high risk is present,  the supervisory authority requests it.
  • 9. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR LEGAL FRAMEWORK CHANGES BY THE GDPR (5/5) • Data Protection Officer  Liaises with supervisory authority and advises on compliance.  Required to have one if: ― processing is carried out which requires regular and systematic monitoring of data subjects, ― special categories of data processed, ― the processing is carried out by a public body. • Increased fines: max €20 million 4% of the annual global turnover
  • 10. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR SMART CITIES 75% of European population lives in urban areas Transition from the digital city to the smart city Smart cities: Cities which widely use Information and Communication Technology (ICT)
  • 11. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR SMART CITIES The data derived from smart cities: Big Data, high volume, variety, velocity and value Various smart transportation services are delivered (provision of real time and multi-modal public transportation information, smart traffic lights, intelligent traffic management etc.) Commuting is a real challenge of smart transportation Smart mobility initiatives well presented in non- Nordic Northern Europe, Spain, Hungary, Romania and Italy
  • 12. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (1/6)
  • 13. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (2/6) • Keep processing to the minimum necessary.  Decide exactly what data is needed, whether it is within the scope of the GDPR and in what format it will be stored.  Pros: savings in storage, speedier use and easier and more complex analysis. Smart card/pass: biometric data (photograph, height), Smart traffic lights & real time driving guidance: only location data. • Purchase/develop/amend measures and systems according to Privacy by Design and Default. Smart systems: invest in new systems designed with privacy in mind and as a default
  • 14. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (3/6) • Develop processes to:  quickly find any breach,  find what has been damaged,  find which user has been affected,  notify affected user/supervisory authority/controller,  identify potentially risky situations,  effectively undertake Data Protection Impact Assessments. Smart card/pass: required Data Protection Impact Assessments because of sensitive personal data. • Provide training through seminars and exercises.
  • 15. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (4/6) • Draft/revise codes of conduct. • Join organizations promoting data security, which will start emerging. • Seek seals of approval, certificates and advice from relevant organizations. Data Protection Officer certification. • Decide on the appointment of a Data Protection Officer. Smart traffic lights and real-time driving guidance: Data Protection officer since processing involves systematic monitoring (usually by a public body such as the municipality). Same for smart card/pass
  • 16. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (5/6) • Data subjects:  Adopt processes so they have easy access to data held, e.g. dedicated section.  Draft data so it is understandable to them.  Adopt processes so they can exercise their rights. Easy application to organization handling smart cards/passes requesting erasure, quick procedure to erase upon request. • If consent is required, it should be fully informed consent.  Fully inform data subject.  Have easy consent form to be completed. During issuance of smart card/pass, consent should be requested and provided.
  • 17. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR PRACTICAL IMPLICATIONS OF THE GDPR (6/6) • Review/draft contracts with processors to ensure GDPR compliance. Smart traffic lights: the municipality (controller) assigns processing to outside agency and reviews/drafts contracts accordingly. • Document all systems/procedures/incidents. Electronic application for each request for erasure or guide as to what to do in a breach. • If data is to be transferred outside EU, additional safeguards should be in place. Safeguards: who will carry out an audit beforehand and what will be taken into account, possible authorization by supervisory authority and who/when will request it.
  • 18. Skiathos Island, GREECE 24-25 May 2018 THE SKIATHOS PALACE HOTEL Data Protection in Smart Cities: Application of the EU GDPR Conclusions Each of the big cities needs to leverage smart technology solutions Great amount of produced and shared data raise an increasing focus on privacy protection The GDPR will affect every organization that controls or processes data, as well as the data subjects Smart city services have to comply with the GDPR The GDPR increases obligations for entities that process personal data, but it also aims to encourage a Digital Single Market across the EU The GDPR plans to promote innovation, as long as organizations use the suitable shields.
  • 19. Contact Details Maria Stefanouli, MSc Civil Engineer, PhD student UTH  mstefanouli@gmail.com Chris Economou, LL.M, Lawyer  chris.economou@outlook.com If you are interested to read more papers: https://www.researchgate.net/profile/Maria_Stefanouli/publications