|
Site map | |  |
serch | |
|
|
||||||||||||
|
|
||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
|
European Commission issued a Decision On 8 May 2008 the European Commission issued a Decision pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequate protection of personal data in Jersey C(2008) 1746). Files:
Spring Conference of the European Privacy and Data Protection Authorities, Rome, 17-18 April 2008 On 17-18 April 2008 the Inspector General for Personal Data Protection participated in the Spring Conference of the European Privacy and Data Protection Authorities organised in Rome by the Italian Data Protection Authority. A motto chosen for the Conference was "What Outlook for Privacy in Europe and Beyond". At the Session on "Privacy and Security" the Inspector General for Personal Data Protection delivered a speech on Data Protection in the Area of Freedom, Security and Justice in the Light of the Lisbon Treaty nasza-klasa.pl - inspection results On 4 February 2008 the press conference entitled ‘What has happened to Nasza-klasa’ was held in the premises of the Bureau of the Inspector General for Personal Data Protection. Mr Micha³ Serzycki, the Inspector General for Personal Data Protection and Mr Maciej Popowicz, President of ‘Nasza-klasa.pl’ company participated in the press conference.
The Inspector General presented a summary of the inspection results. He indicated that the website meets the requirements concerning personal data security, but some reservations have also been noted. A lack of written complaints handling procedures was found. Some additional measures while users are logging in to the website are also indispensable. GIODO to check nasza-klasa.pl website The Inspector General's press conference on the processing of personal data by the 'nasza-klasa.pl' - social networking website.
A press conference organized by the Inspector General for Personal Data Protection was held on 16 January 2008 (11.00 am) to answer the question whether our personal data are safe at 'nasza-klasa.pl' website. The Inspector General announced that inspection activities are planned in order to check the compliance of the portal with the data protection regulations, and in particular with technical and organizational measures that guarantee appropriate protection of personal data. Social networking at 'nasza.klasa.pl' - does a good fun of searching for old fiends pose any risk to your privacy? As the portal is one of the biggest personal data database (more than 6 million users have already logged in) and becomes more and more popular the Inspector General decided to check whether the processing of data in question is secure. The inspection activities will be focused on security measures as such a big database may pose a risk of uncontrolled data leakage. It is to be stressed that that all data sent to and from the website without any secure protocols and therefore they may be intercepted and read easily. Data protection authority wants to make the portal's users aware of existing risks because information posted by them are considered personal data and may be intercepted by unauthorized persons and further negative consequences may occur. Almost everything can be found on the Internet about every Net user. When we disclose information about us which are often of a very personal nature we are not aware of the risks of such behaviour. This information is displayed not only to your friends but also others who may use them in a way that may cause harm to us. The Inspector General would like you to be aware of the necessity to protect your privacy and personal data. We should not rather lay all our cards on the table. The latest technological developments that appear nowadays should always be used wisely. 2nd DATA PROTECTION DAY 2008 Seminar on Data Protection in the Schengen AreaOn 28 January 2008 (from 9.00 am to 10.00 am) Mr Micha³ Serzycki, the Inspector General for Personal Data Protection and Prof. Andrzej K. Ko¼miñski, vice-chancellor of the Leon Ko¼miñski Academy of Entrepreneurship and Management in Warsaw organised a seminar (so called 'scientific breakfast') on 'Data Protection in the Schengen Area'. As a result of actions taken by the Members States of the Schengen Area to implement Schengen Acquis, internal borders controls were abolished and unified rules were set out as regards external borders controls and common visa policy. These actions had a direct impact upon citizens' life and in particular the free flow of persons. The seminar was a great opportunity to exchange views on data protection among scientific circles and to systemise the knowledge in order to resolve many problems in the changing legal circumstances. Meeting with the Inspector General (30 January 2008, Brussels) On 30 January 2008 events were held in Brussels to celebrate the Data Protection Day adopted by the Council of Europe.
The meeting organised by the Inspector General for Personal Data Protection with Polish members of the European Parliament and employees of their offices was held in the premises of the European Parliament. At the meeting the role of the Inspector General in the Schengen Information System and issues related to setting up the European Passenger Name Record (system that enables the collection of passenger's personal data from the airlines' reservation systems) were discussed. Mr Micha³ Serzycki, Inspector General for Personal Data Protection and Mr Piotr Drobek, Deputy Director in Social Education and International Cooperation Department delivered lectures on the issues mentioned above. During the discussion carried out at the end of the meeting the current data protection problems such as social networking at 'nasza-klasa.pl' and direct marketing issues were also raised. The closing event of Data Protection Day in Brussels was a celebration at the Permanent Representation of the Republic of Poland to the European Union organised by Mr Micha³ Serzycki, Inspector General for Personal Data Protection and Mr Jan Tombiñski, Permanent Representative of Poland to the European Union. The speeches were delivered by Mr Francesco Pizzetti, President of the Police Working Party, Mr Joaquin Bayo Delgado, Assistant European Data Protection Supervisor and Mr Peter Michael, Joint Supervisory Authorities Secretary. This year's events were focused on issues concerning data protection in the Schengen Area, creation of the European system of collection of passengers' data from the airlines reservation systems and work on the Framework decision on the protection of personal data processed in the framework of police and judicial co-operation in criminal matters. The Inspector General’s press conference on the Schengen Information System. On 17 December 2007 press conference entitled 'Is your data secure in the Schengen Information System' was held in the Bureau of the Inspector General for Personal Data Protection. It was dedicated to Poland's entry into the Schengen Area and the role of the Inspector General as regards the use of the Schengen Information System.
The conference concerned two issues related to Poland's entry into the Schengen Area:
OPEN DAY in the Bureau of the Inspector General On 28 January 2008 the Open Day was held in the premises of the Bureau of the Inspector General for Personal Data Protection. Information on data protection included in "Data protection ABC" - a publication prepared by the Inspector General was distributed among all interested participants. Films on data protection were shown and lectures were given on practical aspects of data protection as well as risks connected with virtual reality. On that day, the Bureau of the Inspector General was the place where interesting meetings took place and data protection experience was exchanged.
For children we organized drawing competition, knowledge competition, visiting our premises and other events. In the time of changes caused by the removal of barriers and growing interrelations between countries, promotion of data protection awareness among the European Union's citizens shall be deemed a matter of top priority. The conclusion of the agreement between the Inspector General for Personal Data Protection and Direct Marketing Association was also an important event. The agreement shall ensure cooperation for the improvement personal data protection and citizens' right to privacy. Direct Marketing Association pledged to take actions in order to make direct marketing organisations obliged to apply Direct Marketing Code of Practice. The Code defines the most important notions of direct marketing, obligations of data controllers and other provisions related to the collection and further use of personal data. The Inspector General has approved the Code and confirmed that it covers comprehensively data protection and direct marketing issues. The Parties agreed to maintain a close cooperation during the amendments of Data Protection Act and other legislative actions connected with personal data protection. Moreover, the Parties committed themselves to provide cooperation, advice and help (in the form of training courses, seminars, resolving the problems of application of data protection legislation etc.). The signed document follows the European legal provisions on personal data protection and FEDMA's 'European Code of Practice for the use of Personal Data in Direct Marketing'. Right to privacy in surveillance society On 22 and 23 October 2007 in Warsaw, in the Column Room of the Sejm (Polish Parliament) took place the International Conference entitled “Right to privacy in surveillance society” commemorating the 10th anniversary of the adoption of the Polish Data Protection Act, organized by the Inspector General for Personal Data Protection. It was accompanied by workshops “Privacy and the Media” organized in cooperation with the European Commission, which allowed to discuss the questions of privacy and data protection in the context of journalism. I shall like to sincerely thank all the participants for taking part in the Conference. Micha³ Serzycki Every our step is followed by cameras Dziennik, 23 October 2007 New technologies used in monitoring limit citizens’ right to privacy Gazeta Prawna, 23 October 2007 Right to privacy and new technologies Gazeta Prawna, 24 October 2007 PRIVACY OF PUBLIC FIGURES We do not limit access to important information „Gazeta Prawna” daily’s debate / Privacy protection in Polish and European jurisdiction SUMMARY OF THE 9TH MEETING OF THE CEEDP COMMISSIONERS (Zadar, 4-6 June 2007) Press release of the Data Protection Agency of the Region of Madrid Pre-titleThe deadline for submitting applications is open till October 3rd 2007. Title The Data Protection Agency of the Region of Madrid announces the Fourth Edition of its Prize to the European Data Protection Best Practices in Public Administrations. Summary With this prize the Data Protection Agency of the Region of Madrid wants to promote the growth of a "data protection culture" after the success obtained with the three previous editions, and awarded to the City Council of Vitoria-Gasteiz (2004), the Government and Data Protection Commission of Austria (2005), and the City Council of Madrid and the National Health Service of the United Kingdom (2006). BODY The Official Gazette of the Madrid Regional Government publishes the 2nd April 2007, the Resolution dated 16th March 2007 issued by the Director of the Data Protection Agency of the Madrid Regional Government announcing the Fourth Edition of the Prize to the Best Practices of European Public Administrations as regards Data Protection. This initiative aims to spread the awareness of best practices in data protection proposed or implemented for data processing by any body or institution of the public administrations of any of the countries which signed the Convention of 28 January 1981 of the Council of Europe for the protection of individuals as regards automated processing of personal data. Best practices to be considered may deal with different aspects such as the improvement of the quality of the personal data, the design of efficient systems for the information to the citizens regarding the collection of personal data, the management of the data subject's consent for the processing of personal data, data security, duty of secrecy, etc… Applications may be submitted either in Spanish or in English before October 3rd drawn up according to the sample form included as Annex to the Resolution of the announcement of the award. They shall be submitted by post or in person at the Registry of the Data Protection Agency of the Community of Madrid calle Cardenal Marcelo Spínola, número 14, tercera planta, 28016 Madrid or at any Registry of the Madrid Regional Government, or sent by e-mail to apdcm@madrid.org. Application forms must be accompanied by a full dossier explaining the project and for projects which have been implemented, a detailed report for the implementation and current situation. The third edition of the prize was announced in 2006 and was awarded to the projects "Providing Confidentiality and Information Management and Technology Security service to the United Kingdom NHS organisations across South and West Yorkshire" and "Data Protection Plan 2005-2006 of the City of Madrid". Special mentions of the prize were awarded to the projects delivered by the Kidney Transplant Network of Germany (Quasi-Niere) and the University of Malaga and Rediris. The best experiences identified will be publicized within the field of activity of the European project "e-PRODAT: Data Protection Best Practices in Regional e-Government Services", in which the Data Protection Agency of the Community of Madrid participates as leader and which has obtained FEDER financing from the European Union within the INTERREG IIIC community initiative. Press Release on the SWIFT Case Press Release on the SWIFT Case following the adoption of the Article 29 Working Party opinion on the processing of personal data by the Society for Worldwide Interbank Financial Telecommunication (SWIFT) Passenger name record data On 19 October 2006 the European Union and the United States signed the agreement concerning transfer of airlines passengers personal data (PNR Data) by air carriers to the Department of Homeland Security of the United States. New agreement outlines the principles of the transfer of personal data of air carrier’s passengers to the US customs and border protection services and is aimed at fighting terrorism and international crime and in the same time at guaranteeing a proper level of privacy and personal data protection, which is required inside the European Union. The agreement was signed after the European Tribunal of Justice lifted the Decision of the European Commission of 30 May 2006 concerning proper protection of personal data included in the Passenger Name Record (PNR) transferred to US Customs and Border Protection Office and the Decision of Council concerning the agreement between the European Union and the United States on the processing and transfer of PNR data included in the reservation systems by air carriers to the Department of Homeland Security of the United States and the US Customs and Border Protection Office. EUROPOL - press statement On instigation of the Europol Joint Supervisory Body, the EU Parliament, the Commission, the Secretariat General of the Council and various other institutions met on 17 October in Brussels to discuss data protection challenges and Europol. e-GIODO The Act on the automation of the activities of the entities executing public tasks (Act from February the 17th, 2005; Journal of Laws N. 64, item 565, with amendments) imposes requirements concerning the computer systems used by public entities. It also imposes an obligation to ensure electronic access to information gathered in public registers. Moreover, the Act allows the exchange of documents necessary to address the issues being a part of the activity of the public entities by using the data storage media or other means of electronic communication.
In order to exercise the obligations stemming from the preceding Act, the Inspector General for the Protection of Personal Data introduced the computer system called "Electronic platform of communication with the Inspector General for the Protection of Personal Data" (E-GIODO). The execution of the E-GIODO project is possible thanks to the European programme "Operating Sectoral System- The Improvement of Competitiveness of the Enterprises, years 2004-2006". The E-GIODO system is introduced within the scope of activity 1.5 of the aforementioned programme aimed to develop a system enabling entrepreneurs to gain on-line access to information and public services. This activity is about to ensure the development of entrepreneurship and new technologies through the reinforcement of business institutions. E-GIODO system ensures: 1. The open register on the Internet The E-GIODO system ensures electronic access to the information included in the open files register conducted by the Inspector General for the Protection of Personal Data. So far, the Inspector General for the Protection of Personal Data has been in charge of the national files register using exclusively the central computer system installed in the Bureau of the Inspector General. The right to consult this register was guaranteed for everyone, however only on the spot (in the Bureau of the Inspector General) and using the computer intended specially for this activity. Soon, the access to the data collected in the register will be provided to everybody via the Internet. It will be possible to search for personal data by means of various criteria like the name of the file, the name of the data controller or its seat. 2. The notification of data filing system to registration and its update via the Internet The implementation of the E-GIODO system enables as well to notify the data files to registration and to update them via the Internet. So far, the notification of data files to registration and update of the notified data was conducted exclusively in the form of the documents on paper. The notification form can be filled in with the help of the special programme installed on the website of the Inspector General www.giodo.gov.pl which, by means of the system of hints and suggestions, will minimise the risk of wrongfully filling in the form by the applicant. Then, the applicant will have the possibility of sending the notification via the Internet, on the condition that he/she has the electronic specimen signature, if not there will always be the possibility to send the printed version of the notification via regular mail. The E-GIODO system is aimed to facilitate the communication with the Inspector General for the Protection of Personal Data. Because of this system, everyone will be able safely handle the issues safely which currently require traditional forms of correspondence or, in the case of the access to the files register, the personal contact, which can be difficult for those who live relatively far from the seat the Inspector General. Moreover, the provided help in the fulfilment of the notification form to register data files will, apart from facilitating the task to the applicants, reduce the number of errors in the applications which make it necessary to conduct the explanatory proceedings- and that can influence the effectiveness of the work carried out by the Bureau of the Inspector General. |
|
|
||||||||||||||||||||||||||
|
|
|
|||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
|
|
|
|||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||
