Summary
Information privacy, data privacy or data protection laws provide a legal framework on how to obtain, use and store data of natural persons. The various laws around the world describe the rights of natural persons to control who is using its data. This includes usually the right to get details on which data is stored, for what purpose and to request the deletion in case the purpose is not given anymore. Over 80 countries and independent territories, including nearly every country in Europe and many in Latin America and the Caribbean, Asia, and Africa, have now adopted comprehensive data protection laws. The European Union has the General Data Protection Regulation (GDPR), in force since May 25, 2018. The United States is notable for not having adopted a comprehensive information privacy law, but rather having adopted limited sectoral laws in some areas like the California Consumer Privacy Act (CCPA). These laws are based on fair information practice guidelines developed by the U.S. Department for Health, Education and Welfare (HEW) (later renamed Department of Health & Human Services (HHS)), by a Special Advisory Committee on Automated Personal Data Systems, under the chairmanship of computer pioneer and privacy pioneer Willis H. Ware. The report submitted by the Chair to the HHS Secretary titled "Records, Computers and Rights of Citizens (07/01/1973)", proposes universal principles for the privacy and protection of consumer and citizen data: For all data collected, there should be a stated purpose. Information collected from an individual cannot be disclosed to other organizations or individuals unless specifically authorized by law or by consent of the individual. Records kept on an individual should be accurate and up to date. There should be mechanisms for individuals to review data about them, to ensure accuracy. This may include periodic reporting. Data should be deleted when it is no longer needed for the stated purpose. Transmission of personal information to locations where "equivalent" personal data protection cannot be assured is prohibited.
About this result
This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.
Related lectures (72)
Data Privacy in eHealth Research
Explores data privacy challenges and perspectives in eHealth research, focusing on GDPR compliance, sensitive health data management, and decentralized agents.
Recent Biometrics
Explores the basics, benefits, risks, and global impact of recent biometrics technology.
Context Passing: Execution Contexts
Covers context passing vs type classes, execution contexts, tamper-proofing, and the importance of specificity in Scala.
Show more
Related publications (98)