Closed Consultations

MoJ Evidence on EC Data Protection proposal

I’ve just sent in a Janet Submission to the Ministry of Justice’s Call for Evidence on the EU Data Protection proposals. Our response mentions the good and bad things about the proposal, as discussed here previously, for

  • Internet Identifiers: still no clarity on when IP addresses etc. are personal data, but at least more realistic provision for when they are;
  • Incident Response: good to have this explicitly recognised as important for protecting privacy and building trust, but some risk that legislation may create barriers to necessary and proportionate sharing of information about incidents;
  • Breach Notification: concern that timescales for reporting (and penalties for not meeting them) are unrealistic and may skew incident response priorities;
  • Cloud Computing: looks helpful for consumer clouds, but leaves the existing uncertainties for those outsourcing to cloud providers.

By Andrew Cormack

I'm Chief Regulatory Advisor at Jisc, responsible for keeping an eye out for places where our ideas, services and products might raise regulatory issues. My aim is to fix either the product or service, or the regulation, before there's a painful bump!

Leave a Reply

Your email address will not be published. Required fields are marked *