1. Cyber (in)security of personal data and information in times of digitizationMiha Dvojmoč, Mojca Tancer Verboten, 2022, original scientific article Abstract: In an employment relationship, work and pay are no longer the only important aspects, as importance is increasingly shifting toward obligations concerning the protection of personal data and privacy arising from the prohibition of causing harm to the employer and the duty of loyalty to the employer. The article deals with the constitutionally protected right to privacy and the protection of personal data from the point of view of ensuring cyber security at the employer. The employer is obligated to protect the right to privacy by legal provisions, whereas from the point of view of ensuring the protection of privacy and information, the employer must protect, first and foremost, the personal data of employees. The main purpose of the legal protection of personal data is the lawful and fair processing of the personal data of individuals. Employers are thus facing an increasing number of risks related to the safety of employees and the security of business processes, and it is therefore important to establish comprehensive corporate security to ensure adequate security across all levels.
Keywords: cyber security, protection of personal data, protection of privacy, cyber threats, protection of business secrets
Published in DKUM: 11.06.2024; Views: 150; Downloads: 30
 Full text (375,13 KB)
This document has many files! More... |
2. The policing perspective of personal data protection and the right to be forgotten in Europe and in the Republic of SloveniaMiha Dvojmoč, Tinkara Bulovec, Katja Eman, 2023, review article Abstract: Purpose:
The article raises the question, whether the data protection regulation in
police procedures is sufficient and whether it does not ‘harm’ the person subject
to the procedure.
Design/Methods/Approach:
The impact, advantages and disadvantages of legislative changes on
implementing specific police tasks (e.g. biometric data, facial recognition
systems and automatic identification of vehicle registration plates) are presented,
emphasising regulation in the Republic of Slovenia as a systematic literature
review.
Findings:
The latest changes in personal data protection were related to the definition,
collection, processing, use, transmission and storage of personal data. An
individual has rights relating to access to information, processing, correction,
restrictions on use, transferability, deletion and objection to the processing of
personal data. When police operate within the law, their powers must align with
constitutional and legal provisions. This alignment safeguards interventions
in individual privacy. Yet, without legal clarity, known as lex certa, there’s a
risk of actions becoming unwarranted intrusions into rights and freedoms. A
consensus is needed between the protection of individual privacy and enabling
the effective investigation and control of crime by law enforcement authorities.
Research Limitation/Implications:
The research was focus only on data protection regulation in police
procedures.
Practical Implication:
The findings of the article offer insight into data protection regulation in
police procedures and highlights the gaps and formulate starting points for
future research. Originality/Value:
The article is the first systematic literature review in data protection in police
procedures in Slovenia.
Keywords: protection of personal data, GDPR, police procedures, right to be forgotten, Slovenia
Published in DKUM: 15.01.2024; Views: 287; Downloads: 17
 Link to file
This document has many files! More... |
3. Is the essential facilities doctrine fit for access to data cases? The data protection aspectRok Dacar, 2022, original scientific article Abstract: Personal data can be of great economic value for companies as it is an essential input for the offering of a wide array of services. One way for a company to obtain access to essential personal data controlled by another company is by demanding mandatory access on the grounds of the essential facilities doctrine. Such access, however, can violate the right to the protection of personal data of the data subjects if it is not based on one of the legitimate grounds for the processing of personal data set by the GDPR. Two of these grounds are especially likely to be applicable to the access to personal data mandated using the essential facilities doctrine: the interpretation of the Commission decision or the judgment of the Court of Justice ordering the granting of access as a legal obligation and the legitimate interest of the company requesting access, for such access. The anonymisation of personal data is not a viable option for the circumvention of the rules of the GDPR as anonymised personal data loses most of its economic relevance for companies.
Keywords: essential facilities doctrine, right to protection of personal data, grounds for processing personal data, anonymisation of personal data, General Data Protection Regulation
Published in DKUM: 26.09.2023; Views: 394; Downloads: 13
Full text (657,05 KB)
This document has many files! More... |
4. The Impact of the EU General Data Protection Regulation (GDPR) on mobile devicesDomen Hribar, Miha Dvojmoč, Blaž Markelj, 2018, original scientific article Abstract: Purpose:
The purpose of this paper is to examine novelties introduced by the European Regulation (2016/679) on the Protection of Natural Persons with Regard to the Processing of Personal Data (GDPR) and its key impacts on mobile device users. The paper also presents some of the main changes affecting both natural persons and legal entities. Further, certain issues that might occur while implementing the Regulation are raised together with the degree of individuals’ awareness of the need to protect the personal data stored on their mobile devices.
Design/Methods/Approach:
For the purpose of this paper, we reviewed the legislation, Slovenian and international literature, brochures and media stories in the field of personal data protection. We also used a questionnaire to determine the degree of awareness of the importance of protecting personal data among the general population.
Findings:
The findings show that no revolutionary changes are introduced. Nevertheless, quite a few novelties concern data controllers and processors. In particular, penalties for breaching the GDPR are now much higher. Individuals’ rights are strengthened and easier to control. In contrast, data controllers and processors are subject to more stringent duties and legal obligations. These changes also apply to mobile device users. The research findings show that individuals are relatively well aware of the concept of personal data; however, the scope of their knowledge shrinks as this concept becomes increasingly complex. Familiarity with the new Regulation (2016/679) having been introduced at the EU level was claimed by 55% of the respondents (N = 195).
Research Limitations / Implications:
The limitations stem from the selective choice of the GDPR’s impact on mobile device users. More important influences are emphasised.
Originality/Value:
The findings will help both individuals and legal entities understand the changes brought to the area of data protection and tackle them more successfully.
Keywords: personal data protection, GDPR, Personal Data Protection Act, mobile devices
Published in DKUM: 20.04.2020; Views: 1403; Downloads: 88
Full text (366,32 KB)
This document has many files! More... |
