Using Blockchain to strengthen the rights granted through the GDPR
Електронний науковий архів Науково-технічної бібліотеки Національного університету "Львівська політехніка"
Переглянути архів Інформація| Поле | Співвідношення | |
| Title |
Using Blockchain to strengthen the rights granted through the GDPR
|
|
| Creator |
F. W. J. van Geelkerken
Konings, K. |
|
| Contributor |
Corporate Law and European Law, section Law & IT,Groningen University NORD Legal LLP
|
|
| Subject |
Blockchain
transparent Blockchain opaque Blockchain GDPR 2016/079 compliance |
|
| Description |
In this article we delineate two ways in which Blockchain technology could be utilised to store personal data in compliance with the requirements of the General Data Protection Regulation 2016/679, and what their up- and downsides are. |
|
| Date |
2018-04-12T13:06:07Z
2018-04-12T13:06:07Z 2017-12-23 2017-12-23 |
|
| Type |
Conference Abstract
|
|
| Identifier |
F. W. J. van Geelkerken Using Blockchain to strengthen the rights granted through the GDPR / F. W. J. van Geelkerken, K. Konings // Litteris et Artibus : proceedings, 23–25 November, 2017. — Lviv : Lviv Polytechnic Publishing House, 2017. — P. 458–461. — (4th International academic conference «law and psychology 2017» (LPS-2017)).
978-966-941-108-2 http://ena.lp.edu.ua:8080/handle/ntb/40463 F. W. J. van Geelkerken Using Blockchain to strengthen the rights granted through the GDPR / F. W. J. van Geelkerken, K. Konings // Litteris et Artibus : proceedings, 23–25 November, 2017. — Lviv : Lviv Polytechnic Publishing House, 2017. — P. 458–461. — (4th International academic conference «law and psychology 2017» (LPS-2017)). |
|
| Language |
en
|
|
| Relation |
Litteris et Artibus : матеріали, 2017
Litteris et Artibus : proceedings, 2017 https://link.springer.com/content/pdf/10.1007/3-540-38424-3.pdf [1] Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation. [2] For the difference in meaning between data and information see e.g. R.L. Ackoff, ‘From Data to Wisdom’ in Journal of Applies Systems Analysis, Volume 16, 1989 p 3-9. [3] Seeing the use of, and distinction between, the terms data and information in the GDPR is confusing at best, even though there is a significant difference between them, hereafter the terms data and information will be used as they are in the GDPR. [4] In cases where there is a discrepancy between the different ledgers – for instance because 10 changes were made simultaneously – the network resolves this by polling all nodes and the majority rules. [5] If a new block were to be added for each alteration this would create a security-risk of cryptanalysis. See E. Biham & A. Shamir, ‘Differential Crypt analysis of DES-like Cryptosystems’ in, Lecture Notes in Computer Science, Springer-Verlag, Berlin, 1990, p. 2-22. Freely accessible at https://link.springer.com/content/pdf/10.1007/3-540-38424-3.pdf [6] A hash-function is a function in information sciences which converts a very large dataset into (most often) a much smaller dataset. [7] For the reliability of hashing see e.g. C. Malinowsky & R. Noble, ‘Hashing and data integrity: Reliability of hashing and granularity size reduction’ in Digital Investigation, Volume 4 issue 2, 2007, p. 98-104. [8] In this case the term ‘transaction’ means any alteration i.e. addition to the chain and not necessarily any financial transaction. [9] van Heukelom et.al., Whitepaper Juridische aspecten van Blockchain, p. 7-11.Freely accessible at (Dutch only). [10] Instead of the terms transparent- and opaque Blockchain they refer to them as open- and closed Blockchains. [11] Consideration 26 GDPR (only) states that the principles of data protection should not apply to […] personal data rendered anonymous in such a manner that the data subject is not or no longer identifiable, as such the anonymisation would not need to be irreversible. The different (national) supervisory authorities have, however, ruled that a reversible anonymised personal data are also personal data in the sense of Directive 95/46/EC, the predecessor of the GDPR. [12] And conversely it creates an obligation for the processor to alter or erase the stored personal data if requested to do so by the data subject. [1] Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation. [2] For the difference in meaning between data and information see e.g. R.L. Ackoff, ‘From Data to Wisdom’ in Journal of Applies Systems Analysis, Volume 16, 1989 p 3-9. [3] Seeing the use of, and distinction between, the terms data and information in the GDPR is confusing at best, even though there is a significant difference between them, hereafter the terms data and information will be used as they are in the GDPR. [4] In cases where there is a discrepancy between the different ledgers – for instance because 10 changes were made simultaneously – the network resolves this by polling all nodes and the majority rules. [5] If a new block were to be added for each alteration this would create a security-risk of cryptanalysis. See E. Biham & A. Shamir, ‘Differential Crypt analysis of DES-like Cryptosystems’ in, Lecture Notes in Computer Science, Springer-Verlag, Berlin, 1990, p. 2-22. Freely accessible at https://link.springer.com/content/pdf/10.1007/3-540-38424-3.pdf [6] A hash-function is a function in information sciences which converts a very large dataset into (most often) a much smaller dataset. [7] For the reliability of hashing see e.g. C. Malinowsky & R. Noble, ‘Hashing and data integrity: Reliability of hashing and granularity size reduction’ in Digital Investigation, Volume 4 issue 2, 2007, p. 98-104. [8] In this case the term ‘transaction’ means any alteration i.e. addition to the chain and not necessarily any financial transaction. [9] van Heukelom et.al., Whitepaper Juridische aspecten van Blockchain, p. 7-11.Freely accessible at (Dutch only). [10] Instead of the terms transparent- and opaque Blockchain they refer to them as open- and closed Blockchains. [11] Consideration 26 GDPR (only) states that the principles of data protection should not apply to […] personal data rendered anonymous in such a manner that the data subject is not or no longer identifiable, as such the anonymisation would not need to be irreversible. The different (national) supervisory authorities have, however, ruled that a reversible anonymised personal data are also personal data in the sense of Directive 95/46/EC, the predecessor of the GDPR. [12] And conversely it creates an obligation for the processor to alter or erase the stored personal data if requested to do so by the data subject. |
|
| Rights |
© Національний університет “Львівська політехніка”, 2017
|
|
| Format |
458-461
4 application/pdf image/png |
|
| Coverage |
23–25 листопада 2017 року
23–25 November, 2017 Львів Lviv |
|
| Publisher |
Видавництво Львівської політехніки
Lviv Polytechnic Publishing House |
|