Lesson 3The importance of privacy in project management
- Notion 15 - Why does privacy matter for project management?
- Notion 16 - What is considered user personal data?
- Notion 17 - Privacy legislation in the EU
- Notion 18 - Data protection principles
- Notion 19 - The legal ramifications of violating privacy
- Notion 20 - Privacy by Design: matching design with privacy needs
- Notion 21 - Consent is the magic word
- Notion 22 - The role of the project manager in ensuring privacy
- Notion 23 - Conducting a Privacy Impact Assessment
- Notion 24 - How can data protection lead to more sustainable project management?
- Notion 25 - Quiz
Notion 17
Privacy legislation in the EU
Target skills
The EU Charter of Fundamental Rights stipulates that EU citizens have the right to protection of their personal data.
In order to ensure the legal protection of personal data and clarify business rules in the digital market, the European Union has put in place several instruments and authorities.
The General Data Protection Regulation (GDPR)
Approved in 2016, the GDPR went into full effect in 2018. It applies to all sectors (public or private) and organisations. This is the reference regulation to which companies must comply. It sets rules for data processing, which means targeting, collecting, recording, storing and transferring European citizens or entities’ data, inside or outside Europe. The European Commission and Data Protection Authorities propose official guidelines to help companies with their compliance process.
See different guides and guidelines on the GDPR official website: https://gdpr.eu/compliance/
For more information about the GDPR, see lesson 4.
The Data Protection Law Enforcement Directive (LED)
This directive deals with “the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data.”
GDPR and LED have distinct and complementary scopes in terms of data protection.
The European Data Protection Board (EDPB)
The mission of the EDPB is ensuring the consistent application of data protection rules throughout the European Union.
The EDPB provides advice and news on the issue of data protection at EU level. It is a useful source to follow.
See EDPB website : https://edpb.europa.eu/edpb_en
To go further
To know more about GDPR, how it applies, your rights and obligations: https://europa.eu/youreurope/business/dealing-with-customers/data-protection/data-protection-gdpr/index_en.htm