|
The Data Protection Directive (officially Directive 95/46/EC on the protection of individuals with regard to the processing of personal data and on the free movement of such data) is a European Union directive adopted in 1995 which regulates the processing of personal data within the European Union. It is an important component of EU privacy and human rights law. On 25 January 2012, the European Commission unveiled a draft European General Data Protection Regulation that will supersede the Data Protection Directive.〔 ==Context== The right to privacy is a highly developed area of law in Europe. All the member states of the European Union (EU) are also signatories of the European Convention on Human Rights (ECHR). Article 8 of the ECHR provides a right to respect for one's "private and family life, his home and his correspondence", subject to certain restrictions. The European Court of Human Rights has given this article a very broad interpretation in its jurisprudence. In 1980, in an effort to create a comprehensive data protection system throughout Europe, the Organization for Economic Cooperation and Development (OECD) issued its "Recommendations of the Council Concerning Guidelines Governing the Protection of Privacy and Trans-Border Flows of Personal Data".〔 (Guidelines on the Protection of Privacy and Transborder Flows of Personal Data ) The Organization for Economic Co-Operation and Development, last modified January 5, 1999.〕 The seven principles governing the OECD’s recommendations for protection of personal data were: # Notice—data subjects should be given notice when their data is being collected; # Purpose—data should only be used for the purpose stated and not for any other purposes; # Consent—data should not be disclosed without the data subject’s consent; # Security—collected data should be kept secure from any potential abuses; # Disclosure—data subjects should be informed as to who is collecting their data; # Access—data subjects should be allowed to access their data and make corrections to any inaccurate data; and # Accountability—data subjects should have a method available to them to hold data collectors accountable for not following the above principles. The OECD Guidelines, however, were nonbinding, and data privacy laws still varied widely across Europe. The U.S., meanwhile, while endorsing the OECD's recommendations, did nothing to implement them within the United States.〔 However, all seven principles were incorporated into the EU Directive.〔 In 1981 the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data was negotiated within the Council of Europe. This convention obliges the signatories to enact legislation concerning the automatic processing of personal data, which many duly did. The European Commission realised that diverging data protection legislation amongst EU member states impeded the free flow of data within the EU and accordingly proposed the Data Protection Directive. 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「Data Protection Directive」の詳細全文を読む スポンサード リンク
|