Abstract
This chapter investigates the impact of the new General Data Protection Regulations (GDPR) that came into force on 25 May 2018 about Data Subjects’ (DS) rights. The GDPR grants EU consumers, citizens, and others a range of specific DS’ rights. These can be utilized under particular conditions, such as protecting the personal data of EU citizens and assuring that data subjects’ rights can be exercised according to GDPR rules. The final aim is safeguarding the specific data processing context and operation of DS. Such safeguards need to be appropriate in all perspectives, but the risk to DS is a priority. They are typically a mix of more ‘technical safeguards’ and of organizational measures, anything that properly secures and protects the data of citizens, on top of all the measures that need to be taken in order to enable the exercise of DS’ rights. Therefore, due to the particular conditions of the rights that a DS has, this paper investigates the DS’ rights from the EU citizens’ perspective and the extent to which they are aware of their rights and how to exercise them. According to article 23 GDPR, DS’ rights are not absolute; there are several conditions in which the EU or the Member State’s laws need to comply with fundamental rights and freedoms to avoid breach.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
- 2.
See Article 4 (1, 13-15) GDPR.
- 3.
See Directive 95/46/EC; Article 3(2) GDPR; European Court Justice (ECJ), 13 May 2014 C-131/12 Google Spain SL, Google Inc. Agencia Española de Protección de Datos (AEPD) c/Mario Costeja González.
- 4.
Recital 23–24 GDPR.
- 5.
See Recital 38 GDPR.
- 6.
Eurobarometer Survey 431 (2015). Attitudes on data protection and electronic identity in the European Union. Bruxelles, June, p. 109.
References
Auwermeulen, B. V. (2017). How to attribute the right to data portability in Europe: A comparative analysis of legislations. Computer Law & Security Review, 33(1), 57–72. https://doi.org/10.1016/j.clsr.2016.11.012.
Custers, B., Dechesne, F., Sears, A. M., Tani, T., & Hof, S. V. (2017). A comparison of data protection legislation and policies across the EU. SSRN Electronic Journal.
Hert, P. D., Papakonstantinou, V., Malgieri, G., Beslay, L., & Sanchez, I. (2018). The right to data portability in the GDPR: Towards user-centric interoperability of digital services. Computer Law & Security Review, 34(2), 193–203. https://doi.org/10.1016/j.clsr.2017.10.003
Macenaite, M., & Kosta, E. (2017). Consent for processing children’s personal data in the EU: Following in US footsteps? Information & Communications Technology Law, 26(2), 146–197. https://doi.org/10.1080/13600834.2017.1321096.
Malgieri, G., & Custers, B. (2018). Pricing privacy – the right to know the value of your personal data. Computer Law & Security Review, 34(2), 289–303. https://doi.org/10.1016/j.clsr.2017.08.006.
Uddin, M. (2017, May 17). GDPR – The data subject, citizen or resident? Retrieved from https://cybercounsel.co.uk/data-subjects/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Switzerland AG
About this chapter
Cite this chapter
Emili, A.M. (2019). Data Subject. In: Bartolini, A., Cippitani, R., Colcelli, V. (eds) Dictionary of Statuses within EU Law. Springer, Cham. https://doi.org/10.1007/978-3-030-00554-2_17
Download citation
DOI: https://doi.org/10.1007/978-3-030-00554-2_17
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-00553-5
Online ISBN: 978-3-030-00554-2
eBook Packages: Law and CriminologyLaw and Criminology (R0)