Privacy principles, risks and harms

David Wright; Charles Raab

doi:10.1080/13600869.2014.913874

Privacy principles, risks and harms

David Wright, Charles Raab

School of Social and Political Science

Research output: Contribution to journal › Article › peer-review

Abstract

The protection of privacy is predicated on the individual’s right to privacy and stipulates a number of principles that are primarily focused on information privacy or data protection and, as such, are insufficient to apply to other types of privacy and to the protection of other entities beyond the individual. This article identifies additional privacy principles that would apply to other types of privacy and would enhance the consideration of risks or harms to the individual, to groups and to society as a whole if they are violated. They also relate to the way privacy impact assessment (PIA) may be conducted. There are important reasons for generating consideration of and debate about these principles. First, they help to recalibrate a focus in Europe on data protection to the relative neglect of other types of privacy. Second, it is of critical importance at a time when PIA (renamed ‘data protection impact assessment’, or DPIA) may become mandatory under the European Commission’s proposed Data Protection Regulation. Such assessment is an important instrument for identifying and mitigating privacy risks, but should address all types of privacy. Third, one can construct an indicative table identifying harms or risks to these additional privacy principles, which can serve as an important tool or instrument for a broader PIA to address other types of privacy.

Original language	English
Pages (from-to)	277-298
Journal	International Review of Law, Computers and Technology
Volume	28
Issue number	3
Early online date	4 Jun 2014
DOIs	https://doi.org/10.1080/13600869.2014.913874
Publication status	Published - 2 Sept 2014

Keywords / Materials (for Non-textual outputs)

privacy principles
types of privacy
privacy risks
privacy impact assessmen
surveillance impact assessment

Access to Document

10.1080/13600869.2014.913874

Wright, D., & Raab, C. (2014). Privacy principles, risks and harms
This is an Accepted Manuscript of an article published by Taylor & Francis in Review of Law, Computers and Technology on 02/09/2014, available online: http://wwww.tandfonline.com/10.1080/13600869.2014.913874.
Accepted author manuscript, 212 KB

http://www.tandfonline.com/doi/abs/10.1080/13600869.2014.913874

Charles Raab
- School of Social and Political Science - UoE Honorary staff
Person: Affiliated Independent Researcher

Cite this

@article{8794c332b59d41868c4b7c9d1464c866,

title = "Privacy principles, risks and harms",

abstract = "The protection of privacy is predicated on the individual{\textquoteright}s right to privacy and stipulates a number of principles that are primarily focused on information privacy or data protection and, as such, are insufficient to apply to other types of privacy and to the protection of other entities beyond the individual. This article identifies additional privacy principles that would apply to other types of privacy and would enhance the consideration of risks or harms to the individual, to groups and to society as a whole if they are violated. They also relate to the way privacy impact assessment (PIA) may be conducted. There are important reasons for generating consideration of and debate about these principles. First, they help to recalibrate a focus in Europe on data protection to the relative neglect of other types of privacy. Second, it is of critical importance at a time when PIA (renamed {\textquoteleft}data protection impact assessment{\textquoteright}, or DPIA) may become mandatory under the European Commission{\textquoteright}s proposed Data Protection Regulation. Such assessment is an important instrument for identifying and mitigating privacy risks, but should address all types of privacy. Third, one can construct an indicative table identifying harms or risks to these additional privacy principles, which can serve as an important tool or instrument for a broader PIA to address other types of privacy.",

keywords = "privacy principles, types of privacy, privacy risks, privacy impact assessmen, surveillance impact assessment",

author = "David Wright and Charles Raab",

year = "2014",

month = sep,

day = "2",

doi = "10.1080/13600869.2014.913874",

language = "English",

volume = "28",

pages = "277--298",

journal = "International Review of Law, Computers and Technology",

issn = "1360-0869",

publisher = "Routledge",

number = "3",

}

TY - JOUR

T1 - Privacy principles, risks and harms

AU - Wright, David

AU - Raab, Charles

PY - 2014/9/2

Y1 - 2014/9/2

N2 - The protection of privacy is predicated on the individual’s right to privacy and stipulates a number of principles that are primarily focused on information privacy or data protection and, as such, are insufficient to apply to other types of privacy and to the protection of other entities beyond the individual. This article identifies additional privacy principles that would apply to other types of privacy and would enhance the consideration of risks or harms to the individual, to groups and to society as a whole if they are violated. They also relate to the way privacy impact assessment (PIA) may be conducted. There are important reasons for generating consideration of and debate about these principles. First, they help to recalibrate a focus in Europe on data protection to the relative neglect of other types of privacy. Second, it is of critical importance at a time when PIA (renamed ‘data protection impact assessment’, or DPIA) may become mandatory under the European Commission’s proposed Data Protection Regulation. Such assessment is an important instrument for identifying and mitigating privacy risks, but should address all types of privacy. Third, one can construct an indicative table identifying harms or risks to these additional privacy principles, which can serve as an important tool or instrument for a broader PIA to address other types of privacy.

AB - The protection of privacy is predicated on the individual’s right to privacy and stipulates a number of principles that are primarily focused on information privacy or data protection and, as such, are insufficient to apply to other types of privacy and to the protection of other entities beyond the individual. This article identifies additional privacy principles that would apply to other types of privacy and would enhance the consideration of risks or harms to the individual, to groups and to society as a whole if they are violated. They also relate to the way privacy impact assessment (PIA) may be conducted. There are important reasons for generating consideration of and debate about these principles. First, they help to recalibrate a focus in Europe on data protection to the relative neglect of other types of privacy. Second, it is of critical importance at a time when PIA (renamed ‘data protection impact assessment’, or DPIA) may become mandatory under the European Commission’s proposed Data Protection Regulation. Such assessment is an important instrument for identifying and mitigating privacy risks, but should address all types of privacy. Third, one can construct an indicative table identifying harms or risks to these additional privacy principles, which can serve as an important tool or instrument for a broader PIA to address other types of privacy.

KW - privacy principles

KW - types of privacy

KW - privacy risks

KW - privacy impact assessmen

KW - surveillance impact assessment

U2 - 10.1080/13600869.2014.913874

DO - 10.1080/13600869.2014.913874

M3 - Article

SN - 1360-0869

VL - 28

SP - 277

EP - 298

JO - International Review of Law, Computers and Technology

JF - International Review of Law, Computers and Technology

IS - 3

ER -

Privacy principles, risks and harms

Abstract

Keywords / Materials (for Non-textual outputs)

Access to Document

Fingerprint

Profiles

Charles Raab

Cite this