CROSS-POSTED FROM OPENDEMOCRACY.NET.
The European UnionData Protection Directive of 1995 has always had lofty, and in many ways implausible, ambitions. As regards the private sector, it seeks to outlaw the input, storage or other processing on computer of any information relating to a living individual “data subject” (irrespective of whether the information is innocuous and/or widely available in the public domain) unless in each and every case that processing complies with a set of provisions put in place to ensure the protection of “the fundamental rights and freedoms of natural persons, and in particular their right to privacy” (Art. 1 (1)).
Subject to certain qualified and limited exemptions, that code requires that all data “controllers” – that is anyone who either “alone or jointly” determines the “purposes and means” of processing (Art. 2 (d)) – comply with a set of detailed rules designed inter alia to ensure fairness and…
View original post 1,419 more words