TY  - BOOK
AU  - Welfare,Damien
TI  - Cornerstone on Information Law
T2  - Cornerstone On... Series
SN  - 9781784514129
AV  - KD1957.C65 W454 2019 
U1  - 342.410858 
PY  - 2019///
CY  - London
PB  - Bloomsbury Publishing Plc
KW  - Data protection-Law and legislation
KW  - Electronic books
N1  - Intro -- Table of Statutes -- Table of Statutory Instruments -- Table of European Legislation -- Table of Cases -- Part 1 Data Protection -- Section A Data Protection - Main Provisions -- 1 Introduction and Key Points -- 2 GDPR and Data Protection Act 2018 -- The GDPR -- Data Protection Act 2018 -- The GDPR and the Act -- Structure and Main Provisions of the Act -- Recitals to the GDPR -- The DPPEC Regulations 2019 -- 3 Definitions in the GDPR and Territorial Scope -- Definitions -- Territorial Scope of the GDPR -- Territorial Scope of the UK Provisions after Brexit -- 4 Data Protection Principles -- GDPR Data Protection Principles -- The New Accountability Principle -- 5 Lawful Bases of Processing -- Six Lawful Bases -- LIA Test - Preliminary Points -- Lawful Bases - Special Categories -- Exemptions/Lawful Bases in GDPR, Article 9 -- Substantial Public Interest Processing -- 6 Transparency and Privacy Notices -- Transparency -- Privacy Notices -- Section B Individual Rights -- 7 Right of Access -- Meaning of Access Request - In Summary -- Access Requests in Detail -- 8 Other Individual Rights -- Right to Rectification - Articles 16 and 19 (and Recital 65) -- Right to Erasure - Articles 17 and 19 (and Recitals 65 and 66) -- Right to Restriction of Processing - Articles 18 and 19 (and Recital 67) -- Right to Data Portability - Article 20 (and Recital 68) -- Right to Object - Article 21(1) (and Recital 69) -- Automated Decision-Making, including Profiling - Article 22 (and Recital 71) -- Section C Exemptions -- 9 Exemptions under the DPA 2018 -- Outline of Exemptions -- Exemptions in detail -- Section D Types of Data Processing Activity -- 10 Sharing Personal Data -- ICO Data Sharing Code -- 11 International Transfers -- 'Adequate Level' of Protection -- USA Transfers - Safe Harbor and Privacy Shield -- Appropriate Safeguards -- Derogations; Fallback: Non-Repetitive Transfer -- Cross-Border Flows of Data after Brexit -- 12 Electronic Communications and Marketing -- Privacy and Electronic Communications Regulations -- Section E Precautions, Advice and Enforcement -- 13 Data Protection Impact Assessments -- Background and when to conduct a DPIA -- Conducting a DPIA -- Other issues, including exemptions -- 14 Data Protection Officer -- Designation of a DPO -- Position of the DPO -- Tasks of the DPO -- 15 Data Breaches -- Assessing Risk -- Notification to ICO (GDPR, Article 33) -- Notification to Data Subjects (GDPR, Article 34) -- 16 Enforcement and Appeals -- Information Notices -- Assessment Notices -- Enforcement Notices -- Powers of Entry -- Penalty Notices -- Complaints to ICO and Appeals to Tribunal -- Court Remedies -- Section F Law Enforcement Processing -- 17 Law Enforcement Processing (DPA 2018, Part 3) -- Competent Authorities -- Data Protection Principles -- Rights of Data Subjects -- International Transfers -- Article 10 Processing (by persons other than 'competent authorities') -- Part 2 Environmental Information -- Section A Introduction, Definition and Comparison with Freedom of Information -- 18 The Breadth and Importance of Environmental Information -- Background to the EIR -- Relationship of EIR with the FOIA -- 19 Definition of Environmental Information -- Regulation 2(1)(a) - Elements of the Environment -- Regulation 2(1)(b) - Factors Affecting the Elements -- Regulation 2(1)(c) - Measures Affecting (or Protecting) the Elements or Factors -- Regulation 2(1)(d) - Reports on the Implementation of Environmental legislation -- Regulation 2(1)(e) - Cost-benefit and Other Economic Analyses -- Regulation 2(1)(f) - The State of Human Health and Safety etc -- 20 Similarities With, and Differences from, FOIA 2000 -- Summary of how EIR and FOIA compare; Section B Handling EIR Requests -- 21 Handling EIR Requests -- Who is Subject to EIR -- Mixed EIR/FOI Requests -- DEFRA Code -- Aggregation of Public Interest Factors -- Presumption in Favour of Disclosure - Article 12(2) -- Costs and Charges -- Section C Exemptions -- 22 EIR Exceptions 1: Regulation 12(4) -- Information not Held - Regulation 12(4)(a) -- Request Manifestly Unreasonable - Regulation 12(4)(b) -- Request too General - Regulation 12(4)(c) -- Material In Course of Completion etc - Regulation 12(4)(d) -- Public Interest Test - Regulation 12(4)(d) -- Internal Communications - Regulation 12(4)(e) -- 23 EIR Exceptions 2: Regulation 12(5) and Personal Data -- Harm Test -- Harm to International Relations, Defence, National Security or Public Safety - Regulation 12(5)(a) -- Course of Justice - Regulation 12(5)(b) -- Intellectual Property Rights - Regulation 12(5)(c) -- Confidentiality of Proceedings - Regulation 12(5)(d) -- Confidentiality of Commercial or Industrial Information - Regulation 12(5)(e) -- Interests of Voluntary Provider of Information - Regulation 12(5)(f) -- Harm to the Environment - Regulation 12(5)(g) -- Personal Data and EIR Requests - Regulation 13 -- Part 3 Freedom of Information -- 24 Duties and Process -- FOI Duties -- Datasets -- Section 45 Code -- Application of Act: Public Authorities -- Charging for Requests: (I) Publication Scheme -- Charging for Requests: (II) Information Requests -- No Duty to Comply: (I) Cost Limit for FOI Requests -- No Duty to Comply: (II) Vexatious or Repeated Requests -- Handling Exemptions and the Public Interest Test -- Internal Review and Appeals -- 25 Freedom of Information Exemptions 1 -- Grouping of FOI Exemptions -- FOI Exemptions (sections 21-29) -- 26 Freedom of Information Exemptions 2 -- FOI Exemptions (sections 30-44) -- 27 Personal Data in Information Requests -- Introduction; Outline of FOIA 2000, s 40 -- Requester's Own Data, and Joint 'Third Party' Data -- Third Party Data which are not the Data of the Requester -- First condition -- Second condition -- Third condition -- EIR and Personal Data -- FOI/EIR Requests to 'Competent Authorities' -- Appendices -- Appendix 1 - GDPR - (informal) List of Provisions -- Appendix 2 - Correlation Table between GDPR Recitals and Articles -- Appendix 3 - Data Protection Resources -- Appendix 4 - Environmental Information Regulations ('EIR') Resources -- Appendix 5 - Freedom of Information Act ('FOIA') Resources -- Appendix 6 - Re-use of Public Sector Information -- Index
UR  - https://ebookcentral.proquest.com/lib/orpp/detail.action?docID=6683649
ER  -