Talk:General Data Protection Regulation
Page contents not supported in other languages.
 | This article is ratedC-class on Wikipedia'scontent assessment scale. It is of interest to the followingWikiProjects: | ||||||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||||||
 | Thisarticle is written inEU English, which uses British/Irish spelling conventions (colour, realise, travelled) and some terms may be different or absent from other varieties of English. |
 | A news item involving General Data Protection Regulation was featured on Wikipedia'sMain Page in theIn the news section on26 May 2018. |  |
 Archives (Index) |
This page is archived byClueBot III. |
At the beginning of the article it says: "The regulation became a model for many national laws outside the EU, including United Kingdom, Turkey, Mauritius, Chile, Japan, Brazil, South Korea, Argentina and Kenya. The California Consumer Privacy Act (CCPA), adopted on 28 June 2018, has many similarities with the GDPR." the reference for that is number 2 which is an article on the sites advisera.com titled "The differences between the California Consumer Privacy Act and the GDPR" about the CCPA but as far as I could see doesn't mention any other nations. Did I miss something in that article or is there another source to support this claim? I believe it is true but would like to see a solid reference for it. --MadScientistX11 (talk)23:16, 15 October 2021 (UTC)[reply]
Industry lawyers have for a long term advocated that the GDPR would have a "risk based approach". This is not correct, while some articles of the GDPR do refer to risk (e.g. Article 32 GDPR on security), the notion that the entire law should only be complied with if there is a "risk", is not correct. The relevant section of the Wikipedia article is only referring to one (!) source, not the any element of the law. It should be deleted.Maxschrems (talk)19:11, 21 January 2023 (UTC)[reply]
The terms "privacy" and "data protection" are currently used synonymously in this article, but it may be helpful to mention that data protection and the right to privacy areconsidered distinct concepts in EU law. The GDPR is largely concerned with protecting individuals from the potential harms arising from the automated processing of personal data relating to them, i.e., ensuring that personal data used in decisions affecting individuals is"adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed" (Jon Bing calls this a "decision-oriented view of data protection"). This departs from the traditional notion of privacy, which focuses primarily on keeping private, personal matters out of the public eye. Any personal data, whether publicly available or not, can be processed to infer characteristics of specific identifiable individuals and used to make decisions that affect those individuals, and is therefore subject to data protection under the GDPR.
It is also problematic that there is currently almost no mention of the principles of adequacy and relevancy set out in Article 5(1)(c), and how these principles relate to the protection of individuals from unfair automated decisions under various circumstances.First Comet (talk)10:16, 20 August 2023 (UTC)[reply]
This article was the subject of a Wiki Education Foundation-supported course assignment, between8 January 2024 and30 April 2024. Further details are availableon the course page. Student editor(s):Ekaman2020 (article contribs). Peer reviewers:Dcharway.
— Assignment last updated byMrLavoie (talk)00:46, 20 February 2024 (UTC)[reply]
In 2023. Facebook (owned by Meta) was issued a record breaking fine by the European Union regarding this law. I included it as part of Timeline indicating how this law has made history, but another editor said company names shouldn't be listed. I contend is it wrong to list company names for having breached this law?CaribDigita (talk)23:08, 2 March 2024 (UTC)[reply]
