| Name: | Description: | Size: | Format: | |
|---|---|---|---|---|
| 619.38 KB | Adobe PDF |
Advisor(s)
Abstract(s)
A evolução tecnológica trouxe mudanças contributivas com inegável simplificação da vida moderna. Porém, também nos expôs a riscos não antes pensados. A invasão à privacidade com geração de prejuízos reputacionais, com impacto económico e social, é uma realidade que temos que enfrentar. A intensificação da migração de dados pessoais nas últimas décadas, trouxe a necessidade de regulação da proteção de dados pessoais em âmbito mundial. Porém, como toda norma, para que se aproxime de seus objetivos, precisa de maturação. O Regulamento de Proteção de Dados Pessoais – RPDP (Regulamento (UE) 2016/679 do Parlamento Europeu e do Conselho) norma que regulamenta o assunto em Portugal, já é uma revisão da antiga norma revogada e não tratou especificamente acerca da responsabilidade civil do encarregado de proteção de dados, figura de importância no processo de segurança dos dados pessoais e que será o elo entre os responsáveis, os órgãos de controle e o titular dos dados na condução do processo de tratamento de dados pessoais das organizações. A lacuna na lei pode remeter a interpretações que corroboram não só o enfraquecimento das políticas internas de controle das organizações, como também, expõem os próprios envolvidos na cadeia da proteção de dados, peças centrais da regulamentação. O presente estudo pretende contribuir com respostas às questões acerca da responsabilidade civil dos responsáveis e subcontratados, com rebatimento necessário na responsabilidade civil do encarregado de proteção de dados, através de análise das peculiaridades da relação jurídica dos responsáveis e encarregados, da lei de proteção de dados em vigor e, considerando seus limites, do instituto da responsabilidade civil no âmbito legal e doutrinário, a fim de refletir e propor medidas acerca do tema. O encarregado de proteção de dados, tendo seu papel fortalecido e devidamente regulado, contribuirá para a eficiência do processo, maior segurança da organização e do titular dos dados, como reflexos também na livre circulação dos dados.
Technological evolution has brought contributory changes with an undeniable simplification of modern life. However, it also exposed us to risks not thought of before. The invasion of privacy with the generation of reputational damage, with economic and social impact, is a reality that we must face. The intensification of the migration of personal data in recent decades has brought the need to regulate the protection of personal data worldwide. However, like any standard, to get closer to its goals, it needs maturation. The Personal Data Protection Regulation - RPDP (Regulation (EU) 2016/679 of the European Parliament and of the Council), a rule that regulates the matter in Portugal, is already a revision of the former revoked rule and did not specifically address the civil liability of the person in charge. protection, figure of importance in the process of security of personal data and that will be the link between those responsible, the control bodies and the data subject in conducting the process of processing personal data of organizations. The gap in the law can lead to interpretations that not only support the weakening of the organizations' internal control policies, but also expose those involved in the data protection chain, central parts of the regulation. The present study intends to contribute with answers to the questions about the civil liability of those responsible and subcontractors, with the necessary impact on the civil liability of the data protection officer, through the analysis of the peculiarities of the legal relationship of those responsible and in charge, of the data protection law. in force and, considering its limits, of the civil liability institute in the legal and doctrinal scope, to reflect and propose measures on the subject. The data protection officer, having his role strengthened and properly regulated, will contribute to the efficiency of the process, greater security of the organization and the data subject, as well as reflections on the free flow of data.
Technological evolution has brought contributory changes with an undeniable simplification of modern life. However, it also exposed us to risks not thought of before. The invasion of privacy with the generation of reputational damage, with economic and social impact, is a reality that we must face. The intensification of the migration of personal data in recent decades has brought the need to regulate the protection of personal data worldwide. However, like any standard, to get closer to its goals, it needs maturation. The Personal Data Protection Regulation - RPDP (Regulation (EU) 2016/679 of the European Parliament and of the Council), a rule that regulates the matter in Portugal, is already a revision of the former revoked rule and did not specifically address the civil liability of the person in charge. protection, figure of importance in the process of security of personal data and that will be the link between those responsible, the control bodies and the data subject in conducting the process of processing personal data of organizations. The gap in the law can lead to interpretations that not only support the weakening of the organizations' internal control policies, but also expose those involved in the data protection chain, central parts of the regulation. The present study intends to contribute with answers to the questions about the civil liability of those responsible and subcontractors, with the necessary impact on the civil liability of the data protection officer, through the analysis of the peculiarities of the legal relationship of those responsible and in charge, of the data protection law. in force and, considering its limits, of the civil liability institute in the legal and doctrinal scope, to reflect and propose measures on the subject. The data protection officer, having his role strengthened and properly regulated, will contribute to the efficiency of the process, greater security of the organization and the data subject, as well as reflections on the free flow of data.
Description
Keywords
Responsável pela proteção de dados Responsabilidade civil Regulamento de proteção de dados Data protection officer Civil responsability Data protection regulation