Sofia Ranchordas, Eleni Kosta, Irene Kamara
Maria Tzanou - Senior Lecturer, School of Law, University of Sheffield, Plixavra Vogiatzoglou - Doctoral researcher, KU Leuven Centre for IT & IP Law (CiTiP) – imec
Laura Drechsler - Research fellow at the Centre for IT & IP Law (CiTiP), KU Leuven-imec/Lecturer, Open Universiteit, Heerlen
Eleni Kosta - Full Professor of Technology Law and Human Rights, Tilburg Institute for Law, Technology (TILT), Irene Kamara - Assistant Professor Cybercrime and Human Rights, Tilburg Institute for Law, Technology (TILT)
Janvier Parewyck - Attorney-at-law at Timelex and member of the Brussels Bar
Mariolina Eliantonio - Professor of European and Comparative Administrative Law (Maastricht University) and General Editor of the Review of European Administrative Law
Within the General Data Protection Regulation (GDPR), individuals have certain rights (‘data subject rights’) towards their own personal data. These rights include the option to access, rectify or erase one’s data.
The GDPR also foresees specific rules for international personal data transfers, thus situations in which personal data becomes accessible outside its territorial scope. The goal of these rules is to ensure that the level of protection for the fundamental rights of individuals is not undermined by data transfers. The Court of Justice of the European Union (CJEU) clarified that this level has to be maintained to an ‘essentially equivalent’ extent, and that this requires also the upkeeping of (some) data subject rights.
This paper analyses the role of data subject rights when personal data are transferred under the GDPR. It concludes that the existence of some data subject rights is required for lawful data transfers under the GDPR.
Om toegang te krijgen tot het gehele artikel heeft u een abonnement nodig. Meer informatie over de abonnementsvormen en prijzen kunt u hier vinden.Abonneren op dit tijdschrift