Data protection by design: promises and, perils in crossing the Rubicon between law and engineering

Kjetil Rommetveit, Alessia Tanas, Niels Van Dijk

Onderzoeksoutput: Chapterpeer review

3 Citaten (Scopus)


This article reports some main findings from a study of recent efforts towards building privacy and other fundamental rights and freedoms into smart ICT systems. It mainly focuses on the concept of ‘Data Protection by Design and by Default’ (DPbD), recently introduced by EU legislation, and as implemented through the new field of privacy engineering. We describe the new constellations of actors that gather around this legislative and engineering initiative as an emerging ‘techno-epistemic network’. The article presents the empirical findings of a broad consultation with people involved in the making of this network, including policy makers, regulators, entrepreneurs, ICT developers, civil rights associations, and legal practitioners. Based on the findings from our consultations, we outline how DPbD is subject to differing, sometimes also conflicting or contradictory, expectations and requirements. We identify these as three main points of friction involved in the making of data protection by design: organisations versus autonomous data subjects; law versus engineering, and local versus global in the making of standards and infrastructures.

Originele taal-2English
TitelPrivacy and Identity Management. The Smart World Revolution
RedacteurenEleni Kosta, Simone Fischer-Hubner, Marit Hansen, Igor Nai-Fovino
UitgeverijSpringer Verlag
Aantal pagina's13
ISBN van geprinte versie9783319929248
StatusPublished - 2018

Publicatie series

NaamIFIP Advances in Information and Communication Technology
ISSN van geprinte versie1868-4238


Duik in de onderzoeksthema's van 'Data protection by design: promises and, perils in crossing the Rubicon between law and engineering'. Samen vormen ze een unieke vingerafdruk.

Citeer dit