Samenvatting

The banking sector has a highly developed procedural approach to risk. Faced with legal requirements to protect personal data using a risk-based approach, it may seem natural for banks to ‘translate’ existing risk management procedures to these new types of risks. We present findings of an empirical study into practices of personal data protection in European retail banks, with a focus on their conceptualisation of data protection risks. The study was mostly carried out during 2020, the first year of the COVID-19 pandemic. This offered the additional opportunity to study banks’ practices in managing data protection risks in transitional times, under conditions of accelerated digitalisation. Based on our findings, we argue that banks did not fully anticipate and mitigate risks that negatively affect data subjects’ interests. The reconciliation of the GDPR’s risk-based approach and banks’ procedural approach is likely to leave gaps in the latter’s management of data protection risks. We suggest including data subjects in risk assessment procedures as a potential remedy.

Originele taal-2English
TitelData Protection and Privacy
SubtitelIn Transitional Times
RedacteurenHideyuki Matsumi, Dara Hallinan, Diana Dimitrova, Eleni Kosta, Paul De Hert
UitgeverijBloomsbury Publishing
Hoofdstuk1
Pagina's1-26
Aantal pagina's26
Volume15
ISBN van elektronische versie9781509965922
ISBN van geprinte versie9781509965908
DOI's
StatusPublished - 1 jan 2023
EvenementComputer, Privacy & Data Protection: Data protection and Privacy in Transitional Times - Les Halles de Schaarbeek, Brussels , Belgium
Duur: 23 mei 202225 mei 2022
Congresnummer: 15
https://www.cpdpconferences.net/CPDP2022.pdf
https://www.cpdpconferences.org/

Conference

ConferenceComputer, Privacy & Data Protection
Verkorte titelCPDP2022
Land/RegioBelgium
StadBrussels
Periode23/05/2225/05/22
Internet adres

Bibliografische nota

Publisher Copyright:
© The editors and contributors severally 2023. All rights reserved.

Vingerafdruk

Duik in de onderzoeksthema's van 'Data Protection Risks in Transitional Times: The Case of European Retail Banks'. Samen vormen ze een unieke vingerafdruk.

Citeer dit