Published online by Cambridge University Press: 21 May 2009
Data protection is the body of law which secures for every individual, whatever his nationality or residence, respect for his rights and fundamental freedoms, and in particular his right to privacy, with regard to automatic processing of personal data relating to him. It is an interesting case of a corpus of transnational law in the sense of legal rules which develop rapidly and simultaneously in municipal and international law, into a tissue binding together private and public entities across national borders.
1. Cf., Convention for the protection of individuals with regard to automatic processing of personal data, Article 1.
2. Hessisches Datenschutzgesetz, 7 October 1970.
3. Cf., the Gospel according to St. Luke 2:1.
4. Fishman, William L., “Introduction to Transborder Data Flows”, XVI Stanford Journal of International Law (1980) p. 3Google Scholar.
5. The present author has described the origins in his book Emerging Data Protection in Europe (North-Holland, Amsterdam (1975)Google Scholar.
6. Resolutions of the Committee of Ministers of the Council of Europe No. (73) 22 (adopted 26 September 1973) and No. (74) 29 (adopted 20 September 1974) on the protection of the privacy of individuals vis-à-vis electronic data banks in the private sector, respectively the public sector.
7. Recorded in the European Treaty Series (ETS), No. 108.
8. Karpenstein, Peter, “Zur Zuständigkeit der Europäischen Gemeinschaften auf dem Gcbietc des Datenschutzes”, Das Europa der zweiten Generation (Engel Verlag 1981)Google Scholar.
9. Francisco, Marius T.W., “Our Data, Their Banks”, quoted in V Transnational Data Report (TDR) (1982) p. 390Google Scholar.
10. See the excellent source book International Law governing communications and information prepared by Ploman, Edward W. (Braces Pinter Ltd., London 1982)Google Scholar.
11. Report by the Committee of Experts on Human Rights, Council of Europe (DH/EXP (70) 15).
12. Explanatory Report to Resolution (73) 22, para. 11.
13. Kirby, Michael, “Data Protection and Law Reform”, 3 Computer Networks, (1979), p. 161Google Scholar.
14. Hondius, Frits W., “Data Law in Europe”, XVI Stanford Journal of International Law, (1980) p. 98Google Scholar.
15. Report of the Committee on Privacy (Chairman the Rt. Hon. Kenneth Younger), London 1972, Cmnd 5012.
16. Warren, Samuel D. and Brandeis, Louis D., “The Right to Privacy”, Harvard Law Review (1890–1891)Google Scholar.
17. Westin, Alan F., Privacy and Freedom (New York 1968)Google Scholar.
18. To be exact: 200 ways, according to calculations made in West Germany about the number of automated files in which an average citizen is recorded.
19. Sieghart, Paul, Privacy and Computers (1976) p. 122Google Scholar, quoting W. Steinmüller.
20. Hondius, Frits W., “International Data Protection Action”, 10 OECD Informatics Studies p. 214.Google Scholar
21. For a comprehensive survey, see Wochner, Lucius N., Der Persönlichkeitsschutz im grenzüberschreitenden Datenverkehr (Schultess Polygraphischer Verlag, Zürich 1981)Google Scholar
22. Wittkaemper, G.W., Datenoascn – cin Mytologem?” 2 Datenschutz und Datensicherung, (1978) p. 59Google Scholar.
23. “British Businessman complains: lack of computer privacy law affects overseas trade”, III TDR (1980) p. 6Google Scholar.
24. Wochner, , op. cit., p. 44Google Scholar.
25. Suspicions about the motives were reinforced by a coincidence in time of two policies in Europe relating to computers, which had nothing to do with each other: protectionist measures to promote European computer industry, and data protection measures.
26. Hondius, Frits W., “Internationale Aspekte des Datenschutzcs im offentlichen Bercich” Datenschutz (Oreil Füssli, Zürich 1982) pp. 131–132Google Scholar.
27. The Guidelines were adopted by 16 countries. Six countries (Australia, Canada, Iceland, Ireland, Turkey and the U.K.) did not subscribe to them at the time of their adoption.
28. With regard to those data the OECD proposed a “Transborder Data Flow Pledge” which aims at anticipating “protectionist challenges before they become urgent”, V TDR (1982) p. 3Google Scholar.
29. Report on the protection of the rights of the individual in the face of technical developments in data processing (Rapporteur Mr. Bayerl), European Parliament, Document 100/79, p. 11, point 13.
30. For detailed information on treaty-making in the Council of Europe, see the author's study “La préparation et la gestion des traités conclus dans le cadre du Conseil de l'Europe”, Annales de la Faculté de droit de Clermont (1979) pp. 283–313.
31. Niblett, Bryan, “Digital information and the privacy problem”, OECD Informatics Studies No. 2 (1979) p. 37Google Scholar.
32. Kirby, Michael, “Transborder data flows and the “Basic Rules” of data privacy”, XVI Stanford Journal of International Law (1980) p. 29Google Scholar.
33. Some doubts have been expressed about Section 28 (1) of the United Kingdom Data Protection Bill, as tabled in the House of Lords, which allows an exception to subject access, inter alia for the purpose of prevention or detection of crime, which seems to be at variance with Article 9 (2) of the 1981 Convention.
34. It will remain confidential until its adoption.
35. Gerhard Stadler, quoted by Wochner, , op. cit., p. 394Google Scholar.
36. Wochner, , op. cit., pp. 220–236Google Scholar.
37. Rigaux, François, “La loi applicable à la protection des individus à l'égard du traitement automatisé des données à caractère personnel”, 69 Rev. crit. (1980) pp. 443–478 at p. 462Google Scholar.
38. Madec, Alain J., “Present legal void and economic ignorance create dangerous international data flow situation,” IV TDR (1981) p. 16Google Scholar.
39. J.M. Bischoff, Problems of conflicts of laws, authorities and courts connected with the draft Convention for the protection of individuals with regard to automatic processing of personal data, Council of Europe, 2 CJ–PC (80) p. 1.
40. Rigaux, op. cit., para 37.
41. Europcan Conventions on the service abroad of documents relating to administrative matters (ETS No. 94 – 24 November 1977) and on the obtaining abroad of information and evidence in administrative matter (ETS No. 100 – 15 March 1978).
42. V TDR (1982) p.369.
43. This paragraph reads as follows: “… (c) the pursuit of an open information policy in the public sector, including access to information, in order to enhance the individual's understanding of, and his ability to discuss freely political, social, economic and cultural matters”.
44. Jacqué, J.P., “La Convention pour la protection des individus à l'égard du traitement automatisé des données à caractère personnel”, XXVI Annuaire français de droit international, (1980) p. 777Google Scholar.
45. Erster Tätigkcitsbericht des Bundesbeauftragten für den Datenschutz, p. 65 ff.
46. Clariana, Gregorio Garzon, “La protectión jurídica de los datos de caracter personal” Los implicaciones sociales de la informatiòn (CITEMA, Madrid 1980) pp. 47–48Google Scholar.
47. Alazaga, O., Comentario sistematico de la Constitutiòn española de 1978, (Madrid 1978) pp. 1907 209–210Google Scholar.
48. Résolution concernant le respect de la vie privée et l'utilisation de l'informatique, adoptée par l'Union Internationale des avocats (UIA) lors de son Congrès de Cannes le 14 septembre 1979.
49. Recommendation 890 (1980) on the protection of personal data, Parliamentary Assembly of the Council of Europe, Documents 4472 and 4484.
50. “Een grondrecht op databescherming?”, Jurist en Computer (to be published by Kluwer, Deventer 1983)Google Scholar.