Search results

[…] privacy and data protection evolved, which solidified the dominant discourse about Africa that still shapes some perceptions today.  However, the idea that African societies lacked individualism (as one of the determinants of the need for privacy) and therefore did not meaningfully articulate a concept of privacy needs to be challenged. While it is still […]

[…] from its enforcement actions. Role and Status of Consent as a Basis for Processing Personal Data in Macau Under the PDPA, consent of the data subject is one of several legal bases for processing both personal data and sensitive personal data. “Sensitive personal data,” refers to personal data: revealing a person’s philosophical or political […]

[…] the ETSI framework and a high-risk AI system under the AI Act could co-exist if the following conditions are cumulatively met: An IoT device which belongs to one of the devices non-exhaustively listed under the Standard is also covered by the Union harmonization legislation listed in Annex II of the AI Act Proposal (e.g., […]

[…] aims to avoid fragmentation of the internal market by setting harmonised rules on the development and placing on the market of ‘lawful, safe and trustworthy AI systems’. One of the announced underlying purposes of the initiative is to ensure legal certainty for all actors in the AI supply chain.  The proposed AIA is built […]

[…] the Global Cross-Border Privacy Rule (CBPR) certification system, but that such developments will not completely alleviate tensions in global data transfer rules. He stressed that on the one hand, if the U.K. loses adequacy from the EU and in turn participates in the CBPR system, the EU may be left behind. On the other […]

[…] requirements for collection, use, and disclosure of personal data. Consent in the PDPA The PDPA adopts a similar model to the EU GDPR in which consent is one of several, equal bases for processing personal data under the PDPA.  Generally, under the PDPA, a data controller may not collect, use, or disclose personal data […]

[…] secrecy claims are not able to prevent individuals from effectively exercising their privacy rights. Panelists discussed issues such as the necessity of disclosing application or software source code when providing “explainability” of decision-making to data subjects, and debated the level of detail necessary in disclosures required under transparency obligations. Ms. Demetzou focused on how […]

[…] govern the collection, use, and disclosure of personal data; and a number of data subject rights, including rights to be notified of and object to processing of one’s personal data and to access and correct personal data about oneself; and a set of general obligations that would apply to all entities that process personal […]

[…] Consent plays a prominent role in the PDPA, as it is the default basis for collecting, using, and disclosing personal data under the PDPA and is also one of several legal bases for transferring personal data out of Malaysia. The General Principle in Section 6 of the PDPA establishes the default rule that data […]

[…] in the Singapore Management University’s Centre for AI and Data Governance and a Voting Member of the IEEE Standards Association. For his work, he was identified as one of Asia’s Top 30 Persons to Watch in the business of law (Asia Law Portal, 2019).  As Managing Director for APAC, he and his team will […]