On 28 January 2020, the CNPD participated in the Data Privacy Day, which is an annual event organized by the Restena Foundation and the University of Luxembourg in the framework of the Data Protection Day.
Data Privacy Day - "Take control of your data"
Data Privacy Day is an annual event for people interested in data privacy and data protection. It aims at raising awareness and promoting privacy and data protection best practices at European and international level.
Christophe Buschmann, commissioner of the CNPD, held the Welcome Speech and gave a presentation on the topic of on-site inspections and audits by Luxembourg's data protection authority.
SCHEDULE:
| 8.30 | Registration |
| 09.00 | Welcome speech Christophe Buschmann, Commissioner of the National Commission for Data Protection (Commission Nationale pour la Protection des Données – CNPD) |
| 09.15 | “Challenges of GDPR implementation in public research sector” Sandrine Munoz, Data Protection Officer at the University of Luxembourg Laurent Prévotat, Data Protection Officer at Luxembourg Institute of Health Chloë Lellinger, Data Protection Officer at Luxembourg Institute of Socio-Economic Research Topic: Three DPOs of Public research institutions will share their experience 20 months following the application of the General Data Protection Regulation and one year before the launch of the Horizon Europe research program on 1st January 2021. Using their experience the DPOs will introduce the specificities of GDPR implementation in public research and especially in their institution having their own particularities. They will focus on the key challenges such as legal qualifications of partners of a research project, Data Protection Impact Assessment, transfer of personal data to third countries and reuse of data. They will provide a few examples and their feed-back about how they handle it in their institutions. |
| 09.45 | “Feedback on the CNPD governance investigation” Christophe Buschmann, Commissioner at National Commission for Data Protection (CNPD) Topic: On-site inspections and audits |
| 10.15 | “DPIA and Privacy by Design: 2 different requirements!” Mélanie Gagnon, CEO and Founder MGSI |
| 10.45 | Coffee Break |
| 11.15 | “Privacy for everyone: practical tips” Steve Muller, Cybersecurity specialist at BEE SECURE Topic: Cookies, private browsing, app permissions, Internet of things, phishing, password managers, two-factor-authentication |
| 11.45 | “Maintaining motivation in crowdsourced projects and the implications of GDPR: the case study of Crowdmap-the-Crusades” Emma Goodwin, APDL board member at Association pour la Protection des Données à Luxembourg (APDL) Topic: This presentation will consider the question of motivation in citizen science crowdsourcing projects, specifically in relation to virtual reward systems and the impact of GDPR on this field of research. Crowdsourcing involves the leveraging of public participation in projects and activities. This talk will examine the ways in which crowdsourcing and social engagement interrelate, in the context of a public desirous of the same and more social interactions than they had in ‘pre-digital’ days. Using the case study of Crowdmap-the-Crusades, a digital citizen science project begun six years ago at the University of Oxford by Emma Goodwin, this presentation will explore the results and experience of the public Medieval French Transcription Competition held at the University of Luxembourg in October 2019. It will focus on how participants’ motivation was maintained whilst taking account of GDPR and informed consent requirements. The final part of the talk will address GDPR legislation specific to academic projects in Luxembourg. Possible approaches to project planning in order to incorporate GDPR requirements from project inception, planning, documentation through to execution will be set out, together with suggestions of useful sources of information and advice available to researchers based in Luxembourg. This presentation will be of interest to both academics and those working in or advising university administration in roles linked to data protection, project management and delivery. |
| 12.15 | Gail Kent, Director Communications Networks, Content & Technology, Data at European Commission |
| 12.45 | End |
28 January: Data Protection Day
On 26 April 2006, the Council of Europe, with the support of the European Commission, decided to launch a Data Protection Day, to be celebrated each year on 28 January. The goal is to raise awareness on data protection and inform citizens of their rights and of good practices, thereby enabling them to exercise these rights more effectively.
Why the 28 January? This date corresponds with the anniversary of the opening for signature of the Council of Europe's Convention 108 (28 January 1981) for the Protection of individuals with regard to automatic processing of personal data which has been for 39 years a cornerstone of data protection, in Europe and beyond.