Citizen Centric Approach to Data

Our Ambition

Main Goal: Disseminate data protection guidelines 

Context

In the wake of the Snowden revelations, there is now a unanimous recognition that citizen rights for privacy need particular attention. The EU has recently amended the former Data Protection Directive and issued the new General Data Protection Regulation (Regulation EU 2016/679). By 25 May 2018, all Member States must implement the Regulation and adopt all necessary measures to ensure compliance. Sanctions foreseen could amount to up to 2% of the worldwide turnover of an enterprise in case of breach. More specifically the regulation requires:

  • Privacy by Design and by Default, i.e. data protection is designed into the development of business processes for products and services;
  • Privacy settings to be set at a high level by default;
  • Data Protection Impact Assessments (PIA) to be conducted when specific risks occur to the rights and freedoms of data subjects.

The objective of this initiative is to provide data protection guidelines for EIP-SCC applications with a focus on a citizen centric viewpoint.

Latest news

The initiative focused on awareness activities in 2016, including:

  • Webinars were organised during the year 2017
  • Workshops on GDPR compliance were carried out with the purpose of awareness raising and Private Impact Assessment (PIA) practices for the SharingCities H2020 project involving three cities: London, Milan, and Lisbon and one with ESPRESSO support
  • The initiative presented its latest achievements during the AC meeting in October 2017 (SEE DOCUMENTS ATTACHED IN THE EMAIL) and discussed on cross-cutting collaboration opportunities during the GA Breakfast

Roadmap winter '17 to spring '18

The initiative is currently focusing on addressing GDPR compliance in existing projects:

  • A workshop on GDPR compliance will be organised in winter with the purpose of gathering together private companies, public administrations and lighthouse projects and to develop use cases

The initiative aims at delivering the following in 2017 and 2018: 

  1. Additional workshops on GDPR compliance
  2. Feedback on privacy management guidelines
  3. Discussion towards privacy management guidelines

Status and Forward Plans

During the period from winter 2017 to spring 2018, the initiative is focusing on addressing GDPR compliance in existing projects: 

  • A workshop on GDPR compliance was organised for the SharingCities H2020 project to address GDPR compliance, involving three cities, London, Milan, Lisbon, and a further one is scheduled
  • A webinar was organised in April 2017 with the support of the ESPRESSO support action
  • The initiative aims at delivering the following in 2017 and 2018:
  • Additional workshops on GDPR compliance
  • Feedback on privacy management guidelines
  • Discussion towards privacy management guidelines

 

DATA PRIVACY & SECURITY

AC

Mplace

GAP

  1. Develop and communicate ‘call to action’ to city leaders

 

 

 

  1. Engage SCC01s on GDPR agenda, as workshop candidates

 

x

 

  1. Develop privacy mgmt. guidelines (leadership/mgmt. levels)

 

 

 

To know more...

Contact us at: citizenfocus@eu-smartcities.eu

 

 

Management Team

Initiative Lead