“Protecting the information that customers have entrusted organisations with is one of the key challenges faced by many industries and needs to addressed by well trained, well informed and qualified professionals that have a deep understanding of the issues. The independent Journal of Data Protection & Privacy is a fantastic source of the most up to date thinking and best practise and should be a ‘must read’ for DP professionals….”
Consent, its modalities, dynamics and record-keeping
Journal:
Click the button below to download the full text of the article.
Abstract: The paper provides a general introduction to consent as a legal basis for processing personal data; the definition, modalities and dynamics of consent; the data controller’s obligation to enable the data subject to exercise his or her legal power to grant, to refuse or to terminate any permission granted to the data controller with respect to processing the data subject’s personal data; and the data controller’s obligation to demonstrate consent. The paper demonstrates that, through the concept of legal power, result declarations and temporal characterisations of legal effects, one can model, engineer and design systems with actions that perform, give effect to, enforce and record a data subject’s power and declarations to grant permission, to refuse to grant permission or to terminate any permission previously granted to the data controller with respect to processing the data subject’s personal data.
Keywords: consent, consent management, consent records, GDPR