The General Data Protection Regulation and the rise of certification as a regulatory instrument

Eric Lachaud

doi:10.1016/j.clsr.2017.09.002

The General Data Protection Regulation and the rise of certification as a regulatory instrument

Eric Lachaud

TILT

Research output: Contribution to journal › Article › Scientific › peer-review

13 Citations (Scopus)

Abstract

The endorsement of certification in Article 42 and 43 of the General Data Protection Regulation (hereinafter GDPR) extends the scope of this procedure to the enforcement of fundamental rights. The GDPR also leverages the high flexibility of this procedure to make of certification something else than a voluntary process attesting the conformity with technical standards. This paper argues that the GDPR turned certification into a new regulatory instrument in data protection, I suggest to call it monitored self-regulation, seeking to fill the gap between self-regulation and traditional regulation in order to build a regulation continuum.

Original language	English
Pages (from-to)	244-256
Number of pages	13
Journal	Computer Law and Security Review
Volume	34
Issue number	2
DOIs	https://doi.org/10.1016/j.clsr.2017.09.002
Publication status	Published - 2 Apr 2018

Access to Document

10.1016/j.clsr.2017.09.002

Cite this

@article{277683d3b32c482a8c4b4a5e0f1f7c04,

title = "The General Data Protection Regulation and the rise of certification as a regulatory instrument",

abstract = "The endorsement of certification in Article 42 and 43 of the General Data Protection Regulation (hereinafter GDPR) extends the scope of this procedure to the enforcement of fundamental rights. The GDPR also leverages the high flexibility of this procedure to make of certification something else than a voluntary process attesting the conformity with technical standards. This paper argues that the GDPR turned certification into a new regulatory instrument in data protection, I suggest to call it monitored self-regulation, seeking to fill the gap between self-regulation and traditional regulation in order to build a regulation continuum.",

author = "Eric Lachaud",

year = "2018",

month = apr,

day = "2",

doi = "10.1016/j.clsr.2017.09.002",

language = "English",

volume = "34",

pages = "244--256",

journal = "Computer Law and Security Review",

issn = "0267-3649",

publisher = "ELSEVIER ADVANCED TECHNOLOGY",

number = "2",

}

TY - JOUR

T1 - The General Data Protection Regulation and the rise of certification as a regulatory instrument

AU - Lachaud, Eric

PY - 2018/4/2

Y1 - 2018/4/2

N2 - The endorsement of certification in Article 42 and 43 of the General Data Protection Regulation (hereinafter GDPR) extends the scope of this procedure to the enforcement of fundamental rights. The GDPR also leverages the high flexibility of this procedure to make of certification something else than a voluntary process attesting the conformity with technical standards. This paper argues that the GDPR turned certification into a new regulatory instrument in data protection, I suggest to call it monitored self-regulation, seeking to fill the gap between self-regulation and traditional regulation in order to build a regulation continuum.

AB - The endorsement of certification in Article 42 and 43 of the General Data Protection Regulation (hereinafter GDPR) extends the scope of this procedure to the enforcement of fundamental rights. The GDPR also leverages the high flexibility of this procedure to make of certification something else than a voluntary process attesting the conformity with technical standards. This paper argues that the GDPR turned certification into a new regulatory instrument in data protection, I suggest to call it monitored self-regulation, seeking to fill the gap between self-regulation and traditional regulation in order to build a regulation continuum.

U2 - 10.1016/j.clsr.2017.09.002

DO - 10.1016/j.clsr.2017.09.002

M3 - Article

SN - 0267-3649

VL - 34

SP - 244

EP - 256

JO - Computer Law and Security Review

JF - Computer Law and Security Review

IS - 2

ER -

The General Data Protection Regulation and the rise of certification as a regulatory instrument

Abstract

Access to Document

Fingerprint

Cite this