Difference between revisions of "Guidelines on the right to data portability (Q3968)"

From Wikibase Personal data
Jump to navigation Jump to search
(‎Created claim: instance of (P3): report (Q2527))
(‎Created claim: reference URL (P33): https://claude-drive.mycozy.cloud/public?sharecode=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJzaGFyZSIsImlhdCI6MTUyODIxNTUyOCwiaXNzIjoiY2xhdWRlLm15Y296eS5jbG91ZCIsInN1YiI6ImVtYWlsIn0.m7yxN6g6nqsvUYOPlAXkHDHqF0WHu-SYMbu6KaLztJADCKOlTIY_k-fgBLPF1Dg_tId8ikhZ-Cjjv9eR2jBQbw&id=69fb850c396c79e4270bde2876788aeb)
 
(35 intermediate revisions by the same user not shown)
Property / author
 +
Property / author: Working Party 29 / rank
 +
Normal rank
Property / official website
 +
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / rank
 +
Normal rank
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / qualifier
 +
date: 13 December 2016
Timestamp+2016-12-13T00:00:00Z
Timezone+00:00
CalendarGregorian
Precision1 day
Before0
After0
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / qualifier
 +
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / qualifier
 +
quote: "One of the ways in which a data controller can answer requests for data portability is by offering an appropriately secured and documented Application Programming Interface (API). "
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / qualifier
 +
quote: "By granting access to data via an API, it may be possible to offer a more sophisticated access system that enables individuals to make subsequent requests for data, either as a full download or as a delta function containing only changes since the last download, without these additional requests being onerous on the data controller."
Property / official website: http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp242_en_40852.pdf / qualifier
 +
quote: "For instance, they should offer a direct download opportunity for the data subject but should also allow data subjects to directly transmit the data to another data controller. This could be implemented by making an API available. "
Property / official website
 +
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / rank
 +
Normal rank
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
date: 5 April 2017
Timestamp+2017-04-05T00:00:00Z
Timezone+00:00
CalendarGregorian
Precision1 day
Before0
After0
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "Article 12 prohibits the data controller from charging a fee for the provision of the personal data, unless the data controller can demonstrate that the requests are manifestly unfounded or excessive, “in particular because of their repetitive character”...."
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "... For information society services that specialise in automated processing of personal data, implementing automated systems such as Application Programming Interfaces (APIs) can facilitate the exchanges with the data subject, hence lessen the potential burden resulting from repetitive requests."
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "Such hindrance can be characterised as any legal, technical or financial obstacles placed by data controller in order to refrain or slow down access, transmission or reuse by the data subject or by another data controller. ... "
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "...For example, such hindrance could be: fees asked for delivering data, lack of interoperability or access to a data format or API or the provided format, excessive delay or complexity to retrieve the full dataset, deliberate obfuscation of the dataset, or specific and undue or excessive sectorial standardization or accreditation demands"
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "These two different and possibly complementary ways of providing relevant portable data could be implemented by making data available through various means such as, for example, secured messaging, an SFTP server, a secured WebAPI or WebPortal."
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "[A] practical way by which a data controller can answer requests for [] portability may be by offering an appropriately secured and documented API. This may enable individuals to make requests [] for their personal data via their own or third-party software or grant permission for others to so do on their behalf (including another data controller) as specified in Article 20(2) of the GDPR."
Property / official website: http://ec.europa.eu/newsroom/document.cfm?doc_id=44099 / qualifier
 +
quote: "By granting access to data via an externally accessible API, it may also be possible to offer a more sophisticated access system that enables individuals to make subsequent requests for data, either as a full download or as a delta function containing only changes since the last download, without these additional requests being onerous on the data controller."
Property / reference URL
 +
Property / reference URL: https://medium.com/mydata/comments-on-data-portability-guidelines-2102d447f73b / rank
 +
Normal rank
Property / reference URL: https://medium.com/mydata/comments-on-data-portability-guidelines-2102d447f73b / qualifier
 +
Property / reference URL: https://medium.com/mydata/comments-on-data-portability-guidelines-2102d447f73b / qualifier
 +
comment: Comment around identification and Article 11.2
Property / reference URL: https://medium.com/mydata/comments-on-data-portability-guidelines-2102d447f73b / qualifier
 +
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/right_to_data_portability_workin#incoming-13188 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/right_to_data_portability_workin#incoming-13188 / qualifier
 +
comment: working documents of WP29 on right to data portability
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/wp29_data_portability_request_fo#incoming-13385 / rank
 +
Normal rank
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/5/Document%2001.pdf?cookie_passthrough=1 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/5/Document%2001.pdf?cookie_passthrough=1 / qualifier
 +
comment: internal working draft with comments from WP29
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/14/Document%2010.pdf?cookie_passthrough=1 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/14/Document%2010.pdf?cookie_passthrough=1 / qualifier
 +
comment: internal working draft from WP29
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/15/Document%2011.pdf?cookie_passthrough=1 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/15/Document%2011.pdf?cookie_passthrough=1 / qualifier
 +
comment: internal working draft from WP29
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/16/Document%2012.pdf?cookie_passthrough=1 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/16/Document%2012.pdf?cookie_passthrough=1 / qualifier
 +
comment: internal working draft from WP29, with track changes
Property / reference URL
 +
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/17/Document%2013.pdf?cookie_passthrough=1 / rank
 +
Normal rank
Property / reference URL: https://www.asktheeu.org/en/request/3985/response/13188/attach/17/Document%2013.pdf?cookie_passthrough=1 / qualifier
 +
comment: internal working draft from WP29
Property / reference URL
 +
Property / reference URL: https://blog.cozy.io/fr/rendez-nous-nos-donnees/ / rank
 +
Normal rank
Property / reference URL
 +
Property / reference URL: https://claude-drive.mycozy.cloud/public?sharecode=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJzaGFyZSIsImlhdCI6MTUyODIxNTUyOCwiaXNzIjoiY2xhdWRlLm15Y296eS5jbG91ZCIsInN1YiI6ImVtYWlsIn0.m7yxN6g6nqsvUYOPlAXkHDHqF0WHu-SYMbu6KaLztJADCKOlTIY_k-fgBLPF1Dg_tId8ikhZ-Cjjv9eR2jBQbw&id=69fb850c396c79e4270bde2876788aeb / rank
 +
Normal rank

Latest revision as of 20:41, 22 February 2020

No description defined
Language Label Description Also known as
English
Guidelines on the right to data portability
No description defined

    Statements

    0 references
    0 references
    13 December 2016
    "One of the ways in which a data controller can answer requests for data portability is by offering an appropriately secured and documented Application Programming Interface (API). "
    "By granting access to data via an API, it may be possible to offer a more sophisticated access system that enables individuals to make subsequent requests for data, either as a full download or as a delta function containing only changes since the last download, without these additional requests being onerous on the data controller."
    "For instance, they should offer a direct download opportunity for the data subject but should also allow data subjects to directly transmit the data to another data controller. This could be implemented by making an API available. "
    0 references
    5 April 2017
    "Article 12 prohibits the data controller from charging a fee for the provision of the personal data, unless the data controller can demonstrate that the requests are manifestly unfounded or excessive, “in particular because of their repetitive character”...."
    "... For information society services that specialise in automated processing of personal data, implementing automated systems such as Application Programming Interfaces (APIs) can facilitate the exchanges with the data subject, hence lessen the potential burden resulting from repetitive requests."
    "Such hindrance can be characterised as any legal, technical or financial obstacles placed by data controller in order to refrain or slow down access, transmission or reuse by the data subject or by another data controller. ... "
    "...For example, such hindrance could be: fees asked for delivering data, lack of interoperability or access to a data format or API or the provided format, excessive delay or complexity to retrieve the full dataset, deliberate obfuscation of the dataset, or specific and undue or excessive sectorial standardization or accreditation demands"
    "These two different and possibly complementary ways of providing relevant portable data could be implemented by making data available through various means such as, for example, secured messaging, an SFTP server, a secured WebAPI or WebPortal."
    "[A] practical way by which a data controller can answer requests for [] portability may be by offering an appropriately secured and documented API. This may enable individuals to make requests [] for their personal data via their own or third-party software or grant permission for others to so do on their behalf (including another data controller) as specified in Article 20(2) of the GDPR."
    "By granting access to data via an externally accessible API, it may also be possible to offer a more sophisticated access system that enables individuals to make subsequent requests for data, either as a full download or as a delta function containing only changes since the last download, without these additional requests being onerous on the data controller."
    0 references
    0 references