Article (Scientific journals)
Re-thinking the allocation of roles under the GDPR in the context of cloud computing
Fischer, Cyril
2024In International Data Privacy Law
Peer Reviewed verified by ORBi
 

Files


Full Text
Fischer C_Re-thinking the allocation of roles_author file.pdf
Author preprint (346.75 kB)
Download

All documents in ORBi are protected by a user license.

Send to



Details



Keywords :
Law; Cloud; GDPR; Data; Consent; Controller; Data protection
Abstract :
[en] • Cloud computing is a well-established and flourishing phenomenon, whose key activity on personal data is the storage thereof. This study analyses the allocation of the controller–processor roles under the General Data Protection Regulation (GDPR) to the cloud computing actors in the context of the storage of personal data. It examines the current controller–processor model and suggests a joint controllership interpretation to the EU regulators, as a more appropriate allocation of roles in the context of cloud computing. • We argue that the prevailing controller–processor interpretation stems from the current primacy of the purpose criterion, as well as the recognition of consent as a criterion to allocate controllership. This article suggests that cloud providers control some of the essential means of the storage of personal data, thereby shifting part of the control from cloud customers to cloud providers. • If the joint controllership approach was to be followed by the EU regulators, this article argues that it would better reflect the economic and technical reality, and provide a more appropriate responsibility and liability framework for cloud providers and customers, which in turn would enhance the level of protection that data subjects should benefit from under the GDPR.
Research Center/Unit :
LCII - Liège Competition and Innovation Institute - ULiège
Disciplines :
European & international law
Author, co-author :
Fischer, Cyril  ;  Université de Liège - ULiège > Département de droit > Droit romain et droit privé comparé
Language :
English
Title :
Re-thinking the allocation of roles under the GDPR in the context of cloud computing
Publication date :
2024
Journal title :
International Data Privacy Law
ISSN :
2044-3994
eISSN :
2044-4001
Publisher :
Oxford University Press (OUP)
Peer reviewed :
Peer Reviewed verified by ORBi
Available on ORBi :
since 07 December 2023

Statistics


Number of views
74 (8 by ULiège)
Number of downloads
21 (7 by ULiège)

Scopus citations®
 
0
Scopus citations®
without self-citations
0
OpenAlex citations
 
0

Bibliography


Similar publications



Contact ORBi